OCI - Mosip 1.2.0 V3 Installation failing for keymanager

subhashchandrab · March 8, 2024, 8:57am

Hi

I’m following the documentation https://docs.mosip.io/1.2.0/deploymentnew/v3-installation/aws-installation-guidelines-new to setup MOSIP on Oracle Cloud environment. Currently I’m facing the below issue when trying to setup the keymanager. All kernel-keygen pods are failing with following error and the job kernel-keygen is unsuccesful. Can you please check and confirm whether any of the prerequisites are missing here. I’m using the default conf secrets and config server.

“@timestamp”:“2024-03-08T07:27:52.974Z”,“@version”:“1”,“message”:“Application run failed”,“logger_name”:“org.springframework.boot.SpringApplication”,“thread_name”:“main”,“level”:“ERROR”,“level_value”:40000,“stack_trace”:“java.lang.IllegalStateException: Failed to execute CommandLineRunner\n\tat org.springframework.boot.SpringApplication.callRunner(SpringApplication.java:800)\n\tat org.springframework.boot.SpringApplication.callRunners(SpringApplication.java:781)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:335)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:1255)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:1243)\n\tat io.mosip.kernel.keygenerator.KeysGeneratorApplication.main(KeysGeneratorApplication.java:23)\n\tat java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)\n\tat java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)\n\tat java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)\n\tat java.base/java.lang.reflect.Method.invoke(Method.java:566)\n\tat org.springframework.boot.loader.MainMethodRunner.run(MainMethodRunner.java:48)\n\tat org.springframework.boot.loader.Launcher.launch(Launcher.java:87)\n\tat org.springframework.boot.loader.Launcher.launch(Launcher.java:50)\n\tat org.springframework.boot.loader.PropertiesLauncher.main(PropertiesLauncher.java:593)\nCaused by: io.mosip.kernel.keymanagerservice.exception.InvalidApplicationIdException: KER-KMS-002 → ApplicationId not found in Key Policy. Key/CSR generation not allowed.\n\tat io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper.getKeyPolicy(KeymanagerDBHelper.java:257)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl.generateMasterKey(KeymanagerServiceImpl.java:488)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl$$FastClassBySpringCGLIB$$37c188ac.invoke()\n\tat org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)\n\tat org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:746)\n\tat org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)\n\tat org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:294)\n\tat org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:98)\n\tat org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:185)\n\tat org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:688)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl$$EnhancerBySpringCGLIB$$fa9e7ffb.generateMasterKey()\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.generateMasterKey(KeysGenerator.java:195)\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.lambda$generateKeys$0(KeysGenerator.java:120)\n\tat java.base/java.util.ArrayList.forEach(ArrayList.java:1541)\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.generateKeys(KeysGenerator.java:100)\n\tat io.mosip.kernel.keygenerator.KeysGeneratorApplication.run(KeysGeneratorApplication.java:31)\n\tat org.springframework.boot.SpringApplication.callRunner(SpringApplication.java:797)\n\t… 13 common frames omitted\n”,“appName”:“keys-generator”}

sanchi-singh24 · March 12, 2024, 11:36am

Hi @subhashchandrab

We have gone through the logs, please we would request you to share the full log file to understand the issue.

