Bug ID 878641

Bug Tracker
ID 878641

Bug ID 878641: TLS1.3 certificate request message does not contain CAs

Last Modified: Nov 02, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 17.1.0.3

Fixed In:
17.1.1, 16.1.4, 15.1.9

Opened: Feb 07, 2020

Severity: 3-Major

Symptoms

TLS1.3 certificate request message does not include CAs https://datatracker.ietf.org/doc/html/rfc8446#section-4.2.4

Impact

The Advertised Certificate Authorities option on Client SSL profiles does not function when TLS 1.3 is selected

Conditions

TLS1.3 and client authentication

Workaround

None

Fix Information

Certificate request message now may contain CAs

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips