nixpkgs/nixos/modules/testing/test-instrumentation.nix

# This module allows the test driver to connect to the virtual machine
# via a root shell attached to port 514.

{ config, lib, pkgs, ... }:

with lib;

let kernel = config.boot.kernelPackages.kernel; in

{

  # This option is a dummy that if used in conjunction with
  # modules/virtualisation/qemu-vm.nix gets merged with the same option defined
  # there and only is declared here because some modules use
  # test-instrumentation.nix but not qemu-vm.nix.
  #
  # One particular example are the boot tests where we want instrumentation
  # within the images but not other stuff like setting up 9p filesystems.
  options.virtualisation.qemu.program = mkOption { type = types.path; };

  config = {

    systemd.services.backdoor =
      { wantedBy = [ "multi-user.target" ];
        requires = [ "dev-hvc0.device" "dev-ttyS0.device" ];
        after = [ "dev-hvc0.device" "dev-ttyS0.device" ];
        script =
          ''
            export USER=root
            export HOME=/root
            export DISPLAY=:0.0

            source /etc/profile

            # Don't use a pager when executing backdoor
            # actions. Because we use a tty, commands like systemctl
            # or nix-store get confused into thinking they're running
            # interactively.
            export PAGER=

            cd /tmp
            exec < /dev/hvc0 > /dev/hvc0
            while ! exec 2> /dev/ttyS0; do sleep 0.1; done
            echo "connecting to host..." >&2
            stty -F /dev/hvc0 raw -echo # prevent nl -> cr/nl conversion
            echo
            PS1= exec /bin/sh
          '';
        serviceConfig.KillSignal = "SIGHUP";
      };

    # Prevent agetty from being instantiated on ttyS0, since it
    # interferes with the backdoor (writes to ttyS0 will randomly fail
    # with EIO).  Likewise for hvc0.
    systemd.services."serial-getty@ttyS0".enable = false;
    systemd.services."serial-getty@hvc0".enable = false;

    boot.initrd.preDeviceCommands =
      ''
        echo 600 > /proc/sys/kernel/hung_task_timeout_secs
      '';

    boot.initrd.postDeviceCommands =
      ''
        # Using acpi_pm as a clock source causes the guest clock to
        # slow down under high host load.  This is usually a bad
        # thing, but for VM tests it should provide a bit more
        # determinism (e.g. if the VM runs at lower speed, then
        # timeouts in the VM should also be delayed).
        echo acpi_pm > /sys/devices/system/clocksource/clocksource0/current_clocksource
      '';

    boot.postBootCommands =
      ''
        # Panic on out-of-memory conditions rather than letting the
        # OOM killer randomly get rid of processes, since this leads
        # to failures that are hard to diagnose.
        echo 2 > /proc/sys/vm/panic_on_oom

        # Coverage data is written into /tmp/coverage-data.
        mkdir -p /tmp/xchg/coverage-data
      '';

    # If the kernel has been built with coverage instrumentation, make
    # it available under /proc/gcov.
    boot.kernelModules = [ "gcov-proc" ];

    # Panic if an error occurs in stage 1 (rather than waiting for
    # user intervention).
    boot.kernelParams =
      [ "console=ttyS0" "panic=1" "boot.panic_on_fail" ];

    # `xwininfo' is used by the test driver to query open windows.
    environment.systemPackages = [ pkgs.xorg.xwininfo ];

    # Log everything to the serial console.
    services.journald.extraConfig =
      ''
        ForwardToConsole=yes
        MaxLevelConsole=debug
      '';

    # Don't clobber the console with duplicate systemd messages.
    systemd.extraConfig = "ShowStatus=no";

    boot.consoleLogLevel = 7;

    # Prevent tests from accessing the Internet.
    networking.defaultGateway = mkOverride 150 "";
    networking.nameservers = mkOverride 150 [ ];

    systemd.globalEnvironment.GCOV_PREFIX = "/tmp/xchg/coverage-data";

    system.requiredKernelConfig = with config.lib.kernelConfig; [
      (isYes "SERIAL_8250_CONSOLE")
      (isYes "SERIAL_8250")
      (isEnabled "VIRTIO_CONSOLE")
    ];

    networking.usePredictableInterfaceNames = false;

