Device nvme0n1 is designated as write-protected (needs manual configuration)

[ramzcode]

RearR Version 2.7
Amazon Linux 2023

Trying to recover on a different New VM, but the error looks not clear. Not sure which and why write protection is triggered by.

Log:

Relax-and-Recover 2.7 / Git
Running rear recover (PID 1612 date 2023-12-01 07:10:35)
Using log file: /var/log/rear/rear-ip-172-31-23-140.log
Sourcing additional configuration file '/etc/rear/local_f.conf'
Running workflow recover within the ReaR rescue/recovery system
Using backup archive '/mcsquare-backups//ip-172-31-23-140/backup.tar.gz'
Calculating backup archive size
Backup archive size is 703M     /mcsquare-backups/2023-11-30-1415-F.tar.gz (compressed)
Comparing disks
Device nvme0n1 is designated as write-protected (needs manual configuration)
Switching to manual disk layout configuration (GiB sizes rounded down to integer)
/dev/nvme0n1 had size 8589934592 (8 GiB) but it does no longer exist
Original disk /dev/nvme0n1 does not exist (with same size) in the target system
No device found where to /dev/nvme0n1 could be mapped so that it will not be recreated
Current disk mapping table (source => target):
  There is no valid disk mapping
Currently unmapped disks and dependant devices will not be recreated
(unless identical disk mapping and proceeding without manual configuration):
  /dev/nvme0n1 /dev/nvme0n1p1 /dev/nvme0n1p127 /dev/nvme0n1p128 fs:/ fs:/boot/efi
Confirm or edit the disk mapping
1) Confirm disk mapping and continue 'rear recover'
2) Confirm identical disk mapping and proceed without manual configuration
3) Edit disk mapping (/var/lib/rear/layout/disk_mappings)
4) Use Relax-and-Recover shell and return back to here
5) Abort 'rear recover'
(default '1' timeout 300 seconds)
1
User confirmed disk mapping
Disk /dev/nvme0n1 and all dependant devices will not be recreated
Disabling component 'disk /dev/nvme0n1' in /var/lib/rear/layout/disklayout.conf
Disabling component 'part /dev/nvme0n1' in /var/lib/rear/layout/disklayout.conf
Disabling component 'fs ... /' in /var/lib/rear/layout/disklayout.conf
Disabling component 'fs ... /boot/efi' in /var/lib/rear/layout/disklayout.conf
Trying to automatically resize last partition when disk size changed
Confirm or edit the disk layout file
1) Confirm disk layout and continue 'rear recover'
2) Edit disk layout (/var/lib/rear/layout/disklayout.conf)
3) View disk layout (/var/lib/rear/layout/disklayout.conf)
4) View original disk space usage (/var/lib/rear/layout/config/df.txt)
5) Use Relax-and-Recover shell and return back to here
6) Abort 'rear recover'
(default '1' timeout 300 seconds)
1
User confirmed disk layout file
Confirm or edit the disk recreation script
1) Confirm disk recreation script and continue 'rear recover'
2) Edit disk recreation script (/var/lib/rear/layout/diskrestore.sh)
3) View disk recreation script (/var/lib/rear/layout/diskrestore.sh)
4) View original disk space usage (/var/lib/rear/layout/config/df.txt)
5) Use Relax-and-Recover shell and return back to here
6) Abort 'rear recover'
(default '1' timeout 300 seconds)
1
User confirmed disk recreation script
Disks to be completely overwritten and recreated by /var/lib/rear/layout/diskrestore.sh:
 
