2021-02-26 15:03:49 +00:00
|
|
|
import ./make-test-python.nix (
|
|
|
|
{ pkgs, lib, ... }:
|
2016-09-30 09:45:48 +01:00
|
|
|
{
|
|
|
|
name = "containers-physical_interfaces";
|
|
|
|
meta = {
|
2017-12-03 04:14:54 +00:00
|
|
|
maintainers = with lib.maintainers; [ kampfschlaefer ];
|
2016-09-30 09:45:48 +01:00
|
|
|
};
|
2016-09-30 13:52:46 +01:00
|
|
|
|
2018-07-20 21:56:59 +01:00
|
|
|
nodes = {
|
2024-12-10 19:26:33 +00:00
|
|
|
server =
|
2018-07-20 21:56:59 +01:00
|
|
|
{ ... }:
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2016-09-30 13:52:46 +01:00
|
|
|
virtualisation.vlans = [ 1 ];
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2016-09-30 09:45:48 +01:00
|
|
|
containers.server = {
|
|
|
|
privateNetwork = true;
|
|
|
|
interfaces = [ "eth1" ];
|
2016-09-30 13:52:46 +01:00
|
|
|
|
|
|
|
config = {
|
|
|
|
networking.interfaces.eth1.ipv4.addresses = [
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2016-09-30 13:52:46 +01:00
|
|
|
address = "10.10.0.1";
|
2017-12-03 04:14:54 +00:00
|
|
|
prefixLength = 24;
|
2024-12-10 19:26:33 +00:00
|
|
|
}
|
|
|
|
];
|
2016-09-30 09:45:48 +01:00
|
|
|
networking.firewall.enable = false;
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
|
|
|
};
|
|
|
|
};
|
2018-07-20 21:56:59 +01:00
|
|
|
bridged =
|
2024-12-10 19:26:33 +00:00
|
|
|
{ ... }:
|
|
|
|
{
|
2016-09-30 13:52:46 +01:00
|
|
|
virtualisation.vlans = [ 1 ];
|
|
|
|
|
|
|
|
containers.bridged = {
|
|
|
|
privateNetwork = true;
|
|
|
|
interfaces = [ "eth1" ];
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2018-03-31 18:59:55 +01:00
|
|
|
config = {
|
|
|
|
networking.bridges.br0.interfaces = [ "eth1" ];
|
|
|
|
networking.interfaces.br0.ipv4.addresses = [
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2018-03-31 18:59:55 +01:00
|
|
|
address = "10.10.0.2";
|
2017-12-03 04:14:54 +00:00
|
|
|
prefixLength = 24;
|
2024-12-10 19:26:33 +00:00
|
|
|
}
|
|
|
|
];
|
2018-03-31 18:59:55 +01:00
|
|
|
networking.firewall.enable = false;
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
2016-09-30 13:52:46 +01:00
|
|
|
};
|
|
|
|
};
|
|
|
|
|
2018-07-20 21:56:59 +01:00
|
|
|
bonded =
|
|
|
|
{ ... }:
|
|
|
|
{
|
2016-09-30 13:52:46 +01:00
|
|
|
virtualisation.vlans = [ 1 ];
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2016-09-30 13:52:46 +01:00
|
|
|
containers.bonded = {
|
|
|
|
privateNetwork = true;
|
|
|
|
interfaces = [ "eth1" ];
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2016-09-30 13:52:46 +01:00
|
|
|
config = {
|
|
|
|
networking.bonds.bond0 = {
|
|
|
|
interfaces = [ "eth1" ];
|
2018-03-31 18:59:55 +01:00
|
|
|
driverOptions.mode = "active-backup";
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
2017-12-03 04:14:54 +00:00
|
|
|
networking.interfaces.bond0.ipv4.addresses = [
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2017-12-03 04:14:54 +00:00
|
|
|
address = "10.10.0.3";
|
|
|
|
prefixLength = 24;
|
2024-12-10 19:26:33 +00:00
|
|
|
}
|
|
|
|
];
|
2016-09-30 13:52:46 +01:00
|
|
|
networking.firewall.enable = false;
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
|
|
|
};
|
|
|
|
};
|
2016-09-30 13:52:46 +01:00
|
|
|
|
|
|
|
bridgedbond =
|
|
|
|
{ ... }:
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2016-09-30 13:52:46 +01:00
|
|
|
virtualisation.vlans = [ 1 ];
|
|
|
|
|
|
|
|
containers.bridgedbond = {
|
|
|
|
privateNetwork = true;
|
|
|
|
interfaces = [ "eth1" ];
