Bug ID 439513: When using netHSM key, the initial few connections drop after each tmm restart

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5

Fixed In:
11.6.0, 11.5.1 HF6

Opened: Dec 03, 2013
Severity: 2-Critical


When netHSM key is used, the first few SSL connections fail after tmm restart.


The first few SSL connections fail. Subsequent connections recover.


-- A netHSM key is used. -- A tmm restart occurs.


To work around this: -- Wait a few seconds after tmm restart finishes. -- Manually restart pkcs11d.

Fix Information

The system now automatically reinitializes PKCS#11 APIs after seeing failures. This allows the netHSM-based SSL traffic to resume immediately after tmm restarts.

Behavior Change