2019-11-06 21:08:06 +01:00
|
|
|
import ./make-test-python.nix ({ pkgs, ... }: {
|
2018-01-08 15:09:33 +01:00
|
|
|
name = "dnscrypt-proxy";
|
|
|
|
|
meta = with pkgs.stdenv.lib.maintainers; {
|
|
|
|
|
maintainers = [ joachifm ];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
nodes = {
|
|
|
|
|
# A client running the recommended setup: DNSCrypt proxy as a forwarder
|
|
|
|
|
# for a caching DNS client.
|
|
|
|
|
client =
|
2018-07-20 20:56:59 +00:00
|
|
|
{ ... }:
|
2018-01-08 15:09:33 +01:00
|
|
|
let localProxyPort = 43; in
|
|
|
|
|
{
|
|
|
|
|
security.apparmor.enable = true;
|
|
|
|
|
|
|
|
|
|
services.dnscrypt-proxy.enable = true;
|
|
|
|
|
services.dnscrypt-proxy.localPort = localProxyPort;
|
|
|
|
|
services.dnscrypt-proxy.extraArgs = [ "-X libdcplugin_example.so" ];
|
|
|
|
|
|
|
|
|
|
services.dnsmasq.enable = true;
|
|
|
|
|
services.dnsmasq.servers = [ "127.0.0.1#${toString localProxyPort}" ];
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
testScript = ''
|
2019-11-06 21:08:06 +01:00
|
|
|
client.wait_for_unit("dnsmasq")
|
2018-01-08 15:09:33 +01:00
|
|
|
|
|
|
|
|
# The daemon is socket activated; sending a single ping should activate it.
|
2019-11-06 21:08:06 +01:00
|
|
|
client.fail("systemctl is-active dnscrypt-proxy")
|
|
|
|
|
client.execute(
|
|
|
|
|
"${pkgs.iputils}/bin/ping -c1 example.com"
|
|
|
|
|
)
|
|
|
|
|
client.wait_until_succeeds("systemctl is-active dnscrypt-proxy")
|
2018-01-08 15:09:33 +01:00
|
|
|
'';
|
|
|
|
|
})
|
