Bug ID 439513

Bug Tracker
ID 439513

Bug ID 439513: When using netHSM key, the initial few connections drop after each tmm restart

Last Modified: Oct 16, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.6.2 HF1

Fixed In:
11.6.0, 11.5.1 HF6

Opened: Dec 03, 2013

Severity: 2-Critical

Symptoms

When netHSM key is used, the first few SSL connections fail after tmm restart.

Impact

The first few SSL connections fail. Subsequent connections recover.

Conditions

-- A netHSM key is used. -- A tmm restart occurs.

Workaround

To work around this: -- Wait a few seconds after tmm restart finishes. -- Manually restart pkcs11d.

Fix Information

The system now automatically reinitializes PKCS#11 APIs after seeing failures. This allows the netHSM-based SSL traffic to resume immediately after tmm restarts.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips