Use new TLS algorithm defaults in remoting tests (#29074)

* Use the new dafaults in remoting tests * scalafmt
2020-05-18 09:40:22 +02:00 · 2020-05-18 09:40:22 +02:00 · 36c6bc1d07
commit 36c6bc1d07
parent 54a9b3189a
3 changed files with 7 additions and 5 deletions
--- a/akka-remote/src/test/scala/akka/remote/Ticket1978CommunicationSpec.scala
+++ b/akka-remote/src/test/scala/akka/remote/Ticket1978CommunicationSpec.scala
@ -111,10 +111,12 @@ object Configuration {
 }

 class Ticket1978SHA1PRNGSpec
-    extends Ticket1978CommunicationSpec(getCipherConfig("SHA1PRNG", "TLS_RSA_WITH_AES_128_CBC_SHA"))
+    extends Ticket1978CommunicationSpec(
+      getCipherConfig("SHA1PRNG", "TLS_RSA_WITH_AES_128_CBC_SHA", "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"))

 class Ticket1978DefaultRNGSecureSpec
-    extends Ticket1978CommunicationSpec(getCipherConfig("", "TLS_RSA_WITH_AES_128_CBC_SHA"))
+    extends Ticket1978CommunicationSpec(
+      getCipherConfig("", "TLS_RSA_WITH_AES_128_CBC_SHA", "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"))

 class Ticket1978CrappyRSAWithMD5OnlyHereToMakeSureThingsWorkSpec
    extends Ticket1978CommunicationSpec(getCipherConfig("", "SSL_RSA_WITH_NULL_MD5"))
--- a/akka-remote/src/test/scala/akka/remote/artery/tcp/TlsTcpSpec.scala
+++ b/akka-remote/src/test/scala/akka/remote/artery/tcp/TlsTcpSpec.scala
@ -33,7 +33,7 @@ class TlsTcpWithSHA1PRNGSpec
    extends TlsTcpSpec(ConfigFactory.parseString("""
    akka.remote.artery.ssl.config-ssl-engine {
      random-number-generator = "SHA1PRNG"
-      enabled-algorithms = ["TLS_RSA_WITH_AES_128_CBC_SHA"]
+      enabled-algorithms = ["TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"]
    }
    """))

@ -41,7 +41,7 @@ class TlsTcpWithDefaultRNGSecureSpec
    extends TlsTcpSpec(ConfigFactory.parseString("""
    akka.remote.artery.ssl.config-ssl-engine {
      random-number-generator = ""
-      enabled-algorithms = ["TLS_RSA_WITH_AES_128_CBC_SHA"]
+      enabled-algorithms = ["TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"]
    }
    """))

--- a/akka-remote/src/test/scala/akka/remote/classic/RemotingSpec.scala
+++ b/akka-remote/src/test/scala/akka/remote/classic/RemotingSpec.scala
@ -73,7 +73,7 @@ object RemotingSpec {
      key-password = "changeme"
      trust-store-password = "changeme"
      protocol = "TLSv1.2"
-      enabled-algorithms = [TLS_RSA_WITH_AES_128_CBC_SHA]
+      enabled-algorithms = [TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384]
    }

    common-netty-settings {