From 19feed169ebdb656d939ce81cc4c8eb9c2886a1a Mon Sep 17 00:00:00 2001
From: Dirk Wetter <dirk@testssl.sh>
Date: Thu, 17 Jun 2021 09:23:34 +0200
Subject: [PATCH] Fix indentation and redundant message (BREACH) when client
 certificate required

... see #1915
---
 testssl.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/testssl.sh b/testssl.sh
index c7e25fd..82268b3 100755
--- a/testssl.sh
+++ b/testssl.sh
@@ -14614,8 +14614,9 @@ run_breach() {
      [[ $VULN_COUNT -le $VULN_THRESHLD ]] && outln && pr_headlineln " Testing for BREACH (HTTP compression) vulnerability " && outln
      pr_bold " BREACH"; out " ($cve)                    "
      if "$CLIENT_AUTH"; then
-          outln "cannot be tested (server side requires x509 authentication)"
-          fileout "$jsonID" "INFO" "was not tested, server side requires x509 authentication" "$cve" "$cwe"
+          prln_warning "client x509-based authentication prevents this from being tested"
+          fileout "$jsonID" "WARN" "client x509-based authentication prevents this from being tested" "$cve" "$cwe"
+          return 7
      fi
 
      # if [[ $NR_HEADER_FAIL -ge $MAX_HEADER_FAIL ]]; then