more testing: illegal port, af mismatch w/ route-to and more flags tcponly

from krause

3 files changed, 18 insertions, 2 deletions

diff --git a/regress/sbin/pfctl/Makefile b/regress/sbin/pfctl/Makefile
index 598919f88f5..77bb1836172 100644
--- a/regress/sbin/pfctl/Makefile
+++ b/regress/sbin/pfctl/Makefile
@@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.87 2003/02/21 10:48:29 henning Exp $
+# $OpenBSD: Makefile,v 1.88 2003/02/21 17:08:41 henning Exp $
 
 # TARGETS
 # pf: feed pfNN.in through pfctl and check wether the output matches pfNN.ok
@@ -13,7 +13,7 @@
 PFTESTS=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
 PFTESTS+=28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50
 PFTESTS+=51 52 53
-PFFAIL=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22
+PFFAIL=1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23
 PFSIMPLE=1
 PFSETUP=1
 PFLOAD=1 2 3 4 5 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 23 24 25 26 27 28 29
diff --git a/regress/sbin/pfctl/pfail23.in b/regress/sbin/pfctl/pfail23.in
new file mode 100644
index 00000000000..065ade93fff
--- /dev/null
+++ b/regress/sbin/pfctl/pfail23.in
@@ -0,0 +1,11 @@
+#illegal port value
+pass in quick proto tcp from any to any port 65536
+
+#flags only apply to tcp
+#(similiar to pfail13.in which tests for flags S failure)
+pass in proto udp from any to any flags S/SA
+pass in proto { udp, icmp } from any to any flags S/SA
+
+#no routing address with matching address family found
+pass out dup-to (tun0 1.1.1.1) inet6 all
+
diff --git a/regress/sbin/pfctl/pfail23.ok b/regress/sbin/pfctl/pfail23.ok
new file mode 100644
index 00000000000..ac6712514a9
--- /dev/null
+++ b/regress/sbin/pfctl/pfail23.ok
@@ -0,0 +1,5 @@
+stdin:2: illegal port value 65536
+stdin:6: flags only apply to tcp
+stdin:7: flags only apply to tcp
+stdin:10: no routing address with matching address family found.
+pfctl: Syntax error in file: pf rules not loaded