diff options
| author | Andrew Tridgell <tridge@samba.org> | 2007-06-07 15:18:55 +1000 |
|---|---|---|
| committer | Andrew Tridgell <tridge@samba.org> | 2007-06-07 15:18:55 +1000 |
| commit | 2ed57a9ae1fa09c247c308e3878abd80bc23c42e (patch) | |
| tree | 96dc9294f6e053009f3a5d7c4abe5d5372431ab4 /ctdb | |
| parent | 9754d16d4806463c53cc3233640c828982aa0b2c (diff) | |
| parent | e0fbd04697d05edd32e419993a0f0e4a19633626 (diff) | |
| download | samba-2ed57a9ae1fa09c247c308e3878abd80bc23c42e.tar.gz samba-2ed57a9ae1fa09c247c308e3878abd80bc23c42e.tar.xz samba-2ed57a9ae1fa09c247c308e3878abd80bc23c42e.zip | |
implement a scheme where nodes are banned if they continuously caused the cluster
to start a recovery session. The node is banned from the cluster for the RecoveryBanPeriod (default of 5 minutes)
(This used to be ctdb commit 4ad43dd07f526b6002477177fbf55483246c2c0c)
Diffstat (limited to 'ctdb')
| -rw-r--r-- | ctdb/common/ctdb.c | 16 | ||||
| -rw-r--r-- | ctdb/common/ctdb_client.c | 17 | ||||
| -rw-r--r-- | ctdb/common/ctdb_control.c | 8 | ||||
| -rw-r--r-- | ctdb/common/ctdb_daemon.c | 6 | ||||
| -rw-r--r-- | ctdb/common/ctdb_monitor.c | 19 | ||||
| -rw-r--r-- | ctdb/common/ctdb_recoverd.c | 450 | ||||
| -rw-r--r-- | ctdb/common/ctdb_tunables.c | 28 | ||||
| -rw-r--r-- | ctdb/include/ctdb.h | 8 | ||||
| -rw-r--r-- | ctdb/include/ctdb_private.h | 22 | ||||
| -rw-r--r-- | ctdb/takeover/ctdb_takeover.c | 76 | ||||
| -rw-r--r-- | ctdb/tcp/tcp_connect.c | 2 | ||||
| -rw-r--r-- | ctdb/tests/nodes.txt | 3 | ||||
| -rw-r--r-- | ctdb/tools/ctdb_control.c | 20 |
13 files changed, 447 insertions, 228 deletions
diff --git a/ctdb/common/ctdb.c b/ctdb/common/ctdb.c index 01654fe518..151005a8eb 100644 --- a/ctdb/common/ctdb.c +++ b/ctdb/common/ctdb.c @@ -116,10 +116,13 @@ static int ctdb_add_node(struct ctdb_context *ctdb, char *nstr) /* this assumes that the nodes are kept in sorted order, and no gaps */ node->vnn = ctdb->num_nodes; + /* nodes start out disconnected */ + node->flags |= NODE_FLAGS_DISCONNECTED; + if (ctdb->address.address && ctdb_same_address(&ctdb->address, &node->address)) { ctdb->vnn = node->vnn; - node->flags |= NODE_FLAGS_CONNECTED; + node->flags &= ~NODE_FLAGS_DISCONNECTED; } ctdb->num_nodes++; @@ -222,8 +225,7 @@ uint32_t ctdb_get_num_enabled_nodes(struct ctdb_context *ctdb) uint32_t count=0; for (i=0;i<ctdb->vnn_map->size;i++) { struct ctdb_node *node = ctdb->nodes[ctdb->vnn_map->map[i]]; - if ((node->flags & NODE_FLAGS_CONNECTED) && - !(node->flags & NODE_FLAGS_DISABLED)) { + if (!(node->flags & (NODE_FLAGS_INACTIVE|NODE_FLAGS_DISABLED))) { count++; } } @@ -354,14 +356,14 @@ static void ctdb_recv_pkt(struct ctdb_context *ctdb, uint8_t *data, uint32_t len */ void ctdb_node_dead(struct ctdb_node *node) { - if (!(node->flags & NODE_FLAGS_CONNECTED)) { + if (node->flags & NODE_FLAGS_DISCONNECTED) { DEBUG(1,("%s: node %s is already marked disconnected: %u connected\n", node->ctdb->name, node->name, node->ctdb->num_connected)); return; } node->ctdb->num_connected--; - node->flags &= ~NODE_FLAGS_CONNECTED; + node->flags |= NODE_FLAGS_DISCONNECTED; node->rx_cnt = 0; node->dead_count = 0; DEBUG(1,("%s: node %s is dead: %u connected\n", @@ -374,7 +376,7 @@ void ctdb_node_dead(struct ctdb_node *node) */ void ctdb_node_connected(struct ctdb_node *node) { - if (node->flags & NODE_FLAGS_CONNECTED) { + if (!