0ArtemBabaev
diff --git a/‎arangod/Cluster/ClusterInfo.cpp
Lines changed: 64 additions & 7 deletions b/‎arangod/Cluster/ClusterInfo.cpp
Lines changed: 64 additions & 7 deletions
diff --git a/‎arangod/Replication2/Version.h
Lines changed: 6 additions & 0 deletions b/‎arangod/Replication2/Version.h
Lines changed: 6 additions & 0 deletions
diff --git a/‎arangod/RocksDBEngine/RocksDBEngine.cpp
Lines changed: 5 additions & 0 deletions b/‎arangod/RocksDBEngine/RocksDBEngine.cpp
Lines changed: 5 additions & 0 deletions
diff --git a/‎arangod/VocBase/VocbaseInfo.cpp
Lines changed: 11 additions & 25 deletions b/‎arangod/VocBase/VocbaseInfo.cpp
Lines changed: 11 additions & 25 deletions
diff --git a/‎arangod/VocBase/VocbaseInfo.h
Lines changed: 0 additions & 3 deletions b/‎arangod/VocBase/VocbaseInfo.h
Lines changed: 0 additions & 3 deletions
diff --git a/‎lib/Basics/FeatureFlags.cpp
Lines changed: 4 additions & 0 deletions b/‎lib/Basics/FeatureFlags.cpp
Lines changed: 4 additions & 0 deletions
@@ -31,6 +31,7 @@
 #include "Agency/Supervision.h"
 #include "ApplicationFeatures/ApplicationServer.h"
 #include "Basics/Exceptions.h"
+#include "Basics/FeatureFlags.h"
 #include "Basics/GlobalResourceMonitor.h"
 #include "Basics/GlobalSerialization.h"
 #include "Basics/NumberUtils.h"
@@ -1067,6 +1068,24 @@ void ClusterInfo::loadPlan() {
       // the startup once the extended names option is turned off.
       info.validateNames(false);
 
+      if (!arangodb::replication2::EnableReplication2) {
+        // We right now cannot run a replication2 database on a coordinator
+        // that has replication2 disabled
+        if (info.replicationVersion() == arangodb::replication::Version::TWO) {
+          LOG_TOPIC("8fdd8", FATAL, Logger::REPLICATION2)
+              << "Replication version 2 is disabled in this binary, but "
+                 "loading a "
+                 "version 2 database "
+              << "(named '" << info.getName() << "'). "
+              << "Creating such databases is disabled. Please dump the data, "
+                 "and "
+                 "recreate the database with replication version 1 (the "
+                 "default), "
+                 "and then restore the data.";
+          FATAL_ERROR_EXIT();
+        }
+      }
+
       Result res = info.load(dbSlice, VPackSlice::emptyArraySlice());
 
       if (res.fail()) {
@@ -1731,18 +1750,56 @@ void ClusterInfo::loadPlan() {
           }
         }
 
-        // The systemDB does initially set the sharding attribute. Therefore,
-        // we need to set it here.
+        // The systemDB does initially set default values.
+        // As they can change with startup parameters we need
+        // to overwrite hem here to align with existing properties
+        // and all participants in the cluster agree on
+        // same definition.
         if (newPlan.contains(StaticStrings::SystemDatabase)) {
           auto planSlice = newPlan[StaticStrings::SystemDatabase]->slice();
           if (planSlice.isArray() && planSlice.length() == 1) {
             if (planSlice.at(0).isObject()) {
               auto entrySlice = planSlice.at(0);
-              auto path = std::vector<std::string>{
-                  "arango", "Plan", "Databases", StaticStrings::SystemDatabase,
-                  StaticStrings::Sharding};
-              if (entrySlice.hasKey(path) && entrySlice.get(path).isString()) {
-                systemDB->setSharding(entrySlice.get(path).copyString());
+              {
+                // Add sharding Attribute
+                auto path = std::vector<std::string>{
+                    "arango", "Plan", "Databases",
+                    StaticStrings::SystemDatabase, StaticStrings::Sharding};
+                if (auto value = entrySlice.get(path); value.isString()) {
+                  systemDB->setSharding(value.copyString());
+                }
+              }
+              {
+                // Add replication version
+                auto path =
+                    std::vector<std::string>{"arango", "Plan", "Databases",
+                                             StaticStrings::SystemDatabase,
+                                             StaticStrings::ReplicationVersion};
+                if (auto value = entrySlice.get(path); value.isString()) {
+                  auto res = replication::parseVersion(value.stringView());
                   // Just care for valid Replication versions now
+                  if (res.ok() && res.get() != systemDB->replicationVersion()) {
+                    // We cannot change the replication version of the system
+                    // database The system database is created during startup,
+                    // using the default option There is a timeframe where new
+                    // collections are already created for this database, and
+                    // use the "wrong" replicationVersion. This crashes on the
+                    // way before this codepoint is reached and could repair the
+                    // system Database.
+                    LOG_TOPIC("50b83", FATAL, arangodb::Logger::STARTUP)
+                        << "Changed option "
+                           "'--database.default-replication-version' between "
+                           "startups. (Was "
+                        << value.stringView() << ", is now set to "
+                        << replication::versionToString(
+                               systemDB->replicationVersion())
+                        << "). This would break the _system database. If you "
+                           "want your _system database to use a different "
+                           "replication version you need to start with an "
+                           "empty cluster and restore data.";
+                    FATAL_ERROR_EXIT();
+                  }
+                }
               }
             }
           }
 
