-
Type:
Bug
-
Resolution: Unresolved
-
Priority:
High
-
None
-
Affects Version/s: 10.0.1, 10.1.1, 10.1.2
-
Component/s: Server - Source Distribution
-
None
-
2
-
Severity 2 - Major
-
8
Issue Summary
Confluence 10.x doesn't include the SSLHostconfig parameters by deafult in server.xml file as per the latest changes with Tomcat 10
Steps to Reproduce
- Install a Confluence version prior to 10.x
- Run Confluence over HTTPS as per Running Confluence over SSL/HTTPS
- Upgrade Confluence to version 10.1
Expected Results
Confluence should come up after once upgrade is completed.
Actual Results
Confluence fails to start and in the application logs we see below error. This indicates that server.xml configuration for the HTTPS connector is missing or incorrectly configured an SSLHostConfig element.
The below exception is thrown in the atlassian.confluence.log file:
java.lang.IllegalArgumentException: No SSLHostConfig element was found with the hostName [_default_] to match the defaultSSLHostConfigName for the connector [https-jsse-nio2-9443]
Workaround
- Stop Confluence
- Take back up of <confluence_install>/conf/server.xml
- Add SSL config parameters similar to below and restart Confluence:
<Connector port="8443" relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>" protocol="org.apache.coyote.http11.Http11NioProtocol" maxHttpHeaderSize="8192" SSLEnabled="true" maxThreads="150" minSpareThreads="25" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true" useBodyEncodingForURI="true"> <SSLHostConfig protocols="TLSv1.2,TLSv1.3" certificateVerification="none"> <Certificate certificateKeyAlias="KeyAliasName" certificateKeystoreFile="/opt/atlassian/confluence/confluence_home/certs/keystore.jks" certificateKeystorePassword="changeit" certificateKeystoreType="JKS" /> </SSLHostConfig>
- relates to
-
CDDC-1278 Loading...