Skip to content

SUPPORTS_OCSP_STAPLING and SUPPORTS_TLS13_SESSION_TICKETS missing from JSON output #109

New issue
New issue
Open
Feature
#137
Open
SUPPORTS_OCSP_STAPLING and SUPPORTS_TLS13_SESSION_TICKETS missing from JSON output#109
Feature
#137
Labels
BlockedCurrently blocked and cant be doneenhancement
@m10x

Description

@m10x
m10x
opened on Dec 3, 2024

SUPPORTS_OCSP_STAPLING is no longer included in the json output. The guideline report says, that SUPPORTS_OSCP wasn't tested, yet.

"checkName": "Certificates shall be issued by CA that publishes revocation information in OCSP responses",
          "adherence": "CHECK_FAILED",
          "hint": null,
          "property": "SUPPORTS_OCSP",
          "expectedResult": {
            "type": "TestResults",
            "value": "TRUE"
          },
          "actualResult": {
            "type": "TestResults",
            "value": "NOT_TESTED_YET"
          }

However, the certificateReportList in CERTIFICATE_CHAINS[value] cleary states that OSCP Stapling is not supported:

              "weakDebianKey": null,
              "issuer": "C=US O=DigiCert Inc CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1",
              "x509SignatureAlgorithm": "SHA256_WITH_RSA_ENCRYPTION",
              "signatureAlgorithm": "RSA_PKCS1",
              "namedCurve": null,
              "hashAlgorithm": "SHA256",
              "extendedValidation": null,
              "certificateTransparency": null,
              "ocspMustStaple": null,
              "crlSupported": null,
              "ocspSupported": false, <<<<<<<<<<<<<<
              "revoked": null,

Further SUPPORTS_TLS13_SESSION_TICKETS is missing from the JSON output.

Metadata

Metadata

Assignees

No one assigned

    Labels

    BlockedCurrently blocked and cant be doneenhancement

    Type

    Feature

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions