diff --git a/logs/daily_audit.json b/logs/daily_audit.json index d650f6c..a187d3e 100644 --- a/logs/daily_audit.json +++ b/logs/daily_audit.json @@ -1,6 +1,6 @@ { "directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json", - "auditTime": "2024-06-26T12:35:32Z", + "auditTime": "2024-06-27T12:34:22Z", "issuerCount": 634, "issuersWithErrors": [ { @@ -348,9 +348,9 @@ "tlsDetails": { "version": "TLSv1.2", "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp384r1, 384 bits", + "kexAlg": "ECDH, prime256v1, 256 bits", "authAlg": "RSA", - "pubKeySize": "4096", + "pubKeySize": "2048", "compression": "NONE" }, "crls": [], @@ -1084,7 +1084,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: read ECONNRESET" + "RequestError: Client network socket disconnected before secure TLS connection was established" ] }, { @@ -1117,6 +1117,18 @@ "Issuer key endpoint's CORS 'access-control-allow-origin' header *, * does not match the requested origin" ] }, + { + "issuer": { + "iss": "https://wpprod.choa.org/FHIR_PRD/api/epic/2021/Security/Open/EcKeys/32001/SHC", + "name": "Children’s Healthcare of Atlanta", + "website": "https://mychart.choa.org/mychart/Authentication/Login?" + }, + "keys": [], + "crls": [], + "errors": [ + "TimeoutError: Timeout awaiting 'request' for 5000ms" + ] + }, { "issuer": { "iss": "https://epicnsproxy.chop.edu/fhir/api/epic/2021/Security/Open/EcKeys/32001/SHC", @@ -1173,28 +1185,10 @@ "name": "Driscoll Children’s Hospital", "website": "https://mychart.dchstx.org/MyChart/Authentication/Login?" }, - "keys": [ - { - "x": "AKT0TvVHpYpNN3NhWz5yeP9cJ1YC6tYVwXPG4qhf1uQ", - "y": "rko4yxzV6AkZ1ZuCxVFPsC6y3jli0LJeu4A56bhAxBk", - "kid": "nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM", - "use": "sig", - "kty": "EC", - "alg": "ES256", - "crv": "P-256" - } - ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES128-GCM-SHA256", - "kexAlg": "ECDH, prime256v1, 256 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, + "keys": [], "crls": [], "errors": [ - "Issuer key endpoint does not contain a CORS 'access-control-allow-origin' header" + "RequestError: getaddrinfo ENOTFOUND fhir.dchstx.org" ] }, { @@ -1206,7 +1200,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: write EPROTO 140180093265792:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" + "RequestError: write EPROTO 140184518014848:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" ] } ], @@ -1274,8 +1268,21 @@ "HCA National", "West Tennessee Healthcare" ], - "previousAuditTime": "2024-06-25T12:34:03Z", + "previousAuditTime": "2024-06-26T12:35:32Z", "newIssuerCount": 0, "deletedIssuerCount": 0, - "removedKids": [] + "removedKids": [ + { + "iss": "https://wpprod.choa.org/FHIR_PRD/api/epic/2021/Security/Open/EcKeys/32001/SHC", + "kids": [ + "Z6ZwpiIh4RokwFr2eaHgahvr335Ph8hGdgzDD4Oaxko" + ] + }, + { + "iss": "https://fhir.dchstx.org/FHIR-External/api/epic/2021/Security/Open/EcKeys/32001/SHC", + "kids": [ + "nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM" + ] + } + ] } \ No newline at end of file diff --git a/logs/daily_dir_snapshot.json b/logs/daily_dir_snapshot.json index 157693a..564c2c4 100644 --- a/logs/daily_dir_snapshot.json +++ b/logs/daily_dir_snapshot.json @@ -1,6 +1,6 @@ { "directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json", - "time": "2024-06-26T12:35:32Z", + "time": "2024-06-27T12:34:22Z", "issuerInfo": [ { "issuer": { @@ -487,6 +487,14 @@ "alg": "ES256" } ], + "tlsDetails": { + "version": "TLSv1.3", + "cipher": "TLS_AES_128_GCM_SHA256", + "kexAlg": "X25519, 253 bits", + "authAlg": "RSA-PSS", + "pubKeySize": "2048", + "compression": "NONE" + }, "crls": [], "errors": [] }, @@ -5459,14 +5467,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp384r1, 384 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -9965,8 +9965,8 @@ } ], "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-SHA384", + "version": "TLSv1.3", + "cipher": "TLS_AES_256_GCM_SHA384", "kexAlg": "ECDH, secp521r1, 521 bits", "authAlg": "RSA-PSS", "pubKeySize": "2048", @@ -10441,9 +10441,9 @@ "tlsDetails": { "version": "TLSv1.2", "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp384r1, 384 bits", + "kexAlg": "ECDH, prime256v1, 256 bits", "authAlg": "RSA", - "pubKeySize": "4096", + "pubKeySize": "2048", "compression": "NONE" }, "crls": [], @@ -10797,8 +10797,8 @@ ], "tlsDetails": { "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-SHA384", - "kexAlg": "ECDH, secp521r1, 521 bits", + "cipher": "DHE-RSA-AES256-GCM-SHA384", + "kexAlg": "DH, 2048 bits", "authAlg": "RSA", "pubKeySize": "2048", "compression": "NONE" @@ -11068,10 +11068,10 @@ } ], "tlsDetails": { - "version": "TLSv1.3", - "cipher": "TLS_AES_256_GCM_SHA384", - "kexAlg": "X25519, 253 bits", - "authAlg": "RSA-PSS", + "version": "TLSv1.2", + "cipher": "DHE-RSA-AES256-GCM-SHA384", + "kexAlg": "DH, 2048 bits", + "authAlg": "RSA", "pubKeySize": "2048", "compression": "NONE" }, @@ -11227,9 +11227,9 @@ } ], "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp384r1, 384 bits", + "version": "TLSv1.3", + "cipher": "TLS_AES_256_GCM_SHA384", + "kexAlg": "X25519, 253 bits", "authAlg": "RSA-PSS", "pubKeySize": "2048", "compression": "NONE" @@ -13849,8 +13849,8 @@ ], "tlsDetails": { "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-SHA384", - "kexAlg": "ECDH, secp521r1, 521 bits", + "cipher": "ECDHE-RSA-AES256-GCM-SHA384", + "kexAlg": "ECDH, secp384r1, 384 bits", "authAlg": "RSA", "pubKeySize": "2048", "compression": "NONE" @@ -14379,14 +14379,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "DHE-RSA-AES256-GCM-SHA384", - "kexAlg": "DH, 2048 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -16009,6 +16001,14 @@ "crv": "P-256" } ], + "tlsDetails": { + "version": "TLSv1.2", + "cipher": "ECDHE-RSA-AES256-SHA384", + "kexAlg": "ECDH, prime256v1, 256 bits", + "authAlg": "RSA", + "pubKeySize": "2048", + "compression": "NONE" + }, "crls": [], "errors": [] }, @@ -16465,14 +16465,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, prime256v1, 256 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -17607,6 +17599,14 @@ "crv": "P-256" } ], + "tlsDetails": { + "version": "TLSv1.2", + "cipher": "ECDHE-RSA-AES256-SHA384", + "kexAlg": "ECDH, secp521r1, 521 bits", + "authAlg": "RSA", + "pubKeySize": "2048", + "compression": "NONE" + }, "crls": [], "errors": [] }, @@ -17931,7 +17931,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: read ECONNRESET" + "RequestError: Client network socket disconnected before secure TLS connection was established" ] }, { @@ -18586,27 +18586,11 @@ "name": "Children’s Healthcare of Atlanta", "website": "https://mychart.choa.org/mychart/Authentication/Login?" }, - "keys": [ - { - "x": "HoM0ubbQpeZ7ePMP_OKFp1cyZ8XCF97qCacVCMuLY74", - "y": "9mH-z6D9SyC3_ZwZTXWksj6rN-0d3o2HQ5v2T-434x8", - "kid": "Z6ZwpiIh4RokwFr2eaHgahvr335Ph8hGdgzDD4Oaxko", - "use": "sig", - "kty": "EC", - "alg": "ES256", - "crv": "P-256" - } - ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp521r1, 521 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, + "keys": [], "crls": [], - "errors": [] + "errors": [ + "TimeoutError: Timeout awaiting 'request' for 5000ms" + ] }, { "issuer": { @@ -19229,28 +19213,10 @@ "name": "Driscoll Children’s Hospital", "website": "https://mychart.dchstx.org/MyChart/Authentication/Login?" }, - "keys": [ - { - "x": "AKT0TvVHpYpNN3NhWz5yeP9cJ1YC6tYVwXPG4qhf1uQ", - "y": "rko4yxzV6AkZ1ZuCxVFPsC6y3jli0LJeu4A56bhAxBk", - "kid": "nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM", - "use": "sig", - "kty": "EC", - "alg": "ES256", - "crv": "P-256" - } - ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES128-GCM-SHA256", - "kexAlg": "ECDH, prime256v1, 256 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, + "keys": [], "crls": [], "errors": [ - "Issuer key endpoint does not contain a CORS 'access-control-allow-origin' header" + "RequestError: getaddrinfo ENOTFOUND fhir.dchstx.org" ] }, { @@ -19429,7 +19395,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: write EPROTO 140180093265792:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" + "RequestError: write EPROTO 140184518014848:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" ] }, {