(camel) branch main updated: CAMEL-23185 - Post-Quantum Cryptography (PQC) readiness: camel-as2: Upgrade test RSA keys from 1024-bit to 2048-bit (#21956)

Thu, 12 Mar 2026 05:30:44 -0700 

This is an automated email from the ASF dual-hosted git repository.

acosentino pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel.git


The following commit(s) were added to refs/heads/main by this push:
     new d707b7206057 CAMEL-23185 - Post-Quantum Cryptography (PQC) readiness: 
camel-as2: Upgrade test RSA keys from 1024-bit to 2048-bit (#21956)
d707b7206057 is described below

commit d707b720605700abd4578727d58d5265813a567b
Author: Andrea Cosentino <[email protected]>
AuthorDate: Thu Mar 12 13:30:25 2026 +0100

    CAMEL-23185 - Post-Quantum Cryptography (PQC) readiness: camel-as2: Upgrade 
test RSA keys from 1024-bit to 2048-bit (#21956)
    
    RSA-1024 is cryptographically weak. Upgrade all test key generation
    from kpg.initialize(1024) to kpg.initialize(2048) across 10 test
    files in camel-as2-api and camel-as2-component.
    
    Signed-off-by: Andrea Cosentino <[email protected]>
---
 .../java/org/apache/camel/component/as2/api/AS2MessageTestBase.java   | 2 +-
 .../component/as2/api/entity/EntityParserContentLineEndingTest.java   | 2 +-
 .../org/apache/camel/component/as2/api/entity/EntityParserTest.java   | 2 +-
 .../org/apache/camel/component/as2/api/util/SigningUtilsTest.java     | 2 +-
 .../org/apache/camel/component/as2/AS2AsyncMDNServerManagerIT.java    | 2 +-
 .../test/java/org/apache/camel/component/as2/AS2ClientManagerIT.java  | 4 ++--
 .../test/java/org/apache/camel/component/as2/AS2ServerManagerIT.java  | 2 +-
 .../java/org/apache/camel/component/as2/AS2ServerManagerITBase.java   | 2 +-
 .../java/org/apache/camel/component/as2/AS2ServerSecTestBase.java     | 4 ++--
 .../java/org/apache/camel/component/as2/AS2ServerTwoConsumerBase.java | 2 +-
 10 files changed, 12 insertions(+), 12 deletions(-)

diff --git 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/AS2MessageTestBase.java
 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/AS2MessageTestBase.java
index 3289e1431418..91fb6bb46914 100644
--- 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/AS2MessageTestBase.java
+++ 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/AS2MessageTestBase.java
@@ -134,7 +134,7 @@ public class AS2MessageTestBase {
         // set up our certificates
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserContentLineEndingTest.java
 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserContentLineEndingTest.java
index fa85444aebf2..60eb516edcd2 100644
--- 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserContentLineEndingTest.java
+++ 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserContentLineEndingTest.java
@@ -233,7 +233,7 @@ public class EntityParserContentLineEndingTest {
         //
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         KeyPair issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserTest.java
 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserTest.java
index b0ec8d68091d..7cb00002ac5f 100644
--- 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserTest.java
+++ 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/entity/EntityParserTest.java
@@ -362,7 +362,7 @@ public class EntityParserTest {
         //
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         KeyPair issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/util/SigningUtilsTest.java
 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/util/SigningUtilsTest.java
index 8533efe3b9a7..50791f86e6f2 100644
--- 
a/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/util/SigningUtilsTest.java
+++ 
b/components/camel-as2/camel-as2-api/src/test/java/org/apache/camel/component/as2/api/util/SigningUtilsTest.java
@@ -85,7 +85,7 @@ public class SigningUtilsTest {
         // set up our certificates
         //
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
         //
         // certificate we sign against
         //
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2AsyncMDNServerManagerIT.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2AsyncMDNServerManagerIT.java
index 138ea899c7cf..63040ab478dc 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2AsyncMDNServerManagerIT.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2AsyncMDNServerManagerIT.java
@@ -453,7 +453,7 @@ public class AS2AsyncMDNServerManagerIT extends 
AbstractAS2ITSupport {
 
         // set up our certificates
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         KeyPair issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ClientManagerIT.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ClientManagerIT.java
index ecc917909f94..9bb7c3891da3 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ClientManagerIT.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ClientManagerIT.java
@@ -981,7 +981,7 @@ public class AS2ClientManagerIT extends 
AbstractAS2ITSupport {
         //
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         KeyPair issueKP = kpg.generateKeyPair();
@@ -1010,7 +1010,7 @@ public class AS2ClientManagerIT extends 
AbstractAS2ITSupport {
         //
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         KeyPair issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerIT.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerIT.java
index cfa4d7db27e1..0cd5981efc9b 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerIT.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerIT.java
@@ -428,7 +428,7 @@ public class AS2ServerManagerIT extends 
AS2ServerManagerITBase {
 
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
 
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
         String hackerIssueDN = "O=Hackers Unlimited Ltd., C=US";
         var hackerIssueKP = kpg.generateKeyPair();
         var hackerissueCert = Utils.makeCertificate(
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerITBase.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerITBase.java
index ddfd4be9fb26..0a25a56f6b94 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerITBase.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerManagerITBase.java
@@ -200,7 +200,7 @@ public class AS2ServerManagerITBase extends 
AbstractAS2ITSupport {
     protected static void setupKeysAndCertificates() throws Exception {
         // set up our certificates
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerSecTestBase.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerSecTestBase.java
index f93a28fd3737..7d7d9dc6ba66 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerSecTestBase.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerSecTestBase.java
@@ -191,7 +191,7 @@ public class AS2ServerSecTestBase extends 
AbstractAS2ITSupport {
     private HttpCoreContext generateInvalidCrypto(TriFunction<Certificate, 
KeyPair, Certificate, HttpCoreContext> fn)
             throws Exception {
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
         String invalidIssueDN = "O=Hackers Unlimited Ltd., C=US";
         var invalidIssueKP = kpg.generateKeyPair();
 
@@ -240,7 +240,7 @@ public class AS2ServerSecTestBase extends 
AbstractAS2ITSupport {
     protected static void setupKeysAndCertificates() throws Exception {
         // set up our certificates
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=Punkhorn Software, C=US";
         issueKP = kpg.generateKeyPair();
diff --git 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerTwoConsumerBase.java
 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerTwoConsumerBase.java
index 9a31b1d44ed3..0eedcf449970 100644
--- 
a/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerTwoConsumerBase.java
+++ 
b/components/camel-as2/camel-as2-component/src/test/java/org/apache/camel/component/as2/AS2ServerTwoConsumerBase.java
@@ -211,7 +211,7 @@ public class AS2ServerTwoConsumerBase extends 
AS2ServerSecTestBase {
     protected Object[] generateNewKeyPairSet(String commonName) throws 
Exception {
         // set up our certificates
         KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "BC");
-        kpg.initialize(1024, new SecureRandom());
+        kpg.initialize(2048, new SecureRandom());
 
         String issueDN = "O=AS2 Test Issuer, C=US";
         KeyPair issueKeyPair = kpg.generateKeyPair();

Reply via email to