Home Explore Help
Register Sign In
Apq
/
Docker-official-images
mirror of https://github.com/docker-library/official-images.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: eb0c09f698
Branches Tags
Docker-official...
/
test
/
tests
/
rabbitmq-tls
/
run.sh

run.sh 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #!/usr/bin/env bash
    2. 

  2. set -Eeuo pipefail
    3. 

  3. 

  4. dir="$(dirname "$(readlink -f "$BASH_SOURCE")")"
    5. 

  5. 

  6. serverImage="$("$dir/../image-name.sh" librarytest/rabbitmq-tls-server "$1")"
    7. 

  7. "$dir/../docker-build.sh" "$dir" "$serverImage" <<EOD
    8. 

  8. FROM $1
    9. 

  9. RUN set -eux; \
    10. 

  10. 	mkdir /certs; \
    11. 

  11. 	openssl genrsa -out /certs/ca-private.key 8192; \
    12. 

  12. 	openssl req -new -x509 \
    13. 

  13. 		-key /certs/ca-private.key \
    14. 

  14. 		-out /certs/ca.crt \
    15. 

  15. 		-days $(( 365 * 30 )) \
    16. 

  16. 		-subj '/CN=lolca'; \
    17. 

  17. 	openssl genrsa -out /certs/private.key 4096; \
    18. 

  18. 	openssl req -new -key /certs/private.key \
    19. 

  19. 		-out /certs/cert.csr -subj '/CN=lolcert'; \
    20. 

  20. 	openssl x509 -req -in /certs/cert.csr \
    21. 

  21. 		-CA /certs/ca.crt -CAkey /certs/ca-private.key -CAcreateserial \
    22. 

  22. 		-out /certs/cert.crt -days $(( 365 * 30 )); \
    23. 

  23. 	openssl verify -CAfile /certs/ca.crt /certs/cert.crt; \
    24. 

  24. 	chown -R rabbitmq:rabbitmq /certs
    25. 

  25. ENV RABBITMQ_SSL_CACERTFILE=/certs/ca.crt RABBITMQ_SSL_CERTFILE=/certs/cert.crt RABBITMQ_SSL_KEYFILE=/certs/private.key
    26. 

  26. EOD
    27. 

  27. 

  28. testImage="$("$dir/../image-name.sh" librarytest/rabbitmq-tls-test "$1")"
    29. 

  29. "$dir/../docker-build.sh" "$dir" "$testImage" <<'EOD'
    30. 

  30. FROM alpine:3.10
    31. 

  31. RUN apk add --no-cache bash coreutils drill openssl procps
    32. 

  32. # https://github.com/drwetter/testssl.sh/releases
    33. 

  33. ENV TESTSSL_VERSION 2.9.5-8
    34. 

  34. RUN set -eux; \
    35. 

  35. 	wget -O testssl.tgz "https://github.com/drwetter/testssl.sh/archive/v${TESTSSL_VERSION}.tar.gz"; \
    36. 

  36. 	tar -xvf testssl.tgz -C /opt; \
    37. 

  37. 	rm testssl.tgz; \
    38. 

  38. 	ln -sv "/opt/testssl.sh-$TESTSSL_VERSION/testssl.sh" /usr/local/bin/; \
    39. 

  39. 	testssl.sh --version
    40. 

  40. EOD
    41. 

  41. 

  42. export RABBITMQ_ERLANG_COOKIE="rabbitmq-erlang-cookie-$RANDOM-$RANDOM"
    43. 

  43. 

  44. cname="rabbitmq-container-$RANDOM-$RANDOM"
    45. 

  45. cid="$(docker run -d --name "$cname" --hostname "$cname" -e RABBITMQ_ERLANG_COOKIE "$serverImage")"
    46. 

  46. trap "docker rm -vf $cid > /dev/null" EXIT
    47. 

  47. 

  48. testssl() {
    49. 

  49. 	docker run -i --rm --link "$cname" "$testImage" \
    50. 

  50. 		testssl.sh --quiet --color 0 "$@" "$cname:5671"
    51. 

  51. }
    52. 

  52. rabbitmqctl() {
    53. 

  53. 	docker run -i --rm --link "$cname" -e RABBITMQ_ERLANG_COOKIE "$serverImage" \
    54. 

  54. 		rabbitmqctl --node "rabbit@$cname" "$@"
    55. 

  55. }
    56. 

  56. rabbitmq-diagnostics() {
    57. 

  57. 	docker run -i --rm --link "$cname" -e RABBITMQ_ERLANG_COOKIE "$serverImage" \
    58. 

  58. 		rabbitmq-diagnostics --node "rabbit@$cname" "$@"
    59. 

  59. }
    60. 

  60. 

  61. . "$dir/../../retry.sh" 'rabbitmq-diagnostics check_port_connectivity'
    62. 

  62. 

  63. rabbitmqctl status
    64. 

  64. testssl --protocols --standard --each-cipher
    65.