nixpkgs/nixos/tests/nix-ssh-serve.nix

import ./make-test-python.nix ({ pkgs, lib, ... }:
let inherit (import ./ssh-keys.nix pkgs)
      snakeOilPrivateKey snakeOilPublicKey;
    ssh-config = builtins.toFile "ssh.conf" ''
      UserKnownHostsFile=/dev/null
      StrictHostKeyChecking=no
    '';
in
   { name = "nix-ssh-serve";
     meta.maintainers = [ lib.maintainers.shlevy ];
     nodes =
       { server.nix.sshServe =
           { enable = true;
             keys = [ snakeOilPublicKey ];
             protocol = "ssh-ng";
           };
         server.nix.package = pkgs.nix;
         client.nix.package = pkgs.nix;
       };
     testScript = ''
       start_all()

       client.succeed("mkdir -m 700 /root/.ssh")
       client.succeed(
           "cat ${ssh-config} > /root/.ssh/config"
       )
       client.succeed(
           "cat ${snakeOilPrivateKey} > /root/.ssh/id_ecdsa"
       )
       client.succeed("chmod 600 /root/.ssh/id_ecdsa")

       client.succeed("nix-store --add /etc/machine-id > mach-id-path")

       server.wait_for_unit("sshd")

       client.fail("diff /root/other-store$(cat mach-id-path) /etc/machine-id")
       # Currently due to shared store this is a noop :(
       client.succeed("nix copy --to ssh-ng://nix-ssh@server $(cat mach-id-path)")
       client.succeed(
           "nix-store --realise $(cat mach-id-path) --store /root/other-store --substituters ssh-ng://nix-ssh@server"
       )
       client.succeed("diff /root/other-store$(cat mach-id-path) /etc/machine-id")
     '';
   }
)
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`import ./make-test-python.nix ({ pkgs, lib, ... }:`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00			`let inherit (import ./ssh-keys.nix pkgs)`
			`snakeOilPrivateKey snakeOilPublicKey;`
			`ssh-config = builtins.toFile "ssh.conf" ''`
			`UserKnownHostsFile=/dev/null`
			`StrictHostKeyChecking=no`
			`'';`
			`in`
			`{ name = "nix-ssh-serve";`
			`meta.maintainers = [ lib.maintainers.shlevy ];`
			`nodes =`
			`{ server.nix.sshServe =`
			`{ enable = true;`
			`keys = [ snakeOilPublicKey ];`
			`protocol = "ssh-ng";`
			`};`
nixos/tests/nix-ssh-serve.nix: Use stable nix (#47584) 2018-10-01 23:01:38 +02:00			`server.nix.package = pkgs.nix;`
			`client.nix.package = pkgs.nix;`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00			`};`
			`testScript = ''`
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`start_all()`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`client.succeed("mkdir -m 700 /root/.ssh")`
			`client.succeed(`
			`"cat ${ssh-config} > /root/.ssh/config"`
			`)`
			`client.succeed(`
			`"cat ${snakeOilPrivateKey} > /root/.ssh/id_ecdsa"`
			`)`
			`client.succeed("chmod 600 /root/.ssh/id_ecdsa")`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`client.succeed("nix-store --add /etc/machine-id > mach-id-path")`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`server.wait_for_unit("sshd")`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`client.fail("diff /root/other-store$(cat mach-id-path) /etc/machine-id")`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00			`# Currently due to shared store this is a noop :(`
nixosTests.nix-ssh-serve: port to python 2019-11-24 00:13:45 +01:00			`client.succeed("nix copy --to ssh-ng://nix-ssh@server $(cat mach-id-path)")`
			`client.succeed(`
			`"nix-store --realise $(cat mach-id-path) --store /root/other-store --substituters ssh-ng://nix-ssh@server"`
			`)`
			`client.succeed("diff /root/other-store$(cat mach-id-path) /etc/machine-id")`
nixos: nix.sshServe: Support ssh-ng. 2018-02-28 16:55:00 -05:00			`'';`
			`}`
			`)`