Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1097762

Summary: Log viewer fails to display log files when RHEV-M machine FQDN is not reverse searchable
Product: Red Hat Enterprise Virtualization Manager Reporter: Tomas Dosek <tdosek>
Component: redhat-support-plugin-rhevAssignee: Spenser Shumaker <sshumake>
Status: CLOSED NOTABUG QA Contact: Jiri Belka <jbelka>
Severity: medium Docs Contact:
Priority: medium    
Version: 3.4.0CC: iheim, kroberts, mkalinin, rbalakri, sraje, tdosek, usurse, yeylon
Target Milestone: ---   
Target Release: 3.4.4   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: subeng
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-10-28 12:41:40 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1072347    
Attachments:
Description Flags
Screen capture none

Description Tomas Dosek 2014-05-14 13:26:41 UTC 
Created attachment 895495 [details]
Screen capture

Description of problem:
Log viewer fails to display log files when RHEV-M machine FQDN is not reverse searchable 

Jboss error that User is not superuser is displayed to user.
com.sun.jersey.api.client.ClientHandlerException: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No name matching vm-206.gsslab.brq.redhat.com found

Version-Release number of selected component (if applicable):
av9

How reproducible:
100%

Steps to Reproduce:
1.Have rhevm setup whose hostname is reverse searchable via dns
2.Try using log viewer
3.

Actual results:
Fails with error attached in attachments

Expected results:
Should work fine - use IP instead either taken from DB or via java libraries
Comment 1 Eyal Edri 2014-08-06 06:46:31 UTC 
build for 3.4.2 is due today, these won't make it and out of scope (not included in the rhev 3.4.2 tracker - [RHEV] 3.4.2 Bug tracker - https://bugzilla.redhat.com/show_bug.cgi?id=1123858.

moving to 3.4.3.
Comment 2 Keith Robertson 2014-09-08 14:28:47 UTC 
Forward and reverse lookup is a requirement for the RHEV-M (see [1]) as such we do not believe this is a valid bug.

For the record, if the RHEV-M does not have a valid forward/reverse lookup in the DNS server you will likely experience all sorts of issues with the hypervisors and need to resort to non-standard configuration.


[1] https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.4/html-single/Installation_Guide/index.html#Red_Hat_Enterprise_Virtualization_Manager_Configuration_Overview
Comment 3 Tomas Dosek 2014-09-22 11:31:24 UTC 
Keith but it's not necessarily required for the host to be able to reverse-search the hostname:

"The host name is detected automatically, but you can correct this host name if it is incorrect or if you are using virtual hosts. There must be forward and reverse lookup records for the provided host name in DNS, especially if you will also install the reports server."

You can also alter it to something totally different from forward searchable DNS.
Comment 4 Keith Robertson 2014-09-22 12:21:51 UTC 
Thomas,
I am not following your logic.  It says right here...
- "There must be forward and reverse lookup records for the provided host name in DNS"

Which means that each hypervisor must have a forward and reverse lookup in the local DNS  server.
Comment 5 Tomas Dosek 2014-09-22 12:30:58 UTC 
Yes Keith they must have these, however they do not need to be the same. Which was the deal in my case.

I can have DNS records

rhevm.example.com in forwards zone
while reverse is 
rhevm.example1.com

users will be going through the first one and if you override it during setup it will work fine for them, while machine is set with the second, which makes the automatic reverse search to fail.

But still this is a valid setup for RHEV and we don't restrict such usage.
Comment 6 Keith Robertson 2014-09-22 13:54:27 UTC 
(In reply to Tomas Dosek from comment #5)
> Yes Keith they must have these, however they do not need to be the same.
> Which was the deal in my case.
> 
> I can have DNS records
> 
> rhevm.example.com in forwards zone
> while reverse is 
> rhevm.example1.com
> 
> users will be going through the first one and if you override it during
> setup it will work fine for them, while machine is set with the second,
> which makes the automatic reverse search to fail.
> 
> But still this is a valid setup for RHEV and we don't restrict such usage.

I understand what you're saying but, I'm pretty sure that is neither the definition nor the spirit of "must be forward and reverse lookup records for the provided host name".  

In one direction, hostname[A] resolves to IP[A].  In the reverse direction, IP[A] resolves to hostname[B] which is != hostname[A].  If you want to use hostname[B], then hostname[A] needs to be an CNAME for hostname[B].
Comment 7 Marina Kalinin 2014-09-24 20:04:36 UTC 
I got a customer hitting exact same error.
I asked him to check the reverse look up for RHEVM FQDN. Will update later.
Comment 8 Eyal Edri 2014-10-05 19:15:52 UTC 
3.4.3 build was delivered to QE, if this bugs isn't going to be fixed and shipped by 31/10, please move to 3.4.4.
Comment 9 Sachin Raje 2014-10-08 11:53:44 UTC 
I have a customer getting similar errors despite reverse look up working for RHEVM.

Let me know if logs required to check further.
Comment 10 Eyal Edri 2014-10-13 15:46:13 UTC 
pushing to 3.4.4, as seems like these bugs won't make it to the 3.4.3 release (last respin is due tomorrow).
Comment 12 Keith Robertson 2014-10-28 12:41:40 UTC 
As I mentioned in comment 2, it is required that the RHEV-M be reverse resolvable as outlined in the documentation.  Closing this BZ as this is a configuration problem.