Bug ID 773821: Certain plaintext traffic may cause SSLO to hang

Last Modified: Jul 07, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2, 15.0.0, 15.0.1,,

Fixed In:,

Opened: Apr 18, 2019
Severity: 3-Major


SSLO relies on SSL hudfilter to detect non-SSL traffic; but certain plaintext can be mistaken as SSL traffic, which can cause a hang.


SSLO hangs, unable to bypass traffic.


Initial plaintext traffic resembles SSLv2 hello message or has less than enough bytes for SSL to process.



Fix Information

Improve SSL hello parser.

Behavior Change