From 3564be1c8a28ac59e8a7135a1ab2a82d2e8a3c90 Mon Sep 17 00:00:00 2001

From: Eric Garver <eric@garver.life>

Date: Thu, 9 Apr 2020 12:49:02 -0400

Subject: [PATCH 11/45] test(dbus): zone: verify permanent config APIs

(cherry picked from commit 64d5bf1b117bc29d09b4f30cbb1c87d8559eeac0)

(cherry picked from commit a972e90b522ba11e0bd65b8d0cd1a55e1d18f9cd)

---

 src/tests/dbus/dbus.at                      |   1 +

 src/tests/dbus/zone_permanent_functional.at | 359 ++++++++++++++++++++

 2 files changed, 360 insertions(+)

 create mode 100644 src/tests/dbus/zone_permanent_functional.at

diff --git a/src/tests/dbus/dbus.at b/src/tests/dbus/dbus.at

index 377244460e7a..31c180dc3d3d 100644

--- a/src/tests/dbus/dbus.at

+++ b/src/tests/dbus/dbus.at

@@ -3,3 +3,4 @@ m4_include([dbus/firewalld.conf.at])

 m4_include([dbus/service.at])

 m4_include([dbus/zone_permanent_signatures.at])

 m4_include([dbus/zone_runtime_signatures.at])

+m4_include([dbus/zone_permanent_functional.at])

diff --git a/src/tests/dbus/zone_permanent_functional.at b/src/tests/dbus/zone_permanent_functional.at

new file mode 100644

index 000000000000..2261832e00a8

--- /dev/null

+++ b/src/tests/dbus/zone_permanent_functional.at

@@ -0,0 +1,359 @@

+FWD_START_TEST([dbus api - zone permanent functional])

+AT_KEYWORDS(dbus zone gh586)

+

+dnl ####################

+dnl Global APIs

+dnl ####################

+

+DBUS_CHECK([config], [config.addZone],

+    ["foobar" dnl name

+     '("1.0", dnl version

+       "foobar", dnl short

+       "foobar zone", dnl description

+       false, dnl bogus/unused

+       "ACCEPT", dnl target

+       @<:@"ssh", "mdns"@:>@, dnl services

+       @<:@("1234", "tcp"), ("1234", "udp")@:>@, dnl ports

+       @<:@"echo-request"@:>@, dnl ICMP Blocks

+       true, dnl masquerade

+       @<:@("1234", "tcp", "4321", ""), ("1234", "udp", "4321", "10.10.10.10")@:>@, dnl forward ports

+       @<:@"dummy0", "dummy1"@:>@, dnl interfaces

+       @<:@"10.10.10.0/24"@:>@, dnl sources

+       @<:@"rule family=ipv4 source address=10.20.20.20 drop"@:>@, dnl rules_str

+       @<:@"icmp"@:>@, dnl protocols

+       @<:@("1234", "tcp"), ("1234", "udp")@:>@, dnl source ports

+       false dnl ICMP block inversion

+      )'dnl

+    ], 0, [stdout])

+DBUS_FOOBAR_ZONE_OBJ=[$(sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout)]

+export DBUS_FOOBAR_ZONE_OBJ

+

+dnl Get Zones

+dnl

+DBUS_CHECK([config], [config.getZoneNames], [], 0, [dnl

+    [(['block', 'dmz', 'drop', 'external', 'foobar', 'home', 'internal', 'public', 'trusted', 'work'],)]

+])

+DBUS_CHECK([config], [config.listZones], [], 0, [stdout])

+NS_CHECK([sed -e ["s/['][,]/'\n/g"] ./stdout |dnl

+          sed -e ["s/.*config\/zone\/\([^']\+\)['].*/\1/"] |dnl

+          while read LINE; do { echo "${LINE}" | grep ["^[0-9]\+$"] ; } || exit 1; done], 0, [ignore])

+DBUS_CHECK([config], [config.getZoneByName], ["public"], 0, [stdout])

