We are having some problems with SSL session stickiness.
Everything works from the browser, however from load runner we are having problems.
We turned off new session for each connection, and it is pinning, but what we noticed now is the session is lost deep into the transaction.
We connect to one web site, then another, and when we connect back to the original the ssl session id is lost.
Have you guys seen something like this with Vugen and LR 11.52 recently?
we did a trace and found it is not persisting the ssl session id.
Tried everything in the script, including web_set_sockets_option("MAX_CONNECTIONS_PER_HOST","1");
Works from the browser, does not work from load runner.
Even recording does not persist the session id, bounces around.
After enabling the trace found the message below.
web_set_sockets_option("TRACE_SSL_IO", "1");
web_set_sockets_option("PRINT_SSL_INFO", "1");
Transaction.c(25): [SSL:] X509 certificate error 19: self signed certificate in certificate chain
for certificate "/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5"
depth=2, x509_ctx=06B4CC14, x509_ctx->ctx=07106438, preverify_ok=0, current_cert=070D6698, subject_name=0712FCE8 [MsgId: MMSG-26000]
Transaction.c(25): [SSL:] Considering establishing the above as a new global SSL session: bSslRessionReuseGlobal=1, _ptSSL=0712D080, bSslRessionReuseGlobal=07086B10, ptConnectedSslSession=00000000. Global session (_ptGlobalSslSession=00000001): no session [MsgId: MMSG-26000]
Definitely not reusing the ssl session id, and the certificate chain error is interesting considering it is set to use Windows store and all intermediate and trust is in there.
I also hit the server directly each server and verified gave back the proper cert for each one.
Can someone let me know of any tips why this is occurring:
Transaction.c(25): [SSL:] X509 certificate error 19: self signed certificate in certificate chain
for certificate "/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5"