pyrox.dev / nixpkgs
lol
fork atom
nixpkgs / nixos / tests / tmate-ssh-server.nix
at 23.11-beta 2.3 kB view raw
1import ./make-test-python.nix ({ pkgs, lib, ... }: 2let 3 inherit (import ./ssh-keys.nix pkgs) 4 snakeOilPrivateKey snakeOilPublicKey; 5 6 setUpPrivateKey = name: '' 7 ${name}.succeed( 8 "mkdir -p /root/.ssh", 9 "chown 700 /root/.ssh", 10 "cat '${snakeOilPrivateKey}' > /root/.ssh/id_snakeoil", 11 "chown 600 /root/.ssh/id_snakeoil", 12 ) 13 ${name}.wait_for_file("/root/.ssh/id_snakeoil") 14 ''; 15 16 sshOpts = "-oStrictHostKeyChecking=no -oUserKnownHostsFile=/dev/null -oIdentityFile=/root/.ssh/id_snakeoil"; 17 18in 19{ 20 name = "tmate-ssh-server"; 21 nodes = 22 { 23 server = { ... }: { 24 services.tmate-ssh-server = { 25 enable = true; 26 port = 2223; 27 openFirewall = true; 28 }; 29 }; 30 client = { ... }: { 31 environment.systemPackages = [ pkgs.tmate ]; 32 services.openssh.enable = true; 33 users.users.root.openssh.authorizedKeys.keys = [ snakeOilPublicKey ]; 34 }; 35 client2 = { ... }: { 36 environment.systemPackages = [ pkgs.openssh ]; 37 }; 38 }; 39 testScript = '' 40 start_all() 41 42 server.wait_for_unit("tmate-ssh-server.service") 43 server.wait_for_open_port(2223) 44 server.wait_for_file("/etc/tmate-ssh-server-keys/ssh_host_ed25519_key.pub") 45 server.wait_for_file("/etc/tmate-ssh-server-keys/ssh_host_rsa_key.pub") 46 server.succeed("tmate-client-config > /tmp/tmate.conf") 47 server.wait_for_file("/tmp/tmate.conf") 48 49 ${setUpPrivateKey "server"} 50 client.wait_for_unit("sshd.service") 51 client.wait_for_open_port(22) 52 server.succeed("scp ${sshOpts} /tmp/tmate.conf client:/tmp/tmate.conf") 53 54 client.wait_for_file("/tmp/tmate.conf") 55 client.send_chars("root\n") 56 client.sleep(2) 57 client.send_chars("tmate -f /tmp/tmate.conf\n") 58 client.sleep(2) 59 client.send_chars("q") 60 client.sleep(2) 61 client.send_chars("tmate display -p '#{tmate_ssh}' > /tmp/ssh_command\n") 62 client.wait_for_file("/tmp/ssh_command") 63 ssh_cmd = client.succeed("cat /tmp/ssh_command") 64 65 client2.succeed("mkdir -p ~/.ssh; ssh-keyscan -p 2223 server > ~/.ssh/known_hosts") 66 client2.send_chars("root\n") 67 client2.sleep(2) 68 client2.send_chars(ssh_cmd.strip() + "\n") 69 client2.sleep(2) 70 client2.send_chars("touch /tmp/client_2\n") 71 72 client.wait_for_file("/tmp/client_2") 73 ''; 74})