Bug ID 439513: When using netHSM key, the initial few connections drop after each tmm restart

Last Modified: Oct 16, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.6.2 HF1

Fixed In:
11.6.0, 11.5.1 HF6

Opened: Dec 03, 2013

Severity: 2-Critical


When netHSM key is used, the first few SSL connections fail after tmm restart.


The first few SSL connections fail. Subsequent connections recover.


-- A netHSM key is used. -- A tmm restart occurs.


To work around this: -- Wait a few seconds after tmm restart finishes. -- Manually restart pkcs11d.

Fix Information

The system now automatically reinitializes PKCS#11 APIs after seeing failures. This allows the netHSM-based SSL traffic to resume immediately after tmm restarts.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips