[DocDB] Add Node task fails after Backup/Restores with EAR rotations #18001
Assignees
Labels
2.16 Backport Required
2.18 Backport Required
area/docdb
YugabyteDB core features
kind/bug
This issue is a bug
priority/medium
Medium priority issue
Comments
yusong-yan
added
area/docdb
yugabyte-ci
added
kind/bug
|
This can simply be reproduced by creating a universe with EAR enabled, then do the following tasks: |
yusong-yan
added a commit
that referenced
this issue
Jul 6, 2023
…etFullUniverseKeyRegistry() when EAR is disabled. Summary: When creating a cluster with EAR enabled and soon disabling the EAR, the cluster or a TServer will fail at the next restart. Here are the details steps: 1. Create a Universe with EAR enabled. Master will Encrypt the UniverseKeyRegistry with key at the creation. 3. Disable EAR, so that Master **decrypt** the UniverseKeyRegistry. 4. Restart the server, and it will try to get full UniverseKeyRegistry from Master. (Note: TSrver will try to obtain UniverseKeyRegistry from Master during Init() even no matter whether EAR is enabled or disabled.) 5. Master receives TServer's request. To send the full UniverseKeyRegistry, it decrypts the **decrypted UniverseKeyRegistry** and hits ERROR. We should prevent step 4 from happening by skipping the decryption step when EAR is disabled and sending the decrypted UniverseKeyRegistry to TServer. Test Plan: ./yb_build.sh --cxx-test integration-tests_encryption-test --gtest_filter EncryptionTest.DisableEncryptionAndRestartCluster --clang15 Reviewers: rthallam, hsunder, rahuldesirazu Reviewed By: hsunder, rahuldesirazu Subscribers: ybase, bogdan Differential Revision: https://phorge.dev.yugabyte.com/D26554
yusong-yan
added a commit
that referenced
this issue
Jul 17, 2023
…ptionManager::GetFullUniverseKeyRegistry() when EAR is disabled. Summary: Original commit: 30bde0a / D26554 When creating a cluster with EAR enabled and soon disabling the EAR, the cluster or a TServer will fail at the next restart. Here are the details steps: 1. Create a Universe with EAR enabled. Master will Encrypt the UniverseKeyRegistry with key at the creation. 3. Disable EAR, so that Master **decrypt** the UniverseKeyRegistry. 4. Restart the server, and it will try to get full UniverseKeyRegistry from Master. (Note: TSrver will try to obtain UniverseKeyRegistry from Master during Init() even no matter whether EAR is enabled or disabled.) 5. Master receives TServer's request. To send the full UniverseKeyRegistry, it decrypts the **decrypted UniverseKeyRegistry** and hits ERROR. We should prevent step 4 from happening by skipping the decryption step when EAR is disabled and sending the decrypted UniverseKeyRegistry to TServer. Test Plan: ./yb_build.sh --cxx-test integration-tests_encryption-test --gtest_filter EncryptionTest.DisableEncryptionAndRestartCluster --clang15 Reviewers: rthallam, hsunder, rahuldesirazu Reviewed By: rthallam Subscribers: bogdan, ybase Differential Revision: https://phorge.dev.yugabyte.com/D26816
|
reopen for more backport |
yusong-yan
added a commit
that referenced
this issue
Jul 27, 2023
…ptionManager::GetFullUniverseKeyRegistry() when EAR is disabled. Summary: Original commit: 30bde0a / D26554 When creating a cluster with EAR enabled and soon disabling the EAR, the cluster or a TServer will fail at the next restart. Here are the details steps: 1. Create a Universe with EAR enabled. Master will Encrypt the UniverseKeyRegistry with key at the creation. 3. Disable EAR, so that Master **decrypt** the UniverseKeyRegistry. 4. Restart the server, and it will try to get full UniverseKeyRegistry from Master. (Note: TSrver will try to obtain UniverseKeyRegistry from Master during Init() even no matter whether EAR is enabled or disabled.) 5. Master receives TServer's request. To send the full UniverseKeyRegistry, it decrypts the **decrypted UniverseKeyRegistry** and hits ERROR. We should prevent step 4 from happening by skipping the decryption step when EAR is disabled and sending the decrypted UniverseKeyRegistry to TServer. Test Plan: ./yb_build.sh --cxx-test integration-tests_encryption-test --gtest_filter EncryptionTest.DisableEncryptionAndRestartCluster --clang15 Reviewers: rthallam, hsunder, rahuldesirazu Reviewed By: rahuldesirazu Subscribers: bogdan, ybase Differential Revision: https://phorge.dev.yugabyte.com/D27284
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Jira Link: DB-7062
Description
The Update Universe Task fails after the following operations on a EAR Enabled universe:
Create a 3 RF and 4 node universe
Run Sample Apps
Take Backup
Rotate KMS key
Restore in the same universe by renaming the keyspace
Take backup of the new keyspace
Disable EAR
Restore in the same universe by renaming the keyspace
Take Backup of the new keyspace
Enable EAR
Restore in the same universe by renaming the keyspace
Take Backup of the new keyspace
Restore in the same universe by renaming the keyspace (without any rotations)
Add node (Update Universe) task will fail with the following logs:
Warning: Please confirm that this issue does not contain any sensitive information
The text was updated successfully, but these errors were encountered: