arion/tests/arion-test/default.nix

{ usePodman ? false, pkgs, lib ? pkgs.lib, ... }:

let
  # To make some prebuilt derivations available in the vm
  preEval = modules: import ../../src/nix/eval-composition.nix {
    inherit modules;
    inherit pkgs;
  };

  inherit (lib)
    concatMapStringsSep
    optionalAttrs
    optionalString
    ;

  haveSystemd = usePodman || pkgs.arionTestingFlags.dockerSupportsSystemd;

  concatPathLines = paths: concatMapStringsSep "\n" (x: "${x}") paths;

in
{
  name = "arion-test";
  nodes.machine = { pkgs, lib, ... }: {
    environment.systemPackages = [
      pkgs.arion
    ] ++ lib.optional usePodman pkgs.docker;
    virtualisation.docker.enable = !usePodman;
    virtualisation.podman = optionalAttrs usePodman {
      enable = true;
      dockerSocket.enable = true;
    };
    
    # no caches, because no internet
    nix.binaryCaches = lib.mkForce [];

    # FIXME: Sandbox seems broken with current version of NixOS test
    #        w/ writable store. Error:
    #        machine# error: linking '/nix/store/7r8z2zvhwda85pgpdn5hzzz6hs1njklc-stdenv-linux.drv.chroot/nix/store/6v3y7s4q4wd16hsw393gjpxvcf9159bv-patch-shebangs.sh' to '/nix/store/6v3y7s4q4wd16hsw393gjpxvcf9159bv-patch-shebangs.sh': Operation not permitted
    #
    #        There should be no reason why arion can't run without
    #        sandboxing, so please re-enable.
    nix.useSandbox = false;

    virtualisation.writableStore = true;
    # Switch to virtualisation.additionalPaths when dropping all NixOS <= 21.05.
    environment.etc."extra-paths-for-test".text = concatPathLines [
      # Pre-build the image because we don't want to build the world
      # in the vm.
      (preEval [ ../../examples/minimal/arion-compose.nix ]).config.out.dockerComposeYaml
      (preEval [ ../../examples/full-nixos/arion-compose.nix ]).config.out.dockerComposeYaml
      (preEval [ ../../examples/nixos-unit/arion-compose.nix ]).config.out.dockerComposeYaml
      (preEval [ ../../examples/traefik/arion-compose.nix ]).config.out.dockerComposeYaml
      pkgs.stdenv
    ];

    virtualisation.memorySize = 1024;
    virtualisation.diskSize = 8000;
  };
  testScript = ''
    machine.fail("curl --fail localhost:8000")
    machine.succeed("docker --version")

    # Tests
    #  - arion up
    #  - arion down
    #  - examples/minimal
    with subtest("minimal"):
        machine.succeed(
            "rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"
        )
        machine.wait_until_succeeds("curl --fail localhost:8000")
        machine.succeed(
            "cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"
        )
        machine.wait_until_fails("curl --fail localhost:8000")

    # Tests
    #  - running same image again doesn't require a `docker load`
    with subtest("docker load only once"):
        # We assume image loading relies on the `docker images` and `docker load` commands, so this should fail
        machine.fail(
            "export REAL_DOCKER=$(which docker); rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' PATH=\"${pkgs.writeScriptBin "docker" ''
              #!${pkgs.runtimeShell} -eu
              echo 1>&2 "This failure is expected. Args were" "$@"
              echo "$@" >/tmp/docker-args
              exit 1
            ''}/bin:$PATH\" arion up -d"
        )
        machine.succeed(
            "export REAL_DOCKER=$(which docker); rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' PATH=\"${pkgs.writeScriptBin "docker" ''
              #!${pkgs.runtimeShell} -eu
              case $1 in
                load)
                  echo 1>&2 "arion must not docker load when upping the same deployment for the second time"
                  exit 1
                  ;;
                images)
                  echo 1>&2 "execing docker to list images"
                  exec $REAL_DOCKER "$@"
                  ;;
                *)
                  echo 1>&2 "Unknown docker invocation. This may be a shortcoming of this docker mock."
                  echo 1>&2 "Invocation: docker" "$@"
                  ;;
              esac
            ''}/bin:$PATH\" arion up -d"
        )
        machine.wait_until_succeeds("curl --fail localhost:8000")
        machine.succeed(
            "cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"
        )
        machine.wait_until_fails("curl --fail localhost:8000")


    # Tests
    #  - examples/flake
    # This _test_ doesn't work because flake-compat fetches the github
    # tarballs without sha256 and/or Nix doesn't consult the store before
    # downloading.
    # See https://github.com/edolstra/flake-compat/pull/12
    # with subtest("flake"):
    #     machine.succeed(
    #         "rm -rf work && cp -frT ''${../../examples/flake} work && cd work && NIX_PATH= arion up -d"
    #     )
    #     machine.wait_until_succeeds("curl --fail localhost:8000")
    #     machine.succeed("cd work && NIX_PATH= arion down")
    #     machine.wait_until_fails("curl --fail localhost:8000")

