diff --git a/Tor/0.4.5.9/docker-entrypoint.sh b/Tor/0.4.5.9/docker-entrypoint.sh new file mode 100755 index 0000000..d9e6cf3 --- /dev/null +++ b/Tor/0.4.5.9/docker-entrypoint.sh @@ -0,0 +1,34 @@ +#!/bin/sh +set -e + +mkdir -p "$(dirname $TOR_CONFIG)" + +mkdir -p "$TOR_DATA" +chown -R tor "$TOR_DATA" +chmod 700 "$TOR_DATA" + +mkdir -p "/var/lib/tor/hidden_services" +chown -R tor /var/lib/tor/hidden_services +chmod 700 /var/lib/tor/hidden_services + +cat <<-EOF > "$TOR_CONFIG" +ControlPort 0.0.0.0:9051 +SOCKSPort 0.0.0.0:9050 +${TOR_EXTRA_ARGS} +EOF + +if ! [ -z "${TOR_ADDITIONAL_CONFIG}" ]; then + echo "%include $TOR_ADDITIONAL_CONFIG" >> "$TOR_CONFIG" + echo "" >> "$TOR_ADDITIONAL_CONFIG" + echo "Added '%include $TOR_ADDITIONAL_CONFIG' to tor config" +fi + +chown -R tor "$(dirname $TOR_CONFIG)" + +if ! [ -z "${TOR_PASSWORD}" ]; then + TOR_PASSWORD_HASH="$(gosu tor tor --hash-password "$TOR_PASSWORD")" + echo "HashedControlPassword $TOR_PASSWORD_HASH" >> "$TOR_CONFIG" + echo "'HashedControlPassword $TOR_PASSWORD_HASH' added to tor config" +fi + +exec gosu tor "$@" diff --git a/Tor/0.4.5.9/linuxamd64.Dockerfile b/Tor/0.4.5.9/linuxamd64.Dockerfile new file mode 100644 index 0000000..26d44ab --- /dev/null +++ b/Tor/0.4.5.9/linuxamd64.Dockerfile @@ -0,0 +1,88 @@ +# Thanks to https://hub.docker.com/r/chriswayg/tor-alpine/dockerfile (Christian chriswayg@gmail.com) +# Dockerfile for Tor Relay Server with obfs4proxy (Multi-Stage build) + +FROM alpine:3.13 AS tor-build +ARG TOR_GPG_KEY=0x6AFEE6D49E92B601 +ENV TOR_VERSION=0.4.5.9 +# Install prerequisites +RUN apk --no-cache add --update \ + gnupg \ + build-base \ + libevent \ + libevent-dev \ + libressl \ + libressl-dev \ + xz-libs \ + xz-dev \ + zlib \ + zlib-dev \ + zstd \ + zstd-dev \ + # Install Tor from source, incl. GeoIP files (get latest release version number from Tor ReleaseNotes) + && TOR_TARBALL_NAME="tor-${TOR_VERSION}.tar.gz" \ + && TOR_TARBALL_LINK="https://dist.torproject.org/${TOR_TARBALL_NAME}" \ + && wget -q $TOR_TARBALL_LINK \ + && wget $TOR_TARBALL_LINK.asc \ + # Reliably fetch the TOR_GPG_KEY + && found=''; \ + for server in \ + ha.pool.sks-keyservers.net \ + hkp://keyserver.ubuntu.com:80 \ + hkp://p80.pool.sks-keyservers.net:80 \ + ipv4.pool.sks-keyservers.net \ + keys.gnupg.net \ + pgp.mit.edu \ + ; do \ + echo "Fetching GPG key $TOR_GPG_KEY from $server"; \ + gpg --keyserver "$server" --keyserver-options timeout=10 --recv-keys "$TOR_GPG_KEY" && found=yes && break; \ + done; \ + test -z "$found" && echo >&2 "error: failed to fetch GPG key $TOR_GPG_KEY" && exit 1; \ + gpg --verify $TOR_TARBALL_NAME.asc \ + && tar xf $TOR_TARBALL_NAME \ + && cd tor-$TOR_VERSION \ + && ./configure --disable-unittests --disable-systemd --disable-seccomp --disable-asciidoc \ + && make install \ + && ls -R /usr/local/ \ + && strip /usr/local/bin/tor-* && strip /usr/local/bin/tor + # Main files created (plus docs): + # /usr/local/bin/tor + # /usr/local/bin/tor-gencert + # /usr/local/bin/tor-resolve + # /usr/local/bin/torify + # /usr/local/share/tor/geoip + # /usr/local/share/tor/geoip6 + # /usr/local/etc/tor/torrc.sample + +WORKDIR /tmp/bin +RUN wget -qO gosu "https://github.com/tianon/gosu/releases/download/1.13/gosu-amd64" \ + && echo "6f333f520d31e212634c0777213a5d4f8f26bba1ab4b0edbbdf3c8bff8896ecf gosu" | sha256sum -c - + +FROM alpine:3.13 + +ENV TOR_VERSION=0.4.6.5 + +# Installing dependencies of Tor +RUN apk --no-cache add --update \ + libevent \ + libressl \ + xz-libs \ + zlib \ + zstd \ + zstd-dev + +# Copy Tor +COPY --from=tor-build "/tmp/bin" /usr/local/bin +COPY --from=tor-build /usr/local/ /usr/local/ + +ENV TOR_DATA /home/tor/.tor +RUN chmod +x /usr/local/bin/gosu && addgroup -g 19001 -S tor && adduser -u 19001 -G tor -S tor && mkdir -p ${TOR_DATA} && chown -R tor:tor "$TOR_DATA" + +VOLUME /home/tor/.tor +COPY docker-entrypoint.sh /entrypoint.sh + +# SOCKS5, TOR control +EXPOSE 9050 9051 +ENV TOR_CONFIG=/usr/local/etc/tor/torrc + +ENTRYPOINT ["./entrypoint.sh"] +CMD ["tor"] \ No newline at end of file diff --git a/Tor/0.4.5.9/linuxarm32v7.Dockerfile b/Tor/0.4.5.9/linuxarm32v7.Dockerfile new file mode 100644 index 0000000..fb30435 --- /dev/null +++ b/Tor/0.4.5.9/linuxarm32v7.Dockerfile @@ -0,0 +1,130 @@ +FROM debian:buster-slim as download + +RUN set -ex \ + && apt-get update \ + && apt-get install -qq --no-install-recommends ca-certificates dirmngr wget \ + qemu qemu-user-static qemu-user binfmt-support + +WORKDIR /tmp/bin +RUN wget -qO gosu "https://github.com/tianon/gosu/releases/download/1.13/gosu-armhf" \ + && echo "33e421b84b3f746e7353ac2e7c9f199c5beef5a3b2b7a013b591a9af25d84919 gosu" | sha256sum -c - + +FROM debian:buster-slim as tor-build + +ARG TOR_GPG_KEY=0x6AFEE6D49E92B601 +ENV TOR_VERSION=0.4.5.9 +ENV TOR_HASH=f304e456102ed26c39e5f16ece2115585398cdb4e67455139c86ea43cdf70856 + +RUN apt-get update && apt-get install -y --no-install-recommends ca-certificates perl autoconf automake build-essential git libtool python python3 wget gnupg dirmngr git \ + libc6-armhf-cross gcc-arm-linux-gnueabihf g++-arm-linux-gnueabihf + +ENV target_host=arm-linux-gnueabihf + +ENV AR=${target_host}-ar \ +AS=${target_host}-as \ +CC=${target_host}-gcc \ +CXX=${target_host}-g++ \ +LD=${target_host}-ld \ +STRIP=${target_host}-strip \ +QEMU_LD_PREFIX=/usr/${target_host} \ +HOST=${target_host} + +RUN wget -q https://zlib.net/zlib-1.2.11.tar.gz \ +&& TAR_NAME=zlib-1.2.11.tar.gz \ +&& FOLDER_NAME=zlib-1.2.11 \ +&& echo "c3e5e9fdd5004dcb542feda5ee4f0ff0744628baf8ed2dd5d66f8ca1197cb1a1 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./configure --prefix=$QEMU_LD_PREFIX \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/openssl/openssl/archive/OpenSSL_1_1_1i.tar.gz \ +&& TAR_NAME=OpenSSL_1_1_1i.tar.gz \ +&& FOLDER_NAME=openssl-OpenSSL_1_1_1i \ +&& echo "728d537d466a062e94705d44ee8c13c7b82d1b66f59f4e948e0cbf1cd7c461d8 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./Configure --prefix=$QEMU_LD_PREFIX linux-armv4 -march=armv7 no-shared no-dso no-zlib no-asm \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/libevent/libevent/releases/download/release-2.1.8-stable/libevent-2.1.8-stable.tar.gz \ +&& TAR_NAME=libevent-2.1.8-stable.tar.gz \ +&& FOLDER_NAME=libevent-2.1.8-stable \ +&& echo "965cc5a8bb46ce4199a47e9b2c9e1cae3b137e8356ffdad6d94d3b9069b71dc2 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./autogen.sh \ +&& ./configure --prefix=$QEMU_LD_PREFIX --host=${target_host} --disable-shared --enable-static --with-pic --disable-samples --disable-libevent-regress \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +# For lzma and zstd, we do not override prefix because those are discovered thanks to pkg-config during Tor build +# I did not managed to make pkg-config discover pkg on a different prefix... +RUN apt-get install -y autopoint && wget -q https://jaist.dl.sourceforge.net/project/lzmautils/xz-5.2.3.tar.gz \ +&& TAR_NAME=xz-5.2.3.tar.gz \ +&& FOLDER_NAME=xz-5.2.3 \ +&& echo "71928b357d0a09a12a4b4c5fafca8c31c19b0e7d3b8ebb19622e96f26dbf28cb $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./autogen.sh \ +&& ./configure --host=${target_host} --disable-shared --enable-static --disable-doc --disable-scripts --disable-xz --disable-xzdec --disable-lzmadec \ + --disable-lzmainfo --disable-lzma-links \ +&& make \ +&& make install \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/facebook/zstd/archive/v1.3.2.tar.gz \ +&& TAR_NAME=v1.3.2.tar.gz \ +&& FOLDER_NAME=zstd-1.3.2 \ +&& echo "ac5054a3c64e6510bc1ae890d05e3d271cc33ceebc9d06ac9f08105766d2798a $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +# https://trac.torproject.org/projects/tor/ticket/27802 +RUN apt-get install -y pkg-config && wget -q https://www.torproject.org/dist/tor-${TOR_VERSION}.tar.gz \ +&& TAR_NAME=tor-${TOR_VERSION}.tar.gz \ +&& FOLDER_NAME=tor-${TOR_VERSION} \ +&& echo "${TOR_HASH} $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& LIBS="-lssl -lcrypto -lpthread -ldl" ./configure --prefix=$QEMU_LD_PREFIX --host=${target_host} --disable-gcc-hardening --disable-asciidoc \ + --enable-static-tor \ + --enable-static-libevent --with-libevent-dir=$QEMU_LD_PREFIX \ + --enable-static-openssl --with-openssl-dir=$QEMU_LD_PREFIX \ + --enable-static-zlib --with-zlib-dir=$QEMU_LD_PREFIX \ + --enable-zstd --enable-lzma \ + --disable-systemd --disable-seccomp --disable-unittests --disable-tool-name-check \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME \ +&& ${STRIP} /usr/arm-linux-gnueabihf/bin/tor-* && ${STRIP} /usr/arm-linux-gnueabihf/bin/tor + +FROM arm32v7/debian:buster-slim +ENV target_host=arm-linux-gnueabihf +ENV QEMU_LD_PREFIX=/usr/${target_host} +COPY --from=download /usr/bin/qemu-arm-static /usr/bin/qemu-arm-static +COPY --from=download "/tmp/bin" /usr/local/bin +COPY --from=tor-build /usr/arm-linux-gnueabihf/bin/tor* /usr/bin/ +COPY --from=tor-build ${QEMU_LD_PREFIX}/share/tor/ ${QEMU_LD_PREFIX}/share/tor/ + +ENV TOR_DATA /home/tor/.tor +RUN chmod +x /usr/local/bin/gosu && groupadd -r tor && useradd -r -m -g tor tor && mkdir -p ${TOR_DATA} && chown -R tor:tor "$TOR_DATA" + +VOLUME /home/tor/.tor + +COPY docker-entrypoint.sh /entrypoint.sh + +# SOCKS5, TOR control +EXPOSE 9050 9051 +ENV TOR_CONFIG=/usr/local/etc/tor/torrc + +RUN rm -rf /usr/arm-linux-gnueabihf/etc/tor \ + && mkdir -p /usr/arm-linux-gnueabihf/etc \ + && mkdir -p /usr/local/etc/tor \ + && ln -sfn /usr/local/etc/tor /usr/arm-linux-gnueabihf/etc/tor + +ENTRYPOINT ["./entrypoint.sh"] +CMD ["tor"] \ No newline at end of file diff --git a/Tor/0.4.5.9/linuxarm64v8.Dockerfile b/Tor/0.4.5.9/linuxarm64v8.Dockerfile new file mode 100644 index 0000000..202621c --- /dev/null +++ b/Tor/0.4.5.9/linuxarm64v8.Dockerfile @@ -0,0 +1,130 @@ +FROM debian:buster-slim as download + +RUN set -ex \ + && apt-get update \ + && apt-get install -qq --no-install-recommends ca-certificates dirmngr wget \ + qemu qemu-user-static qemu-user binfmt-support + +WORKDIR /tmp/bin +RUN wget -qO gosu "https://github.com/tianon/gosu/releases/download/1.13/gosu-arm64" \ + && echo "578b2c70936cae372f6826585f82e76de5858342dd179605a8cb58d58828a079 gosu" | sha256sum -c - + +FROM debian:buster-slim as tor-build + +ARG TOR_GPG_KEY=0x6AFEE6D49E92B601 +ENV TOR_VERSION=0.4.5.9 +ENV TOR_HASH=f304e456102ed26c39e5f16ece2115585398cdb4e67455139c86ea43cdf70856 + +RUN apt-get update && apt-get install -y --no-install-recommends ca-certificates perl autoconf automake build-essential git libtool python python3 wget gnupg dirmngr git \ + libc6-arm64-cross gcc-aarch64-linux-gnu g++-aarch64-linux-gnu + +ENV target_host=aarch64-linux-gnu + +ENV AR=${target_host}-ar \ +AS=${target_host}-as \ +CC=${target_host}-gcc \ +CXX=${target_host}-g++ \ +LD=${target_host}-ld \ +STRIP=${target_host}-strip \ +QEMU_LD_PREFIX=/usr/${target_host} \ +HOST=${target_host} + +RUN wget -q https://zlib.net/zlib-1.2.11.tar.gz \ +&& TAR_NAME=zlib-1.2.11.tar.gz \ +&& FOLDER_NAME=zlib-1.2.11 \ +&& echo "c3e5e9fdd5004dcb542feda5ee4f0ff0744628baf8ed2dd5d66f8ca1197cb1a1 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./configure --prefix=$QEMU_LD_PREFIX \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/openssl/openssl/archive/OpenSSL_1_1_1i.tar.gz \ +&& TAR_NAME=OpenSSL_1_1_1i.tar.gz \ +&& FOLDER_NAME=openssl-OpenSSL_1_1_1i \ +&& echo "728d537d466a062e94705d44ee8c13c7b82d1b66f59f4e948e0cbf1cd7c461d8 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./Configure --prefix=$QEMU_LD_PREFIX linux-aarch64 no-shared no-dso no-zlib no-asm \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/libevent/libevent/releases/download/release-2.1.8-stable/libevent-2.1.8-stable.tar.gz \ +&& TAR_NAME=libevent-2.1.8-stable.tar.gz \ +&& FOLDER_NAME=libevent-2.1.8-stable \ +&& echo "965cc5a8bb46ce4199a47e9b2c9e1cae3b137e8356ffdad6d94d3b9069b71dc2 $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./autogen.sh \ +&& ./configure --prefix=$QEMU_LD_PREFIX --host=${target_host} --disable-shared --enable-static --with-pic --disable-samples --disable-libevent-regress \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +# For