Uploaded image for project: 'Gazelle Security Suite'
  1. Gazelle Security Suite
  2. GSS-420

Change level message from Error to Warning : list of certificate_authorities is empty

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 5.3.3
    • Fix Version/s: 5.4.0
    • Component/s: TLS
    • Labels:
      None
    • Account:
      VENICE 2017 (VENICE2017)

      Description

      See this connection : https://gazelle.ihe.net/gss/details/connection.seam?id=2711829

      There is an error because the list of certificate_authorities in the Certificate Request (send by the server) is empty. In this case, the handshake can be valid, but the client may also choose to reject the connection depending on TLS implementation or policy.

      This error message must be displayed as a warning and a sentence must be added to explain that some client may refuse to negociate a TLS session in this situation.

      References :
      https://tools.ietf.org/html/rfc2246#section-7.4.4, §7.4.4 and §7.4.6
      https://tools.ietf.org/html/rfc5246#section-7.4.4, §7.4.4 and §7.4.6

        Attachments

          Activity

            People

            • Assignee:
              ceoche Cédric EOCHE-DUVAL
              Reporter:
              epoiseau Eric Poiseau
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 4 hours
                4h
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 3 hours Time Not Required
                3h

                  Potential Duplicates