make -C tools/testing/selftests TARGETS="net/netfilter" TEST_PROGS=nft_floowtable.sh TEST_GEN_PROGS="" run_tests
make: Entering directory '/home/virtme/testing-15/tools/testing/selftests'
make[1]: Entering directory '/home/virtme/testing-15/tools/testing/selftests/net/netfilter'
make[1]: Nothing to be done for 'all'.
make[1]: Leaving directory '/home/virtme/testing-15/tools/testing/selftests/net/netfilter'
make[1]: Entering directory '/home/virtme/testing-15/tools/testing/selftests/net/netfilter'
TAP version 13
1..1
# timeout set to 1800
# selftests: net/netfilter: nft_flowtable.sh
# PASS: flow offloaded for ns1/ns2
# PASS: dscp_none: dscp packet counters match
# PASS: dscp_ingress: dscp packet counters match
# PASS: dscp_egress: dscp packet counters match
# PASS: dscp_fwd: dscp packet counters match
# PASS: flow offload for ns1/ns2 with masquerade 
# PASS: flow offload for ns1/ns2 with dnat ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery 
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery on bridge
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery bridge and VLAN
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# FAIL: file mismatch for ns1 -> ns2
# -rw------- 1 root root 31553536 Sep  6 17:19 /tmp/tmp.Xx9MoU3Rp3
# -rw------- 1 root root 0 Sep  6 17:20 /tmp/tmp.IBQQZjDoCo
# FAIL: file mismatch for ns1 <- ns2
# -rw------- 1 root root 31553536 Sep  6 17:19 /tmp/tmp.Xx9MoU3Rp3
# -rw------- 1 root root 0 Sep  6 17:20 /tmp/tmp.7HWbQNwLtP
# FAIL: ipsec tunnel mode for ns1/ns2
# table inet filter {
# counter routed_orig {
# packets 10 bytes 600
# }
# 
# counter routed_repl {
# packets 0 bytes 0
# }
# 
# flowtable f1 {
# hook ingress priority filter
# devices = { veth0, veth1 }
# }
# 
# chain forward {
# type filter hook forward priority filter; policy drop;
# ip dscp set cs3
# oif "veth1" tcp dport 12345 ct mark set 0x00000001 flow add @f1 counter name "routed_orig" accept
# ct mark 0x00000001 counter name ct direction map { original : "routed_orig", reply : "routed_repl" } accept
# ct state established,related accept
# meta l4proto icmp accept
# meta l4proto ipv6-icmp accept
# }
# }
# table netdev dscpmangle {
# chain setdscp0 {
# type filter hook egress device "veth1" priority filter; policy accept;
# }
# }
# XfrmInError             0
# XfrmInBufferError       0
# XfrmInHdrError          0
# XfrmInNoStates          15
# XfrmInStateProtoError   0
# XfrmInStateModeError    0
# XfrmInStateSeqError     0
# XfrmInStateExpired      0
# XfrmInStateMismatch     0
# XfrmInStateInvalid      0
# XfrmInTmplMismatch      0
# XfrmInNoPols            0
# XfrmInPolBlock          0
# XfrmInPolError          0
# XfrmOutError            0
# XfrmOutBundleGenError   0
# XfrmOutBundleCheckError 0
# XfrmOutNoStates         0
# XfrmOutStateProtoError  0
# XfrmOutStateModeError   0
# XfrmOutStateSeqError    0
# XfrmOutStateExpired     0
# XfrmOutPolBlock         0
# XfrmOutPolDead          0
# XfrmOutPolError         0
# XfrmFwdHdrError         0
# XfrmOutStateInvalid     0
# XfrmAcquireError        0
# XfrmOutStateDirError    0
# XfrmInStateDirError     0
# re-run with random mtus: -o 7258 -l 28548 -r 21311
# PASS: flow offloaded for ns1/ns2
# PASS: dscp_none: dscp packet counters match
# PASS: dscp_ingress: dscp packet counters match
# PASS: dscp_egress: dscp packet counters match
# PASS: dscp_fwd: dscp packet counters match
# PASS: flow offload for ns1/ns2 with masquerade 
# PASS: flow offload for ns1/ns2 with dnat ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery 
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery on bridge
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# PASS: flow offload for ns1/ns2 with masquerade and pmtu discovery bridge and VLAN
# PASS: flow offload for ns1/ns2 with dnat and pmtu discovery ns1 <- ns2
# FAIL: ipsec tunnel mode for ns1/ns2: reply counter  14237542 exceeds expected value 9803776
not ok 1 selftests: net/netfilter: nft_flowtable.sh # exit=1
make[1]: Leaving directory '/home/virtme/testing-15/tools/testing/selftests/net/netfilter'
make: Leaving directory '/home/virtme/testing-15/tools/testing/selftests'
xx__-> echo $?
0
xx__->