Bug 1583198
| Summary: | engine DB still has DomainName in vdc_options but no legacy AAA exists, engine-backup verify mode | ||
|---|---|---|---|
| Product: | [oVirt] ovirt-engine | Reporter: | Jiri Belka <jbelka> |
| Component: | Backend.Core | Assignee: | Nobody <nobody> |
| Status: | CLOSED DUPLICATE | QA Contact: | meital avital <mavital> |
| Severity: | medium | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 4.2.3.5 | CC: | bugs, ylavi |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2018-06-04 07:34:47 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | Integration | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
*** This bug has been marked as a duplicate of bug 1582310 *** |
Description of problem: engine DB still has DomainName in vdc_options but no legacy AAA exists, engine-backup verify mode. (hacked engine-backup script...) # engine-backup --mode=verify --file=/root/backup/brq-setup-engine-201805271705 --log=/tmp/out.log ... + pg_restore /tmp/engine-backup.fUhjULeWrJ/db/engine_backup.db -t vdc_options + awk '/^COPY vdc_options/,/^\\./' + tee /tmp/out.pgrestore + cat /tmp/engine-backup.fUhjULeWrJ/pg-restore-log ++ awk '$2=="DomainName" {print $3}' + '[' -z general ']' + logdie 'legacy kerberos/ldap directory integration was in use. Please migrate to ovirt-engine-extension-aaa-ldap and backup/restore again' + local 'm=legacy kerberos/ldap directory integration was in use. Please migrate to ovirt-engine-extension-aaa-ldap and backup/restore again' + log 'FATAL: legacy kerberos/ldap directory integration was in use. Please migrate to ovirt-engine-extension-aaa-ldap and backup/restore again' + local 'm=FATAL: legacy kerberos/ldap directory integration was in use. Please migrate to ovirt-engine-extension-aaa-ldap and backup/restore again' ++ date '+%Y-%m-%d %H:%M:%S' + local 'date=2018-05-28 14:46:12' + local pid=25603 + printf '%s\n' '2018-05-28 14:46:12 25603: FATAL: legacy kerberos/ldap directory integration was in use. Please migrate to ovirt-engine-extension-aaa-ldap and backup/restore again' vdc_options_dump got via hacked script # awk '$2=="DomainName"' /tmp/engine-backup.VH5x1Wbxgm/vdc_options_dump 3 DomainName general # awk '/^COPY vdc_options/,/^\\./' /tmp/out.pgrestore | grep -E '\bDomainName\b' 3 DomainName general reality in engine db engine=# select * from vdc_options where option_name = 'DomainName'; option_id | option_name | option_value | version -----------+-------------+--------------+--------- 3 | DomainName | | general (1 row) Version-Release number of selected component (if applicable): ovirt-engine-dbscripts-4.2.3.5-0.1.el7.noarch How reproducible: 100% Steps to Reproduce: 1. have legacy AAA and upgrade to 4.0 (thus you would need to have 3.6 iiuc) 2. check db 3. engine-backup --mode=verify... (4.2??) Actual results: there's forgotten DomainName in engine db vdc_options from times when legacy AAA was used, it impacts engine-backup verify mode Expected results: engine-backup verify mode should work fine on env which used to have legacy AAA, db should not have DomainName in vdc_options on env where legacy AAA used to be present Additional info: