nixpkgs/nixos/tests/containers-restart_networking.nix

# Test for NixOS' container support.

let
  client_base = rec {
    networking.firewall.enable = false;

    containers.webserver = {
      autoStart = true;
      privateNetwork = true;
      hostBridge = "br0";
      config = {
        networking.firewall.enable = false;
        networking.interfaces.eth0.ipv4.addresses = [
          { address = "192.168.1.122"; prefixLength = 24; }
        ];
      };
    };
  };
in import ./make-test.nix ({ pkgs, ...} :
{
  name = "containers-restart_networking";
  meta = with pkgs.stdenv.lib.maintainers; {
    maintainers = [ kampfschlaefer ];
  };

  nodes = {
    client = { lib, ... }: client_base // {
      virtualisation.vlans = [ 1 ];

      networking.bridges.br0 = {
        interfaces = [];
        rstp = false;
      };
      networking.interfaces = {
        eth1.ipv4.addresses = lib.mkOverride 0 [ ];
        br0.ipv4.addresses = [ { address = "192.168.1.1"; prefixLength = 24; } ];
      };

    };
    client_eth1 = { lib, ... }: client_base // {
      networking.bridges.br0 = {
        interfaces = [ "eth1" ];
        rstp = false;
      };
      networking.interfaces = {
        eth1.ipv4.addresses = lib.mkOverride 0 [ ];
        br0.ipv4.addresses = [ { address = "192.168.1.2"; prefixLength = 24; } ];
      };
    };
    client_eth1_rstp = { lib, ... }: client_base // {
      networking.bridges.br0 = {
        interfaces = [ "eth1" ];
        rstp = true;
      };
      networking.interfaces = {
        eth1.ipv4.addresses = lib.mkOverride 0 [ ];
        br0.ipv4.addresses =  [ { address = "192.168.1.2"; prefixLength = 24; } ];
      };
    };
  };

  testScript = {nodes, ...}: let
    originalSystem = nodes.client.config.system.build.toplevel;
    eth1_bridged = nodes.client_eth1.config.system.build.toplevel;
    eth1_rstp = nodes.client_eth1_rstp.config.system.build.toplevel;
  in ''
    $client->start();

    $client->waitForUnit("default.target");

    subtest "initial state", sub {
      $client->succeed("ping 192.168.1.122 -c 1 -n >&2");
      $client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.1 >&2");

      $client->fail("ip l show eth1 |grep \"master br0\" >&2");
      $client->fail("grep eth1 /run/br0.interfaces >&2");
    };

    subtest "interfaces without stp", sub {
      $client->succeed("${eth1_bridged}/bin/switch-to-configuration test >&2");

      $client->succeed("ping 192.168.1.122 -c 1 -n >&2");
      $client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.2 >&2");

      $client->succeed("ip l show eth1 |grep \"master br0\" >&2");
      $client->succeed("grep eth1 /run/br0.interfaces >&2");
    };

    # activating rstp needs another service, therefor the bridge will restart and the container will loose its connectivity
    #subtest "interfaces with rstp", sub {
    #  $client->succeed("${eth1_rstp}/bin/switch-to-configuration test >&2");
    #  $client->execute("ip -4 a >&2");
    #  $client->execute("ip l >&2");
    #
    #  $client->succeed("ping 192.168.1.122 -c 1 -n >&2");
    #  $client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.2 >&2");
    #
    #  $client->succeed("ip l show eth1 |grep \"master br0\" >&2");
    #  $client->succeed("grep eth1 /run/br0.interfaces >&2");
    #};

    subtest "back to no interfaces and no stp", sub {
      $client->succeed("${originalSystem}/bin/switch-to-configuration test >&2");

      $client->succeed("ping 192.168.1.122 -c 1 -n >&2");
      $client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.1 >&2");

      $client->fail("ip l show eth1 |grep \"master br0\" >&2");
      $client->fail("grep eth1 /run/br0.interfaces >&2");
    };
  '';

})
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`# Test for NixOS' container support.`

			`let`
			`client_base = rec {`
			`networking.firewall.enable = false;`

			`containers.webserver = {`
			`autoStart = true;`
			`privateNetwork = true;`
			`hostBridge = "br0";`
			`config = {`
			`networking.firewall.enable = false;`
nixos/tests: rename IP addresses/routes options 2017-12-03 05:14:54 +01:00			`networking.interfaces.eth0.ipv4.addresses = [`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`{ address = "192.168.1.122"; prefixLength = 24; }`
			`];`
			`};`
			`};`
			`};`
[bot] nixos/*: remove unused arguments in lambdas 2018-07-20 20:56:59 +00:00			`in import ./make-test.nix ({ pkgs, ...} :`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`{`
			`name = "containers-restart_networking";`
			`meta = with pkgs.stdenv.lib.maintainers; {`
			`maintainers = [ kampfschlaefer ];`
			`};`

