WFA and mysql upgrades | NetApp | Page 1

edgy adder Aug 4, 2025, 2:42 PM

#

Can't find anything about this, anywhere... We need to upgrade our mysql installs to v9.
However, I know the current settings for WFA are using native password plugin, and this is disabled in v9.
We can roll through and change this with caching_sha2_password, but no idea if that will break everything.
Anyone have any suggestions on how to do this, if it's possible, etc?

unreal marsh Aug 8, 2025, 1:30 AM

#

I don't think you'll have much luck here. we've only ever allowed upgrading to the latest minor version. so you could go from 8.0.37 to 8.0.43, but not to the next major release.

that said, if you've got a lab you can try this with first, you could try changing the plugin type and see if wfa is still able to poll aiqum and test your workflows. you might need to change it for the wfa user on the aiqum side as well. we have a kb on changing it back to native on the aiqum side, but that was for when wfa was still on mysql 5.7.

we have no idea what other issues you could encounter by upgrading major versions of mysql. so i cannot recommend trying this on production servers at all. and since wfa is eovs soon, i don't see that we'll upgrade mysql much further on wfa. i was surprised it got the upgrade to mysql 8.

edgy adder Aug 8, 2025, 2:26 AM

#

eovs? as in it will be going away? anything going to replace it

unreal marsh Aug 8, 2025, 8:07 PM

#

it's on limited support now and eovs on January 31, 2026. we're recommending ansible to replace it.
https://mysupport.netapp.com/info/communications/ECMLP2877570.html

edgy adder Aug 11, 2025, 4:07 PM

#

so, moving on from WFA, what about AIQ?

can this be upgraded? major or minor? We have a whole lot of security findings stuck on mysql 8.4.4 (23 of them)

unreal marsh Aug 11, 2025, 8:29 PM

#

minor for that as well. if you're on aiqum 9.16, it went from 8.0 to 8.4, as long as you stay in the 8.4 family, you can update to the latest.

edgy adder Aug 12, 2025, 12:14 AM

#

hrm. hopefully most of these are fixed in 8.4.6 or 8.4.7

Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 an9.0.0-9.2.0
CVE-2025-50088 - Oracle MySQL (InnoDB)

Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 an9.0.0-9.3.0
CVE-2025-50081 - Oracle MySQL (mysqldump)
CVE-2025-50093 - Oracle MySQL (DDL)
CVE-2025-50104 - Oracle MySQL (DDL)
CVE-2025-50078 - Oracle MySQL (DML)
CVE-2025-50097 - Oracle MySQL (Encryption)
CVE-2025-50096 - Oracle MySQL (InnoDB)
CVE-2025-50077 - Oracle MySQL (InnoDB)
CVE-2025-50099 - Oracle MySQL (InnoDB)
CVE-2025-50085 - Oracle MySQL (InnoDB)
CVE-2025-50092 - Oracle MySQL (InnoDB)
CVE-2025-50098 - Oracle MySQL (Optimizer)
CVE-2025-50091 - Oracle MySQL (Optimizer)
CVE-2025-50083 - Oracle MySQL (Optimizer)
CVE-2025-50102 - Oracle MySQL (Optimizer)
CVE-2025-50084 - Oracle MySQL (Optimizer)
CVE-2025-50082 - Oracle MySQL (Optimizer)
CVE-2025-50079 - Oracle MySQL (Optimizer)
CVE-2025-50087 - Oracle MySQL (Optimizer)
CVE-2025-50101 - Oracle MySQL (Optimizer)
CVE-2025-50086 - Oracle MySQL (Services)
CVE-2025-50080 - Oracle MySQL (Stored Procedure)
CVE-2025-50100 - Oracle MySQL (Thread Pooling)

gritty parrot Aug 18, 2025, 7:37 PM

#

UM 9.16P2 was the version that went to 8.4.4

#WFA and mysql upgrades