ERR_SSL_BAD_RECORD_MAC_ALERT when trying to reuse SSL session
abiliojr at gmail.com
Thu Mar 8 11:16:50 UTC 2018
Using NGINX 1.12.2 on MIPS (haven't tested on x86), if I set:
ssl_session_cache shared:SSL:1m; # it also fails with 10m
And the client reestablishes the connection, it
gets: net::ERR_SSL_BAD_RECORD_MAC_ALERT when trying to reuse SSL session.
Has anyone seen anything like this?
This was tested on 1.12.2, on a MIPS CPU, using OpenSSL 1.0.2j, and built
by gcc 4.8.3 (OpenWrt/Linaro GCC 4.8-2014.04 r47070).
Interesting portion of my configuration file:
listen 443 ssl;
ssl_session_cache shared:SSL:1m; # set to 10m, still fails, remove, the
problem seems to disappear
keepalive_timeout 1s; # reduced during troubleshooting to make it
keepalive_requests 1; # reduced during troubleshooting to make it
include apiv1.conf; # where all the location rules are
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the nginx