From f1aa17930a0be7306a0c201172f23939ddd6ef21 Mon Sep 17 00:00:00 2001 From: Jakub Jelen Date: Tue, 8 Dec 2020 11:46:19 +0100 Subject: [PATCH] tests: Do not use gcm ciphers as they are not available in RHEL6 --- tests/tests_alternative_file.yml | 12 ++++++------ tests/tests_set_common.yml | 6 +++--- 2 files changed, 9 insertions(+), 9 deletions(-) diff --git a/tests/tests_alternative_file.yml b/tests/tests_alternative_file.yml index af88766..aca4c6e 100644 --- a/tests/tests_alternative_file.yml +++ b/tests/tests_alternative_file.yml @@ -20,7 +20,7 @@ sshd: AcceptEnv: LANG Banner: /etc/issue - Ciphers: aes256-gcm@openssh.com + Ciphers: aes256-ctr sshd_Compression: no - name: Configure second alternative sshd_config file include_role: @@ -31,7 +31,7 @@ sshd_skip_defaults: true sshd: Banner: /etc/issue2 - Ciphers: aes128-gcm@openssh.com + Ciphers: aes128-ctr sshd_MaxStartups: 100 - name: Now configure the main sshd_config file include_role: @@ -39,7 +39,7 @@ vars: sshd: Banner: /etc/issue - Ciphers: aes128-ctr + Ciphers: aes192-ctr HostKey: - /tmp/ssh_host_ecdsa_key sshd_PasswordAuthentication: no @@ -75,7 +75,7 @@ that: - "'AcceptEnv LANG' in config.content | b64decode" - "'Banner /etc/issue' in config.content | b64decode" - - "'Ciphers aes256-gcm@openssh.com' in config.content | b64decode" + - "'Ciphers aes256-ctr' in config.content | b64decode" - "'HostKey' not in config.content | b64decode" - "'Compression no' in config.content | b64decode" - "'MaxStartups 100' not in config.content | b64decode" @@ -84,7 +84,7 @@ assert: that: - "'Banner /etc/issue2' in config2.content | b64decode" - - "'Ciphers aes128-gcm@openssh.com' in config2.content | b64decode" + - "'Ciphers aes128-ctr' in config2.content | b64decode" - "'HostKey' not in config2.content | b64decode" - "'MaxStartups 100' in config2.content | b64decode" - "'Compression no' not in config2.content | b64decode" @@ -93,7 +93,7 @@ assert: that: - "'Banner /etc/issue' in config3.content | b64decode" - - "'Ciphers aes128-ctr' in config3.content | b64decode" + - "'Ciphers aes192-ctr' in config3.content | b64decode" - "'HostKey /tmp/ssh_host_ecdsa_key' in config3.content | b64decode" - "'PasswordAuthentication no' in config3.content | b64decode" - "'MaxStartups 100' not in config3.content | b64decode" diff --git a/tests/tests_set_common.yml b/tests/tests_set_common.yml index c571531..7bed95d 100644 --- a/tests/tests_set_common.yml +++ b/tests/tests_set_common.yml @@ -15,7 +15,7 @@ sshd: AcceptEnv: LANG Banner: /etc/issue - Ciphers: aes256-gcm@openssh.com + Ciphers: aes256-ctr Subsystem: "sftp internal-sftp" sshd_config_file: /etc/ssh/sshd_config @@ -38,7 +38,7 @@ that: - "'acceptenv LANG' in runtime.stdout" - "'banner /etc/issue' in runtime.stdout" - - "'ciphers aes256-gcm@openssh.com' in runtime.stdout" + - "'ciphers aes256-ctr' in runtime.stdout" - "'subsystem sftp internal-sftp' in runtime.stdout" - name: Check the options are in configuration file @@ -46,7 +46,7 @@ that: - "'AcceptEnv LANG' in config.content | b64decode" - "'Banner /etc/issue' in config.content | b64decode" - - "'Ciphers aes256-gcm@openssh.com' in config.content | b64decode" + - "'Ciphers aes256-ctr' in config.content | b64decode" - "'Subsystem sftp internal-sftp' in config.content | b64decode" tags: tests::verify