[nft PATCH 5/5] tests: shell: Improve performance of 0021prio_0

Tue, 25 Sep 2018 05:25:35 -0700 

This test called nft binary 391 times and took about 38s to complete on
my testing VM. Improve this by writing all commands into a temporary
file for processing in a single nft call. Reduces run-time to about 4s.

Interestingly, piping the sub-process's output directly into 'nft -f -'
leads to spurious errors (parser complaining about perfectly fine
syntax). It seems like handling large input this way is not possible.

Signed-off-by: Phil Sutter <p...@nwl.cc>
---
 tests/shell/testcases/chains/0021prio_0 | 24 +++++++++++++++++-------
 1 file changed, 17 insertions(+), 7 deletions(-)

diff --git a/tests/shell/testcases/chains/0021prio_0 
b/tests/shell/testcases/chains/0021prio_0
index b54b6fae32c63..e761297492baf 100755
--- a/tests/shell/testcases/chains/0021prio_0
+++ b/tests/shell/testcases/chains/0021prio_0
@@ -32,14 +32,22 @@ gen_chains () {
        for i in -11 -10 0 10 11
        do
                local offset=`format_offset $i`
-               local chainname=`chainname $hook $prioname $offset`
-               $NFT add chain $family x $chainname "{ type filter hook $hook 
$device priority $prioname $offset; }"
+               local cmd="add chain $family x"
+               cmd+=" `chainname $hook $prioname $offset` {"
+               cmd+=" type filter hook $hook $device"
+               cmd+=" priority $prioname $offset; }"
+               echo "$cmd"
        done
 }
 
+tmpfile=$(mktemp)
+trap "rm $tmpfile" EXIT
+
+(
+
 for family in ip ip6 inet
 do
-       $NFT add table $family x
+       echo "add table $family x"
        for hook in prerouting input forward output postrouting
        do
                for prioname in raw mangle filter security
@@ -47,24 +55,23 @@ do
                        gen_chains $family $hook $prioname
                done
        done
-
        gen_chains $family prerouting dstnat
        gen_chains $family postrouting srcnat
 done
 
 family=arp
-$NFT add table $family x
+echo "add table $family x"
 for hook in input output
 do
        gen_chains $family $hook filter
 done
 
 family=netdev
-$NFT add table $family x
+echo "add table $family x"
 gen_chains $family ingress filter lo
 
 family=bridge
-$NFT add table $family x
+echo "add table $family x"
 for hook in prerouting input forward output postrouting
 do
        gen_chains $family $hook filter
@@ -72,3 +79,6 @@ done
 gen_chains $family prerouting dstnat
 gen_chains $family output out
 gen_chains $family postrouting srcnat
+
+) >$tmpfile
+$NFT -f $tmpfile
-- 
2.19.0

Reply via email to