+NS_CHECK([sed -e ["s/.*config\/zone\/\([^']\+\)['].*/\1/"] ./stdout | grep ["^[0-9]\+$"]], 0, [ignore])

+

+dnl Interfaces

+FWD_CHECK([-q --permanent --zone public --add-interface dummy2])

+DBUS_CHECK([config], [config.getZoneOfInterface], ["dummy2"], 0, [dnl

+    ('public',)

+])

+FWD_CHECK([-q --permanent --zone public --remove-interface dummy2])

+

+dnl Sources

+FWD_CHECK([-q --permanent --zone public --add-source 10.20.20.0/24])

+DBUS_CHECK([config], [config.getZoneOfSource], ["10.20.20.0/24"], 0, [dnl

+    ('public',)

+])

+FWD_CHECK([-q --permanent --zone public --remove-source 10.20.20.0/24])

+

+dnl ####################

+dnl Zone object APIs

+dnl ####################

+

+DBUS_CHECK([config/zone/${DBUS_FOOBAR_ZONE_OBJ}], [config.zone.getSettings], [], 0, [dnl

+     (('1.0', dnl version

+       'foobar', dnl short

+       'foobar zone', dnl description

+       false, dnl bogus/unused

+       'ACCEPT', dnl target

+       @<:@'ssh', 'mdns'@:>@, dnl services

+       @<:@('1234', 'tcp'), ('1234', 'udp')@:>@, dnl ports

+       @<:@'echo-request'@:>@, dnl ICMP Blocks

+       true, dnl masquerade

+       @<:@('1234', 'tcp', '4321', ''), ('1234', 'udp', '4321', '10.10.10.10')@:>@, dnl forward ports

+       @<:@'dummy0', 'dummy1'@:>@, dnl interfaces

+       @<:@'10.10.10.0/24'@:>@, dnl sources

+       @<:@'rule family="ipv4" source address="10.20.20.20" drop'@:>@, dnl rules_str

+       @<:@'icmp'@:>@, dnl protocols

+       @<:@('1234', 'tcp'), ('1234', 'udp')@:>@, dnl source ports

+       false),)

+])

+

+dnl Verify update works

+dnl

+DBUS_CHECK([config/zone/${DBUS_FOOBAR_ZONE_OBJ}], [config.zone.update], [dnl

+     '("1.1", dnl version

+       "foobar v2", dnl short

+       "foobar zone updated", dnl description

+       false, dnl bogus/unused

+       "ACCEPT", dnl target

+       @<:@"ssh", "mdns", "samba"@:>@, dnl services

+       @<:@("1234", "tcp"), ("4444", "udp")@:>@, dnl ports

+       @<:@"echo-request", "echo-reply"@:>@, dnl ICMP Blocks

+       false, dnl masquerade

+       @<:@("1234", "tcp", "4321", "")@:>@, dnl forward ports

+       @<:@"dummy0", "dummy1", "dummy2"@:>@, dnl interfaces

+       @<:@"10.10.10.0/24", "10.20.0.0/16"@:>@, dnl sources

+       @<:@"rule family=ipv4 source address=10.20.20.20 reject"@:>@, dnl rules_str

+       @<:@"icmp", "ipv6-icmp"@:>@, dnl protocols

+       @<:@("1234", "tcp"), ("6666", "udp")@:>@, dnl source ports

+       true dnl ICMP block inversion

+      )'dnl

+    ], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_FOOBAR_ZONE_OBJ}], [config.zone.getSettings], [], 0, [dnl

+     (('1.1', dnl version

+       'foobar v2', dnl short

+       'foobar zone updated', dnl description

+       false, dnl bogus/unused

+       'ACCEPT', dnl target

+       @<:@'ssh', 'mdns', 'samba'@:>@, dnl services

+       @<:@('1234', 'tcp'), ('4444', 'udp')@:>@, dnl ports

+       @<:@'echo-request', 'echo-reply'@:>@, dnl ICMP Blocks

+       false, dnl masquerade

+       @<:@('1234', 'tcp', '4321', '')@:>@, dnl forward ports

+       @<:@'dummy0', 'dummy1', 'dummy2'@:>@, dnl interfaces

+       @<:@'10.10.10.0/24', '10.20.0.0/16'@:>@, dnl sources

+       @<:@'rule family="ipv4" source address="10.20.20.20" reject'@:>@, dnl rules_str