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2016-09-30 13:52:46 +01:00
|
|
|
config = {
|
|
|
|
networking.bonds.bond0 = {
|
|
|
|
interfaces = [ "eth1" ];
|
2018-03-31 18:59:55 +01:00
|
|
|
driverOptions.mode = "active-backup";
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
2016-09-30 13:52:46 +01:00
|
|
|
networking.bridges.br0.interfaces = [ "bond0" ];
|
2017-12-03 04:14:54 +00:00
|
|
|
networking.interfaces.br0.ipv4.addresses = [
|
2024-12-10 19:26:33 +00:00
|
|
|
{
|
2017-12-03 04:14:54 +00:00
|
|
|
address = "10.10.0.4";
|
|
|
|
prefixLength = 24;
|
2024-12-10 19:26:33 +00:00
|
|
|
}
|
|
|
|
];
|
2016-09-30 13:52:46 +01:00
|
|
|
networking.firewall.enable = false;
|
2024-12-10 19:26:33 +00:00
|
|
|
};
|
2016-09-30 13:52:46 +01:00
|
|
|
};
|
|
|
|
};
|
|
|
|
};
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2016-09-30 09:45:48 +01:00
|
|
|
testScript = ''
|
2019-12-01 01:29:24 +00:00
|
|
|
start_all()
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
with subtest("Prepare server"):
|
|
|
|
server.wait_for_unit("default.target")
|
|
|
|
server.succeed("ip link show dev eth1 >&2")
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
with subtest("Simple physical interface is up"):
|
|
|
|
server.succeed("nixos-container start server")
|
|
|
|
server.wait_for_unit("container@server")
|
|
|
|
server.succeed(
|
|
|
|
"systemctl -M server list-dependencies network-addresses-eth1.service >&2"
|
|
|
|
)
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
# The other tests will ping this container on its ip. Here we just check
|
|
|
|
# that the device is present in the container.
|
|
|
|
server.succeed("nixos-container run server -- ip a show dev eth1 >&2")
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
with subtest("Physical device in bridge in container can ping server"):
|
|
|
|
bridged.wait_for_unit("default.target")
|
|
|
|
bridged.succeed("nixos-container start bridged")
|
|
|
|
bridged.wait_for_unit("container@bridged")
|
|
|
|
bridged.succeed(
|
|
|
|
"systemctl -M bridged list-dependencies network-addresses-br0.service >&2",
|
|
|
|
"systemctl -M bridged status -n 30 -l network-addresses-br0.service",
|
|
|
|
"nixos-container run bridged -- ping -w 10 -c 1 -n 10.10.0.1",
|
|
|
|
)
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
with subtest("Physical device in bond in container can ping server"):
|
|
|
|
bonded.wait_for_unit("default.target")
|
|
|
|
bonded.succeed("nixos-container start bonded")
|
|
|
|
bonded.wait_for_unit("container@bonded")
|
|
|
|
bonded.succeed(
|
|
|
|
"systemctl -M bonded list-dependencies network-addresses-bond0 >&2",
|
|
|
|
"systemctl -M bonded status -n 30 -l network-addresses-bond0 >&2",
|
|
|
|
"nixos-container run bonded -- ping -w 10 -c 1 -n 10.10.0.1",
|
|
|
|
)
|
2024-12-10 19:26:33 +00:00
|
|
|
|
2019-12-01 01:29:24 +00:00
|
|
|
with subtest("Physical device in bond in bridge in container can ping server"):
|
|
|
|
bridgedbond.wait_for_unit("default.target")
|
|
|
|
bridgedbond.succeed("nixos-container start bridgedbond")
|
|
|
|
bridgedbond.wait_for_unit("container@bridgedbond")
|
|
|
|
bridgedbond.succeed(
|
|
|
|
"systemctl -M bridgedbond list-dependencies network-addresses-br0.service >&2",
|
|
|
|
"systemctl -M bridgedbond status -n 30 -l network-addresses-br0.service",
|
|
|
|
"nixos-container run bridgedbond -- ping -w 10 -c 1 -n 10.10.0.1",
|
|
|
|
)
|
2016-09-30 09:45:48 +01:00
|
|
|
'';
|
|
|
|
}
|
|
|
|
)
|