e2e: pass TLS min version 1.0 config to checkTCPTLSRoute http client …

…where needed Go 1.18 disabled TLS 1.0 and 1.1 by default for client connections https://tip.golang.org/doc/go1.18#tls10
hashicorp · Apr 27, 2022 · e85715f · e85715f
1 parent 8cc904d
commit e85715f
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/internal/commands/server/k8s_e2e_test.go b/internal/commands/server/k8s_e2e_test.go
@@ -966,13 +966,15 @@ func TestTCPMeshService(t *testing.T) {
 			// supported by Envoy defaults
 			checkTCPTLSRoute(t, listenerOnePort, &tls.Config{
 				InsecureSkipVerify: true,
+				MinVersion:         tls.VersionTLS10,
 				MaxVersion:         tls.VersionTLS11,
 			}, "remote error: tls: protocol version not supported", "connection not rejected with expected error in allotted time")
 
 			// Service two listener overrides default config
 			checkTCPTLSRoute(t, listenerTwoPort, &tls.Config{
 				InsecureSkipVerify: true,
 				CipherSuites:       []uint16{tls.TLS_RSA_WITH_AES_128_CBC_SHA},
+				MinVersion:         tls.VersionTLS10,
 				MaxVersion:         tls.VersionTLS11,
 			}, serviceTwo.Name, "service not routable in allotted time")