Hello,
I’m attempting to bring live the Ranger-KMS service with the intention of using encryption at rest. Ranger is up and running without issue but I cannot get the KMS service to stay up. The service starts and immediately dies. Pertinent Log info below. Any ideas or help are appreciated. This service being so new I haven’t had much GoogleLuck with resolution. Log info is at the bottom. I tried to limit the copy/paste to pertinent content. Thanks!
OS – Centos 6.6(Final)
HDP 2.3.0.0
HDFS – 2.7.1.2.3
Ranger – 0.5.0.2.3
KMS – 0.5.0.2.3
Ranger installed @ wn01
KMS installed @ wn02
Namenode HA is up across wn01 and wn02.
This is a vanilla install. Testing data only, limited activity.
/var/log/ranger/kms/kms.log:
Aug 19, 2015 10:44:02 AM org.apache.catalina.core.StandardService startInternal
INFO: Starting service Tomcat
Aug 19, 2015 10:44:02 AM org.apache.catalina.core.StandardEngine startInternal
INFO: Starting Servlet Engine: Apache Tomcat/7.0.55
Aug 19, 2015 10:44:02 AM org.apache.catalina.startup.ContextConfig getDefaultWebXmlFragment
INFO: No global web.xml found
java.security.InvalidKeyException: Illegal key size
at javax.crypto.Cipher.checkCryptoPerm(Cipher.java:1024)
at javax.crypto.Cipher.implInit(Cipher.java:790)
at javax.crypto.Cipher.chooseProvider(Cipher.java:849)
at javax.crypto.Cipher.init(Cipher.java:1348)
at javax.crypto.Cipher.init(Cipher.java:1282)
at org.apache.hadoop.crypto.key.RangerMasterKey.encryptKey(RangerMasterKey.java:177)
at org.apache.hadoop.crypto.key.RangerMasterKey.encryptMasterKey(RangerMasterKey.java:153)
at org.apache.hadoop.crypto.key.RangerMasterKey.generateMasterKey(RangerMasterKey.java:88)
at org.apache.hadoop.crypto.key.RangerKeyStoreProvider.<init>(RangerKeyStoreProvider.java:91)
at org.apache.hadoop.crypto.key.RangerKeyStoreProvider$Factory.createProvider(RangerKeyStoreProvider.java:386)
at org.apache.hadoop.crypto.key.KeyProviderFactory.get(KeyProviderFactory.java:95)
at org.apache.hadoop.crypto.key.kms.server.KMSWebApp.contextInitialized(KMSWebApp.java:176)
at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4992)
at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5490)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
at org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1575)
at org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1565)
at java.util.concurrent.FutureTask.run(FutureTask.java:262)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
at java.lang.Thread.run(Thread.java:745)
ERROR: Hadoop KMS could not be started
REASON: java.lang.NullPointerException
/var/log/ranger/kms/catalina.out:
2015-08-19 10:44:08,608 INFO connection – 2. Connection opened java.sql.DriverManager.getConnection(DriverManager.java:571)
2015-08-19 10:44:08,608 DEBUG connection – open connections: 2 (1)
2015-08-19 10:44:08,609 DEBUG audit – 2. Connection.new Connection returned java.sql.DriverManager.getConnection(DriverManager.java:571)
2015-08-19 10:44:08,680 INFO RangerKMSDB – Connected to DB : true
2015-08-19 10:44:08,682 INFO RangerMasterKey – Generating Master Key
2015-08-19 10:44:08,688 INFO AuditAsyncQueue – Stop called. name=kms.async
2015-08-19 10:44:08,688 INFO AuditAsyncQueue – Interrupting consumerThread. name=kms.async, consumer=kms.async.multi_dest
2015-08-19 10:44:08,688 INFO AuditAsyncQueue – Caught exception in consumer thread. Shutdown might be in progress
2015-08-19 10:44:08,688 INFO AuditAsyncQueue – Exiting polling loop. name=kms.async
2015-08-19 10:44:08,688 INFO AuditAsyncQueue – Calling to stop consumer. name=kms.async, consumer.name=kms.async.multi_dest
2015-08-19 10:44:08,688 INFO AuditBatchQueue – Stop called. name=kms.async.multi_dest.batch