-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathDockerfile
40 lines (31 loc) · 1.38 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
FROM mitmproxy/mitmproxy:latest
MAINTAINER Jessica Stokes <hello@jessicastokes.net>
WORKDIR /tmp/workdir
ENV OPENSSL_VERSION=1.1.1g
RUN apk --no-cache add --virtual .build-dependencies linux-headers build-base curl perl && \
curl -sLO https://www.openssl.org/source/openssl-${OPENSSL_VERSION}.tar.gz && \
tar xvfz "openssl-${OPENSSL_VERSION}.tar.gz" && \
apk del openssl
# OpenSSL configuration borrowed from Alpine's own package https://git.alpinelinux.org/aports/tree/main/openssl/APKBUILD
# Modified to add:
# - enable-ssl3 and enable-ssl3-method (both are needed for any of ssl3 compatibility to be present)
# - enable-weak-ssl-ciphers (this enables RC4 ciphers, necessary for very early SSL3 implementations; https://www.openssl.org/docs/man1.1.1/man1/ciphers.html)
RUN cd "openssl-${OPENSSL_VERSION}" && \
./config \
--prefix=/usr \
--libdir=lib \
--openssldir=/etc/ssl \
shared no-zlib \
no-async no-comp enable-ssl3 enable-ssl3-method \
no-seed enable-weak-ssl-ciphers -Wa,--noexecstack && \
make && \
make install_sw
WORKDIR /
RUN apk del .build-dependencies && \
rm -rf /tmp/workdir && \
rm /lib/libcrypto.so.1.1 /lib/libssl.so.1.1 && \
ln -s /usr/lib/libcrypto.so.1.1 /lib/libcrypto.so.1.1 && \
ln -s /usr/lib/libssl.so.1.1 /lib/libssl.so.1.1
ENTRYPOINT ["docker-entrypoint.sh"]
EXPOSE 8080 8081
CMD ["mitmproxy"]