[openssl-users] Openssl 1.0.2o issue with FIPS mode set.

Ajay Nalawade ajay.nalawade at gmail.com
Thu Jul 5 12:55:27 UTC 2018


I am able to reproduce this issue with attached go lang based server. Am I
doing anything wrong here.
Is there any known issue, or any workaround available for this issue.

Thanks,
Ajay

On Thu, Jun 7, 2018 at 12:33 PM Ajay Nalawade <ajay.nalawade at gmail.com>
wrote:

> Hello,
>
> I have golang based openssl server with FIPS mode set. I am using Openssl
> library build with fips module 2.0.
> With Openssl 1.0.1u version, everything was running fine.
> Recently I upgraded to version 1.0.2o. With this version, under high
> traffic condition (more than 4k requests per minute), read request fails
> with following error.
> "SSL errors: SSL routines:SSL3_GET_RECORD:decryption failed or bad record
> mac"
>
> If I disable FIPS mode, every thing runs fine. Is there any known issue
> with version 1.0.2o with FIPS mode set.
>
> Thanks a lot in advance,
> Ajay
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180705/ba04d75e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: test_server.go
Type: application/octet-stream
Size: 2749 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180705/ba04d75e/attachment.obj>


More information about the openssl-users mailing list