    ${optionalString haveSystemd ''
    # Tests
    #  - arion exec
    #  - examples/full-nixos
    with subtest("full-nixos"):
        machine.succeed(
            "rm -rf work && cp -frT ${../../examples/full-nixos} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"
        )
        machine.wait_until_succeeds("curl --fail localhost:8000")

        machine.succeed(
            """
            set -eux -o pipefail
            cd work
            export NIX_PATH=nixpkgs='${pkgs.path}'
            echo 'target=world; echo Hello $target; exit' \
              | script 'arion exec webserver' \
              | grep 'Hello world'
            """
        ),

        machine.succeed(
            "cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"
        )
        machine.wait_until_fails("curl --fail localhost:8000")
    ''}

    # Tests
    #  - examples/nixos-unit
    with subtest("nixos-unit"):
        machine.succeed(
            "rm -rf work && cp -frT ${../../examples/nixos-unit} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"
        )
        machine.wait_until_succeeds("curl --fail localhost:8000")
        machine.succeed(
            "cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"
        )
        machine.wait_until_fails("curl --fail localhost:8000")

    # Tests
    # - examples/traefik
    # - labels
    with subtest("traefik"):
        machine.succeed(
            "rm -rf work && cp -frT ${../../examples/traefik} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"
        )
        machine.wait_until_succeeds("curl --fail nix-docs.localhost")
        machine.succeed(
            "cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"
        )
        machine.wait_until_fails("curl --fail nix-docs.localhost")
  '';
}
Use flake-parts 2022-12-02 00:21:38 +01:00			`{ usePodman ? false, pkgs, lib ? pkgs.lib, ... }:`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00
			`let`
			`# To make some prebuilt derivations available in the vm`
Add support for NixOS inside containers 2019-03-05 19:41:54 +01:00			`preEval = modules: import ../../src/nix/eval-composition.nix {`
			`inherit modules;`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`inherit pkgs;`
			`};`
Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00
			`inherit (lib)`
Add NixOS module 2021-10-28 21:59:01 +02:00			`concatMapStringsSep`
Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00			`optionalAttrs`
			`optionalString`
			`;`

			`haveSystemd = usePodman \|\| pkgs.arionTestingFlags.dockerSupportsSystemd;`

Add NixOS module 2021-10-28 21:59:01 +02:00			`concatPathLines = paths: concatMapStringsSep "\n" (x: "${x}") paths;`

Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`in`
			`{`
			`name = "arion-test";`
Fix warnings 2022-04-07 22:55:22 +02:00			`nodes.machine = { pkgs, lib, ... }: {`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`environment.systemPackages = [`
			`pkgs.arion`
Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00			`] ++ lib.optional usePodman pkgs.docker;`
			`virtualisation.docker.enable = !usePodman;`
			`virtualisation.podman = optionalAttrs usePodman {`
			`enable = true;`
			`dockerSocket.enable = true;`
			`};`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00
			`# no caches, because no internet`
			`nix.binaryCaches = lib.mkForce [];`
Fix integration test 2019-01-27 01:08:51 +01:00
			`# FIXME: Sandbox seems broken with current version of NixOS test`
			`# w/ writable store. Error:`
			`# machine# error: linking '/nix/store/7r8z2zvhwda85pgpdn5hzzz6hs1njklc-stdenv-linux.drv.chroot/nix/store/6v3y7s4q4wd16hsw393gjpxvcf9159bv-patch-shebangs.sh' to '/nix/store/6v3y7s4q4wd16hsw393gjpxvcf9159bv-patch-shebangs.sh': Operation not permitted`
			`#`
			`# There should be no reason why arion can't run without`
			`# sandboxing, so please re-enable.`
			`nix.useSandbox = false;`

Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`virtualisation.writableStore = true;`
Add NixOS module 2021-10-28 21:59:01 +02:00			`# Switch to virtualisation.additionalPaths when dropping all NixOS <= 21.05.`
			`environment.etc."extra-paths-for-test".text = concatPathLines [`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`# Pre-build the image because we don't want to build the world`
			`# in the vm.`
Assertions, warnings, renames 2019-10-03 21:30:14 +02:00			`(preEval [ ../../examples/minimal/arion-compose.nix ]).config.out.dockerComposeYaml`
			`(preEval [ ../../examples/full-nixos/arion-compose.nix ]).config.out.dockerComposeYaml`
			`(preEval [ ../../examples/nixos-unit/arion-compose.nix ]).config.out.dockerComposeYaml`
Test examples/traefik 2021-01-21 23:53:37 +01:00			`(preEval [ ../../examples/traefik/arion-compose.nix ]).config.out.dockerComposeYaml`
Fix integration test 2019-01-27 01:08:51 +01:00			`pkgs.stdenv`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`];`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00
Increase test memory 2020-09-05 23:02:21 +02:00			`virtualisation.memorySize = 1024;`
Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00			`virtualisation.diskSize = 8000;`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`};`
			`testScript = ''`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.fail("curl --fail localhost:8000")`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00			`machine.succeed("docker --version")`

