tsg-tsg-diagnose/docker-compose/docker-compose.yml

#for ssl self test
version: '2.2'
services:

  badssl_test:
    image: "badssl-self-test:latest"
    container_name: "badssl_ssl_self_test"
    tty: true
    privileged: true
    networks:
      vlan_ssl_net:
        ipv4_address: 192.0.2.130
        ipv6_address: fd00:a1bf:2c3d:ef5a:1e2f:3d4c:56ab:1010
      bridge_net:
        ipv4_address: 192.51.100.2
    volumes:
     - /root/.badssl_self_test_cert_dict:/badssl.com/unittest_certs
     - /etc/localtime:/etc/localtime:ro
    command: >
      bash -c "ifconfig eth0 hw ether 02:42:c0:a8:fd:82
      && arp -i eth0 -s 192.0.2.3 02:42:C0:A8:FD:03 
      && make certs-test
      && make inside-docker 
      && cp -r /badssl.com/certs /badssl.com/unittest_certs
      && nginx
      && tail -f /dev/null"

  wpr_test:
    image: "wpr-self-test:latest"
    container_name: "wpr_ssl_self_test"
    tty: true
    privileged: true
    networks:
      vlan_ssl_net:
        ipv4_address: 192.0.2.131
        ipv6_address: fd00:a1bf:2c3d:ef5a:1e2f:3d4c:56ab:1011
      bridge_net:
        ipv4_address: 192.51.100.3
    volumes:
     - /root/.go_wpr_test:/root/go_wpr_test
     - /etc/localtime:/etc/localtime:ro
    command: 
      - /bin/sh
      - -c
      - |
        ifconfig eth0 hw ether 02:42:C0:A8:FD:83
        arp -i eth0 -s 192.0.2.3 02:42:C0:A8:FD:03
        /root/wpr/wpr replay --http_port=80 --https_port=443 --host=0.0.0.0 --quiet_mode /root/wpr/archive.wprgo & 
        tail -f /dev/null
        
  ssl_unittest:
    image: "unittest-self-test:latest"
    container_name: "unittest_ssl_self_test"
    depends_on: 
      - badssl_test
      - wpr_test
    tty: true
    privileged: true
    networks:
      vlan_unittest_net:
        ipv4_address: 192.0.2.3
        ipv6_address: fd00:a1bf:2c3d:ef5b:6e7f:8d9c:abfe:1012
      bridge_net:
        ipv4_address: 192.51.100.4
    volumes:
     - /root/.badssl_self_test_cert_dict:/root/cafile_dict
     - /root/.result_self_test:/root/result_self_test
     - /etc/localtime:/etc/localtime:ro
    command: 
      - /bin/sh
      - -c
      - |
        /root/unittest/wait-for 192.51.100.2:443 -t 60 -- echo "badssl is up"
        /root/unittest/wait-for 192.51.100.3:443 -t 60 -- echo "wpr is up"
        ifconfig eth0 hw ether 02:42:C0:A8:FD:03
        arp -i eth0 -s 192.0.2.130 02:42:c0:a8:fd:82
        arp -i eth0 -s 192.0.2.131 02:42:C0:A8:FD:83
        mkdir -p /root/result_self_test/unittest
        mkdir -p /root/result_self_test/con_traffic_inject
        cp -rf /root/cafile_dict/certs/sets/current/gen/crt/ca-root.crt /usr/local/share/ca-certificates
        update-ca-certificates
        cat /root/unittest/badssl.test.hosts >> /etc/hosts
        python /root/unittest/unittest_self.py &
        tail -f /dev/null


networks: 
  bridge_net:
    name: bridge_ssl_self_test_net
    driver: bridge
    ipam:
      config:
        - subnet: 192.51.100.0/24
          gateway: 192.51.100.1


  vlan_ssl_net: 
    name: vlan_ssl_self_test_net
    driver: macvlan
    enable_ipv6: true
    driver_opts: 
      parent: enp1s1
    ipam: 
      config: 
        - subnet: 192.0.2.0/24
          ip_range: 192.0.2.128/25  
          gateway: 192.0.2.129
        - subnet: fd00:a1bf:2c3d:ef5a::/63
          ip_range: fd00:a1bf:2c3d:ef5a::/64
          gateway: fd00:a1bf:2c3d:ef5a::1010

  vlan_unittest_net: 
    name: vlan_unittest_self_test_net
    driver: macvlan
    enable_ipv6: true
    driver_opts:
      parent: ens1f1
    ipam:
      config:
        - subnet: 192.0.2.0/24
          ip_range: 192.0.2.0/25
          gateway: 192.0.2.1
        - subnet: fd00:a1bf:2c3d:ef5a::/63
          ip_range: fd00:a1bf:2c3d:ef5b::/64
          gateway: fd00:a1bf:2c3d:ef5a::1011
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`#for ssl self test`
			`version: '2.2'`
			`services:`

			`badssl_test:`
TSG-101:修改docker-compose.yml 加载image的tag 2020-06-24 14:24:44 +08:00			`image: "badssl-self-test:latest"`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`container_name: "badssl_ssl_self_test"`
			`tty: true`
			`privileged: true`
			`networks:`
			`vlan_ssl_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.0.2.130`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`ipv6_address: fd00:a1bf:2c3d:ef5a:1e2f:3d4c:56ab:1010`
			`bridge_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.51.100.2`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`volumes:`
			`- /root/.badssl_self_test_cert_dict:/badssl.com/unittest_certs`
			`- /etc/localtime:/etc/localtime:ro`
			`command: >`
1、badssl安装nettools 2、增加docker运行中容器的mac地址 2020-05-26 14:06:10 +08:00			`bash -c "ifconfig eth0 hw ether 02:42:c0:a8:fd:82`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`&& arp -i eth0 -s 192.0.2.3 02:42:C0:A8:FD:03`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`&& make certs-test`
			`&& make inside-docker`
			`&& cp -r /badssl.com/certs /badssl.com/unittest_certs`
			`&& nginx`
			`&& tail -f /dev/null"`