    # Make it easy to log in as root when running the test interactively.
    users.extraUsers.root.initialHashedPassword = mkOverride 150 "";

    services.xserver.displayManager.logToJournal = true;
  };

}
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`# This module allows the test driver to connect to the virtual machine`
			`# via a root shell attached to port 514.`

Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem. 2014-04-14 16:26:48 +02:00			`{ config, lib, pkgs, ... }:`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00
Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem. 2014-04-14 16:26:48 +02:00			`with lib;`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00
Merge branch 'master' of github.com:NixOS/nixos into systemd 2012-08-20 11:27:38 -04:00			`let kernel = config.boot.kernelPackages.kernel; in`
tests/minimal-kernel: Add CIFS timeout patch 2012-08-01 23:36:48 -04:00
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`{`

nixos/test-instrumentation: Fix eval of boot tests The boot tests import test-instrumentation.nix directly to create a VM image that only contains things such as the backdoor and serial console the same way as used by other NixOS VM tests. With one difference though: It doesn't need nor want to have 9p filesystems mounted, because we actually want to test an image rather than re-using most stuff from the host's store. Change tested against the boot.uefiUsb and ipv6 tests, just that it becomes clear we don't break either the tests with 9p nor the boot tests (which were already broken but now succeed). Signed-off-by: aszlig <aszlig@redmoonstudios.org> 2016-12-15 21:00:21 +01:00			`# This option is a dummy that if used in conjunction with`
			`# modules/virtualisation/qemu-vm.nix gets merged with the same option defined`
			`# there and only is declared here because some modules use`
			`# test-instrumentation.nix but not qemu-vm.nix.`
			`#`
			`# One particular example are the boot tests where we want instrumentation`
			`# within the images but not other stuff like setting up 9p filesystems.`
			`options.virtualisation.qemu.program = mkOption { type = types.path; };`

Backdoor: depend on /dev/hvc0 Systemd is the shit: units can declare a dependency on the appearance of device nodes. Yay! 2012-06-19 17:36:02 -04:00			`config = {`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00
Rename ‘boot.systemd’ to ‘systemd’ Suggested by Mathijs Kwik. ‘boot.systemd’ is a misnomer because systemd affects more than just booting. And it saves some typing. 2013-01-16 12:33:18 +01:00			`systemd.services.backdoor =`
Backdoor: depend on /dev/hvc0 Systemd is the shit: units can declare a dependency on the appearance of device nodes. Yay! 2012-06-19 17:36:02 -04:00			`{ wantedBy = [ "multi-user.target" ];`
In the tests, don't start agetty on /dev/ttyS0 Running agetty on ttyS0 interferes with the backdoor, which uses ttyS0 as its standard error. After agetty starts, writes to the stderr file descriptor will return EIO (though doing "exec 2>/proc/self/fd/2" will miracuously fix this). http://hydra.nixos.org/build/3252782 2012-10-29 21:01:36 +01:00			`requires = [ "dev-hvc0.device" "dev-ttyS0.device" ];`
			`after = [ "dev-hvc0.device" "dev-ttyS0.device" ];`
* Added a function waitForX, which returns when the X server accepts connections. * In the root shell, source /etc/bashrc and set $HOME and $DISPLAY. svn path=/nixos/trunk/; revision=19247 2010-01-05 23:59:29 +00:00			`script =`
			`''`
* Urgh, socat ignores SIGCHLD, which causes Nix builds to fail. svn path=/nixos/trunk/; revision=19270 2010-01-06 18:03:31 +00:00			`export USER=root`
* Added a function waitForX, which returns when the X server accepts connections. * In the root shell, source /etc/bashrc and set $HOME and $DISPLAY. svn path=/nixos/trunk/; revision=19247 2010-01-05 23:59:29 +00:00			`export HOME=/root`
			`export DISPLAY=:0.0`
test-instrumentation.nix: Only clear $PAGER in the backdoor shell 2016-02-23 11:53:08 +01:00
* Urgh, socat ignores SIGCHLD, which causes Nix builds to fail. svn path=/nixos/trunk/; revision=19270 2010-01-06 18:03:31 +00:00			`source /etc/profile`
test-instrumentation.nix: Only clear $PAGER in the backdoor shell 2016-02-23 11:53:08 +01:00
			`# Don't use a pager when executing backdoor`
			`# actions. Because we use a tty, commands like systemctl`
			`# or nix-store get confused into thinking they're running`
			`# interactively.`
			`export PAGER=`

