Last Modified: Nov 07, 2022
Affected Product:
See more info
BIG-IP LTM
Known Affected Versions:
11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5
Fixed In:
11.6.0, 11.5.1 HF6
Opened: Dec 03, 2013
Severity: 2-Critical
When netHSM key is used, the first few SSL connections fail after tmm restart.
The first few SSL connections fail. Subsequent connections recover.
-- A netHSM key is used. -- A tmm restart occurs.
To work around this: -- Wait a few seconds after tmm restart finishes. -- Manually restart pkcs11d.
The system now automatically reinitializes PKCS#11 APIs after seeing failures. This allows the netHSM-based SSL traffic to resume immediately after tmm restarts.
