SSL closes because of 'bad record MAC'

Posted on 2007-07-27
Last Modified: 2008-01-09
Hi all

I have the following problem

I Have 3 servers SERVER-A, SERVER-B and SERVER-C

SERVER-A is a reverse proxy allows only HTTPS
SERVER-B is a Web Server allows only HTTPS
SERVER-C is a kind of Server using it's own protocol

The client makes a CONNECT SERVER-B:443 HTTP/1.1 to SERVER-A
Then the client makes a CONNECT SERVER-C:1111 HTTP/1.1 to SERVER-B
Now the client has a secure tunnel from client to SERVER-B the connection from SERVER-B to SERVER-C is unsecure
If I have big load on the connection from the client to SERVER-C, then suddenly the SERVER-B get a 'bad record MAC' and the connection will be closed.

I'm thinking the client is sending a renegotiation message to the SERVER-B and this renegotiation is sent by the SSL from the first HTTPS connection
to SERVER-A. Is there a way to stop/shutdown or whatever the SSL connection without closing the underlying socket?

thanks a lot for your help
Question by:miyuki5237
    LVL 3

    Accepted Solution

    What could be happening is that your .unwrap() function is not reading the entire buffer.  You need to loop over that function call as long as the HandshakeStatus is NEED_UNWRAP or until you get a BUFFER_UNDERFLOW.

    Check out these links for more info:
    LVL 1

    Expert Comment

    Forced accept.

    EE Admin

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Suggested Solutions

    Introduction This article is the last of three articles that explain why and how the Experts Exchange QA Team does test automation for our web site. This article covers our test design approach and then goes through a simple test case example, how …
    You cannot be 100% sure that you can protect your organization against crypto ransomware but you can lower down the risk and impact of the infection.
    Viewers learn about the “while” loop and how to utilize it correctly in Java. Additionally, viewers begin exploring how to include conditional statements within a while loop and avoid an endless loop. Define While Loop: Basic Example: Explanatio…
    This tutorial will introduce the viewer to VisualVM for the Java platform application. This video explains an example program and covers the Overview, Monitor, and Heap Dump tabs.

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now