vuls: init at 0.27.0
[NixPkgs.git] / nixos / tests / tmate-ssh-server.nix
blob593663a13a4e334d08c2b31deee107b536cba1c4
1 import ./make-test-python.nix ({ pkgs, lib, ... }:
2 let
3   inherit (import ./ssh-keys.nix pkgs)
4     snakeOilPrivateKey snakeOilPublicKey;
6   setUpPrivateKey = name: ''
7     ${name}.succeed(
8         "mkdir -p /root/.ssh",
9         "chmod 700 /root/.ssh",
10         "cat '${snakeOilPrivateKey}' > /root/.ssh/id_snakeoil",
11         "chmod 600 /root/.ssh/id_snakeoil",
12     )
13     ${name}.wait_for_file("/root/.ssh/id_snakeoil")
14   '';
16   sshOpts = "-oStrictHostKeyChecking=no -oUserKnownHostsFile=/dev/null -oIdentityFile=/root/.ssh/id_snakeoil";
20   name = "tmate-ssh-server";
21   nodes =
22     {
23       server = { ... }: {
24         services.tmate-ssh-server = {
25           enable = true;
26           port = 2223;
27           openFirewall = true;
28         };
29       };
30       client = { ... }: {
31         environment.systemPackages = [ pkgs.tmate ];
32         services.openssh.enable = true;
33         users.users.root.openssh.authorizedKeys.keys = [ snakeOilPublicKey ];
34       };
35       client2 = { ... }: {
36         environment.systemPackages = [ pkgs.openssh ];
37       };
38     };
39   testScript = ''
40     start_all()
42     server.wait_for_unit("tmate-ssh-server.service")
43     server.wait_for_open_port(2223)
44     server.wait_for_file("/etc/tmate-ssh-server-keys/ssh_host_ed25519_key.pub")
45     server.wait_for_file("/etc/tmate-ssh-server-keys/ssh_host_rsa_key.pub")
46     server.succeed("tmate-client-config > /tmp/tmate.conf")
47     server.wait_for_file("/tmp/tmate.conf")
49     ${setUpPrivateKey "server"}
50     client.wait_for_unit("sshd.service")
51     client.wait_for_open_port(22)
52     server.succeed("scp ${sshOpts} /tmp/tmate.conf client:/tmp/tmate.conf")
54     client.wait_for_file("/tmp/tmate.conf")
55     client.wait_until_tty_matches("1", "login:")
56     client.send_chars("root\n")
57     client.sleep(2)
58     client.send_chars("tmate -f /tmp/tmate.conf\n")
59     client.sleep(2)
60     client.send_chars("q")
61     client.sleep(2)
62     client.send_chars("tmate display -p '#{tmate_ssh}' > /tmp/ssh_command\n")
63     client.wait_for_file("/tmp/ssh_command")
64     ssh_cmd = client.succeed("cat /tmp/ssh_command")
66     client2.succeed("mkdir -p ~/.ssh; ssh-keyscan -4 -p 2223 server > ~/.ssh/known_hosts")
67     client2.wait_until_tty_matches("1", "login:")
68     client2.send_chars("root\n")
69     client2.sleep(2)
70     client2.send_chars(ssh_cmd.strip() + "\n")
71     client2.sleep(2)
72     client2.send_chars("touch /tmp/client_2\n")
74     client.wait_for_file("/tmp/client_2")
75   '';