			`wpr_test:`
TSG-101:修改docker-compose.yml 加载image的tag 2020-06-24 14:24:44 +08:00			`image: "wpr-self-test:latest"`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`container_name: "wpr_ssl_self_test"`
			`tty: true`
			`privileged: true`
			`networks:`
			`vlan_ssl_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.0.2.131`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`ipv6_address: fd00:a1bf:2c3d:ef5a:1e2f:3d4c:56ab:1011`
			`bridge_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.51.100.3`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`volumes:`
			`- /root/.go_wpr_test:/root/go_wpr_test`
			`- /etc/localtime:/etc/localtime:ro`
			`command:`
			`- /bin/sh`
			`- -c`
			`- \|`
1、badssl安装nettools 2、增加docker运行中容器的mac地址 2020-05-26 14:06:10 +08:00			`ifconfig eth0 hw ether 02:42:C0:A8:FD:83`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`arp -i eth0 -s 192.0.2.3 02:42:C0:A8:FD:03`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`/root/wpr/wpr replay --http_port=80 --https_port=443 --host=0.0.0.0 --quiet_mode /root/wpr/archive.wprgo &`
			`tail -f /dev/null`

			`ssl_unittest:`
TSG-101:修改docker-compose.yml 加载image的tag 2020-06-24 14:24:44 +08:00			`image: "unittest-self-test:latest"`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`container_name: "unittest_ssl_self_test"`
			`depends_on:`
			`- badssl_test`
			`- wpr_test`
			`tty: true`
			`privileged: true`
			`networks:`
			`vlan_unittest_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.0.2.3`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`ipv6_address: fd00:a1bf:2c3d:ef5b:6e7f:8d9c:abfe:1012`
			`bridge_net:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`ipv4_address: 192.51.100.4`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`volumes:`
			`- /root/.badssl_self_test_cert_dict:/root/cafile_dict`
1、TSG-1199 持续注入自检报文，动态监测系统的处理表现 2、修改unittest 持续运行 2020-05-26 10:43:17 +08:00			`- /root/.result_self_test:/root/result_self_test`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`- /etc/localtime:/etc/localtime:ro`
			`command:`
			`- /bin/sh`
			`- -c`
			`- \|`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`/root/unittest/wait-for 192.51.100.2:443 -t 60 -- echo "badssl is up"`
			`/root/unittest/wait-for 192.51.100.3:443 -t 60 -- echo "wpr is up"`
1、badssl安装nettools 2、增加docker运行中容器的mac地址 2020-05-26 14:06:10 +08:00			`ifconfig eth0 hw ether 02:42:C0:A8:FD:03`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`arp -i eth0 -s 192.0.2.130 02:42:c0:a8:fd:82`
			`arp -i eth0 -s 192.0.2.131 02:42:C0:A8:FD:83`
1、修改测试结果输出文件 2020-05-27 13:45:00 +08:00			`mkdir -p /root/result_self_test/unittest`
			`mkdir -p /root/result_self_test/con_traffic_inject`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`cp -rf /root/cafile_dict/certs/sets/current/gen/crt/ca-root.crt /usr/local/share/ca-certificates`
			`update-ca-certificates`
			`cat /root/unittest/badssl.test.hosts >> /etc/hosts`
TSG-1199, docker-compose 增加持续流量注入 2020-05-26 23:06:50 +08:00			`python /root/unittest/unittest_self.py &`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`tail -f /dev/null`



			`networks:`
			`bridge_net:`
			`name: bridge_ssl_self_test_net`
			`driver: bridge`
			`ipam:`
			`config:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`- subnet: 192.51.100.0/24`
			`gateway: 192.51.100.1`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00

			`vlan_ssl_net:`
			`name: vlan_ssl_self_test_net`
			`driver: macvlan`
			`enable_ipv6: true`
			`driver_opts:`
			`parent: enp1s1`
			`ipam:`
			`config:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`- subnet: 192.0.2.0/24`
			`ip_range: 192.0.2.128/25`
			`gateway: 192.0.2.129`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`- subnet: fd00:a1bf:2c3d:ef5a::/63`
			`ip_range: fd00:a1bf:2c3d:ef5a::/64`
			`gateway: fd00:a1bf:2c3d:ef5a::1010`

			`vlan_unittest_net:`
			`name: vlan_unittest_self_test_net`
			`driver: macvlan`
			`enable_ipv6: true`
			`driver_opts:`
			`parent: ens1f1`
			`ipam:`
			`config:`
TSG-392:修改docker容器的ipv4地址为测试ip 2020-05-26 17:44:12 +08:00			`- subnet: 192.0.2.0/24`
			`ip_range: 192.0.2.0/25`
			`gateway: 192.0.2.1`
1、新增docker容器时间和宿主机时间同步2、修改docker-compose造成容器中的服务启动顺序不确定bug 2020-05-25 18:50:10 +08:00			`- subnet: fd00:a1bf:2c3d:ef5a::/63`
			`ip_range: fd00:a1bf:2c3d:ef5b::/64`
			`gateway: fd00:a1bf:2c3d:ef5a::1011`