根据 https://doris.apache.org/zh-CN/docs/admin-manual/auth/ranger 配置, 在添加doris服务的时候, 点Test Connection, 页面显示连接成功, 但是后台日志报错
2024-07-09 05:08:34,667 [timed-executor-pool-0] WARN [SecureClientLogin.java:123] Can't find keyTab Path : null
2024-07-09 05:08:34,667 [timed-executor-pool-0] WARN [SecureClientLogin.java:127] Can't find principal : null
2024-07-09 05:08:34,668 [timed-executor-pool-0] ERROR [PasswordUtils.java:165] Unable to decrypt password due to error
javax.crypto.IllegalBlockSizeException: Input length must be multiple of 8 when decrypting with padded cipher
at com.sun.crypto.provider.CipherCore.prepareInputBuffer(CipherCore.java:1005)
at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:848)
at com.sun.crypto.provider.PBES1Core.doFinal(PBES1Core.java:432)
at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineDoFinal(PBEWithMD5AndDESCipher.java:316)
at javax.crypto.Cipher.doFinal(Cipher.java:2164)
at org.apache.ranger.plugin.util.PasswordUtils.decrypt(PasswordUtils.java:150)
at org.apache.ranger.plugin.util.PasswordUtils.decryptPassword(PasswordUtils.java:138)
at org.apache.ranger.plugin.client.BaseClient.login(BaseClient.java:109)
at org.apache.ranger.plugin.client.BaseClient.<init>(BaseClient.java:61)
at org.apache.ranger.plugin.client.BaseClient.<init>(BaseClient.java:53)
at org.apache.ranger.services.doris.client.DorisClient.<init>(DorisClient.java:65)
at org.apache.ranger.services.doris.client.DorisClient.connectionTest(DorisClient.java:622)
at org.apache.ranger.services.doris.client.DorisResourceManager.connectionTest(DorisResourceManager.java:50)
at org.apache.ranger.services.doris.RangerServiceDoris.validateConfig(RangerServiceDoris.java:52)
at org.apache.ranger.biz.ServiceMgr$ValidateCallable.actualCall(ServiceMgr.java:655)
at org.apache.ranger.biz.ServiceMgr$ValidateCallable.actualCall(ServiceMgr.java:642)
at org.apache.ranger.biz.ServiceMgr$TimedCallable.call(ServiceMgr.java:603)
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
2024-07-09 05:08:34,668 [timed-executor-pool-0] INFO [BaseClient.java:111] Password decryption failed; trying connection with received password string
2024-07-09 05:08:34,668 [timed-executor-pool-0] INFO [BaseClient.java:126] Init Login: security not enabled, using username
点击save后, 再次进入页面测试连接报错
Connection Failed.
Unable to retrieve any files using given parameters, You can still save the repository and start creating policies, but you would not be able to use autocomplete for resource names. Check ranger_admin.log for more info.
org.apache.ranger.plugin.client.HadoopException: Unable to connect to Presto instance..
Access denied for user 'admin@10.172.130.176' (using password: YES)
同时后台报错
2024-07-09 05:10:33,973 [timed-executor-pool-0] WARN [SecureClientLogin.java:123] Can't find keyTab Path : null
2024-07-09 05:10:33,974 [timed-executor-pool-0] WARN [SecureClientLogin.java:127] Can't find principal : null
2024-07-09 05:10:33,980 [timed-executor-pool-0] INFO [BaseClient.java:126] Init Login: security not enabled, using username
2024-07-09 05:10:34,000 [timed-executor-pool-0] ERROR [DorisResourceManager.java:52] <== DorisResourceManager.connectionTest() Error: org.apache.ranger.plugin.client.HadoopException: Unable to connect to Presto instance.
2024-07-09 05:10:34,000 [timed-executor-pool-0] ERROR [RangerServiceDoris.java:54] <== RangerServiceDoris.validateConfig() Error:org.apache.ranger.plugin.client.HadoopException: Unable to connect to Presto instance.
2024-07-09 05:10:34,000 [timed-executor-pool-0] ERROR [ServiceMgr.java:605] TimedCallable.call: Error:org.apache.ranger.plugin.client.HadoopException: Unable to connect to Presto instance.
2024-07-09 05:10:34,008 [http-nio-6080-exec-2] ERROR [ServiceMgr.java:201] ==> ServiceMgr.validateConfig Error:org.apache.ranger.plugin.client.HadoopException: org.apache.ranger.plugin.client.HadoopException: Unable to connect to Presto instance.
看错误好像是加密后的密码长度不对? 这个是ranger的原因, 还是doris插件的原因啊?