-
Bug
-
Resolution: Done
-
High
-
Dublin Release
-
None
MSO encryption mehcansim changed in Dublin.
https://docs.onap.org/en/latest/submodules/oom.git/docs/oom_quickstart_guide.html
Existing method used in Casablanca to encrypt the Openstack password is no more valid and trigger to an error when trying to instantiate a module
2019-05-13T09:03:16.652Z|| org.onap.so.openstack.utils.MsoHeatUtils - Found: CloudSite_.._jvst4bf_3c[regionId=RegionOne,identityServiceId=DEFAULT_KEYSTONE,cloudVersion=2.5,clli=RegionOne,cloudifyId=<null>,platform=<null>,orchestrator=<null>]
2019-05-13T09:03:16.653Z|| org.onap.so.openstack.utils.MsoHeatUtils - Found: CloudIdentity[id=DEFAULT_KEYSTONE,
2019-05-13T09:03:16.653Z|| org.onap.so.openstack.utils.MsoHeatUtils - keystoneUrl=http://identity-wrapper.onap:5000/v2.0
2019-05-13T09:03:16.668Z|| org.onap.so.utils.CryptoUtils - RA_GENERAL_EXCEPTION 500 Exception in encryptPassword
javax.crypto.AEADBadTagException: Tag mismatch!
at com.sun.crypto.provider.GaloisCounterMode.decryptFinal(GaloisCounterMode.java:578)
at com.sun.crypto.provider.CipherCore.finalNoPadding(CipherCore.java:1116)
at com.sun.crypto.provider.CipherCore.fillOutputBuffer(CipherCore.java:1053)
at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:853)
at com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)
at javax.crypto.Cipher.doFinal(Cipher.java:2222)
at org.onap.so.utils.CryptoUtils.decrypt(CryptoUtils.java:84)
at org.onap.so.utils.CryptoUtils.decryptCloudConfigPassword(CryptoUtils.java:100)
at org.onap.so.cloud.authentication.AuthenticationMethodFactory.getAuthenticationFor(AuthenticationMethodFactory.java:61)
at org.onap.so.openstack.utils.MsoHeatUtils.getHeatClient(MsoHeatUtils.java:821)
at org.onap.so.openstack.utils.MsoHeatUtils.queryStack(MsoHeatUtils.java:502)
at org.onap.so.adapters.vnf.MsoVnfAdapterImpl.createVfModule(MsoVnfAdapterImpl.java:653)
at org.onap.so.adapters.vnf.MsoVnfAdapterImpl$$FastClassBySpringCGLIB$$8b1f101c.invoke(<generated>)
at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)
at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:746)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:294)
at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:98)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:185)
at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:688)
at org.onap.so.adapters.vnf.MsoVnfAdapterImpl$$EnhancerBySpringCGLIB$$3476dca3.createVfModule(<generated>)
at org.onap.so.adapters.vnf.VnfAdapterRest$CreateVfModuleTask.run(VnfAdapterRest.java:362)
at java.lang.Thread.run(Thread.java:748)
the way the encrypted password is generated must be modified
- mentioned in
-
Page Loading...