Determining disks to be wiped ...
Disks to be wiped:
1) Confirm disks to be wiped and continue 'rear recover'
2) Skip wiping disks and continue 'rear recover'
3) Use Relax-and-Recover shell and return back to here
4) Abort 'rear recover'
(default '1' timeout 300 seconds)
1
User confirmed disks to be wiped
Start system layout restoration.
Disk layout created.
Recreated storage layout:
NAME             KNAME          TRAN   TYPE FSTYPE LABEL       SIZE MOUNTPOINTS
/dev/nvme0n1     /dev/nvme0n1   nvme   disk                      8G
`-/dev/nvme0n1p1 /dev/nvme0n1p1 nvme   part vfat   RESCUE SYS  208M
Confirm the recreated disk layout or go back one step
1) Confirm recreated disk layout and continue 'rear recover'
2) Go back one step to redo disk layout recreation
3) Use Relax-and-Recover shell and return back to here
4) Abort 'rear recover'
(default '1' timeout 300 seconds)
1
User confirmed recreated disk layout
ERROR: No filesystem mounted on '/mnt/local'. Stopping.
Use debug mode '-d' for some debug messages or debugscript mode '-D' for full debug messages with 'set -x' output
Aborting due to an error, check /var/log/rear/rear-ip-172-31-23-140.log for details
Exiting rear recover (PID 1612) and its descendant processes ...
Running exit tasks

[ramzcode]

@jsmeix #3085 is it similar ?

Below is my source and Target lsblk output

[root@ip-172-31-23-140 ec2-user]# lsblk -ipo NAME,KNAME,MODEL,LABEL,SERIAL
NAME               KNAME            MODEL                      LABEL SERIAL
/dev/nvme0n1       /dev/nvme0n1     Amazon Elastic Block Store       vol08d513eb795332479
|-/dev/nvme0n1p1   /dev/nvme0n1p1                              /
|-/dev/nvme0n1p127 /dev/nvme0n1p127
`-/dev/nvme0n1p128 /dev/nvme0n1p128

lsblk -ipo NAME,KNAME,MODEL,LABEL,SERIAL
NAME         KNAME        MODEL                      LABEL SERIAL
/dev/nvme0n1 /dev/nvme0n1 Amazon Elastic Block Store       vol0137277f9301125a4

[ramzcode]

2023-12-01 10:01:33.438658037 Comparing disks
2023-12-01 10:01:33.464107877 /dev/nvme0n1 is designated as write-protected by ID 0542b474-6b5e-46d2-9f87-570007c622df
2023-12-01 10:01:33.469293825 Comparing nvme0n1
2023-12-01 10:01:33.471975543 Device /sys/block/nvme0n1 exists
2023-12-01 10:01:33.494742225 /dev/nvme0n1 is designated as write-protected by ID 0542b474-6b5e-46d2-9f87-570007c622df
2023-12-01 10:01:33.497510059 Device nvme0n1 is designated as write-protected (needs manual configuration)
2023-12-01 10:01:33.500627451 Switching to manual disk layout configuration (GiB sizes rounded down to integer)
2023-12-01 10:01:33.503512531 /dev/nvme0n1 had size 8589934592 (8 GiB) but it does no longer exist
2023-12-01 10:01:33.509138763 Including layout/prepare/default/270_overrule_migration_mode.sh
2023-12-01 10:01:33.516431627 Including layout/prepare/default/300_map_disks.sh
2023-12-01 10:01:33.571478999 /dev/nvme0n1 is designated as write-protected by ID 0542b474-6b5e-46d2-9f87-570007c622df
2023-12-01 10:01:33.574510577 Cannot use /dev/nvme0n1 (same name and same size 8589934592) for recreating /dev/nvme0n1 (/dev/nvme0n1 is write-protected)
2023-12-01 10:01:33.582048735 Could not automap /dev/nvme0n1 (no disk with same size 8589934592 found)
2023-12-01 10:01:33.590285211 Original disk /dev/nvme0n1 does not exist (with same size) in the target system
2023-12-01 10:01:33.613069834 /dev/nvme0n1 is designated as write-protected by ID 0542b474-6b5e-46d2-9f87-570007c622df
2023-12-01 10:01:33.615970005 /dev/nvme0n1 excluded from device mapping choices (is designated as write-protected)
2023-12-01 10:01:33.618799102 No device found where to /dev/nvme0n1 could be mapped so that it will not be recreated
2023-12-01 10:01:33.625054708 Current disk mapping table (source => target):
                                There is no valid disk mapping
2023-12-01 10:01:33.634579896 Currently unmapped disks and dependant devices will not be recreated
                              (unless identical disk mapping and proceeding without manual configuration):
                                /dev/nvme0n1 /dev/nvme0n1p1 /dev/nvme0n1p127 /dev/nvme0n1p128 fs:/ fs:/boot/efi

