Dhaval Shah created RANGER-3927: ----------------------------------- Summary: Ranger KMS generates master key on every restart before inserting into DB Key: RANGER-3927 URL: https://issues.apache.org/jira/browse/RANGER-3927 Project: Ranger Issue Type: Improvement Components: Ranger Reporter: Dhaval Shah
Hi, At preset Ranger KMS generates Master Key on every restart, Ref: 1.) https://github.com/apache/ranger/blob/master/kms/src/main/java/org/apache/hadoop/crypto/key/RangerKeyStoreProvider.java#L194 2.) https://github.com/apache/ranger/blob/master/kms/src/main/java/org/apache/hadoop/crypto/key/RangerMasterKey.java#L192 And later check for its existence in DB . Ref: 1.) https://github.com/apache/ranger/blob/c3f1c4a6ad2ee0c805ad29f0efb265569e0d2cf0/kms/src/main/java/org/apache/hadoop/crypto/key/RangerMasterKey.java#L356 We should check for master key existence in DB at early stage i.e. before generation. -- This message was sent by Atlassian Jira (v8.20.10#820010)