+       @<:@'icmp', 'ipv6-icmp'@:>@, dnl protocols

+       @<:@('1234', 'tcp'), ('6666', 'udp')@:>@, dnl source ports

+       true),)

+])

+

+dnl Rename

+DBUS_CHECK([config/zone/${DBUS_FOOBAR_ZONE_OBJ}], [config.zone.rename], ["foobar-renamed"], 0, [ignore])

+DBUS_CHECK([config], [config.getZoneByName], ["foobar-renamed"], 0, [ignore])

+

+dnl Remove

+DBUS_CHECK([config/zone/${DBUS_FOOBAR_ZONE_OBJ}], [config.zone.remove], [], 0, [ignore])

+DBUS_CHECK([config], [config.getZoneByName], ["foobar-renamed"], 1, [ignore], [ignore])

+

+dnl Get a reference to the public zone. We'll use for the rest of the tests.

+DBUS_CHECK([config], [config.getZoneByName], ["public"], 0, [stdout])

+DBUS_PUBLIC_ZONE_OBJ=[$(sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout)]

+export DBUS_PUBLIC_ZONE_OBJ

+

+dnl loadDefaults

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.loadDefaults], [], 0, [ignore])

+

+dnl Version

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getVersion], [], 0, [dnl

+    ('',)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setVersion], ["1.1"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getVersion], [], 0, [dnl

+    ('1.1',)

+])

+

+dnl Short

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getShort], [], 0, [dnl

+    ('Public',)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setShort], ["Public updated"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getShort], [], 0, [dnl

+    ('Public updated',)

+])

+

+dnl Description

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getDescription], [], 0, [dnl

+    ('For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.',)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setDescription], ["A shorter description."], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getDescription], [], 0, [dnl

+    ('A shorter description.',)

+])

+

+dnl Target

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getTarget], [], 0, [dnl

+    ('default',)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setTarget], ["ACCEPT"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getTarget], [], 0, [dnl

+    ('ACCEPT',)

+])

+

+dnl Interfaces

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addInterface], ["dummy0"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryInterface], ["dummy0"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryInterface], ["dummy1"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setInterfaces], [['["dummy0", "dummy1"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getInterfaces], [], 0, [dnl

+    [(['dummy0', 'dummy1'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeInterface], ["dummy0"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getInterfaces], [], 0, [dnl

+    [(['dummy1'],)]

+])

+

+dnl Sources

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addSource], ["10.10.10.0/24"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.querySource], ["10.10.10.0/24"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.querySource], ["10.20.20.0/24"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setSources], [['["10.10.10.0/24", "10.20.20.0/24"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getSources], [], 0, [dnl

+    [(['10.10.10.0/24', '10.20.20.0/24'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeSource], ["10.10.10.0/24"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getSources], [], 0, [dnl

+    [(['10.20.20.0/24'],)]

+])

+

+dnl Services

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addService], ["samba"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryService], ["samba"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryService], ["https"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setServices], [['["samba", "https"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getServices], [], 0, [dnl

+    [(['samba', 'https'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeService], ["samba"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getServices], [], 0, [dnl

+    [(['https'],)]

+])

+

+dnl Ports

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addPort], ["1234" "tcp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryPort], ["1234" "tcp"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryPort], ["4321" "udp"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setPorts], [['[("1234", "tcp"), ("4321", "udp")]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getPorts], [], 0, [dnl

+    [([('1234', 'tcp'), ('4321', 'udp')],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removePort], ["1234" "tcp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getPorts], [], 0, [dnl

+    [([('4321', 'udp')],)]

+])

