2011-02-19 11:21:19 -08:00
|
|
|
# Test of IPv6 functionality in NixOS, including whether router
|
|
|
|
# solicication/advertisement using radvd works.
|
|
|
|
|
2019-04-11 10:41:47 -07:00
|
|
|
import ./make-test.nix ({ pkgs, lib, ...} : {
|
2014-06-28 07:04:49 -07:00
|
|
|
name = "ipv6";
|
2015-07-12 03:09:40 -07:00
|
|
|
meta = with pkgs.stdenv.lib.maintainers; {
|
2019-02-22 07:14:13 -08:00
|
|
|
maintainers = [ eelco ];
|
2015-07-12 03:09:40 -07:00
|
|
|
};
|
2011-02-19 11:21:19 -08:00
|
|
|
|
|
|
|
nodes =
|
2019-04-11 10:41:47 -07:00
|
|
|
# Remove the interface configuration provided by makeTest so that the
|
|
|
|
# interfaces are all configured implicitly
|
|
|
|
{ client = { ... }: { networking.interfaces = lib.mkForce {}; };
|
2011-09-14 11:20:50 -07:00
|
|
|
|
2011-02-19 11:21:19 -08:00
|
|
|
server =
|
2018-07-20 13:56:59 -07:00
|
|
|
{ ... }:
|
2011-02-19 11:21:19 -08:00
|
|
|
{ services.httpd.enable = true;
|
|
|
|
services.httpd.adminAddr = "foo@example.org";
|
2014-04-11 08:15:56 -07:00
|
|
|
networking.firewall.allowedTCPPorts = [ 80 ];
|
2011-02-19 11:21:19 -08:00
|
|
|
};
|
|
|
|
|
2011-09-14 11:20:50 -07:00
|
|
|
router =
|
2018-07-20 13:56:59 -07:00
|
|
|
{ ... }:
|
2011-02-19 11:21:19 -08:00
|
|
|
{ services.radvd.enable = true;
|
|
|
|
services.radvd.config =
|
|
|
|
''
|
|
|
|
interface eth1 {
|
|
|
|
AdvSendAdvert on;
|
|
|
|
# ULA prefix (RFC 4193).
|
|
|
|
prefix fd60:cc69:b537:1::/64 { };
|
|
|
|
};
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
testScript =
|
|
|
|
''
|
|
|
|
# Start the router first so that it respond to router solicitations.
|
2012-10-24 09:22:53 -07:00
|
|
|
$router->waitForUnit("radvd");
|
2011-09-14 11:20:50 -07:00
|
|
|
|
2011-02-19 11:21:19 -08:00
|
|
|
startAll;
|
2011-09-14 11:20:50 -07:00
|
|
|
|
2012-10-24 09:22:53 -07:00
|
|
|
$client->waitForUnit("network.target");
|
|
|
|
$server->waitForUnit("network.target");
|
2014-08-10 05:51:01 -07:00
|
|
|
$server->waitForUnit("httpd.service");
|
2011-02-19 11:21:19 -08:00
|
|
|
|
|
|
|
# Wait until the given interface has a non-tentative address of
|
|
|
|
# the desired scope (i.e. has completed Duplicate Address
|
|
|
|
# Detection).
|
|
|
|
sub waitForAddress {
|
|
|
|
my ($machine, $iface, $scope) = @_;
|
2018-02-19 02:31:20 -08:00
|
|
|
$machine->waitUntilSucceeds("[ `ip -o -6 addr show dev $iface scope $scope | grep -v tentative | wc -l` -ge 1 ]");
|
2011-02-19 11:21:19 -08:00
|
|
|
my $ip = (split /[ \/]+/, $machine->succeed("ip -o -6 addr show dev $iface scope $scope"))[3];
|
|
|
|
$machine->log("$scope address on $iface is $ip");
|
|
|
|
return $ip;
|
|
|
|
}
|
2011-09-14 11:20:50 -07:00
|
|
|
|
2011-02-19 11:21:19 -08:00
|
|
|
subtest "loopback address", sub {
|
2017-02-15 02:05:50 -08:00
|
|
|
$client->succeed("ping -c 1 ::1 >&2");
|
|
|
|
$client->fail("ping -c 1 ::2 >&2");
|
2011-02-19 11:21:19 -08:00
|
|
|
};
|
2011-09-14 11:20:50 -07:00
|
|
|
|
2011-02-19 11:21:19 -08:00
|
|
|
subtest "local link addressing", sub {
|
|
|
|
my $clientIp = waitForAddress $client, "eth1", "link";
|
|
|
|
my $serverIp = waitForAddress $server, "eth1", "link";
|
2017-02-15 02:05:50 -08:00
|
|
|
$client->succeed("ping -c 1 $clientIp%eth1 >&2");
|
|
|
|
$client->succeed("ping -c 1 $serverIp%eth1 >&2");
|
2011-02-19 11:21:19 -08:00
|
|
|
};
|
|
|
|
|
|
|
|
subtest "global addressing", sub {
|
|
|
|
my $clientIp = waitForAddress $client, "eth1", "global";
|
|
|
|
my $serverIp = waitForAddress $server, "eth1", "global";
|
2017-02-15 02:05:50 -08:00
|
|
|
$client->succeed("ping -c 1 $clientIp >&2");
|
|
|
|
$client->succeed("ping -c 1 $serverIp >&2");
|
2011-02-19 11:21:19 -08:00
|
|
|
$client->succeed("curl --fail -g http://[$serverIp]");
|
|
|
|
$client->fail("curl --fail -g http://[$clientIp]");
|
|
|
|
};
|
2019-04-11 10:41:47 -07:00
|
|
|
subtest "privacy extensions", sub {
|
|
|
|
my $ip = waitForAddress $client, "eth1", "global temporary";
|
|
|
|
# Default route should have "src <temporary address>" in it
|
|
|
|
$client->succeed("ip r g ::2 | grep $ip");
|
|
|
|
};
|
2011-02-19 11:21:19 -08:00
|
|
|
|
|
|
|
# TODO: test reachability of a machine on another network.
|
|
|
|
'';
|
2015-07-12 03:09:40 -07:00
|
|
|
})
|