[
https://issues.apache.org/jira/browse/TS-3424?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14356400#comment-14356400
]
Brian Geffon commented on TS-3424:
----------------------------------
The errors we are seeing now are coming from
SSLNetVConnection::sslServerHandShakeEvent, it appears the SSL_accept is
returning something <= 0, unfortunately the wrapper function is hiding the
exact return value at the moment.
Additionally, when I try to get the detailed error code via ERR_get_error()
it's returning 0, so I'm not entirely sure what's up there. It's unlikely that
this is something specific to our environment as this issue didn't happen with
5.0.x and it's happening during the SSL_accept phase before we have a chance to
really do anything.
> SSL error: SSL3_GET_RECORD:decryption failed or bad record mac
> --------------------------------------------------------------
>
> Key: TS-3424
> URL: https://issues.apache.org/jira/browse/TS-3424
> Project: Traffic Server
> Issue Type: Bug
> Components: Core, SSL
> Reporter: Brian Geffon
> Assignee: Brian Geffon
> Fix For: 6.0.0
>
> Attachments: ts-3424-2.diff, ts-3424-3.diff, ts-3424-for-52-2.diff,
> ts-3424-for-52.diff, ts-3424.diff, undo-handshake-buffer.diff
>
>
> Starting with 5.2.x we're seeing SSL_ERROR_SSL type errors in
> {{ssl_read_from_net}}, when calling OpenSSL's {{ERR_error_string_n}} we see
> the error is {{1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad
> record mac}}.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