[jsmeix]

@ramzcode
see in usr/share/rear/conf/default.conf
the section about

Write-protection during "rear recover"
for OUTPUT=USB and OUTPUT=RAWDISK

for ReaR 2.7 online at
https://github.com/rear/rear/blob/rear-2.7/usr/share/rear/conf/default.conf#L566

In the ReaR recovery system you find
the WRITE_PROTECTED_IDS and the
WRITE_PROTECTED_FS_LABEL_PATTERNS
in /etc/rear/rescue.conf
where you could change them if needed
before you run "rear recover".

As far as I see
#3085
is different because there write-protection functions
are called for OUTPUT=ISO where no write-protection happens
and write-protection functions were not prepared against
entries in /sys/block/* without device node
while here it seems write-protection functions are called
for OUTPUT=USB or OUTPUT=RAWDISK as intended.

[ramzcode]

@jsmeix Thank you for bringing to notice, but i have a concern.

How come the IDS can be same between two different VM ?

Am i missing something?

# The following lines were added by 490_store_write_protect_settings.sh
WRITE_PROTECTED_IDS=( 0542b474-6b5e-46d2-9f87-570007c622df )
WRITE_PROTECTED_FS_LABEL_PATTERNS=( )

[jsmeix]

@ramzcode
I don't know how such disk IDs can be same on different VMs,
except it is actually the same disk that is assigned to different VMs.

In particular when such IDs are UUIDs - i.e. a
"Universally Unique Identifier" should be what it tells.

[ramzcode]

@jsmeix Ya,it makes sense, But can we use just the SERIAL as the validator, hope this can never be the same ?

What is your thought and BTW i tried adding it even but still error persists

WRITE_PROTECTED_IDS_TYPE= (SERIAL)

[jsmeix]

I cannot guess what actually goes on on your systems
so I need ReaR debug log files:
One from "rear -D mkrescue/mkbackup"
and one from "rear -D recover"
plus
two times the 'lsblk' output each one
with all the WRITE_PROTECTED_ID_TYPES columns like

lsblk -ipo KNAME,LABEL,UUID,PTUUID,PARTUUID,SERIAL,WWN /dev/nvme0n1

one on your original system where you do "rear -D mkrescue/mkbackup"
and one on your replacement system where you do "rear -D recover"
then I can have a look and (hopefully) understand
what actually goes on on your systems.

[jsmeix]

Regarding using 'SERIAL' see
#2703 (comment)

[jsmeix]

By the way:
It is WRITE_PROTECTED_ID_TYPES
not WRITE_PROTECTED_IDS_TYPE

[ramzcode]

Yep, sorry my bad, typo mistake here. let me get the logs and outputs for debug

[ramzcode]

@jsmeix Please find the details and if you need more info on the debug log let me know

Source VM output

[root@ip-172-31-23-140 rearuser]# lsblk -ipo KNAME,LABEL,UUID,PTUUID,PARTUUID,SERIAL,WWN /dev/nvme0n1

KNAME LABEL UUID PTUUID PARTUUID SERIAL WWN

/dev/nvme0n1

22703939-0d71-49b5-af91-01eecda558e8 vol08d nvme.1d0f-766f6c3038643531336562373935333332343739-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001

/dev/nvme0n1p1

/ 66eb3733-37f3-4398-9990-e97c15b01e5b 22703939-0d71-49b5-af91-01eecda558e8 9c63c137-580c-47df-a666-4e9d4ec5d6b4 nvme.1d0f-766f6c3038643531336562373935333332343739-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001

/dev/nvme0n1p127

22703939-0d71-49b5-af91-01eecda558e8 7e86a24a-2fe2-4aff-a1c2-5ff59eeb2729 nvme.1d0f-766f6c3038643531336562373935333332343739-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001

/dev/nvme0n1p128

A208-E305 22703939-0d71-49b5-af91-01eecda558e8 1bba082f-4fd3-4536-ba50-1468a8741f84 nvme.1d0f-766f6c303864353133656237

Rescue VM out

RESCUE ip-172-31-23-140:~ # lsblk -ipo KNAME,LABEL,UUID,PTUUID,PARTUUID,SERIAL,WWN /dev/nvme0n1

KNAME LABEL UUID PTUUID PARTUUID SERIAL WWN

/dev/nvme0n1

bca3154d-b11d-4828-95e2-98f824d4540a vol0bb nvme.1d0f-766f6c3062623334303234323731643164666266-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001

/dev/nvme0n1p1

RESCUE SYS

DBE2-15C9 bca3154d-b11d-4828-95e2-98f824d4540a d2ac2145-b788-4776-b43c-8adcd9b7ce16 nvme.1d0f-766f6c3062623334303234323731643164666266-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001

From source VM

[root@ip-172-31-23-140 tmp]# cd ..

[root@ip-172-31-23-140 var]# cd ..

[root@ip-172-31-23-140 /]# rear -D mkrescue

Relax-and-Recover 2.7 / Git

Running rear mkrescue (PID 40198 date 2023-12-01 13:25:11)

Command line options: /usr/sbin/rear -D mkrescue

Using log file: /var/log/rear/rear-ip-172-31-23-140.log

Using build area: /var/tmp/rear.pkhRmXrJtTvvmk4

Running 'init' stage ======================

Running workflow mkrescue on the normal/original system

Running 'prep' stage ======================

No 'vfat' EFI system partition found (systemd-1 on /boot/efi is type autofs)

Using autodetected kernel '/boot/vmlinuz-6.1.61-85.141.amzn2023.x86_64' as kernel in the recovery system

Modified ReaR recovery system area after 'prep' stage (/var/tmp/rear.pkhRmXrJtTvvmk4/rootfs not empty)

Running 'layout/save' stage ======================

Creating disk layout

Overwriting existing disk layout file /var/lib/rear/layout/disklayout.conf

Disabling excluded components in /var/lib/rear/layout/disklayout.conf

Using guessed bootloader 'EFI' for 'rear recover' (found in first bytes on /dev/nvme0n1)

Skip saving storage layout as 'barrel' devicegraph (no 'barrel' command)

Verifying that the entries in /var/lib/rear/layout/disklayout.conf are correct

Created disk layout (check the results in /var/lib/rear/layout/disklayout.conf)

Running 'rescue' stage ======================

Creating recovery system root filesystem skeleton layout

Adding 'console=tty0' to KERNEL_CMDLINE

Adding 'console=ttyS0,115200n8' to KERNEL_CMDLINE

Handling network interface 'ens5'

ens5 is a physical device

Handled network interface 'ens5'

Skipping 'lo': not bound to any physical interface.

Included current keyboard mapping (via 'dumpkeys -f')

No default US keyboard mapping included (no 'defkeymap.*' found in /lib/kbd/keymaps)

Included other keyboard mappings in /lib/kbd/keymaps

Copying logfile /var/log/rear/rear-ip-172-31-23-140.log into initramfs as '/tmp/rear-ip-172-31-23-140-partial-2023-12-01T13:25:16+00:00.log'

Running 'build' stage ======================

Copying files and directories

Copying binaries and libraries

Copying all kernel modules in /lib/modules/6.1.61-85.141.amzn2023.x86_64 (MODULES contains 'all_modules')

Copying all files in /lib*/firmware/

Skip copying broken symlink '/etc/mtab' target '/proc/53175/mounts' on /proc/ /sys/ /dev/ or /run/