lzma and zstd, we do not override prefix because those are discovered thanks to pkg-config during Tor build +# I did not managed to make pkg-config discover pkg on a different prefix... +RUN apt-get install -y autopoint && wget -q https://jaist.dl.sourceforge.net/project/lzmautils/xz-5.2.3.tar.gz \ +&& TAR_NAME=xz-5.2.3.tar.gz \ +&& FOLDER_NAME=xz-5.2.3 \ +&& echo "71928b357d0a09a12a4b4c5fafca8c31c19b0e7d3b8ebb19622e96f26dbf28cb $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& ./autogen.sh \ +&& ./configure --host=${target_host} --disable-shared --enable-static --disable-doc --disable-scripts --disable-xz --disable-xzdec --disable-lzmadec \ + --disable-lzmainfo --disable-lzma-links \ +&& make \ +&& make install \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +RUN wget -q https://github.com/facebook/zstd/archive/v1.3.2.tar.gz \ +&& TAR_NAME=v1.3.2.tar.gz \ +&& FOLDER_NAME=zstd-1.3.2 \ +&& echo "ac5054a3c64e6510bc1ae890d05e3d271cc33ceebc9d06ac9f08105766d2798a $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME + +# https://trac.torproject.org/projects/tor/ticket/27802 +RUN apt-get install -y pkg-config && wget -q https://www.torproject.org/dist/tor-${TOR_VERSION}.tar.gz \ +&& TAR_NAME=tor-${TOR_VERSION}.tar.gz \ +&& FOLDER_NAME=tor-${TOR_VERSION} \ +&& echo "${TOR_HASH} $TAR_NAME" | sha256sum -c - \ +&& tar xvf $TAR_NAME \ +&& cd $FOLDER_NAME \ +&& LIBS="-lssl -lcrypto -lpthread -ldl" ./configure --prefix=$QEMU_LD_PREFIX --host=${target_host} --disable-gcc-hardening --disable-asciidoc \ + --enable-static-tor \ + --enable-static-libevent --with-libevent-dir=$QEMU_LD_PREFIX \ + --enable-static-openssl --with-openssl-dir=$QEMU_LD_PREFIX \ + --enable-static-zlib --with-zlib-dir=$QEMU_LD_PREFIX \ + --enable-zstd --enable-lzma \ + --disable-systemd --disable-seccomp --disable-unittests --disable-tool-name-check \ +&& make \ +&& make install && cd .. && rm $TAR_NAME && rm -rf $FOLDER_NAME \ +&& ${STRIP} /usr/aarch64-linux-gnu/bin/tor-* && ${STRIP} /usr/aarch64-linux-gnu/bin/tor + +FROM arm64v8/debian:buster-slim +ENV target_host=aarch64-linux-gnu +ENV QEMU_LD_PREFIX=/usr/${target_host} +COPY --from=download /usr/bin/qemu-aarch64-static /usr/bin/qemu-aarch64-static +COPY --from=download "/tmp/bin" /usr/local/bin +COPY --from=tor-build /usr/aarch64-linux-gnu/bin/tor* /usr/bin/ +COPY --from=tor-build ${QEMU_LD_PREFIX}/share/tor/ ${QEMU_LD_PREFIX}/share/tor/ + +ENV TOR_DATA /home/tor/.tor +RUN chmod +x /usr/local/bin/gosu && groupadd -r tor && useradd -r -m -g tor tor && mkdir -p ${TOR_DATA} && chown -R tor:tor "$TOR_DATA" + +VOLUME /home/tor/.tor + +COPY docker-entrypoint.sh /entrypoint.sh + +# SOCKS5, TOR control +EXPOSE 9050 9051 +ENV TOR_CONFIG=/usr/local/etc/tor/torrc + +RUN rm -rf /usr/aarch64-linux-gnu/etc/tor \ + && mkdir -p /usr/aarch64-linux-gnu/etc \ + && mkdir -p /usr/local/etc/tor \ + && ln -sfn /usr/local/etc/tor /usr/aarch64-linux-gnu/etc/tor + +ENTRYPOINT ["./entrypoint.sh"] +CMD ["tor"] \ No newline at end of file