| 20 | ) |
| 21 | |
| 22 | func Test_configureServerTLS(t *testing.T) { |
| 23 | t.Parallel() |
| 24 | t.Run("DefaultNoInsecureCiphers", func(t *testing.T) { |
| 25 | t.Parallel() |
| 26 | logger := testutil.Logger(t) |
| 27 | cfg, err := configureServerTLS(context.Background(), logger, "tls12", "none", nil, nil, "", nil, false) |
| 28 | require.NoError(t, err) |
| 29 | |
| 30 | require.NotEmpty(t, cfg) |
| 31 | |
| 32 | insecureCiphers := tls.InsecureCipherSuites() |
| 33 | for _, cipher := range cfg.CipherSuites { |
| 34 | for _, insecure := range insecureCiphers { |
| 35 | if cipher == insecure.ID { |
| 36 | t.Logf("Insecure cipher found by default: %s", insecure.Name) |
| 37 | t.Fail() |
| 38 | } |
| 39 | } |
| 40 | } |
| 41 | }) |
| 42 | } |
| 43 | |
| 44 | func Test_configureCipherSuites(t *testing.T) { |
| 45 | t.Parallel() |