Bug ID 438385: Empty client certificate or empty certificate does not return verify message.

Last Modified: Jan 07, 2026

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 11.6.2, 11.6.2 HF1, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3

Opened: Nov 19, 2013

Severity: 2-Critical

Symptoms

When an empty client certificate is received, sometimes client does not send any certificate verify message, so the BIG-IP system waits for certificate verify message until timeout.

Impact

The system waits for certificate verify message until timeout.

Conditions

When an empty client certificate message is sent by client and client does not send certificate verify message.

Workaround

None.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips