SSL handshake failure (error:14094412:SSL routines:ssl3_read_bytes:sslv3

Apr 20 14:40:14 haproxy[8]: [20/Apr/2024:14:40:14.378] newdcs_openretry_9992/1: SSL handshake failure (error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate)

We are experiencing a large number of these requests, causing our bandwidth to spike from 300Mbps to 1Gbps. We know that these requests are coming from Android devices, but we’re not sure why we are seeing this type of alert. It’s possible that we might be under attack by hackers, but we can’t be certain as we are unable to log into these Android devices. This is just our speculation.

haproxy config

  log /dev/log local0 info
  log /dev/log local0 notice
  log /dev/log local0 debug
  log local0
  pidfile /tmp/
  stats socket /tmp/haproxy.sock user haproxy group haproxy mode 660 level admin
  stats socket ipv4@ level admin expose-fd listeners
  #maxconn 50000 

  log global
  option tcplog
  mode tcp                 
  retries 2                
  balance roundrobin
  option redispatch        
  option abortonclose      
  option dontlognull       
  maxconn 1000000          
  timeout connect 5s       
  timeout client 50000     
  timeout server 50000     
  timeout client-fin 3s
  timeout check 3s         

listen newdcs_openretry_9992
  bind *:9992 ssl crt /usr/local/etc/haproxy/ssl/
  mode http
  http-request add-header X-Forwarded-For %[src]
  http-request add-header X-Forwarded-Proto https
  #option httpchk GET /ping
  #http-check expect status 200
  server devops-newdcs-nginx-102-104 check inter 5000 rise 2 fall 3 weight 6
  server devops-newdcs-nginx-102-105 check inter 5000 rise 2 fall 3 weight 6
  server devops-newdcs-nginx-102-106 check inter 5000 rise 2 fall 3 weight 6
  server devops-newdcs-nginx-102-107 check inter 5000 rise 2 fall 3 weight 6

Invalid certificate as stated