Best Regards,
Team MOSIP

subhashchandrab · March 12, 2024, 12:12pm

{“@timestamp”:“2024-03-11T08:39:23.385Z”,“@version”:“1”,“message”:“sessionId - applicationId - KERNEL - Getting Key CSR for application ID: KERNEL, RefId: SIGN”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.423Z”,“@version”:“1”,“message”:“Generated Master Key for Application ID & ReferenceId: KERNEL:SIGN”,“logger_name”:“io.mosip.kernel.keygenerator.generator.KeysGenerator”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.424Z”,“@version”:“1”,“message”:“sessionId - - - Fetching Key Policy for keyPolicyName(Cache): PRE_REGISTRATION”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.426Z”,“@version”:“1”,“message”:“sessionId - applicationId - - Request for Master Key Generation”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.426Z”,“@version”:“1”,“message”:“sessionId - applicationId - PRE_REGISTRATION - Generate Key for application ID: PRE_REGISTRATION, RefId: , force flag: false”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.426Z”,“@version”:“1”,“message”:“sessionId - - - Getting key alias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.428Z”,“@version”:“1”,“message”:“sessionId - PRE_REGISTRATION - - PreExpireDays found as key policy:60”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.428Z”,“@version”:“1”,“message”:“sessionId - keyAlias - [KeyAlias(alias=da973c45-4cd2-4b49-8e63-cc9b5286c7fa, applicationId=PRE_REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.161599, keyExpiryTime=2027-03-08T07:22:28.161599, status=null, certThumbprint=5928F3A7C345C1AAEEA1418C4AD974963EC9FFB20F38E65396C712FCFDC947FD, uniqueIdentifier=4A0BDE279E37B250BF411A1C8D6B10F0FBDE5798)] - keyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.428Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - [KeyAlias(alias=da973c45-4cd2-4b49-8e63-cc9b5286c7fa, applicationId=PRE_REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.161599, keyExpiryTime=2027-03-08T07:22:28.161599, status=null, certThumbprint=5928F3A7C345C1AAEEA1418C4AD974963EC9FFB20F38E65396C712FCFDC947FD, uniqueIdentifier=4A0BDE279E37B250BF411A1C8D6B10F0FBDE5798)] - currentKeyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.428Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - 1 - key details present in DBKeyAlias(alias=da973c45-4cd2-4b49-8e63-cc9b5286c7fa, applicationId=PRE_REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.161599, keyExpiryTime=2027-03-08T07:22:28.161599, status=null, certThumbprint=5928F3A7C345C1AAEEA1418C4AD974963EC9FFB20F38E65396C712FCFDC947FD, uniqueIdentifier=4A0BDE279E37B250BF411A1C8D6B10F0FBDE5798)”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.428Z”,“@version”:“1”,“message”:“sessionId - applicationId - PRE_REGISTRATION - Getting Key CSR for application ID: PRE_REGISTRATION, RefId: “,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{”@timestamp”:“2024-03-11T08:39:23.462Z”,“@version”:“1”,“message”:“Generated Master Key for Application ID & ReferenceId: PRE_REGISTRATION”,“logger_name”:“io.mosip.kernel.keygenerator.generator.KeysGenerator”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.463Z”,“@version”:“1”,“message”:“sessionId - - - Fetching Key Policy for keyPolicyName(Cache): REGISTRATION”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.465Z”,“@version”:“1”,“message”:“sessionId - applicationId - - Request for Master Key Generation”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.465Z”,“@version”:“1”,“message”:“sessionId - applicationId - REGISTRATION - Generate Key for application ID: REGISTRATION, RefId: , force flag: false”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.465Z”,“@version”:“1”,“message”:“sessionId - - - Getting key alias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.467Z”,“@version”:“1”,“message”:“sessionId - REGISTRATION - - PreExpireDays found as key policy:60”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.467Z”,“@version”:“1”,“message”:“sessionId - keyAlias - [KeyAlias(alias=95a08d63-43db-4c17-a1d5-217894a28860, applicationId=REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.406050, keyExpiryTime=2027-03-08T07:22:28.406050, status=null, certThumbprint=AA65596C98291BAFE01086A52BE6118F8540D4EDB7210AFED80F5518CE43C89D, uniqueIdentifier=5D99774EB260A5565CEF032D2015C9C91725AEA2)] - keyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.467Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - [KeyAlias(alias=95a08d63-43db-4c17-a1d5-217894a28860, applicationId=REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.406050, keyExpiryTime=2027-03-08T07:22:28.406050, status=null, certThumbprint=AA65596C98291BAFE01086A52BE6118F8540D4EDB7210AFED80F5518CE43C89D, uniqueIdentifier=5D99774EB260A5565CEF032D2015C9C91725AEA2)] - currentKeyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.467Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - 1 - key details present in DBKeyAlias(alias=95a08d63-43db-4c17-a1d5-217894a28860, applicationId=REGISTRATION, referenceId=, keyGenerationTime=2024-03-08T07:22:28.406050, keyExpiryTime=2027-03-08T07:22:28.406050, status=null, certThumbprint=AA65596C98291BAFE01086A52BE6118F8540D4EDB7210AFED80F5518CE43C89D, uniqueIdentifier=5D99774EB260A5565CEF032D2015C9C91725AEA2)”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.467Z”,“@version”:“1”,“message”:“sessionId - applicationId - REGISTRATION - Getting Key CSR for application ID: REGISTRATION, RefId: “,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{”@timestamp”:“2024-03-11T08:39:23.548Z”,“@version”:“1”,“message”:“Generated Master Key for Application ID & ReferenceId: REGISTRATION”,“logger_name”:“io.mosip.kernel.keygenerator.generator.KeysGenerator”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.548Z”,“@version”:“1”,“message”:“sessionId - - - Fetching Key Policy for keyPolicyName(Cache): REGISTRATION_PROCESSOR”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.550Z”,“@version”:“1”,“message”:“sessionId - applicationId - - Request for Master Key Generation”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.550Z”,“@version”:“1”,“message”:“sessionId - applicationId - REGISTRATION_PROCESSOR - Generate Key for application ID: REGISTRATION_PROCESSOR, RefId: , force flag: false”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.550Z”,“@version”:“1”,“message”:“sessionId - - - Getting key alias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.552Z”,“@version”:“1”,“message”:“sessionId - REGISTRATION_PROCESSOR - - PreExpireDays found as key policy:60”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.552Z”,“@version”:“1”,“message”:“sessionId - keyAlias - [KeyAlias(alias=3cf52d61-eca6-41ea-9257-4cc40fd43914, applicationId=REGISTRATION_PROCESSOR, referenceId=, keyGenerationTime=2024-03-08T07:22:28.767564, keyExpiryTime=2027-03-08T07:22:28.767564, status=null, certThumbprint=037D97E8A2FEAE183A9967CA95DF3101219564F83752EF32135BE6B120C4334F, uniqueIdentifier=D5A60E2DF3D7AEC85735FA6D605F521EB2C9CD78)] - keyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.552Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - [KeyAlias(alias=3cf52d61-eca6-41ea-9257-4cc40fd43914, applicationId=REGISTRATION_PROCESSOR, referenceId=, keyGenerationTime=2024-03-08T07:22:28.767564, keyExpiryTime=2027-03-08T07:22:28.767564, status=null, certThumbprint=037D97E8A2FEAE183A9967CA95DF3101219564F83752EF32135BE6B120C4334F, uniqueIdentifier=D5A60E2DF3D7AEC85735FA6D605F521EB2C9CD78)] - currentKeyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.552Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - 1 - key details present in DBKeyAlias(alias=3cf52d61-eca6-41ea-9257-4cc40fd43914, applicationId=REGISTRATION_PROCESSOR, referenceId=, keyGenerationTime=2024-03-08T07:22:28.767564, keyExpiryTime=2027-03-08T07:22:28.767564, status=null, certThumbprint=037D97E8A2FEAE183A9967CA95DF3101219564F83752EF32135BE6B120C4334F, uniqueIdentifier=D5A60E2DF3D7AEC85735FA6D605F521EB2C9CD78)”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.552Z”,“@version”:“1”,“message”:“sessionId - applicationId - REGISTRATION_PROCESSOR - Getting Key CSR for application ID: REGISTRATION_PROCESSOR, RefId: “,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{”@timestamp”:“2024-03-11T08:39:23.585Z”,“@version”:“1”,“message”:“Generated Master Key for Application ID & ReferenceId: REGISTRATION_PROCESSOR”,“logger_name”:“io.mosip.kernel.keygenerator.generator.KeysGenerator”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.585Z”,“@version”:“1”,“message”:“sessionId - - - Fetching Key Policy for keyPolicyName(Cache): ID_REPO”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.588Z”,“@version”:“1”,“message”:“sessionId - applicationId - - Request for Master Key