gador/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos/tests/sks: init (#452976)

Browse Source
This commit is contained in:
Sandro
2025-10-29 12:20:47 +00:00
committed by GitHub
parent 3ec2f6f74f 993f4cdecc
commit dba27a656e
3 changed files with 61 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
nixos/tests/all-tests.nix
View File

@@ -1364,6 +1364,7 @@ in
silverbullet = runTest ./silverbullet.nix; silverbullet = runTest ./silverbullet.nix;
simple = runTest ./simple.nix; simple = runTest ./simple.nix;
sing-box = runTest ./sing-box.nix; sing-box = runTest ./sing-box.nix;
sks = runTest ./sks.nix;
slimserver = runTest ./slimserver.nix; slimserver = runTest ./slimserver.nix;
slipshow = runTest ./slipshow.nix; slipshow = runTest ./slipshow.nix;
slurm = runTest ./slurm.nix; slurm = runTest ./slurm.nix;

57
nixos/tests/sks.nix Normal file
View File

@@ -0,0 +1,57 @@
{ lib, pkgs, ... }:
let
gpgKeyring = (
pkgs.runCommand "gpg-keyring" { buildInputs = [ pkgs.gnupg ]; } ''
mkdir -p $out
export GNUPGHOME=$out
cat > foo <<EOF
%echo Generating a basic OpenPGP key
%no-protection
Key-Type: DSA
Key-Length: 1024
Subkey-Type: ELG-E
Subkey-Length: 1024
Name-Real: Foo Example
Name-Email: foo@example.org
Expire-Date: 0
# Do a commit here, so that we can later print "done"
%commit
%echo done
EOF
gpg --batch --generate-key foo
rm $out/S.gpg-agent $out/S.gpg-agent.*
''
);
in
{
name = "sks";
meta.maintainers = with lib.maintainers; [ h7x4 ];
nodes.machine =
{ pkgs, ... }:
{
environment.systemPackages = [ pkgs.gnupg ];
services.sks.enable = true;
};
testScript = ''
machine.wait_for_unit("sks-db.service")
machine.wait_for_open_port(11371)
response = machine.succeed("curl -f -s http://127.0.0.1:11371/")
assert "<title>SKS OpenPGP Public Key Server</title>" in response, "HTML title not found"
# Copy the keyring
machine.succeed("cp -R ${gpgKeyring} /tmp/GNUPGHOME")
# Extract our GPG key id
keyId = machine.succeed("GNUPGHOME=/tmp/GNUPGHOME gpg --list-keys | grep dsa1024 --after-context=1 | grep -v dsa1024").strip()
# Send the key to our local keyserver
machine.succeed("GNUPGHOME=/tmp/GNUPGHOME gpg --keyserver hkp://127.0.0.1:11371 --send-keys " + keyId)
# Receive the key from our local keyserver to a separate directory
machine.succeed("GNUPGHOME=$(mktemp -d) gpg --keyserver hkp://127.0.0.1:11371 --recv-keys " + keyId)
'';
}

3
pkgs/servers/sks/default.nix
View File

@@ -6,6 +6,7 @@
perl, perl,
zlib, zlib,
db, db,
nixosTests,
}: }:
let let
@@ -69,6 +70,8 @@ stdenv.mkDerivation rec {
# Copy the web examples for the NixOS module # Copy the web examples for the NixOS module
postInstall = "cp -R sampleWeb $webSamples"; postInstall = "cp -R sampleWeb $webSamples";
passthru.tests.nixos = nixosTests.sks;
meta = with lib; { meta = with lib; {
description = "Easily deployable & decentralized OpenPGP keyserver"; description = "Easily deployable & decentralized OpenPGP keyserver";
longDescription = '' longDescription = ''