Problem Statement
Info |
---|
The profile is showing shows an error when trying to setup setting up an SSL connection to Oracle Database using SQL for ConflueneConfluence (pro). |
Environment
Application | Confluence |
---|---|
Database Type | Oracle |
Error Message
Code Block |
---|
javaxJAva.net.ssl.keyStore=e:\uatdbkeystore.jks;javax.net.ssl.keyStoreType=JKS;javax.net.ssl.keyStorePassword=keyStore-password;javax.net.ssl.trustStore=e:\uattruststore.jks;javax.net.ssl.trustStoreType=JKS;javax.net.ssl.trustStorePassword=password123 with the error message: sql.SQLRecoverableException: IO Error: General SSLEngine problem, connect lapse 64 ms., Authentication lapse 0 ms. |
Log Entries
Code Block |
---|
ERROR [http-nio-8096-exec-23] [confluence.sql.config.DBConnection] connectViaDriverManager Error while checking connection : java.sql.SQLRecoverableException: IO Error: General SSLEngine problem, connect lapse 79 ms., Authentication lapse 0 ms. – referer: |
Cause
Panel | ||
---|---|---|
| ||
The error could be is caused if the SSL certs are not trusted by Confluence Tomcat application does not trust the SSL certs. |
Solution
...
You need to
...
have a copy of the SSL certs and install it into Confluence
...
using Java cacerts using keytool.
Syntax to import certs into JAVA CACERTS:
Code Block |
---|
keytool -import -trustcacerts -keystore <cacerts path> -storepass <password> -noprompt -alias <alias-name> -file <cert_file_path> |
Error Message
Code Block |
---|
javax.net.ssl.keyStore=e:\uatdbkeystore.jks;javax.net.ssl.keyStoreType=JKS;javax.net.ssl.keyStorePassword=keyStore-password;javax.net.ssl.trustStore=e:\uattruststore.jks;javax.net.ssl.trustStoreType=JKS;javax.net.ssl.trustStorePassword=password123 with the error message: IO Error: General SSLEngine problem, connect lapse 6470 ms., Authentication lapse 0 ms. |
Log Entries
Code Block |
---|
ERROR [http-nio-8096-exec-2324] [confluence.sql.config.DBConnection] connectViaDriverManager Error while checking connection : java.sql.SQLRecoverableException: IO Error: General SSLEngine problem, connect lapse 7951 ms., Authentication lapse 0 ms. – referer: -- referer: https://<confluence-url>/admin/plugins/org.swift.confluence.sql/configure.action | url: /plugins/org.swift.confluence.sql/testconnection.action | traceId: <traced>| userName: test | action: testconnection |
Cause
Panel | ||
---|---|---|
| ||
The error could be caused if the SSL certs are not trusted by Confluence Tomcat application. |
Solution
We need to get a copy of the SSL certs and install it into Confluence used Java cacerts using keytool.
Syntax to import certs into JAVA CACERTS
Code Block keytool -import -trustcacerts -keystore <cacerts path> -storepass <password> -noprompt -alias <alias-name> -file <cert_file_path>
...
When you create the Resource Data Source within the Tomcat server.xml file, create another SQL Datasource profile from the Add-on page, and validate the Test Connection, you see the above error message in logs. |
Solution
To avoid the error message, you need to remove the profile from the SQL for Confluence configuration Add-on, i.e., from the SQL for Confluence configuration Add-on, go to view and modify Data source profiles and remove the related profile.
Error Message
Code Block |
---|
"Cannot create PoolableConnectionFactory (IO Error: NL Exception was generated TNS-04610: No literals left, reached end of NV pair)". |
Log Entries
Code Block |
---|
ERROR [http-nio-8096-exec-25] [confluence.sql.config.DBConnection] globalDSConnection Error finding Datasource : java.sql.SQLException: Cannot create PoolableConnectionFactory (IO Error: NL Exception was generated TNS-04610: No literals left, reached end of NV pair) |
Cause
Panel | ||
---|---|---|
| ||
When you create a new connection and choose the Data Source name, it pulls the information from the server.xml file and shows the correct port used for the SSL connection. So when you click on "Test Connection,” it gives the above error message. |
Solution
The issue is with the tnsnames.ora file in Oracle, and the solution would be to review(look for any unbalanced parenthesis) in the tnsnames.ora file and re-create.
If Datasource (with SSL connection ) is included within server.xml, it's not required to configure from the SQL add-on Profile page.
Info |
---|
Please note to backup of any oracle configuration file before making changes. |