Generation”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.588Z”,“@version”:“1”,“message”:“sessionId - applicationId - ID_REPO - Generate Key for application ID: ID_REPO, RefId: , force flag: false”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.588Z”,“@version”:“1”,“message”:“sessionId - - - Getting key alias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.590Z”,“@version”:“1”,“message”:“sessionId - ID_REPO - - PreExpireDays found as key policy:60”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.590Z”,“@version”:“1”,“message”:“sessionId - keyAlias - [KeyAlias(alias=0041bf80-7a61-459d-805e-12a7a01881ef, applicationId=ID_REPO, referenceId=, keyGenerationTime=2024-03-08T07:22:29.444812, keyExpiryTime=2027-03-08T07:22:29.444812, status=null, certThumbprint=D7244BE637F13B3F4B3B7078B7E1AC8C71330150D49B95CED23FBA8E668549D9, uniqueIdentifier=BA68E212DEF90E312FB5F429DA68E6575CBAD83F)] - keyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.590Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - [KeyAlias(alias=0041bf80-7a61-459d-805e-12a7a01881ef, applicationId=ID_REPO, referenceId=, keyGenerationTime=2024-03-08T07:22:29.444812, keyExpiryTime=2027-03-08T07:22:29.444812, status=null, certThumbprint=D7244BE637F13B3F4B3B7078B7E1AC8C71330150D49B95CED23FBA8E668549D9, uniqueIdentifier=BA68E212DEF90E312FB5F429DA68E6575CBAD83F)] - currentKeyAlias”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.590Z”,“@version”:“1”,“message”:“sessionId - currentKeyAlias - 1 - key details present in DBKeyAlias(alias=0041bf80-7a61-459d-805e-12a7a01881ef, applicationId=ID_REPO, referenceId=, keyGenerationTime=2024-03-08T07:22:29.444812, keyExpiryTime=2027-03-08T07:22:29.444812, status=null, certThumbprint=D7244BE637F13B3F4B3B7078B7E1AC8C71330150D49B95CED23FBA8E668549D9, uniqueIdentifier=BA68E212DEF90E312FB5F429DA68E6575CBAD83F)”,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.590Z”,“@version”:“1”,“message”:“sessionId - applicationId - ID_REPO - Getting Key CSR for application ID: ID_REPO, RefId: “,“logger_name”:“io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{”@timestamp”:“2024-03-11T08:39:23.662Z”,“@version”:“1”,“message”:“Generated Master Key for Application ID & ReferenceId: ID_REPO”,“logger_name”:“io.mosip.kernel.keygenerator.generator.KeysGenerator”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.663Z”,“@version”:“1”,“message”:“sessionId - - - Fetching Key Policy for keyPolicyName(Cache): IDA”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.664Z”,“@version”:“1”,“message”:“sessionId - keyPolicy - Optional.empty - Key Policy not found for this application Id. Key/CSR generation not allowed.”,“logger_name”:“io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper”,“thread_name”:“main”,“level”:“ERROR”,“level_value”:40000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.669Z”,“@version”:“1”,“message”:“\n\nError starting ApplicationContext. To display the conditions report re-run your application with ‘debug’ enabled.”,“logger_name”:“org.springframework.boot.autoconfigure.logging.ConditionEvaluationReportLoggingListener”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.675Z”,“@version”:“1”,“message”:“Application run failed”,“logger_name”:“org.springframework.boot.SpringApplication”,“thread_name”:“main”,“level”:“ERROR”,“level_value”:40000,“stack_trace”:“java.lang.IllegalStateException: Failed to execute CommandLineRunner\n\tat org.springframework.boot.SpringApplication.callRunner(SpringApplication.java:800)\n\tat org.springframework.boot.SpringApplication.callRunners(SpringApplication.java:781)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:335)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:1255)\n\tat org.springframework.boot.SpringApplication.run(SpringApplication.java:1243)\n\tat io.mosip.kernel.keygenerator.KeysGeneratorApplication.main(KeysGeneratorApplication.java:23)\n\tat java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)\n\tat java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)\n\tat java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)\n\tat java.base/java.lang.reflect.Method.invoke(Method.java:566)\n\tat org.springframework.boot.loader.MainMethodRunner.run(MainMethodRunner.java:48)\n\tat org.springframework.boot.loader.Launcher.launch(Launcher.java:87)\n\tat org.springframework.boot.loader.Launcher.launch(Launcher.java:50)\n\tat org.springframework.boot.loader.PropertiesLauncher.main(PropertiesLauncher.java:593)\nCaused by: io.mosip.kernel.keymanagerservice.exception.InvalidApplicationIdException: KER-KMS-002 → ApplicationId not found in Key Policy. Key/CSR generation not allowed.