Broken symlink '/etc/pki/tls/fips_local.cnf' in recovery system because 'readlink' cannot determine its link target

Skip copying broken symlink '/etc/resolv.conf' target '/run/systemd/resolve/resolv.conf' on /proc/ /sys/ /dev/ or /run/

Removed SSH key files without passphrase from recovery system (SSH_UNPROTECTED_PRIVATE_KEYS not true): etc/ssh/ssh_host_ecdsa_key etc/ssh/ssh_host_ed25519_key

Testing that the recovery system in /var/tmp/rear.pkhRmXrJtTvvmk4/rootfs contains a usable system

Testing each binary with 'ldd' and look for 'not found' libraries within the recovery system

/usr/lib64/systemd/libsystemd-core-252.16-1.amzn2023.0.1.so requires additional libraries

libsystemd-shared-252.16-1.amzn2023.0.1.so => not found

/usr/lib64/python3.9/site-packages/hawkey/test/_hawkey_test.so requires additional libraries

_hawkey.so => not found

ReaR recovery system in '/var/tmp/rear.pkhRmXrJtTvvmk4/rootfs' needs additional libraries, check /var/log/rear/rear-ip-172-31-23-140.log for details

Testing that the existing programs in the PROGS array can be found as executable command within the recovery system

Testing that each program in the REQUIRED_PROGS array can be found as executable command within the recovery system

Running 'pack' stage ======================

Creating recovery/rescue system initramfs/initrd initrd.cgz with gzip default compression

Created initrd.cgz with gzip default compression (191947282 bytes) in 33 seconds

Running 'output' stage ======================

Creating 209 MiB raw disk image "trianz-ip-172-31-23-140.raw"

Using syslinux to install a Legacy BIOS bootloader

Copying resulting files to nfs location

Saving /var/log/rear/rear-ip-172-31-23-140.log as rear-ip-172-31-23-140.log to nfs location

Copying result files '/var/tmp/rear.pkhRmXrJtTvvmk4/tmp/trianz-ip-172-31-23-140.raw /var/tmp/rear.pkhRmXrJtTvvmk4/tmp/VERSION /var/tmp/rear.pkhRmXrJtTvvmk4/tmp/README /var/tmp/rear.pkhRmXrJtTvvmk4/tmp/rear-ip-172-31-23-140.log' to /var/tmp/rear.pkhRmXrJtTvvmk4/outputfs/ip-172-31-23-140 at nfs location

Exiting rear mkrescue (PID 40198) and its descendant processes ...

Running exit tasks

To remove the build area you may use (with caution): rm -Rf --one-file-system /var/tmp/rear.pkhRmXrJtTvvmk4

From source Vm

[root@ip-172-31-23-140 /]# rear -D mkbackup

Relax-and-Recover 2.7 / Git

Running rear mkbackup (PID 62457 date 2023-12-01 13:27:37)

Command line options: /usr/sbin/rear -D mkbackup

Using log file: /var/log/rear/rear-ip-172-31-23-140.log

Using build area: /var/tmp/rear.5grS55TunPfEGXD

Running 'init' stage ======================

Running workflow mkbackup on the normal/original system

Running 'prep' stage ======================

Today's weekday ('Fri') is a full backup day that triggers a new full backup in any case

Performing full backup using backup archive '2023-12-01-1327-F.tar.gz'

No 'vfat' EFI system partition found (systemd-1 on /boot/efi is type autofs)

Using autodetected kernel '/boot/vmlinuz-6.1.61-85.141.amzn2023.x86_64' as kernel in the recovery system

Modified ReaR recovery system area after 'prep' stage (/var/tmp/rear.5grS55TunPfEGXD/rootfs not empty)

Running 'layout/save' stage ======================

Creating disk layout

Overwriting existing disk layout file /var/lib/rear/layout/disklayout.conf

Disabling excluded components in /var/lib/rear/layout/disklayout.conf

Using guessed bootloader 'EFI' for 'rear recover' (found in first bytes on /dev/nvme0n1)