			`nodes = {`
[bot] nixos/*: remove unused arguments in lambdas 2018-07-20 20:56:59 +00:00			`client = { lib, ... }: client_base // {`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`virtualisation.vlans = [ 1 ];`

			`networking.bridges.br0 = {`
			`interfaces = [];`
			`rstp = false;`
			`};`
			`networking.interfaces = {`
nixos/tests: rename IP addresses/routes options 2017-12-03 05:14:54 +01:00			`eth1.ipv4.addresses = lib.mkOverride 0 [ ];`
			`br0.ipv4.addresses = [ { address = "192.168.1.1"; prefixLength = 24; } ];`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`};`

			`};`
[bot] nixos/*: remove unused arguments in lambdas 2018-07-20 20:56:59 +00:00			`client_eth1 = { lib, ... }: client_base // {`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`networking.bridges.br0 = {`
			`interfaces = [ "eth1" ];`
			`rstp = false;`
			`};`
			`networking.interfaces = {`
nixos/tests: rename IP addresses/routes options 2017-12-03 05:14:54 +01:00			`eth1.ipv4.addresses = lib.mkOverride 0 [ ];`
			`br0.ipv4.addresses = [ { address = "192.168.1.2"; prefixLength = 24; } ];`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`};`
			`};`
[bot] nixos/*: remove unused arguments in lambdas 2018-07-20 20:56:59 +00:00			`client_eth1_rstp = { lib, ... }: client_base // {`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`networking.bridges.br0 = {`
			`interfaces = [ "eth1" ];`
			`rstp = true;`
			`};`
			`networking.interfaces = {`
nixos/tests: rename IP addresses/routes options 2017-12-03 05:14:54 +01:00			`eth1.ipv4.addresses = lib.mkOverride 0 [ ];`
			`br0.ipv4.addresses = [ { address = "192.168.1.2"; prefixLength = 24; } ];`
network-interfaces: reload bridges on conf changes And adopt the tests to add an interface and remove it again. It should work when deactivating rstp, it will not work when activating rstp for the first bridge as then the userspace daemon is not yet available. But once one bridge is active with stp, it should work with the reload for any further bridge. Fixes #21745. Also see #22547. 2017-02-11 16:46:55 +01:00			`};`
			`};`
			`};`

			`testScript = {nodes, ...}: let`
			`originalSystem = nodes.client.config.system.build.toplevel;`
			`eth1_bridged = nodes.client_eth1.config.system.build.toplevel;`
			`eth1_rstp = nodes.client_eth1_rstp.config.system.build.toplevel;`
			`in ''`
			`$client->start();`

			`$client->waitForUnit("default.target");`

			`subtest "initial state", sub {`
			`$client->succeed("ping 192.168.1.122 -c 1 -n >&2");`
			`$client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.1 >&2");`

			`$client->fail("ip l show eth1 \|grep \"master br0\" >&2");`
			`$client->fail("grep eth1 /run/br0.interfaces >&2");`
			`};`

			`subtest "interfaces without stp", sub {`
			`$client->succeed("${eth1_bridged}/bin/switch-to-configuration test >&2");`

			`$client->succeed("ping 192.168.1.122 -c 1 -n >&2");`
			`$client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.2 >&2");`

			`$client->succeed("ip l show eth1 \|grep \"master br0\" >&2");`
			`$client->succeed("grep eth1 /run/br0.interfaces >&2");`
			`};`

			`# activating rstp needs another service, therefor the bridge will restart and the container will loose its connectivity`
			`#subtest "interfaces with rstp", sub {`
			`# $client->succeed("${eth1_rstp}/bin/switch-to-configuration test >&2");`
			`# $client->execute("ip -4 a >&2");`
			`# $client->execute("ip l >&2");`
			`#`
			`# $client->succeed("ping 192.168.1.122 -c 1 -n >&2");`
			`# $client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.2 >&2");`
			`#`
			`# $client->succeed("ip l show eth1 \|grep \"master br0\" >&2");`
			`# $client->succeed("grep eth1 /run/br0.interfaces >&2");`
			`#};`

			`subtest "back to no interfaces and no stp", sub {`
			`$client->succeed("${originalSystem}/bin/switch-to-configuration test >&2");`

			`$client->succeed("ping 192.168.1.122 -c 1 -n >&2");`
			`$client->succeed("nixos-container run webserver -- ping -c 1 -n 192.168.1.1 >&2");`

			`$client->fail("ip l show eth1 \|grep \"master br0\" >&2");`
			`$client->fail("grep eth1 /run/br0.interfaces >&2");`
			`};`
			`'';`

			`})`