(node->flags & NODE_FLAGS_DISCONNECTED)) { DEBUG(1,("%s: node %s is already marked connected: %u connected\n", node->ctdb->name, node->name, node->ctdb->num_connected)); @@ -382,7 +384,7 @@ void ctdb_node_connected(struct ctdb_node *node) } node->ctdb->num_connected++; node->dead_count = 0; - node->flags |= NODE_FLAGS_CONNECTED; + node->flags &= ~NODE_FLAGS_DISCONNECTED; DEBUG(1,("%s: connected to %s - %u connected\n", node->ctdb->name, node->name, node->ctdb->num_connected)); } diff --git a/ctdb/common/ctdb_client.c b/ctdb/common/ctdb_client.c index 271a34085f..74b79426d5 100644 --- a/ctdb/common/ctdb_client.c +++ b/ctdb/common/ctdb_client.c @@ -1277,7 +1277,7 @@ uint32_t *ctdb_get_connected_nodes(struct ctdb_context *ctdb, } for (i=0;i<map->num;i++) { - if (map->nodes[i].flags & NODE_FLAGS_CONNECTED) { + if (!(map->nodes[i].flags & NODE_FLAGS_DISCONNECTED)) { nodes[*num_nodes] = map->nodes[i].vnn; (*num_nodes)++; } @@ -1921,20 +1921,25 @@ int ctdb_ctrl_get_public_ips(struct ctdb_context *ctdb, /* set/clear the permanent disabled bit on a remote node */ -int ctdb_ctrl_permdisable(struct ctdb_context *ctdb, struct timeval timeout, uint32_t destnode, uint32_t mode) +int ctdb_ctrl_modflags(struct ctdb_context *ctdb, struct timeval timeout, uint32_t destnode, + uint32_t set, uint32_t clear) { int ret; TDB_DATA data; + struct ctdb_node_modflags m; int32_t res; - data.dsize = sizeof(uint32_t); - data.dptr = (unsigned char *)&mode; + m.set = set; + m.clear = clear; + + data.dsize = sizeof(m); + data.dptr = (unsigned char *)&m; ret = ctdb_control(ctdb, destnode, 0, - CTDB_CONTROL_PERMANENTLY_DISABLE, 0, data, + CTDB_CONTROL_MODIFY_FLAGS, 0, data, NULL, NULL, &res, &timeout, NULL); if (ret != 0 || res != 0) { - DEBUG(0,(__location__ " ctdb_control for setpermdisable failed\n")); + DEBUG(0,(__location__ " ctdb_control for modflags failed\n")); return -1; } diff --git a/ctdb/common/ctdb_control.c b/ctdb/common/ctdb_control.c index e22cc7f073..fbb0662dc2 100644 --- a/ctdb/common/ctdb_control.c +++ b/ctdb/common/ctdb_control.c @@ -288,9 +288,9 @@ static int32_t ctdb_control_dispatch(struct ctdb_context *ctdb, case CTDB_CONTROL_LIST_TUNABLES: return ctdb_control_list_tunables(ctdb, outdata); - case CTDB_CONTROL_PERMANENTLY_DISABLE: - CHECK_CONTROL_DATA_SIZE(sizeof(uint32_t)); - return ctdb_control_permdisable(ctdb, indata); + case CTDB_CONTROL_MODIFY_FLAGS: + CHECK_CONTROL_DATA_SIZE(sizeof(struct ctdb_node_modflags)); + return ctdb_control_modflags(ctdb, indata); default: DEBUG(0,(__location__ " Unknown CTDB control opcode %u\n", opcode)); @@ -445,7 +445,7 @@ int ctdb_daemon_send_control(struct ctdb_context *ctdb, uint32_t destnode, if (destnode != CTDB_BROADCAST_VNNMAP && destnode != CTDB_BROADCAST_ALL && (!ctdb_validate_vnn(ctdb, destnode) || - !(ctdb->nodes[destnode]->flags & NODE_FLAGS_CONNECTED))) { + (ctdb->nodes[destnode]->flags & NODE_FLAGS_DISCONNECTED))) { if (!(flags & CTDB_CTRL_FLAG_NOREPLY)) { callback(ctdb, -1, tdb_null, "ctdb_control to disconnected node", private_data); } diff --git a/ctdb/common/ctdb_daemon.c b/ctdb/common/ctdb_daemon.c index 78f5313bab..761e8fb33e 100644 --- a/ctdb/common/ctdb_daemon.c +++ b/ctdb/common/ctdb_daemon.c @@ -44,10 +44,10 @@ static void flag_change_handler(struct ctdb_context *ctdb, uint64_t srvid, return; } - /* don't get the connected flag from the other node */ + /* don't get the disconnected flag from the other node */ ctdb->nodes[c->vnn]->flags = - (ctdb->nodes[c->vnn]->flags&NODE_FLAGS_CONNECTED) - | (c->flags & ~NODE_FLAGS_CONNECTED); + (ctdb->nodes[c->vnn]->flags&NODE_FLAGS_DISCONNECTED) + | (c->flags & ~NODE_FLAGS_DISCONNECTED); } /* called when the "startup" event script has finished */ diff --git a/ctdb/common/ctdb_monitor.c b/ctdb/common/ctdb_monitor.c index 3b838e6e04..1bf1128b02 100644 --- a/ctdb/common/ctdb_monitor.c +++ b/ctdb/common/ctdb_monitor.c @@ -48,7 +48,7 @@ static void ctdb_check_for_dead_nodes(struct event_context *ev, struct timed_eve continue; } - if (!