@@ -41,7 +41,13 @@ namespace arangodb::replication {
 
 enum class Version { ONE = 1, TWO = 2 };
 
+// We disable Replication2 in Production environments for now
+// This we only allow to use Version one.
+#ifdef ARANGODB_ENABLE_MAINTAINER_MODE
 constexpr inline auto allowedVersions = {Version::ONE, Version::TWO};
+#else
+constexpr inline auto allowedVersions = {Version::ONE};
+#endif
 
 auto parseVersion(std::string_view version) -> ResultT<replication::Version>;
 auto parseVersion(velocypack::Slice version) -> ResultT<replication::Version>;
 
@@ -3010,6 +3010,11 @@ void RocksDBEngine::addSystemDatabase() {
   builder.add(StaticStrings::DatabaseName,
               VPackValue(StaticStrings::SystemDatabase));
   builder.add("deleted", VPackValue(false));
+  // Also store the ReplicationVersion when creating the Database
+  auto& df = server().getFeature<DatabaseFeature>();
+  builder.add(
+      StaticStrings::ReplicationVersion,
+      VPackValue(replication::versionToString(df.defaultReplicationVersion())));
   builder.close();
 
   RocksDBLogValue log = RocksDBLogValue::DatabaseCreate(id);
 
@@ -24,6 +24,7 @@
 #include "VocbaseInfo.h"
 
 #include "ApplicationFeatures/ApplicationServer.h"
+#include "Basics/application-exit.h"
 #include "Basics/FeatureFlags.h"
 #include "Basics/StaticStrings.h"
 #include "Basics/StringUtils.h"
@@ -35,7 +36,6 @@
 #include "RestServer/DatabaseFeature.h"
 #include "Utils/Events.h"
 #include "Utilities/NameValidator.h"
-#include "VocBase/Methods/Databases.h"
 
 #include <absl/strings/str_cat.h>
 
@@ -117,26 +117,6 @@ Result CreateDatabaseInfo::load(std::string_view name, VPackSlice options,
   return checkOptions();
 }
 
-Result CreateDatabaseInfo::load(std::string_view name, uint64_t id,
-                                VPackSlice options, VPackSlice users) {
-  _name = name;
-  _id = id;
-
-  Result res = extractOptions(options, false /*getId*/, false /*getUser*/);
-  if (res.ok()) {
-    res = extractUsers(users);
-  }
-  if (!res.ok()) {
-    return res;
-  }
-
-#ifdef ARANGODB_ENABLE_MAINTAINER_MODE
-  _valid = true;
-#endif
-
-  return checkOptions();
-}
-
 void CreateDatabaseInfo::toVelocyPack(VPackBuilder& builder,
                                       bool withUsers) const {
   TRI_ASSERT(_validId);
@@ -255,6 +235,13 @@ Result CreateDatabaseInfo::extractOptions(VPackSlice options, bool extractId,
     _writeConcern = vocopts.writeConcern;
     _sharding = vocopts.sharding;
     if (!ServerState::instance()->isSingleServer()) {
+      if (!arangodb::replication2::EnableReplication2) {
+        if (vocopts.replicationVersion == replication::Version::TWO) {
+          return Result(TRI_ERROR_NOT_IMPLEMENTED,
+                        "Replication version 2 is disabled in this binary, "
+                        "cannot create replication version 2 databases.");
+        }
+      }
       // Just ignore Replication2 for SingleServers
       _replicationVersion = vocopts.replicationVersion;
     }
@@ -297,15 +284,14 @@ Result CreateDatabaseInfo::checkOptions() {
 
   if (_replicationVersion == replication::Version::TWO &&
       !replication2::EnableReplication2) {
-    LOG_TOPIC("8fdd7", ERR, Logger::REPLICATION2)
+    LOG_TOPIC("8fdd7", FATAL, Logger::REPLICATION2)
         << "Replication version 2 is disabled in this binary, but loading a "
            "version 2 database "
         << "(named '" << _name << "'). "
-        << "Creating such databases is disabled. Loading a version 2 database "
-           "that was created with another binary will work, but it is strongly "
-           "discouraged to use it in production. Please dump the data, and "
+        << "Creating such databases is disabled. Please dump the data, and "
            "recreate the database with replication version 1 (the default), "
            "and then restore the data.";
+    FATAL_ERROR_EXIT();
   }
 
   if (_validateNames) {
 
@@ -80,9 +80,6 @@ class CreateDatabaseInfo {
   Result load(std::string_view name, VPackSlice options,
               VPackSlice users = VPackSlice::emptyArraySlice());
 
-  Result load(std::string_view name, uint64_t id, VPackSlice options,
-              VPackSlice users);
-
   Result load(VPackSlice options, VPackSlice users);
 
   void toVelocyPack(VPackBuilder& builder, bool withUsers = false) const;
 
@@ -23,4 +23,8 @@
 
 #include "FeatureFlags.h"
 
+#if ARANGODB_ENABLE_MAINTAINER_MODE
 bool const ::arangodb::replication2::EnableReplication2 = true;
+#else
+bool const ::arangodb::replication2::EnableReplication2 = false;
+#endif