Skip to content

output_http with tls produces "error="SSL_connect returned=1 errno=0 state=error: tlsv1 alert internal error" #3647

Closed
Closed
output_http with tls produces "error="SSL_connect returned=1 errno=0 state=error: tlsv1 alert internal error"#3647
Labels
stale
@zouyingjie

Description

@zouyingjie
zouyingjie
opened on Feb 27, 2022

Describe the bug

Sending data via output_http plugin with TLS configuration produces errors on fluentd side.

To Reproduce

  • Start an HTTP server that supports mTLS.
  • Use the output_http plugin to send data and set tls_ca_cert_pathtls_client_cert_path, tls_ private_ key_ path and https endpoint.

Then restart fluentd.

Expected behavior

Log data can be sent successfully

Your Environment

- TD Agent version: td-agent 4.3.0 fluentd 1.14.3 (438a82aead488a86180cd484bbc4e7e344a9032b)
- Operating system: NAME="Ubuntu" VERSION="20.04.1 LTS (Focal Fossa)"
- Kernel version:

Your Configuration

<source>
  @id system-log-mw02
  @type syslog
  port 5140
  tag system-log
</source>

<filter system-log**>
  @type record_transformer
  <record>
  service "mw02"
  </record>
</filter>

<match system-log**>
  @type http

  # list of seed brokers
  endpoint  https://192.168.1.1:30001/logs
  json_array true

  <format>
    @type json
  </format>

  tls_ca_cert_path /etc/td-agent/tls/tls_ca_cert.pem
  tls_client_cert_path /etc/td-agent/tls/client.crt
  tls_private_key_path /etc/td-agent/tls/client.key

  <buffer>
    flush_interval 10s
  </buffer>

</match>

Your Error Log

2022-02-27 09:54:07 +0000 [warn]: #0 failed to flush the buffer. retry_times=1 next_retry_time=2022-02-27 09:54:09 +0000 chunk="5d8fce5bd199331812fafb9e9693d772" error_class=OpenSSL::SSL::SSLError error="SSL_connect returned=1 errno=0 state=error: tlsv1 alert internal error"
  2022-02-27 09:54:07 +0000 [warn]: #0 suppressed same stacktrace
2022-02-27 09:54:08 +0000 [warn]: #0 failed to flush the buffer. retry_times=2 next_retry_time=2022-02-27 09:54:11 +0000 chunk="5d8fce5bd199331812fafb9e9693d772" error_class=OpenSSL::SSL::SSLError error="SSL_connect returned=1 errno=0 state=error: tlsv1 alert internal error"

Additional context

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    stale

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions