Bug 1851998

The problem is with error_log file (/var/log/httpd)
In scale lab the size was 9GB

[root@rhev-red-01 ~]# ls -lh /var/log/httpd/
total 1.9G
-rw-r--r--. 1 root root  16M Jun 30 03:49 access_log
-rw-r--r--. 1 root root 1.8G Jun 29 13:17 error_log
-rw-r--r--. 1 root root  36M Jun 30 03:49 ovirt-requests-log
-rw-r--r--. 1 root root  24M Jun 30 03:49 ssl_access_log
-rw-r--r--. 1 root root  21K Jun 28 11:54 ssl_error_log
-rw-r--r--. 1 root root  28M Jun 30 03:49 ssl_request_log
[root@rhev-red-01 ~]#

(In reply to David Vaanunu from comment #2)
> The problem is with error_log file (/var/log/httpd)
> In scale lab the size was 9GB
> 
> [root@rhev-red-01 ~]# ls -lh /var/log/httpd/
> total 1.9G
> -rw-r--r--. 1 root root  16M Jun 30 03:49 access_log
> -rw-r--r--. 1 root root 1.8G Jun 29 13:17 error_log
> -rw-r--r--. 1 root root  36M Jun 30 03:49 ovirt-requests-log
> -rw-r--r--. 1 root root  24M Jun 30 03:49 ssl_access_log
> -rw-r--r--. 1 root root  21K Jun 28 11:54 ssl_error_log
> -rw-r--r--. 1 root root  28M Jun 30 03:49 ssl_request_log
> [root@rhev-red-01 ~]#

error_log is not part of engine, but part of httpd system package. The logrotate configuration for httpd is stored in /etc/logrotate.d/httpd
So if default configuration doesn't suite your needs, then you need to adapt this configuration manually. This is not part of engine, but part of standard OS administrator role.

ansible-runner-service-1.0.2-1.el8ev.noarch

I was not able to reproduce this error but I did more investigation and noticed that the log file was removed after the rotate (but no error :/ ).
And another issue was that the logging was not configured properly for logrotate.
Both fixes I have added to the patch hopefully it will solve your issue.
I also removed the logging to the httpd logs so all ansible stuff will go to /var/log/ovirt-engine/ansible-runner-service.log and if there will be some issue when setting up the WSGI or apache we would still get the error in /var/log/httpd/error_log

Does the /var/log/ovirt-engine/ansible-runner-service.log exist? (it is possible it was removed previously by the logrotate)
Have you restarted the service?

it's not that hard to answer that yourself....

[root@she-test-03 ~]# ls -lZ /var/log/ovirt-engine/ansible-runner-service.log
-rw-r--r--. 1 ovirt ovirt system_u:object_r:var_log_t:s0 683008 Jul 13 11:07 /var/log/ovirt-engine/ansible-runner-service.log

[root@she-test-03 ~]# rpm -q ansible-runner-service
ansible-runner-service-1.0.4-1.el8ev.noarch

Exactly as Michal said, I had the correct version.
It does happen after restart of httpd, the file was created with wrong context in the past, which needs to be solved by package update.
Can be workarounded by deleting the log file.

As Petr has done the validation steps here already, no need for scale teams involvement.
Moving back to Petr with agreement from Luci and Petr.

To make the state clear, moving back as per comment 12 and discussion with Martin.

This is not a blocker for GA anymore, ansible-runner-service-1.0.4 fixed permissions issue for both flows: new RHV 4.4 installation and upgrade from RHV 4.3.

We will fix the permission issue happeding when upgrading ARS < 1.0.4 to >= 1.0.4 in the new ARS 1.0.5, but it will be available only in 4.4.2, but this is a flow which cannot happen now in a real flow

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (RHV Manager (ovirt-engine) 4.4 (0-day)), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:3317