;;; GNU Guix --- Functional package management for GNU ;;; Copyright © 2024 Giacomo Leidi ;;; ;;; This file is part of GNU Guix. ;;; ;;; GNU Guix is free software; you can redistribute it and/or modify it ;;; under the terms of the GNU General Public License as published by ;;; the Free Software Foundation; either version 3 of the License, or (at ;;; your option) any later version. ;;; ;;; GNU Guix is distributed in the hope that it will be useful, but ;;; WITHOUT ANY WARRANTY; without even the implied warranty of ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ;;; GNU General Public License for more details. ;;; ;;; You should have received a copy of the GNU General Public License ;;; along with GNU Guix. If not, see . (define-module (gnu tests shadow) #:use-module (gnu packages base) #:use-module (gnu tests) #:use-module (gnu services) #:use-module (gnu system) #:use-module (gnu system accounts) #:use-module (gnu system shadow) #:use-module (gnu system vm) #:use-module (guix gexp) #:export (%test-subids)) (define %subids-os (simple-operating-system (simple-service 'simple-subids subids-service-type (subids-extension (subgids (list (subid-range (name "alice")) (subid-range (name "bob") (start 100700)))) (subuids (list (subid-range (name "alice")))))))) (define (run-subids-test) "Run IMAGE as an OCI backed Shepherd service, inside OS." (define os (marionette-operating-system (operating-system-with-gc-roots %subids-os (list)) #:imported-modules '((gnu services herd) (guix combinators)))) (define vm (virtual-machine (operating-system os) (volatile? #f) (memory-size 1024) (disk-image-size (* 3000 (expt 2 20))) (port-forwardings '()))) (define test (with-imported-modules '((gnu build marionette)) #~(begin (use-modules (srfi srfi-11) (srfi srfi-64) (gnu build marionette)) (define marionette ;; Relax timeout to accommodate older systems and ;; allow for pulling the image. (make-marionette (list #$vm) #:timeout 60)) (test-runner-current (system-test-runner #$output)) (test-begin "subids") (test-equal "/etc/subid and /etc/subgid are created and their content is sound" '("root:100000:700\nbob:100700:65536\nalice:166236:65536" "root:100000:65536\nalice:165536:65536") (marionette-eval `(begin (use-modules (ice-9 popen) (ice-9 match) (ice-9 rdelim)) (define (read-lines file-or-port) (define (loop-lines port) (let loop ((lines '())) (match (read-line port) ((? eof-object?) (reverse lines)) (line (loop (cons line lines)))))) (if (port? file-or-port) (loop-lines file-or-port) (call-with-input-file file-or-port loop-lines))) (define slurp (lambda args (let* ((port (apply open-pipe* OPEN_READ args)) (output (read-lines port)) (status (close-pipe port))) output))) (let* ((response1 (slurp ,(string-append #$coreutils "/bin/cat") "/etc/subgid")) (response2 (slurp ,(string-append #$coreutils "/bin/cat") "/etc/subuid"))) (list (string-join response1 "\n") (string-join response2 "\n")))) marionette)) (test-end)))) (gexp->derivation "subids-test" test)) (define %test-subids (system-test (name "subids") (description "Test sub UIDs and sub GIDs provisioning service.") (value (run-subids-test))))