OAM Cluster Is Down Due To Network Scans (Doc ID 1917161.1)

Last updated on FEBRUARY 21, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.1.0 and later
Information in this document applies to any platform.

Symptoms

The network scans have brought down the OAM cluster throwing the following exception. 

<Jul 3, 2014 5:34:19 PM EDT> <Warning> <Coherence> <BEA-000000> <2014-07-03 17:34:19.378/1141367.258 Oracle Coherence GE 3.7.1.1 <Warning> (thread=PacketListener1, member=3): TcpDatagramSocket{bind=ServerSocket[addr=/xxx.xx.xx.xx,localport=9099]}, exception regarding peer /xxx.xx.x.xx:3719, no cipher suites in common> 
<Jul 3, 2014 5:34:19 PM EDT> <Error> <Coherence> <BEA-000000> <2014-07-03 17:34:19.386/1141367.266 Oracle Coherence GE 3.7.1.1 <Error> (thread=PacketListener1P, member=3): Stopping cluster due to unhandled exception: java.lang.RuntimeException: Could not generate secret
                at sun.security.ssl.Handshaker.checkThrown(Handshaker.java:1359)
                at sun.security.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:513)
                at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:790)
                at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:758)
                at com.tangosol.net.ssl.SSLSocketChannel.decrypt(SSLSocketChannel.java:515)
                at com.tangosol.net.ssl.SSLSocketChannel.readInternal(SSLSocketChannel.java:359)
                at com.tangosol.net.ssl.SSLSocketChannel.read(SSLSocketChannel.java:135)
                at com.tangosol.net.TcpDatagramSocket$Impl.onConnectionHeader(TcpDatagramSocket.java:900)
                at com.tangosol.net.NonBlockingTcpDatagramSocket$Impl.onConnectionHeader(NonBlockingTcpDatagramSocket.java:177)
                at com.tangosol.net.TcpDatagramSocket$Impl.onRead(TcpDatagramSocket.java:693)
                at com.tangosol.net.TcpDatagramSocket$Impl.nextKey(TcpDatagramSocket.java:598)
                at com.tangosol.net.TcpDatagramSocket$Impl.receive(TcpDatagramSocket.java:516)
                at com.tangosol.net.TcpDatagramSocket.receive(TcpDatagramSocket.java:278)
                at com.tangosol.coherence.component.net.socket.UdpSocket.receive(UdpSocket.CDB:22)
                at com.tangosol.coherence.component.net.UdpPacket.receive(UdpPacket.CDB:1)
                at com.tangosol.coherence.component.util.daemon.queueProcessor.packetProcessor.PacketListener.onNotify(PacketListener.CDB:20)
                at com.tangosol.coherence.component.util.Daemon.run(Daemon.CDB:42)
                at java.lang.Thread.run(Thread.java:724)
Caused by: java.lang.RuntimeException: Could not generate secret
                at sun.security.ssl.DHCrypt.getAgreedSecret(DHCrypt.java:214)
                at sun.security.ssl.ServerHandshaker.clientKeyExchange(ServerHandshaker.java:1368)
                at sun.security.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:214)
                at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868)
                at sun.security.ssl.Handshaker$1.run(Handshaker.java:808)
                at sun.security.ssl.Handshaker$1.run(Handshaker.java:806)
                at java.security.AccessController.doPrivileged(Native Method)
                at sun.security.ssl.Handshaker$DelegatedTask.run(Handshaker.java:1299)
                at com.tangosol.net.ssl.SSLSocketChannel$2.run(SSLSocketChannel.java:640)
                at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
                at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
                ... 1 more
Caused by: java.security.InvalidKeyException: Diffie-Hellman public key is too small
                at sun.security.util.KeyUtil.validateDHPublicKey(KeyUtil.java:193)
                at sun.security.util.KeyUtil.validateDHPublicKey(KeyUtil.java:177)
                at sun.security.util.KeyUtil.validate(KeyUtil.java:116)
                at com.sun.crypto.provider.DHKeyAgreement.engineDoPhase(DHKeyAgreement.java:206)
                at javax.crypto.KeyAgreement.doPhase(KeyAgreement.java:551)
                at sun.security.ssl.DHCrypt.getAgreedSecret(DHCrypt.java:211)
                ... 11 more
>

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms