Support Questions

Find answers, ask questions, and share your expertise

Decryption Failed with Algorithm [PBEWITHMD5AND256BITAES-CBC-OPENSSL]

avatar
Explorer

org.apache.nifi.web.server.JettyServer Failed to start web server... shutting down.
org.apache.nifi.encrypt.EncryptionException: Decryption Failed with Algorithm [PBEWITHMD5AND256BITAES-CBC-OPENSSL]
at org.apache.nifi.encrypt.CipherPropertyEncryptor.decrypt(CipherPropertyEncryptor.java:78)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.decrypt(StandardFlowComparator.java:272)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.lambda$compareProperties$2(StandardFlowComparator.java:282)
at java.util.LinkedHashMap.forEach(LinkedHashMap.java:684)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compareProperties(StandardFlowComparator.java:280)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compare(StandardFlowComparator.java:258)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.lambda$compareComponents$0(StandardFlowComparator.java:105)
at java.util.HashMap.forEach(HashMap.java:1290)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compareComponents(StandardFlowComparator.java:103)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compare(StandardFlowComparator.java:458)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.lambda$compare$4(StandardFlowComparator.java:463)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.lambda$compareComponents$0(StandardFlowComparator.java:105)
at java.util.HashMap.forEach(HashMap.java:1290)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compareComponents(StandardFlowComparator.java:103)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compare(StandardFlowComparator.java:463)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compare(StandardFlowComparator.java:92)
at org.apache.nifi.registry.flow.diff.StandardFlowComparator.compare(StandardFlowComparator.java:77)
at org.apache.nifi.controller.serialization.VersionedFlowSynchronizer.compareFlows(VersionedFlowSynchronizer.java:378)
at org.apache.nifi.controller.serialization.VersionedFlowSynchronizer.sync(VersionedFlowSynchronizer.java:164)
at org.apache.nifi.controller.serialization.StandardFlowSynchronizer.sync(StandardFlowSynchronizer.java:43)
at org.apache.nifi.controller.FlowController.synchronize(FlowController.java:1479)
at org.apache.nifi.persistence.StandardFlowConfigurationDAO.load(StandardFlowConfigurationDAO.java:104)
at org.apache.nifi.controller.StandardFlowService.loadFromBytes(StandardFlowService.java:815)
at org.apache.nifi.controller.StandardFlowService.load(StandardFlowService.java:457)
at org.apache.nifi.web.server.JettyServer.start(JettyServer.java:1086)
at org.apache.nifi.NiFi.<init>(NiFi.java:170)
at org.apache.nifi.NiFi.<init>(NiFi.java:82)
at org.apache.nifi.NiFi.main(NiFi.java:330)
Caused by: javax.crypto.BadPaddingException: pad block corrupted
at org.bouncycastle.jcajce.provider.symmetric.util.BaseBlockCipher$BufferedGenericBlockCipher.doFinal(Unknown Source)
at org.bouncycastle.jcajce.provider.symmetric.util.BaseBlockCipher.engineDoFinal(Unknown Source)
at javax.crypto.Cipher.doFinal(Cipher.java:2168)
at org.apache.nifi.encrypt.CipherPropertyEncryptor.decrypt(CipherPropertyEncryptor.java:74)
... 27 common frames omitted
2023-03-15 09:34:55,422 INFO [Thread-1] org.apache.nifi.NiFi Application Server shutdown started

seeing above error after upgrading to new version , please help 

1 ACCEPTED SOLUTION

avatar
7 REPLIES 7

avatar
Community Manager

@Sivagopal, Welcome to our community! To help you get the best possible answer, I have tagged in our NiFi experts @MattWho @SAMSAL @cotopaul @steven-matison who may be able to assist you further.

Please feel free to provide any additional information or details about your query, and we hope that you will find a satisfactory solution to your question.



Regards,

Vidya Sargur,
Community Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:

avatar

hi @Sivagopal ,

What NiFi Version are you running and what property did you set in nifi.sensitive.props.algorithm? As far as I know, since version 1.14, the algorithm
PBEWITHMD5AND256BITAES-CBC-OPENSSL might have been deprecated and you need to use a newly supported/updated version, which can be found here: https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#updating-the-sensitive-propert... --> Property Encryption Algorithms Section.

avatar
Explorer

Hi @cotopaul , Thanks for Response ,

using 1.16.0 version , already in cluster there are 3 node two is down due to above Decryption Failed with Algorithm [PBEWITHMD5AND256BITAES-CBC-OPENSSL] and Coordinator is UP and running with PBEWITHMD5AND256BITAES-CBC-OPENSSL Algorithm .

 

avatar
Explorer

@cotopaul  While upgrading a node in a cluster want to retrieve the  flow.xml.gz and flow.json.gz from Coordinator which is active in cluster , is it possible ?

avatar

@Sivagopal   Check out this post for a similar scenario.  It includes a solution:

 

https://community.cloudera.com/t5/Support-Questions/Nifi-1-16-fails-to-start-with-Decryption-excepti...

 

 

avatar
Explorer

Thanks @steven-matison @cotopaul @VidyaSargur .

It worked .. 

avatar

Awesome news, +2 solutions here.