Received fatal alert: bad_record_mac

Brad Wetmore bradford.wetmore at oracle.com
Wed Oct 10 13:26:49 PDT 2012


I was probably too brief in my explanation.  The remote side isn't able 
to decrypt the encrypted packets properly.  It could be any number of 
things, but for some reason the keys exchanged between the peers likely 
was incorrect.  We have seen situations where Solaris' PKCS11 provider 
had some bugs, but we're not aware of any issues with recent versions of 
the JDK.

Brad

P.S.  jdk7-dev isn't a support channel.


On 10/10/2012 1:11 PM, Brad Wetmore wrote:
> This is an underlying problem with the cipher decryption on the remote
> side.  If you are using Solaris/PKCS11 for your crypto, make sure you
> are up to date with your patches.
>
> Brad
>
>
>
> On 10/9/2012 10:49 PM, Yegor Bugayenko wrote:
>> I'm seeing this exception time to time: "Received fatal alert:
>> bad_record_mac"
>>
>> The problem explained with details here:
>> http://stackoverflow.com/questions/12787657
>>
>> Can anybody suggest a simple workaround? I suspect that it's some command
>> line argument that I miss. Thanks.
>>
>>>> Yegor
>>


More information about the jdk7-dev mailing list