			`# Tests`
			`# - arion up`
			`# - arion down`
			`# - examples/minimal`
			`with subtest("minimal"):`
			`machine.succeed(`
			`"rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_succeeds("curl --fail localhost:8000")`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00			`machine.succeed(`
			`"cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_fails("curl --fail localhost:8000")`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00
Test and fix that we only load images when needed 2021-05-31 15:14:24 +02:00			`# Tests`
			# - running same image again doesn't require a `docker load`
			`with subtest("docker load only once"):`
			# We assume image loading relies on the `docker images` and `docker load` commands, so this should fail
			`machine.fail(`
			`"export REAL_DOCKER=$(which docker); rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' PATH=\"${pkgs.writeScriptBin "docker" ''`
			`#!${pkgs.runtimeShell} -eu`
			`echo 1>&2 "This failure is expected. Args were" "$@"`
			`echo "$@" >/tmp/docker-args`
			`exit 1`
			`''}/bin:$PATH\" arion up -d"`
			`)`
			`machine.succeed(`
			`"export REAL_DOCKER=$(which docker); rm -rf work && cp -frT ${../../examples/minimal} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' PATH=\"${pkgs.writeScriptBin "docker" ''`
			`#!${pkgs.runtimeShell} -eu`
			`case $1 in`
			`load)`
			`echo 1>&2 "arion must not docker load when upping the same deployment for the second time"`
			`exit 1`
			`;;`
			`images)`
			`echo 1>&2 "execing docker to list images"`
			`exec $REAL_DOCKER "$@"`
			`;;`
			`*)`
			`echo 1>&2 "Unknown docker invocation. This may be a shortcoming of this docker mock."`
			`echo 1>&2 "Invocation: docker" "$@"`
			`;;`
			`esac`
			`''}/bin:$PATH\" arion up -d"`
			`)`
			`machine.wait_until_succeeds("curl --fail localhost:8000")`
			`machine.succeed(`
			`"cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"`
			`)`
			`machine.wait_until_fails("curl --fail localhost:8000")`


Add experimental flake example 2021-04-20 10:31:09 +02:00			`# Tests`
			`# - examples/flake`
			`# This _test_ doesn't work because flake-compat fetches the github`
			`# tarballs without sha256 and/or Nix doesn't consult the store before`
			`# downloading.`
			`# See https://github.com/edolstra/flake-compat/pull/12`
			`# with subtest("flake"):`
			`# machine.succeed(`
			`# "rm -rf work && cp -frT ''${../../examples/flake} work && cd work && NIX_PATH= arion up -d"`
			`# )`
			`# machine.wait_until_succeeds("curl --fail localhost:8000")`
			`# machine.succeed("cd work && NIX_PATH= arion down")`
			`# machine.wait_until_fails("curl --fail localhost:8000")`

Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00			`${optionalString haveSystemd ''`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00			`# Tests`
			`# - arion exec`
			`# - examples/full-nixos`
			`with subtest("full-nixos"):`
			`machine.succeed(`
			`"rm -rf work && cp -frT ${../../examples/full-nixos} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_succeeds("curl --fail localhost:8000")`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00
			`machine.succeed(`
			`"""`
			`set -eux -o pipefail`
			`cd work`
			`export NIX_PATH=nixpkgs='${pkgs.path}'`
			`echo 'target=world; echo Hello $target; exit' \`
			`\| script 'arion exec webserver' \`
			`\| grep 'Hello world'`
			`"""`
			`),`

			`machine.succeed(`
			`"cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_fails("curl --fail localhost:8000")`
Add test with podman docker socket backend 2021-05-26 16:57:56 +02:00			`''}`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00
			`# Tests`
			`# - examples/nixos-unit`
			`with subtest("nixos-unit"):`
			`machine.succeed(`
			`"rm -rf work && cp -frT ${../../examples/nixos-unit} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_succeeds("curl --fail localhost:8000")`
Adapt to 20.03 - Migrate tests to python-based runner for newer nixpkgs. - Adaptations for newer nginx module used in tests - Increase memory size for tests 2020-03-02 11:13:47 +01:00			`machine.succeed(`
			`"cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_fails("curl --fail localhost:8000")`
Test examples/traefik 2021-01-21 23:53:37 +01:00
			`# Tests`
			`# - examples/traefik`
			`# - labels`
			`with subtest("traefik"):`
			`machine.succeed(`
			`"rm -rf work && cp -frT ${../../examples/traefik} work && cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion up -d"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_succeeds("curl --fail nix-docs.localhost")`
Test examples/traefik 2021-01-21 23:53:37 +01:00			`machine.succeed(`
			`"cd work && NIX_PATH=nixpkgs='${pkgs.path}' arion down"`
			`)`
Tests: curl --fail 2021-01-21 23:54:53 +01:00			`machine.wait_until_fails("curl --fail nix-docs.localhost")`
Add integration test Tests the minimal example, up command, network connectivity. Introduces overlay. 2019-01-02 09:54:46 +01:00			`'';`
			`}`