Skip saving storage layout as 'barrel' devicegraph (no 'barrel' command)

Verifying that the entries in /var/lib/rear/layout/disklayout.conf are correct

Created disk layout (check the results in /var/lib/rear/layout/disklayout.conf)

Running 'rescue' stage ======================

Creating recovery system root filesystem skeleton layout

Adding 'console=tty0' to KERNEL_CMDLINE

Adding 'console=ttyS0,115200n8' to KERNEL_CMDLINE

Handling network interface 'ens5'

ens5 is a physical device

Handled network interface 'ens5'

Skipping 'lo': not bound to any physical interface.

Included current keyboard mapping (via 'dumpkeys -f')

No default US keyboard mapping included (no 'defkeymap.*' found in /lib/kbd/keymaps)

Included other keyboard mappings in /lib/kbd/keymaps

Copying logfile /var/log/rear/rear-ip-172-31-23-140.log into initramfs as '/tmp/rear-ip-172-31-23-140-partial-2023-12-01T13:27:42+00:00.log'

Running 'build' stage ======================

Copying files and directories

Copying binaries and libraries

Copying all kernel modules in /lib/modules/6.1.61-85.141.amzn2023.x86_64 (MODULES contains 'all_modules')

Copying all files in /lib*/firmware/

Skip copying broken symlink '/etc/mtab' target '/proc/75475/mounts' on /proc/ /sys/ /dev/ or /run/

Broken symlink '/etc/pki/tls/fips_local.cnf' in recovery system because 'readlink' cannot determine its link target

Skip copying broken symlink '/etc/resolv.conf' target '/run/systemd/resolve/resolv.conf' on /proc/ /sys/ /dev/ or /run/

Removed SSH key files without passphrase from recovery system (SSH_UNPROTECTED_PRIVATE_KEYS not true): etc/ssh/ssh_host_ecdsa_key etc/ssh/ssh_host_ed25519_key

Testing that the recovery system in /var/tmp/rear.5grS55TunPfEGXD/rootfs contains a usable system

Testing each binary with 'ldd' and look for 'not found' libraries within the recovery system

/usr/lib64/systemd/libsystemd-core-252.16-1.amzn2023.0.1.so requires additional libraries

libsystemd-shared-252.16-1.amzn2023.0.1.so => not found

/usr/lib64/python3.9/site-packages/hawkey/test/_hawkey_test.so requires additional libraries

_hawkey.so => not found

ReaR recovery system in '/var/tmp/rear.5grS55TunPfEGXD/rootfs' needs additional libraries, check /var/log/rear/rear-ip-172-31-23-140.log for details

Testing that the existing programs in the PROGS array can be found as executable command within the recovery system

Testing that each program in the REQUIRED_PROGS array can be found as executable command within the recovery system

Running 'pack' stage ======================

Creating recovery/rescue system initramfs/initrd initrd.cgz with gzip default compression

Created initrd.cgz with gzip default compression (191948803 bytes) in 33 seconds

Running 'output' stage ======================

Creating 209 MiB raw disk image "trianz-ip-172-31-23-140.raw"

Using syslinux to install a Legacy BIOS bootloader

Copying resulting files to nfs location

Saving /var/log/rear/rear-ip-172-31-23-140.log as rear-ip-172-31-23-140.log to nfs location

Copying result files '/var/tmp/rear.5grS55TunPfEGXD/tmp/trianz-ip-172-31-23-140.raw /var/tmp/rear.5grS55TunPfEGXD/tmp/VERSION /var/tmp/rear.5grS55TunPfEGXD/tmp/README /var/tmp/rear.5grS55TunPfEGXD/tmp/rear-ip-172-31-23-140.log' to /var/tmp/rear.5grS55TunPfEGXD/outputfs/ip-172-31-23-140 at nfs location

Running 'backup' stage ======================

Making backup (using backup method NETFS)

Creating tar archive '/var/tmp/rear.5grS55TunPfEGXD/outputfs/ip-172-31-23-140/2023-12-01-1327-F.tar.gz'

Archived 703 MiB [avg 6865 KiB/sec] OK

Archived 703 MiB in 106 seconds [avg 6800 KiB/sec]

Exiting rear mkbackup (PID 62457) and its descendant processes ...

