c9ebbebe3a
Every time we start corosync, we need to wait for the cluster to be up. And when we use sbd, we restart corosync to start sbd, so we need to wait there too.
170 lines
5.4 KiB
Ruby
170 lines
5.4 KiB
Ruby
#
|
|
# Author:: Vincent Untz
|
|
# Cookbook Name:: pacemaker
|
|
# Recipe:: stonith
|
|
#
|
|
# Copyright 2014, SUSE
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
|
|
# FIXME: delete old resources when switching mode (or agent!)
|
|
|
|
case node[:pacemaker][:stonith][:mode]
|
|
when "disabled"
|
|
when "manual"
|
|
# nothing!
|
|
|
|
when "sbd"
|
|
require 'shellwords'
|
|
|
|
sbd_devices = nil
|
|
sbd_devices ||= (node[:pacemaker][:stonith][:sbd][:nodes][node[:fqdn]][:devices] rescue nil)
|
|
sbd_devices ||= (node[:pacemaker][:stonith][:sbd][:nodes][node[:hostname]][:devices] rescue nil)
|
|
raise "No SBD devices defined!" if sbd_devices.nil? || sbd_devices.empty?
|
|
|
|
sbd_cmd = "sbd"
|
|
sbd_devices.each do |sbd_device|
|
|
sbd_cmd += " -d #{Shellwords.shellescape(sbd_device)}"
|
|
end
|
|
|
|
execute "Check if watchdog is present" do
|
|
command "test -c /dev/watchdog"
|
|
end
|
|
|
|
execute "Check SBD validity" do
|
|
command "#{sbd_cmd} dump &> /dev/null"
|
|
end
|
|
|
|
if node.platform == 'suse'
|
|
# We will want to explicitly allocate a slot the first time we come here
|
|
# (hence the use of a notification to trigger this execute).
|
|
# According to the man page, it should not be required, but apparently,
|
|
# I've hit bugs where I had to do that. So better be safe.
|
|
execute "Allocate SBD slot" do
|
|
command "#{sbd_cmd} allocate #{node[:hostname]}"
|
|
not_if "#{sbd_cmd} list | grep -q \" #{node[:hostname]} \""
|
|
action :nothing
|
|
end
|
|
|
|
template "/etc/sysconfig/sbd" do
|
|
source "sysconfig_sbd.erb"
|
|
owner "root"
|
|
group "root"
|
|
mode 0644
|
|
variables(
|
|
:sbd_devices => sbd_devices
|
|
)
|
|
# We want to allocate slots before restarting corosync
|
|
notifies :run, "execute[Allocate SBD slot]", :immediately
|
|
notifies :restart, "service[#{node[:corosync][:platform][:service_name]}]", :immediately
|
|
# After restarting corosync, we need to wait for the cluster to be online again
|
|
notifies :create, "ruby_block[wait for cluster to be online]", :immediately
|
|
end
|
|
end
|
|
|
|
pacemaker_primitive "stonith-sbd" do
|
|
agent "stonith:external/sbd"
|
|
action :create
|
|
end
|
|
|
|
when "shared"
|
|
agent = node[:pacemaker][:stonith][:shared][:agent]
|
|
params = node[:pacemaker][:stonith][:shared][:params]
|
|
|
|
# This needs to be done in the second phase of chef, because we need
|
|
# cluster-glue to be installed first; hence ruby_block
|
|
ruby_block "Check if STONITH fencing agent #{agent} is available" do
|
|
block do
|
|
PacemakerStonithHelper.assert_stonith_agent_valid agent
|
|
end
|
|
end
|
|
|
|
if params.respond_to?('to_hash')
|
|
primitive_params = params.to_hash
|
|
elsif params.is_a?(String)
|
|
primitive_params = ::Pacemaker::Resource.extract_hash("params #{params}", "params")
|
|
else
|
|
message = "Unknown format for shared fencing agent parameters: #{params.inspect}."
|
|
Chef::Log.fatal(message)
|
|
raise message
|
|
end
|
|
|
|
unless primitive_params.has_key?("hostlist")
|
|
message = "Missing hostlist parameter for shared fencing agent!"
|
|
Chef::Log.fatal(message)
|
|
raise message
|
|
end
|
|
|
|
pacemaker_primitive "stonith-shared" do
|
|
agent "stonith:#{agent}"
|
|
params primitive_params
|
|
action :create
|
|
end
|
|
|
|
when "per_node"
|
|
agent = node[:pacemaker][:stonith][:per_node][:agent]
|
|
|
|
# This needs to be done in the second phase of chef, because we need
|
|
# cluster-glue to be installed first; hence ruby_block
|
|
ruby_block "Check if STONITH fencing agent #{agent} is available" do
|
|
block do
|
|
PacemakerStonithHelper.assert_stonith_agent_valid agent
|
|
end
|
|
end
|
|
|
|
node[:pacemaker][:stonith][:per_node][:nodes].keys.each do |node_name|
|
|
if node[:pacemaker][:stonith][:per_node][:mode] == "self"
|
|
next unless node_name == node[:hostname]
|
|
end
|
|
|
|
stonith_resource = "stonith-#{node_name}"
|
|
params = node[:pacemaker][:stonith][:per_node][:nodes][node_name][:params]
|
|
|
|
if params.respond_to?('to_hash')
|
|
primitive_params = params.to_hash
|
|
elsif params.is_a?(String)
|
|
primitive_params = ::Pacemaker::Resource.extract_hash("params #{params}", "params")
|
|
else
|
|
message = "Unknown format for per-node fencing agent parameters of #{node_name}: #{params.inspect}."
|
|
Chef::Log.fatal(message)
|
|
raise message
|
|
end
|
|
|
|
# Only set one of hostname / hostlist param if none of them are present; we
|
|
# do not overwrite it as the user might have passed more information than
|
|
# just the hostname (some agents accept hostname:data in hostlist)
|
|
unless primitive_params.has_key?("hostname") || primitive_params.has_key?("hostlist")
|
|
primitive_params["hostname"] = node_name
|
|
end
|
|
|
|
pacemaker_primitive stonith_resource do
|
|
agent "stonith:#{agent}"
|
|
params primitive_params
|
|
action :create
|
|
end
|
|
|
|
pacemaker_location "l-#{stonith_resource}" do
|
|
rsc stonith_resource
|
|
score "-inf"
|
|
node node_name
|
|
action :create
|
|
end
|
|
end
|
|
|
|
else
|
|
message = "Unknown STONITH mode: #{node[:pacemaker][:stonith][:mode]}."
|
|
Chef::Log.fatal(message)
|
|
raise message
|
|
end
|