Handshake failure: Bad Record MAC


#1

I’m running haproxy 1.5.18-6.el7 plus openssl 1.0.2k, and some clients are getting random SSL handshake errors. Looking at the network level, almost all of them fails with this message: Bad Record MAC.

The only information related to haproxy and openssl that I could find is this thread:

https://www.mail-archive.com/haproxy@formilux.org/msg26496.html

I had double checked that the openssl version I’m running has the fix but the failures still happen. So I’m in a dead end here, can someone help me?


#2

You will have to provide more details. How can we reproduce this, which OS/client software causes this, and does this always happen to specific clients or is it completely random?