Running exit tasks

To remove the build area you may use (with caution): rm -Rf --one-file-system /var/tmp/rear.5grS55TunPfEGXD

From rescue VM

RESCUE ip-172-31-23-140:~ # rear -D recover

Relax-and-Recover 2.7 / Git

Running rear recover (PID 14236 date 2023-12-01 13:37:04)

Command line options: /bin/rear -D recover

Using log file: /var/log/rear/rear-ip-172-31-23-140.log

Using build area: /var/tmp/rear.UHtDe4GJizzL7PC

Running 'init' stage ======================

Running workflow recover within the ReaR rescue/recovery system

Running 'setup' stage ======================

Running 'verify' stage ======================

Using backup archive '/mcsquare-backups//ip-172-31-23-140/backup.tar.gz'

Calculating backup archive size

Backup archive size is 704M /mcsquare-backups/2023-12-01-0954-F.tar.gz (compressed)

Running 'layout/prepare' stage ======================

Comparing disks

Disk configuration looks identical

UserInput -I DISK_LAYOUT_PROCEED_RECOVERY needed in /usr/share/rear/layout/prepare/default/250_compare_disks.sh line 235

Proceed with 'recover' (yes) otherwise manual disk layout configuration is enforced

(default 'yes' timeout 30 seconds)

UserInput: No real user input (empty or only spaces) - using default input

UserInput: No choices - result is 'yes'

Proceeding with 'recover' by default

Running 'layout/recreate' stage ======================

Disks to be completely overwritten and recreated by /var/lib/rear/layout/diskrestore.sh:

Determining disks to be wiped ...

UserInput -I WIPE_DISKS_CONFIRMATION needed in /usr/share/rear/layout/recreate/default/120_confirm_wipedisk_disks.sh line 168

Disks to be wiped:

1) Confirm disks to be wiped and continue 'rear recover'

2) Skip wiping disks and continue 'rear recover'

3) Use Relax-and-Recover shell and return back to here

4) Abort 'rear recover'

(default '1' timeout 30 seconds)

UserInput: No real user input (empty or only spaces) - using default input

UserInput: Valid choice number result 'Confirm disks to be wiped and continue 'rear recover''

Continuing 'rear recover' by default

Start system layout restoration.

Disk layout created.

ERROR: No filesystem mounted on '/mnt/local'. Stopping.

Some latest log messages since the last called script 250_verify_mount.sh:

2023-12-01 13:38:07.251272773 Entering debugscript mode via 'set -x'.

Aborting due to an error, check /var/log/rear/rear-ip-172-31-23-140.log for details

Exiting rear recover (PID 14236) and its descendant processes ...

Running exit tasks

To remove the build area you may use (with caution): rm -Rf --one-file-system /var/tmp/rear.UHtDe4GJizzL7PC

Terminated

[ramzcode]

@jsmeix Any idea on what is wrong from the above logs ?

[ramzcode]

uuidgen - This is creating a Write protection, but not sure how this is same or wrongly evaluated on the target VM as well

[ramzcode]

RCA:

"For Unknown Reasons, the disk UUID between different VM's are same. This makes ReaR to declare a different new disk as a source and make it RO"