\n\tat io.mosip.kernel.keymanagerservice.helper.KeymanagerDBHelper.getKeyPolicy(KeymanagerDBHelper.java:257)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl.generateMasterKey(KeymanagerServiceImpl.java:488)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl$$FastClassBySpringCGLIB$$37c188ac.invoke()\n\tat org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)\n\tat org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:746)\n\tat org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)\n\tat org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:294)\n\tat org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:98)\n\tat org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:185)\n\tat org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:688)\n\tat io.mosip.kernel.keymanagerservice.service.impl.KeymanagerServiceImpl$$EnhancerBySpringCGLIB$$2569ef23.generateMasterKey()\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.generateMasterKey(KeysGenerator.java:195)\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.lambda$generateKeys$0(KeysGenerator.java:120)\n\tat java.base/java.util.ArrayList.forEach(ArrayList.java:1541)\n\tat io.mosip.kernel.keygenerator.generator.KeysGenerator.generateKeys(KeysGenerator.java:100)\n\tat io.mosip.kernel.keygenerator.KeysGeneratorApplication.run(KeysGeneratorApplication.java:31)\n\tat org.springframework.boot.SpringApplication.callRunner(SpringApplication.java:797)\n\t… 13 common frames omitted\n”,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.676Z”,“@version”:“1”,“message”:“Closing org.springframework.boot.web.servlet.context.AnnotationConfigServletWebServerApplicationContext@6f10d5b6: startup date [Mon Mar 11 08:39:14 UTC 2024]; parent: org.springframework.context.annotation.AnnotationConfigApplicationContext@7ec7ffd3”,“logger_name”:“org.springframework.boot.web.servlet.context.AnnotationConfigServletWebServerApplicationContext”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.679Z”,“@version”:“1”,“message”:“Unregistering JMX-exposed beans on shutdown”,“logger_name”:“org.springframework.jmx.export.annotation.AnnotationMBeanExporter”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.679Z”,“@version”:“1”,“message”:“Unregistering JMX-exposed beans”,“logger_name”:“org.springframework.jmx.export.annotation.AnnotationMBeanExporter”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.683Z”,“@version”:“1”,“message”:“Closing JPA EntityManagerFactory for persistence unit ‘hibernate’”,“logger_name”:“org.springframework.orm.jpa.LocalContainerEntityManagerFactoryBean”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.684Z”,“@version”:“1”,“message”:“HikariPool-1 - Shutdown initiated…”,“logger_name”:“com.zaxxer.hikari.HikariDataSource”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}
{“@timestamp”:“2024-03-11T08:39:23.686Z”,“@version”:“1”,“message”:“HikariPool-1 - Shutdown completed.”,“logger_name”:“com.zaxxer.hikari.HikariDataSource”,“thread_name”:“main”,“level”:“INFO”,“level_value”:20000,“appName”:“keys-generator”}

sanchi-singh24 · March 29, 2024, 1:29pm

@mahammedtaheer Can you please look into the logs once and see what could be the possible resolution?

Best regards,
Team MOSIP

mahammedtaheer · April 3, 2024, 11:24am

Hi @subhashchandrab

Can you check ‘mosip.kernel.keymanager.autogen.appids.list’ property in kernel-xx.properties file. The list contains IDA application id which is not needed in keymanager service. Remove the IDA value from the comma separated list and run the key generator job again.

Thanks

Topic		Replies	Views
Can’t run Job-batch Keymanager - ERROR (MOSIP version 1.2.0.1-B1)	8	803	March 27, 2023
Can’t run Keymanager - CrashLoopBackOff (MOSIP version 1.2.0.1-B1)	1	380	March 23, 2023
Can’t run Keymanager - CrashLoopBackOff [relative HSM] (MOSIP version 1.2.0.1-B1)	1	297	March 17, 2023
MOSIP services v3 1.2.0.1 installation issues - kernel (notifier) , keymanager Support keymanager	10	831	April 3, 2023
Keymanager softhsm config file invalid	5	42	October 16, 2024

OCI - Mosip 1.2.0 V3 Installation failing for keymanager

Related topics