* Added a function waitForX, which returns when the X server accepts connections. * In the root shell, source /etc/bashrc and set $HOME and $DISPLAY. svn path=/nixos/trunk/; revision=19247 2010-01-05 23:59:29 +00:00			`cd /tmp`
Work around "Input/output error" opening /dev/ttyS0 E.g. http://hydra.nixos.org/build/5541847 This is a random occurence, maybe due to a race with something else. So just retry until it works. 2013-07-16 15:04:32 +02:00			`exec < /dev/hvc0 > /dev/hvc0`
			`while ! exec 2> /dev/ttyS0; do sleep 0.1; done`
* Use QEMU/KVM's paravirtualised console device for the backdoor. This has the advantage that it doesn't depend on networking being up. * Move common QEMU/KVM guest configuration to profiles/qemu-guest.nix. svn path=/nixos/trunk/; revision=26421 2011-03-18 12:38:22 +00:00			`echo "connecting to host..." >&2`
* Don't echo characters on /dev/hvc0, otherwise the stdout of commands gets screwed up. svn path=/nixos/trunk/; revision=26422 2011-03-18 13:16:40 +00:00			`stty -F /dev/hvc0 raw -echo # prevent nl -> cr/nl conversion`
Drop the socat wrapper 2012-06-22 15:37:22 -04:00			`echo`
In the tests, don't start agetty on /dev/ttyS0 Running agetty on ttyS0 interferes with the backdoor, which uses ttyS0 as its standard error. After agetty starts, writes to the stderr file descriptor will return EIO (though doing "exec 2>/proc/self/fd/2" will miracuously fix this). http://hydra.nixos.org/build/3252782 2012-10-29 21:01:36 +01:00			`PS1= exec /bin/sh`
* Added a function waitForX, which returns when the X server accepts connections. * In the root shell, source /etc/bashrc and set $HOME and $DISPLAY. svn path=/nixos/trunk/; revision=19247 2010-01-05 23:59:29 +00:00			`'';`
Kill the backdoor more forcefully Otherwise it hangs until the 90 second timeout expires. http://hydra.nixos.org/build/3253068 2012-10-30 16:42:05 +01:00			`serviceConfig.KillSignal = "SIGHUP";`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`};`
* Fix networking in the installer test. * If connecting to the host fails in the guest, then shutdown immediately. svn path=/nixos/branches/boot-order/; revision=22341 2010-06-20 15:33:44 +00:00
In the tests, don't start agetty on /dev/ttyS0 Running agetty on ttyS0 interferes with the backdoor, which uses ttyS0 as its standard error. After agetty starts, writes to the stderr file descriptor will return EIO (though doing "exec 2>/proc/self/fd/2" will miracuously fix this). http://hydra.nixos.org/build/3252782 2012-10-29 21:01:36 +01:00			`# Prevent agetty from being instantiated on ttyS0, since it`
			`# interferes with the backdoor (writes to ttyS0 will randomly fail`
test-instrumentation.nix: Don't start agetty on hvc0 2012-11-09 11:45:37 +01:00			`# with EIO). Likewise for hvc0.`
Rename ‘boot.systemd’ to ‘systemd’ Suggested by Mathijs Kwik. ‘boot.systemd’ is a misnomer because systemd affects more than just booting. And it saves some typing. 2013-01-16 12:33:18 +01:00			`systemd.services."serial-getty@ttyS0".enable = false;`
			`systemd.services."serial-getty@hvc0".enable = false;`
In the tests, don't start agetty on /dev/ttyS0 Running agetty on ttyS0 interferes with the backdoor, which uses ttyS0 as its standard error. After agetty starts, writes to the stderr file descriptor will return EIO (though doing "exec 2>/proc/self/fd/2" will miracuously fix this). http://hydra.nixos.org/build/3252782 2012-10-29 21:01:36 +01:00
NixOS tests: Increase hung_task_timeout_secs This hopefully fixes intermittent test failures like http://hydra.nixos.org/build/29962437 router# [ 240.128835] INFO: task mke2fs:99 blocked for more than 120 seconds. router# [ 240.130135] Not tainted 3.18.25 #1-NixOS router# [ 240.131110] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. assuming that these are caused by high load on the host. 2016-01-04 16:53:42 +01:00			`boot.initrd.preDeviceCommands =`
			`''`
			`echo 600 > /proc/sys/kernel/hung_task_timeout_secs`
			`'';`

* In VM tests, use acpi_pm as the clock source. This causes the guest clock to slow down under high host load. This is usually a bad thing, but for VM tests it should provide a bit more determinism (e.g. if the VM runs at lower speed, then timeouts in the VM should also be delayed). svn path=/nixos/trunk/; revision=25490 2011-01-10 14:22:38 +00:00			`boot.initrd.postDeviceCommands =`
			`''`
			`# Using acpi_pm as a clock source causes the guest clock to`
			`# slow down under high host load. This is usually a bad`
			`# thing, but for VM tests it should provide a bit more`
			`# determinism (e.g. if the VM runs at lower speed, then`
			`# timeouts in the VM should also be delayed).`
			`echo acpi_pm > /sys/devices/system/clocksource/clocksource0/current_clocksource`
			`'';`
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285 2011-09-14 18:20:50 +00:00
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`boot.postBootCommands =`
			`''`
* Panic on out-of-memory. svn path=/nixos/trunk/; revision=19200 2010-01-04 09:51:57 +00:00			`# Panic on out-of-memory conditions rather than letting the`
			`# OOM killer randomly get rid of processes, since this leads`
			`# to failures that are hard to diagnose.`
			`echo 2 > /proc/sys/vm/panic_on_oom`

* For security, don't mount the entire host filesystem. svn path=/nixos/trunk/; revision=28429 2011-08-09 14:07:44 +00:00			`# Coverage data is written into /tmp/coverage-data.`
			`mkdir -p /tmp/xchg/coverage-data`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`'';`
* Cleanup the kernel coverage analysis. svn path=/nixos/trunk/; revision=16919 2009-09-01 22:50:46 +00:00
			`# If the kernel has been built with coverage instrumentation, make`
			`# it available under /proc/gcov.`
			`boot.kernelModules = [ "gcov-proc" ];`
* Don't use /hostfs to signal the test driver that a VM is up, but write some magic string to ttyS0. This removes the dependency on having a CIFS mount. * Use a thread to process the stdout/stderr of each QEMU instance. * Add a kernel command line parameter "stage1panic" to tell stage 1 to panic if an error occurs. This is faster than waiting until connect() times out. svn path=/nixos/trunk/; revision=19212 2010-01-04 18:04:57 +00:00
			`# Panic if an error occurs in stage 1 (rather than waiting for`
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285 2011-09-14 18:20:50 +00:00			`# user intervention).`
* Move the serial console kernel parameters to test-instrumentation.nix. svn path=/nixos/trunk/; revision=19275 2010-01-06 21:16:57 +00:00			`boot.kernelParams =`
test-instrumentation.nix: Improve logging In particular, don't clobber the serial console with duplicate output from systemd and the journal, and increase the log level. 2014-08-06 13:54:17 +02:00			`[ "console=ttyS0" "panic=1" "boot.panic_on_fail" ];`
* A function to wait until a window exists. svn path=/nixos/trunk/; revision=19246 2010-01-05 23:38:13 +00:00
			# `xwininfo' is used by the test driver to query open windows.
			`environment.systemPackages = [ pkgs.xorg.xwininfo ];`
* In the NixOS tests, send syslog messages to the serial port (so that they appear in the build log of the test). svn path=/nixos/trunk/; revision=20490 2010-03-09 13:31:20 +00:00
journald: enable logging to the console 2012-07-19 17:32:50 -04:00			`# Log everything to the serial console.`
test-instrumentation.nix: Improve logging In particular, don't clobber the serial console with duplicate output from systemd and the journal, and increase the log level. 2014-08-06 13:54:17 +02:00			`services.journald.extraConfig =`
			`''`
			`ForwardToConsole=yes`
			`MaxLevelConsole=debug`
			`'';`

