1 files changed, 22 insertions, 7 deletions

diff --git a/tests/sys/netpfil/pf/icmp.py b/tests/sys/netpfil/pf/icmp.py
index 83096886691e..c5e945d60e99 100644
--- a/tests/sys/netpfil/pf/icmp.py
+++ b/tests/sys/netpfil/pf/icmp.py
@@ -91,10 +91,10 @@ class TestICMP(VnetTestTemplate):
     def test_inner_match(self):
         vnet = self.vnet_map["vnet1"]
         dst_vnet = self.vnet_map["vnet3"]
-        sendif = vnet.iface_alias_map["if1"].name
+        sendif = vnet.iface_alias_map["if1"]
 
-        our_mac = ToolsHelper.get_output("/sbin/ifconfig %s ether | awk '/ether/ { print $2; }'" % sendif)
-        dst_mac = re.sub("0a$", "0b", our_mac)
+        our_mac = sendif.ether
+        dst_mac = sendif.epairb.ether
 
         # Import in the correct vnet, so at to not confuse Scapy
         import scapy.all as sp
@@ -111,7 +111,7 @@ class TestICMP(VnetTestTemplate):
             / sp.IP(src="192.0.2.2", dst="198.51.100.2") \
             / sp.ICMP(type='echo-request') \
             / "PAYLOAD"
-        sp.sendp(pkt, sendif, verbose=False)
+        sp.sendp(pkt, sendif.name, verbose=False)
 
         # Now try to pass an ICMP error message piggy-backing on that state, but
         # use a different source address
@@ -120,7 +120,7 @@ class TestICMP(VnetTestTemplate):
             / sp.ICMP(type='dest-unreach') \
             / sp.IP(src="198.51.100.2", dst="192.0.2.2") \
             / sp.ICMP(type='echo-reply')
-        sp.sendp(pkt, sendif, verbose=False)
+        sp.sendp(pkt, sendif.name, verbose=False)
 
         try:
             rcvd = self.wait_object(dst_vnet.pipe, timeout=1)
@@ -136,8 +136,7 @@ class TestICMP(VnetTestTemplate):
             / sp.ICMP(type='echo-request') \
             / sp.raw(bytes.fromhex('f0') * payload_size)
 
-        p = sp.sr1(packet, iface=self.vnet.iface_alias_map["if1"].name,
-            timeout=3)
+        p = sp.sr1(packet, timeout=3)
         p.show()
 
         ip = p.getlayer(sp.IP)
@@ -176,6 +175,22 @@ class TestICMP(VnetTestTemplate):
         self.check_icmp_echo(sp, 1464)
         self.check_icmp_echo(sp, 1468)
 
+    @pytest.mark.require_user("root")
+    @pytest.mark.require_progs(["scapy"])
+    def test_truncated_opts(self):
+        ToolsHelper.print_output("/sbin/route add default 192.0.2.1")
+
+        # Import in the correct vnet, so at to not confuse Scapy
+        import scapy.all as sp
+
+        packet = sp.IP(dst="198.51.100.2", flags="DF") \
+            / sp.ICMP(type='dest-unreach', length=108) \
+            / sp.IP(src="198.51.100.2", dst="192.0.2.2", len=1000, \
+              ihl=(120 >> 2), options=[ \
+              sp.IPOption_Security(length=100)])
+        packet.show()
+        sp.sr1(packet, timeout=3)
+
 class TestICMP_NAT(VnetTestTemplate):
     REQUIRED_MODULES = [ "pf" ]
     TOPOLOGY = {