Uploaded image for project: 'OpenShift Service Mesh'
  1. OpenShift Service Mesh
  2. OSSM-6781

General error message 'tls: handshake failure' when revoked certificate is used

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • OSSM 2.6.0
    • OSSM 2.6.0
    • Maistra
    • None

      `tls: handshake failure` instead of `tls: revoked certificate` error message is shown when revoked client certificate is used

      === ( original description )
      With the latest build of OSSM 2.6 (openshift-service-mesh-istio-operator-bundle:2.6.0-30), theĀ TestSecureGateways test fails on:

      TestSecureGateways/mutual_tls_with_crl

          secure_gateways_test.go:202: STEP 5: check if SSL handshake fails when revoked client certificate is given
    secure_gateways_test.go:204:    failed to get HTTP Response: Get "https://httpbin.example.com:443/status/418": remote error: tls: handshake failure
    secure_gateways_test.go:204:    SUCCESS: request failed as expected
    secure_gateways_test.go:204:    FAILURE: request failed but with different error message; 
        expected any of error messages:'[Get "https://httpbin.example.com:443/status/418": remote error: tls: revoked certificate]'
        actual error message:'Get "https://httpbin.example.com:443/status/418": remote error: tls: handshake failure'
    subtest.go:25: 
    subtest.go:27: Subtest failed in 62.44s (excluding cleanup)

      Diff of error response in SMCP 2.5 vs SMCP 2.6 ( in the same environment )

        1. Screenshot from 2024-07-09 14-55-04.png
          Screenshot from 2024-07-09 14-55-04.png
          222 kB

            tpoole@redhat.com Ted Poole
            mkralik@redhat.com Matej Kralik
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: