6 gadi atpakaļ · a423f504f4
--- a/test/config.sh
+++ b/test/config.sh
@@ -192,6 +192,7 @@ imageTests+=(
 
				 	'
			
 
				 	[rabbitmq]='
			
 
				 		rabbitmq-basics
			
 
				+		rabbitmq-tls
			
 
				 	'
			
 
				 	[r-base]='
			
 
				 	'
			
--- a/test/tests/rabbitmq-tls/run.sh
+++ b/test/tests/rabbitmq-tls/run.sh
@@ -0,0 +1,59 @@
 
				+#!/usr/bin/env bash
			
 
				+set -Eeuo pipefail
			
 
				+
			
 
				+dir="$(dirname "$(readlink -f "$BASH_SOURCE")")"
			
 
				+
			
 
				+serverImage="$("$dir/../image-name.sh" librarytest/rabbitmq-tls-server "$1")"
			
 
				+"$dir/../docker-build.sh" "$dir" "$serverImage" <<EOD
			
 
				+FROM $1
			
 
				+RUN set -eux; \
			
 
				+	mkdir /certs; \
			
 
				+	openssl genrsa -out /certs/ca-private.key 8192; \
			
 
				+	openssl req -new -x509 \
			
 
				+		-key /certs/ca-private.key \
			
 
				+		-out /certs/ca.crt \
			
 
				+		-days $(( 365 * 30 )) \
			
 
				+		-subj '/CN=lolca'; \
			
 
				+	openssl genrsa -out /certs/private.key 4096; \
			
 
				+	openssl req -new -key /certs/private.key \
			
 
				+		-out /certs/cert.csr -subj '/CN=lolcert'; \
			
 
				+	openssl x509 -req -in /certs/cert.csr \
			
 
				+		-CA /certs/ca.crt -CAkey /certs/ca-private.key -CAcreateserial \
			
 
				+		-out /certs/cert.crt -days $(( 365 * 30 )); \
			
 
				+	openssl verify -CAfile /certs/ca.crt /certs/cert.crt; \
			
 
				+	chown -R rabbitmq:rabbitmq /certs
			
 
				+ENV RABBITMQ_SSL_CACERTFILE=/certs/ca.crt RABBITMQ_SSL_CERTFILE=/certs/cert.crt RABBITMQ_SSL_KEYFILE=/certs/private.key
			
 
				+EOD
			
 
				+
			
 
				+testImage="$("$dir/../image-name.sh" librarytest/rabbitmq-tls-test "$1")"
			
 
				+"$dir/../docker-build.sh" "$dir" "$testImage" <<'EOD'
			
 
				+FROM alpine:3.10
			
 
				+RUN apk add --no-cache bash coreutils drill openssl procps
			
 
				+# https://github.com/drwetter/testssl.sh/releases
			
 
				+ENV TESTSSL_VERSION 2.9.5-8
			
 
				+RUN set -eux; \
			
 
				+	wget -O testssl.tgz "https://github.com/drwetter/testssl.sh/archive/v${TESTSSL_VERSION}.tar.gz"; \
			
 
				+	tar -xvf testssl.tgz -C /opt; \
			
 
				+	rm testssl.tgz; \
			
 
				+	ln -sv "/opt/testssl.sh-$TESTSSL_VERSION/testssl.sh" /usr/local/bin/; \
			
 
				+	testssl.sh --version
			
 
				+EOD
			
 
				+
			
 
				+export RABBITMQ_ERLANG_COOKIE="rabbitmq-erlang-cookie-$RANDOM-$RANDOM"
			
 
				+
			
 
				+cname="rabbitmq-container-$RANDOM-$RANDOM"
			
 
				+cid="$(docker run -d --name "$cname" --hostname "$cname" -e RABBITMQ_ERLANG_COOKIE "$serverImage")"
			
 
				+trap "docker rm -vf $cid > /dev/null" EXIT
			
 
				+
			
 
				+testssl() {
			
 
				+	docker run -i --rm --link "$cname" "$testImage" \
			
 
				+		testssl.sh --quiet --color 0 "$@" "$cname:5671"
			
 
				+}
			
 
				+rabbitmqctl() {
			
 
				+	docker run -i --rm --link "$cname" -e RABBITMQ_ERLANG_COOKIE "$serverImage" \
			
 
				+		rabbitmqctl --node "rabbit@$cname" "$@"
			
 
				+}
			
 
				+
			
 
				+. "$dir/../../retry.sh" 'rabbitmqctl status'
			
 
				+
			
 
				+testssl --protocols --standard --each-cipher