mirror of
https://github.com/numtide/nixos-anywhere.git
synced 2024-10-05 17:07:22 +03:00
68 lines
2.5 KiB
Nix
68 lines
2.5 KiB
Nix
(import ./lib/test-base.nix) (
|
|
{ pkgs, ... }:
|
|
{
|
|
name = "from-nixos";
|
|
nodes = {
|
|
installer = ./modules/installer.nix;
|
|
installed = {
|
|
services.openssh.enable = true;
|
|
virtualisation.memorySize = 1024;
|
|
|
|
users.users.root.openssh.authorizedKeys.keyFiles = [ ./modules/ssh-keys/ssh.pub ];
|
|
};
|
|
};
|
|
testScript = ''
|
|
def create_test_machine(
|
|
oldmachine=None, **kwargs
|
|
): # taken from <nixpkgs/nixos/tests/installer.nix>
|
|
start_command = [
|
|
"${pkgs.qemu_test}/bin/qemu-kvm",
|
|
"-cpu",
|
|
"max",
|
|
"-m",
|
|
"1024",
|
|
"-virtfs",
|
|
"local,path=/nix/store,security_model=none,mount_tag=nix-store",
|
|
"-drive",
|
|
f"file={oldmachine.state_dir}/installed.qcow2,id=drive1,if=none,index=1,werror=report",
|
|
"-device",
|
|
"virtio-blk-pci,drive=drive1",
|
|
]
|
|
machine = create_machine(start_command=" ".join(start_command), **kwargs)
|
|
driver.machines.append(machine)
|
|
return machine
|
|
start_all()
|
|
installer.succeed("mkdir -p /tmp/extra-files/var/lib/secrets")
|
|
installer.succeed("echo value > /tmp/extra-files/var/lib/secrets/key")
|
|
ssh_key_path = "/etc/ssh/ssh_host_ed25519_key.pub"
|
|
ssh_key_output = installer.wait_until_succeeds(f"""
|
|
ssh -i /root/.ssh/install_key -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no \
|
|
root@installed cat {ssh_key_path}
|
|
""")
|
|
installer.succeed("""
|
|
nixos-anywhere \
|
|
-i /root/.ssh/install_key \
|
|
--debug \
|
|
--kexec /etc/nixos-anywhere/kexec-installer \
|
|
--extra-files /tmp/extra-files \
|
|
--store-paths /etc/nixos-anywhere/disko /etc/nixos-anywhere/system-to-install \
|
|
--copy-host-keys \
|
|
root@installed >&2
|
|
""")
|
|
try:
|
|
installed.shutdown()
|
|
except BrokenPipeError:
|
|
# qemu has already exited
|
|
pass
|
|
new_machine = create_test_machine(oldmachine=installed, name="after_install")
|
|
new_machine.start()
|
|
hostname = new_machine.succeed("hostname").strip()
|
|
assert "nixos-anywhere" == hostname, f"'nixos-anywhere' != '{hostname}'"
|
|
content = new_machine.succeed("cat /var/lib/secrets/key").strip()
|
|
assert "value" == content, f"secret does not have expected value: {content}"
|
|
ssh_key_content = new_machine.succeed(f"cat {ssh_key_path}").strip()
|
|
assert ssh_key_content in ssh_key_output, "SSH host identity changed"
|
|
'';
|
|
}
|
|
)
|