nixpkgs/nixos/tests/cloud-init.nix

{ system ? builtins.currentSystem,
  config ? {},
  pkgs ? import ../.. { inherit system config; }
}:

with import ../lib/testing-python.nix { inherit system pkgs; };
with pkgs.lib;

let
  inherit (import ./ssh-keys.nix pkgs)
    snakeOilPrivateKey snakeOilPublicKey;

  metadataDrive = pkgs.stdenv.mkDerivation {
    name = "metadata";
    buildCommand = ''
      mkdir -p $out/iso

      cat << EOF > $out/iso/user-data
      #cloud-config
      write_files:
      -   content: |
                cloudinit
          path: /tmp/cloudinit-write-file

      users:
        - default
        - name: nixos
          ssh_authorized_keys:
            - "${snakeOilPublicKey}"
      EOF

      cat << EOF > $out/iso/meta-data
      instance-id: iid-local01
      local-hostname: "test"
      public-keys:
        - "${snakeOilPublicKey}"
      EOF
      ${pkgs.cdrkit}/bin/genisoimage -volid cidata -joliet -rock -o $out/metadata.iso $out/iso
      '';
  };
in makeTest {
  name = "cloud-init";
  meta = with pkgs.lib.maintainers; {
    maintainers = [ lewo ];
  };
  machine = { ... }:
  {
    virtualisation.qemu.options = [ "-cdrom" "${metadataDrive}/metadata.iso" ];
    services.cloud-init.enable = true;
    services.openssh.enable = true;
    networking.hostName = "";
  };
  testScript = ''
    # To wait until cloud-init terminates its run
    unnamed.wait_for_unit("cloud-final.service")

    unnamed.succeed("cat /tmp/cloudinit-write-file | grep -q 'cloudinit'")

    # install snakeoil ssh key and provision .ssh/config file
    unnamed.succeed("mkdir -p ~/.ssh")
    unnamed.succeed(
        "cat ${snakeOilPrivateKey} > ~/.ssh/id_snakeoil"
    )
    unnamed.succeed("chmod 600 ~/.ssh/id_snakeoil")

    unnamed.wait_for_unit("sshd.service")

    # we should be able to log in as the root user, as well as the created nixos user
    unnamed.succeed(
        "ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil root@localhost 'true'"
    )
    unnamed.succeed(
        "ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil nixos@localhost 'true'"
    )

    # test changing hostname via cloud-init worked
    assert (
        unnamed.succeed(
            "ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil nixos@localhost 'hostname'"
        ).strip()
        == "test"
    )
  '';
}
tests: refactor to carry the package set as an argument This way, the package set will be possible to pass without re-importing all the time 2018-11-11 17:41:11 +09:00			`{ system ? builtins.currentSystem,`
			`config ? {},`
			`pkgs ? import ../.. { inherit system config; }`
			`}:`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00
nixos/cloud-init: port test to python 2019-11-06 19:42:58 +01:00			`with import ../lib/testing-python.nix { inherit system pkgs; };`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`with pkgs.lib;`

			`let`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`inherit (import ./ssh-keys.nix pkgs)`
			`snakeOilPrivateKey snakeOilPublicKey;`

nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`metadataDrive = pkgs.stdenv.mkDerivation {`
			`name = "metadata";`
			`buildCommand = ''`
			`mkdir -p $out/iso`

			`cat << EOF > $out/iso/user-data`
			`#cloud-config`
			`write_files:`
			`- content: \|`
			`cloudinit`
			`path: /tmp/cloudinit-write-file`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00
			`users:`
			`- default`
			`- name: nixos`
			`ssh_authorized_keys:`
			`- "${snakeOilPublicKey}"`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`EOF`

			`cat << EOF > $out/iso/meta-data`
			`instance-id: iid-local01`
			`local-hostname: "test"`
			`public-keys:`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`- "${snakeOilPublicKey}"`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`EOF`
			`${pkgs.cdrkit}/bin/genisoimage -volid cidata -joliet -rock -o $out/metadata.iso $out/iso`
			`'';`
			`};`
			`in makeTest {`
nixos/cloud-init: port test to python 2019-11-06 19:42:58 +01:00			`name = "cloud-init";`
treewide: simplify pkgs.stdenv.lib -> pkgs.lib The library does not depend on stdenv, that `stdenv` exposes `lib` is an artifact of the ancient origins of nixpkgs. 2021-01-10 20:08:30 +01:00			`meta = with pkgs.lib.maintainers; {`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`maintainers = [ lewo ];`
			`};`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`machine = { ... }:`
			`{`
			`virtualisation.qemu.options = [ "-cdrom" "${metadataDrive}/metadata.iso" ];`
			`services.cloud-init.enable = true;`
			`services.openssh.enable = true;`
nixosTests.cloud-init: test changing hostname actually works 2020-10-15 00:24:39 +02:00			`networking.hostName = "";`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`};`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`testScript = ''`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`# To wait until cloud-init terminates its run`
			`unnamed.wait_for_unit("cloud-final.service")`

			`unnamed.succeed("cat /tmp/cloudinit-write-file \| grep -q 'cloudinit'")`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00
			`# install snakeoil ssh key and provision .ssh/config file`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.succeed("mkdir -p ~/.ssh")`
			`unnamed.succeed(`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`"cat ${snakeOilPrivateKey} > ~/.ssh/id_snakeoil"`
			`)`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.succeed("chmod 600 ~/.ssh/id_snakeoil")`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.wait_for_unit("sshd.service")`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`# we should be able to log in as the root user, as well as the created nixos user`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.succeed(`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`"ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil root@localhost 'true'"`
			`)`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.succeed(`
nixos/cloud-init: actually test ssh'ing, also, with cloud-init-created user 2020-01-18 01:09:49 +01:00			`"ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil nixos@localhost 'true'"`
			`)`
nixosTests.cloud-init: test changing hostname actually works 2020-10-15 00:24:39 +02:00
			`# test changing hostname via cloud-init worked`
			`assert (`
nixos/tests/cloud-init: fix the erroring out The test was broken for a 1.5 months apparently? Well, now it passes. Also apparently it's not flaky anymore. 2020-11-30 20:00:29 +03:00			`unnamed.succeed(`
nixosTests.cloud-init: test changing hostname actually works 2020-10-15 00:24:39 +02:00			`"ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -o IdentityFile=~/.ssh/id_snakeoil nixos@localhost 'hostname'"`
			`).strip()`
			`== "test"`
			`)`
nixos/cloudinit: add cloudinit test An iso containing metadatas is created and attached as a cdrom to the qemu VM used for this test. The cloudinit service is enabled. The test case ensures the root authorized_keys file is populated and the cloudinit write_file module is working well. 2017-02-25 15:32:06 +01:00			`'';`
			`}`