Skip to content
DataMiner DoJo

More results...

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Search in posts
Search in pages
Search in posts
Search in pages
Log in
Menu
  • Updates & Insights
  • Questions
  • Learning
    • E-learning Courses
    • Empower Replay: Limited Edition
    • Tutorials
    • Open Classroom Training
    • Certification
      • DataMiner Fundamentals
      • DataMiner Configurator
      • DataMiner Automation
      • Scripts & Connectors Developer: HTTP Basics
      • Scripts & Connectors Developer: SNMP Basics
      • Visual Overview – Level 1
      • Verify a certificate
    • Video Library
    • Books We Like
    • >> Go to DataMiner Docs
  • Expert Center
    • Solutions & Use Cases
      • Solutions
      • Use Case Library
    • Markets & Industries
      • Media production
      • Government & defense
      • Content distribution
      • Service providers
      • Partners
      • OSS/BSS
    • Agile
      • Agile Webspace
      • Everything Agile
        • The Agile Manifesto
        • Best Practices
        • Retro Recipes
      • Methodologies
        • The Scrum Framework
        • Kanban
        • Extreme Programming
      • Roles
        • The Product Owner
        • The Agile Coach
        • The Quality & UX Coach (QX)
    • DataMiner DevOps Professional Program
      • About the DevOps Program
      • DataMiner DevOps Support
  • Downloads
  • More
    • DataMiner Releases & Updates
    • Feature Suggestions
    • Climb the leaderboard!
    • Swag Shop
    • Contact
    • Global Feedback Survey
  • PARTNERS
    • All Partners
    • Technology Partners
    • Strategic Partner Program
    • Deal Registration
  • >> Go to dataminer.services

HTTPS TLSv1.2 Encrypted Alert

Solved1.45K views11th July 2023SSL-TLS
0
Bernard Pichot [SLC] [DevOps Advocate]1.10K 1st April 2022 0 Comments

I’ve a driver that use an https rest API and from time to time the device send a TLSv1.2 Encrypted Alert. This alert seems delay the execution of call on the API. Is it a normal behavior for a device to send this message? what could be the reason ?

Marieke Goethals [SLC] [DevOps Catalyst] Selected answer as best 11th July 2023

1 Answer

  • Active
  • Voted
  • Newest
  • Oldest
1
Ive Herreman [SLC] [DevOps Enabler]13.59K Posted 1st April 2022 2 Comments

Hi Bernard,

The encrypted alert is very likely the start of the orderly termination of the secured TCP connection.
It is a ‘close notification’ being sent by the server indicating that the socket application issued an SSL shutdown.

That suspicion is further strengthened by the FIN package sent straight after the alert, indicating that the remote system is ending the TCP connection (gracefully).

There is some more interesting info on the SSL alerts available in RFC5246

Marieke Goethals [SLC] [DevOps Catalyst] Selected answer as best 11th July 2023
Bernard Pichot [SLC] [DevOps Advocate] commented 1st April 2022

Thanks Ive,

The alert code is 21 decryption_failed

Decryption of a TLSCiphertext record is decrypted in an invalid way: either it was not an even multiple of the block length or its padding values, when checked, were not correct. This message is always fatal.

Does a protocol is aware that the https connection will be renew ?

Ive Herreman [SLC] [DevOps Enabler] commented 1st April 2022

Hi Bernard,

I don’t believe 21 is not the alert number.
21 is the record type of all alert records, and since the alert record is encrypted and Wireshark can’t decrypt it displays it as a generic “Encrypted Alert”.

Debugging this from the dataminer side will be difficult since it’s the remote system that sends the alert and terminates the connection. It might be that this is still a valid TCP connection termination after a full response was provided.

The protocol should be aware of the connection termination.
Ofcourse all of this is depending on how you have your SSL communication integrated in your protocol.

Please login to be able to comment or post an answer.

My DevOps rank

DevOps Members get more insights on their profile page.

My user earnings

0 Dojo credits

Spend your credits in our swag shop.

0 Reputation points

Boost your reputation, climb the leaderboard.

Promo banner DataMiner DevOps Professiona Program
DataMiner Integration Studio (DIS)
Empower Katas
Privacy Policy • Terms & Conditions • Contact

© 2025 Skyline Communications. All rights reserved.

DOJO Q&A widget

Can't find what you need?

? Explore the Q&A DataMiner Docs