++++ [[ /dev/nvme0n1 == /sys/block/* ]]
++++ test -b /dev/nvme0n1
++++ echo /dev/nvme0n1
+++ local device=/dev/nvme0n1
+++ local parent_device=
++++ lsblk -inpo PKNAME /dev/nvme0n1
++++ head -n1
++++ awk NF
+++ parent_device=/dev/nvme0n1
+++ test -b /dev/nvme0n1
+++ device=/dev/nvme0n1
+++ local column
+++ for column in $WRITE_PROTECTED_ID_TYPES
+++ lsblk -ino UUID /dev/nvme0n1
+++ sort -u
+++ awk NF
+++ for column in $WRITE_PROTECTED_ID_TYPES
+++ lsblk -ino PTUUID /dev/nvme0n1
+++ for column in $WRITE_PROTECTED_ID_TYPES
+++ lsblk -ino PARTUUID /dev/nvme0n1
+++ for column in $WRITE_PROTECTED_ID_TYPES
+++ lsblk -ino WWN /dev/nvme0n1
++ ids='25e2257d-7e9e-4a8b-92fd-795d5017693b
ED01-2CA2
b7e8dd78-127a-4bcb-8a1e-cad61052e52b
nvme.1d0f-766f6c3034393966363161663864363763653938-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001'
++ test '25e2257d-7e9e-4a8b-92fd-795d5017693b
ED01-2CA2
b7e8dd78-127a-4bcb-8a1e-cad61052e52b
nvme.1d0f-766f6c3034393966363161663864363763653938-416d617a6f6e20456c617374696320426c6f636b2053746f7265-00000001'
++ for id in $ids
++ IsInArray 25e2257d-7e9e-4a8b-92fd-795d5017693b b7e8dd78-127a-4bcb-8a1e-cad61052e52b
++ return 1
++ for id in $ids
++ IsInArray ED01-2CA2 b7e8dd78-127a-4bcb-8a1e-cad61052e52b
++ return 1
++ for id in $ids
++ IsInArray b7e8dd78-127a-4bcb-8a1e-cad61052e52b b7e8dd78-127a-4bcb-8a1e-cad61052e52b
++ Log '/dev/nvme0n1 is designated as write-protected by ID b7e8dd78-127a-4bcb-8a1e-cad61052e52b'
++ test -w /var/log/rear/rear-ip-172-31-23-140.log

[ramzcode]

AWS uses Unique ID's to maintain stability for storage devices across types, Due to this, ReaR thinks that it should not use the disk as the WRITE PROTECT script validation runs.

I had to use WRITE_PROTECTED_ID_TYPES="SERIAL" since SERIAL had unique vol specific ID's across different VM's. It worked as expected.

[schlomo]

@ramzcode do I understand correctly that this problem only occurs on EC2 VM backup and subsequent EC2 VM restore? And your workaround wouldn't be required if the source of the backup is not an EC2 VM?

I'm happy that you found a workaround and I'm wondering if we maybe slowly should consider adding auto-detect for AWS EC2 that would fine-tune ReaR for that environment.

Also, @ramzcode, can you please share your use case for ReaR here? So far I actually thought that users of AWS wouldn't need ReaR at all and instead use AWS-level backup tooling like snapshots. I'm happy to learn more about AWS related use cases for ReaR to better understand what is expected from ReaR in that context.

[pcahyna]

Why is /dev/nvme0n1 is designated as write-protected at all? @ramzcode are you using this disk to store the backup? Can you please show your ReaR configuration (/etc/rear/local.conf and/or /etc/rear/site.conf) and include the "rear mkbackup" debug log to show where it designates the disk as write-protected? Also please include /var/lib/rear/layout/disklayout.conf .

[ramzcode]

@schlomo Yes this is only needed for AWS Environment, may be for other CSP too, it still depends on the how they maintain the disk ID's for consistency.

The ID based validation should be highly Dynamic so that we can avoid such cases.

ReaR is used for my servers where i don't want to the AWS solutions and need more flexibility. A single solution for my On-Pem and AWS instances. Easy to maintain and Automate.

[ramzcode]

@pcahyna The reason is AWS maintains a unique ID for disk types and FS to make sure it never changes when someone upgrade their instance and move from one region to another. The main reason is to avoid boot issues due to change in ID that are part for fstab and bootloader configs

[github-actions]

Stale issue message