+

+dnl Source Ports

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addSourcePort], ["1234" "tcp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.querySourcePort], ["1234" "tcp"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.querySourcePort], ["4321" "udp"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setSourcePorts], [['[("1234", "tcp"), ("4321", "udp")]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getSourcePorts], [], 0, [dnl

+    [([('1234', 'tcp'), ('4321', 'udp')],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeSourcePort], ["1234" "tcp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getSourcePorts], [], 0, [dnl

+    [([('4321', 'udp')],)]

+])

+

+dnl Forward Ports

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addForwardPort], ["1234" "tcp" "1111" ""], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryForwardPort], ["1234" "tcp" "1111" ""], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryForwardPort], ["4321" "udp" "4444" "10.10.10.10"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setForwardPorts], [['[("1234", "tcp", "1111", ""), ("4321", "udp", "4444", "10.10.10.10")]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getForwardPorts], [], 0, [dnl

+    [([('1234', 'tcp', '1111', ''), ('4321', 'udp', '4444', '10.10.10.10')],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeForwardPort], ["1234" "tcp" "1111" ""], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getForwardPorts], [], 0, [dnl

+    [([('4321', 'udp', '4444', '10.10.10.10')],)]

+])

+

+dnl Protocols

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addProtocol], ["icmp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryProtocol], ["icmp"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryProtocol], ["igmp"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setProtocols], [['["icmp", "igmp"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getProtocols], [], 0, [dnl

+    [(['icmp', 'igmp'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeProtocol], ["icmp"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getProtocols], [], 0, [dnl

+    [(['igmp'],)]

+])

+

+dnl Masquerade

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryMasquerade], [], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addMasquerade], [], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryMasquerade], [], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setMasquerade], [true], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getMasquerade], [], 0, [dnl

+    [(true,)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeMasquerade], [], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getMasquerade], [], 0, [dnl

+    [(false,)]

+])

+

+dnl ICMP Block

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addIcmpBlock], ["echo-reply"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryIcmpBlock], ["echo-reply"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryIcmpBlock], ["echo-request"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setIcmpBlocks], [['["echo-reply", "echo-request"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getIcmpBlocks], [], 0, [dnl

+    [(['echo-reply', 'echo-request'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeIcmpBlock], ["echo-reply"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getIcmpBlocks], [], 0, [dnl

+    [(['echo-request'],)]

+])

+

+dnl ICMP Block Inversion

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryIcmpBlockInversion], [], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addIcmpBlockInversion], [], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryIcmpBlockInversion], [], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setIcmpBlockInversion], [true], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getIcmpBlockInversion], [], 0, [dnl

+    [(true,)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeIcmpBlockInversion], [], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getIcmpBlockInversion], [], 0, [dnl

+    [(false,)]

+])

+

+dnl Rich Rules

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.addRichRule], ["rule family=ipv4 source address=10.10.10.0/24 accept"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryRichRule], ["rule family=ipv4 source address=10.10.10.0/24 accept"], 0, [dnl

+    (true,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.queryRichRule], ["rule family=ipv4 source address=10.20.20.0/24 drop"], 0, [dnl

+    (false,)

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.setRichRules], [['["rule family=ipv4 source address=10.10.10.0/24 accept", "rule family=ipv4 source address=10.20.20.0/24 drop"]']], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getRichRules], [], 0, [dnl

+    [(['rule family="ipv4" source address="10.10.10.0/24" accept', 'rule family="ipv4" source address="10.20.20.0/24" drop'],)]

+])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.removeRichRule], ["rule family=ipv4 source address=10.10.10.0/24 accept"], 0, [ignore])

+DBUS_CHECK([config/zone/${DBUS_PUBLIC_ZONE_OBJ}], [config.zone.getRichRules], [], 0, [dnl

+    [(['rule family="ipv4" source address="10.20.20.0/24" drop'],)]

+])

+

+FWD_END_TEST([-e '/ERROR: INVALID_ZONE: foobar-renamed/d'])

-- 

2.27.0