Bug 1261798

Summary: "shadow" files overwritten with old RHEL-6 versions
Product: Red Hat Enterprise Linux 6 Reporter: Marian Ganisin <mganisin>
Component: preupgrade-assistant-contentsAssignee: Petr Stodulka <pstodulk>
Status: CLOSED ERRATA QA Contact: Marian Ganisin <mganisin>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 6.7CC: amahdal, ovasik, phracek, pstodulk, tpoitras, ttomecek
Target Milestone: rcKeywords: Extras
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: preupgrade-assistant-contents-0.6.37-1 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-11-19 23:33:21 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Marian Ganisin 2015-09-10 07:44:41 UTC 
Description of problem:

some postupgrade script from contents seems to rewrite /etc/passwd & co. files with old versions from RHEL-6

This causes loss of all new users & groups or modifications made during upgrade transaction.

Version-Release number of selected component (if applicable):
preupgrade-assistant-contents-0.6.36-1.el6.noarch

How reproducible:
always

Steps to Reproduce:
1. do the upgrade
2. on upgraded RHEL-7 check /etc/group & /etc/group.preupg
3. *.preupg file contains new content that is missing in regular file


Additional info:
This breaks features where RHEL-7 services on new groups. One example can be ssh server keys stored in /etc/ssh. New generated keys (that weren't available in RHEL-6) have wrong group ownership.
Comment 3 Marian Ganisin 2015-10-14 09:52:42 UTC 
cleanconf dir does not contain "shadow" files (passwd,group,shadow,gshadow).
Upgraded RHEL-7 system seems to have correct files with all the new records included.
No .preupg copy of "shadow" files present in /etc.
Issue seems to be fixed properly.
Comment 6 errata-xmlrpc 2015-11-19 23:33:21 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-2498.html