Failed to decrypt value using AeadBase64Encryptor...

[boubouX]

I just noticed this error —

INFO [c.c.u.DatabaseUpgradeChecker] (main:null) (logid:) Grabbing lock to check for database upgrade.
WARN [c.c.u.c.CloudStackEncryptor] (main:null) (logid:) Failed to decrypt value using AeadBase64Encryptor: msi0B***** 
INFO [c.c.u.DatabaseUpgradeChecker] (main:null) (logid:) init = true
INFO [c.c.u.DatabaseUpgradeChecker] (main:null) (logid:) DB version = 4.19.3.0 Code Version = 4.19.3.0
INFO [c.c.u.DatabaseUpgradeChecker] (main:null) (logid:) DB version and code version matches so no upgrade needed.

it may have been present for some time. I suspect the V1 encryptor was used when I initially created my database a few years ago, but it looks like version 4.19.3 defaults to V2. Forcing db.properties to use V1 did not resolve the issue; the system is still trying to use V2. I found a few documents on it.

Should I perform a database migration to V2 instead?

Did I possibly miss any upgrade instructions at some point related to this?

thank you

[weizhouapache]

@boubouX
first of all, it is just a warning message. you can ignore it as your management server looks ok.

V1 encryptor is the legacy encryptor which uses StandardPBEStringEncryptor.
the V2 encryptor AeadBase64Encryptor was introduced in 4.18.
both are supported by cloudstack.

you can find more technical details and upgrade instruction (this is optional) on https://cwiki.apache.org/confluence/display/CLOUDSTACK/New+database+encryption+cipher+-+AeadBase64Encryptor