			`# Don't clobber the console with duplicate systemd messages.`
			`systemd.extraConfig = "ShowStatus=no";`

			`boot.consoleLogLevel = 7;`
* Don't print kernel log messages twice. svn path=/nixos/trunk/; revision=23769 2010-09-13 17:36:01 +00:00
* Prevent tests from accessing the host's network accidentally. For instance, `nixos-rebuild' in the installer test does a `nix-pull' from nixos.org. svn path=/nixos/branches/boot-order/; revision=22325 2010-06-18 13:21:01 +00:00			`# Prevent tests from accessing the Internet.`
* In the activation script, don't require the path to the "system" derivation on the command line. svn path=/nixos/trunk/; revision=23770 2010-09-13 18:19:15 +00:00			`networking.defaultGateway = mkOverride 150 "";`
			`networking.nameservers = mkOverride 150 [ ];`
* Prevent tests from accessing the host's network accidentally. For instance, `nixos-rebuild' in the installer test does a `nix-pull' from nixos.org. svn path=/nixos/branches/boot-order/; revision=22325 2010-06-18 13:21:01 +00:00
Rename ‘boot.systemd’ to ‘systemd’ Suggested by Mathijs Kwik. ‘boot.systemd’ is a misnomer because systemd affects more than just booting. And it saves some typing. 2013-01-16 12:33:18 +01:00			`systemd.globalEnvironment.GCOV_PREFIX = "/tmp/xchg/coverage-data";`
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285 2011-09-14 18:20:50 +00:00
The kernel needs SERIAL_8250_CONSOLE when using a real serial port as a console 2012-08-06 08:13:06 -04:00			`system.requiredKernelConfig = with config.lib.kernelConfig; [`
			`(isYes "SERIAL_8250_CONSOLE")`
			`(isYes "SERIAL_8250")`
qemu tests use the virtio console to run commands 2012-08-07 17:04:00 -04:00			`(isEnabled "VIRTIO_CONSOLE")`
The kernel needs SERIAL_8250_CONSOLE when using a real serial port as a console 2012-08-06 08:13:06 -04:00			`];`
Merge branch 'master' of github.com:NixOS/nixos into systemd 2012-08-20 11:27:38 -04:00
Fix the installer test http://hydra.nixos.org/build/10419676 2014-04-20 01:56:11 +02:00			`networking.usePredictableInterfaceNames = false;`

test-instrumentation.nix: Set an empty root password This makes it easier to log in during interactive sessions. 2014-08-06 13:55:02 +02:00			`# Make it easy to log in as root when running the test interactively.`
nixos: Fix priorities of initialHashedPassword. Regression introduced in f496c3cbe4a6a2db88892d14609618e449744ed6. Previously when we used security.initialRootPassword, the default priority for this option was 1001, because it was a default value set by the option itself. With the mentioned commit, it is no longer an option default but a mkDefault, which is priority 1000. I'm setting this to 150 now, as test-instrumentation.nix is using this for overriding other options and because I think it still makes it possible to simple-override it, because if no priority is given, we get priority 100. Signed-off-by: aszlig <aszlig@redmoonstudios.org> 2014-11-04 05:19:07 +01:00			`users.extraUsers.root.initialHashedPassword = mkOverride 150 "";`
test-instrumentation.nix: Set an empty root password This makes it easier to log in during interactive sessions. 2014-08-06 13:55:02 +02:00
Add an option to write the X session log to the journal ... rather than ~/.xsession-errors. It might make sense to make this the default, in order to eliminate ad hoc, uncentralised, poorly discoverable log files. 2016-05-24 21:29:22 +02:00			`services.xserver.displayManager.logToJournal = true;`
* test -> tests. svn path=/nixos/trunk/; revision=16897 2009-08-31 13:40:57 +00:00			`};`

			`}`