#engineering-discussions

SSL Handshake Failures with Systemd and Nginx

TLDR drdaga had repeated SSL handshake failures. Despite v_shnu's advice to restart services and reinstall, the issue persisted. The installation works, but with error logs. v_shnu suggested creating a GitHub issue.

Powered by Struct AI
Apr 07, 2022 (21 months ago)
drdaga
Photo of none
drdaga
05:52 AM
2022/04/07 00:50:04 [crit] 886#886: *381 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 160.116.22.22, server: 0.0.0.0:443
2022/04/07 04:50:34 [crit] 886#886: *435 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 184.105.139.67, server: 0.0.0.0:443
v_shnu
Photo of md5-310ea2ceb91b0b302b8f700488e094ad
v_shnu
06:42 AM
This is new. Could you restart the systemd chatwoot service ?
06:43
v_shnu
06:43 AM
also nginx as well
drdaga
Photo of none
drdaga
07:57 AM
yes i restarted but same error
08:45
drdaga
08:45 AM
finally i unstalled and reinstalled everything but needed to knw why it happened
v_shnu
Photo of md5-310ea2ceb91b0b302b8f700488e094ad
v_shnu
08:56 AM
I dont have much clue. If you could create a github issue over this, we can see if someone else encounter this in future
drdaga
Photo of none
drdaga
09:00 AM
ok thanks
09:01
drdaga
09:01 AM
even i reinstalled again
09:01
drdaga
09:01 AM
2022/04/07 08:29:37 [crit] 40994#40994: *87 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 107.178.200.205, server: 0.0.0.0:443
2022/04/07 08:56:08 [error] 845#845: *1 connect() failed (111: Connection refused) while connecting to upstream, client: 152.57.237.13, server: chat.imaginewebstudio.com, request: "GET /cable HTTP/1.1", upstream: "http://127.0.0.1:3000/cable", host: "chat.imaginewebstudio.com"
09:01
drdaga
09:01 AM
again got this error after few mins of succesfull install
v_shnu
Photo of md5-310ea2ceb91b0b302b8f700488e094ad
v_shnu
09:19 AM
this should be not happening
09:20
v_shnu
09:20 AM
did your installation just went down after a while?
Apr 08, 2022 (21 months ago)
drdaga
Photo of none
drdaga
07:22 AM
installation is still working but in error logs its

2022/04/07 08:29:37 [crit] 40994#40994: *87 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 107.178.200.205, server: 0.0.0.0:443
2022/04/07 08:56:08 [error] 845#845: *1 connect() failed (111: Connection refused) while connecting to upstream, client: 152.57.237.13, server: chat.imaginewebstudio.com, request: "GET /cable HTTP/1.1", upstream: "http://127.0.0.1:3000/cable", host: "chat.imaginewebstudio.com"
2022/04/07 21:15:33 [crit] 845#845: *1070 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 192.241.214.54, server: 0.0.0.0:443
2022/04/08 01:21:16 [crit] 845#845: *1147 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 184.105.247.196, server: 0.0.0.0:443
2022/04/08 01:34:10 [crit] 845#845: *1162 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client: 185.220.100.248, server: 0.0.0.0:443
v_shnu
Photo of md5-310ea2ceb91b0b302b8f700488e094ad
v_shnu
10:35 AM
okay so just to confirm
10:36
v_shnu
10:36 AM
the installation is working as expected apart from these logs ?
10:36
v_shnu
10:36 AM
sojan_official any thoughts on this one ?
drdaga
Photo of none
drdaga
12:08 PM
yes installation is now working apart from logs