From a77617ae9684549da373fd6dc2d56cde5fb43386 Mon Sep 17 00:00:00 2001
From: Brian Picciano <mediocregopher@gmail.com>
Date: Fri, 1 Sep 2023 17:19:59 +0200
Subject: [PATCH] Add test for network creation

---
 default.nix                | 11 ++++++++++-
 tests/01-create-network.sh | 31 +++++++++++++++++++++++++++++++
 2 files changed, 41 insertions(+), 1 deletion(-)
 create mode 100644 tests/01-create-network.sh

diff --git a/default.nix b/default.nix
index c5913f0..a281680 100644
--- a/default.nix
+++ b/default.nix
@@ -167,6 +167,15 @@ in rec {
   tests = pkgs.writeShellScript "isle-tests" ''
     export PATH=${appImage}/bin:$PATH
     test_dir=${./tests}
-    exec $SHELL $test_dir/entrypoint.sh "$@"
+
+    this_user="$(${pkgs.coreutils}/bin/whoami)"
+
+    echo "Requesting sudo in order to set thread capabilities, will drop back down to user '$this_user' immediately"
+    sudo ${pkgs.libcap}/bin/capsh \
+        --caps="cap_net_admin+eip cap_setpcap,cap_setuid,cap_setgid+ep" \
+        --keep=1 \
+        --user="$this_user" \
+        --addamb=cap_net_admin \
+        -- $test_dir/entrypoint.sh "$@"
   '';
 }
diff --git a/tests/01-create-network.sh b/tests/01-create-network.sh
new file mode 100644
index 0000000..025a1e2
--- /dev/null
+++ b/tests/01-create-network.sh
@@ -0,0 +1,31 @@
+mkdir a
+mkdir b
+mkdir c
+
+cat >daemon.yml <<EOF
+vpn:
+  tun:
+    device: isle-test
+storage:
+  allocations:
+    - data_path: a/data
+      meta_path: a/meta
+      capacity: 100
+    - data_path: b/data
+      meta_path: b/meta
+      capacity: 100
+    - data_path: c/data
+      meta_path: c/meta
+      capacity: 100
+EOF
+
+isle admin create-network \
+    --config-path daemon.yml \
+    --domain      test.isle.com \
+    --hostname    primus \
+    --ip-net      "10.6.9.1/24" \
+    --name        "testing"
+
+[ "$(cat a/meta/isle/rpc_port)" = "3900" ]
+[ "$(cat b/meta/isle/rpc_port)" = "3910" ]
+[ "$(cat c/meta/isle/rpc_port)" = "3920" ]