(node->flags & NODE_FLAGS_CONNECTED)) { + if (node->flags & NODE_FLAGS_DISCONNECTED) { /* it might have come alive again */ if (node->rx_cnt != 0) { ctdb_node_connected(node); @@ -185,19 +185,22 @@ void ctdb_start_monitoring(struct ctdb_context *ctdb) /* - administratively disable/enable a node + modify flags on a node */ -int32_t ctdb_control_permdisable(struct ctdb_context *ctdb, TDB_DATA indata) +int32_t ctdb_control_modflags(struct ctdb_context *ctdb, TDB_DATA indata) { - uint32_t set = *(uint32_t *)indata.dptr; + struct ctdb_node_modflags *m = (struct ctdb_node_modflags *)indata.dptr; TDB_DATA data; struct ctdb_node_flag_change c; struct ctdb_node *node = ctdb->nodes[ctdb->vnn]; + uint32_t old_flags = node->flags; - if (set) { - node->flags |= NODE_FLAGS_PERMANENTLY_DISABLED; - } else { - node->flags &= ~NODE_FLAGS_PERMANENTLY_DISABLED; + node->flags |= m->set; + node->flags &= ~m->clear; + + if (node->flags == old_flags) { + /* no change */ + return 0; } c.vnn = ctdb->vnn; diff --git a/ctdb/common/ctdb_recoverd.c b/ctdb/common/ctdb_recoverd.c index 8a376d66f3..b7a4017307 100644 --- a/ctdb/common/ctdb_recoverd.c +++ b/ctdb/common/ctdb_recoverd.c @@ -27,17 +27,24 @@ #include "../include/ctdb.h" #include "../include/ctdb_private.h" -static int timed_out = 0; - -static void timeout_func(struct event_context *ev, struct timed_event *te, - struct timeval t, void *private_data) -{ - timed_out = 1; -} +/* + private state of recovery daemon + */ +struct ctdb_recoverd { + struct ctdb_context *ctdb; + TALLOC_CTX *mem_ctx; + uint32_t last_culprit; + uint32_t culprit_counter; + struct timeval first_recover_time; + bool *banned_nodes; +}; #define CONTROL_TIMEOUT() timeval_current_ofs(ctdb->tunable.recover_timeout, 0) #define MONITOR_TIMEOUT() timeval_current_ofs(ctdb->tunable.recover_interval, 0) +/* + change recovery mode on all nodes + */ static int set_recovery_mode(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t rec_mode) { int j, ret; @@ -45,7 +52,7 @@ static int set_recovery_mode(struct ctdb_context *ctdb, struct ctdb_node_map *no /* set recovery mode to active on all nodes */ for (j=0; j<nodemap->num; j++) { /* dont change it for nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -75,6 +82,9 @@ static int set_recovery_mode(struct ctdb_context *ctdb, struct ctdb_node_map *no return 0; } +/* + change recovery master on all node + */ static int set_recovery_master(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn) { int j, ret; @@ -82,7 +92,7 @@ static int set_recovery_master(struct ctdb_context *ctdb, struct ctdb_node_map * /* set recovery master to vnn on all nodes */ for (j=0; j<nodemap->num; j++) { /* dont change it for nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -96,7 +106,12 @@ static int set_recovery_master(struct ctdb_context *ctdb, struct ctdb_node_map * return 0; } -static int create_missing_remote_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) + +/* + ensure all other nodes have attached to any databases that we have + */ +static int create_missing_remote_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, + uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) { int i, j, db, ret; struct ctdb_dbid_map *remote_dbmap; @@ -108,7 +123,7 @@ static int create_missing_remote_databases(struct ctdb_context *ctdb, struct ctd continue; } /* dont check nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -150,7 +165,11 @@ static int create_missing_remote_databases(struct ctdb_context *ctdb, struct ctd } -static int create_missing_local_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_dbid_map **dbmap, TALLOC_CTX *mem_ctx) +/* + ensure we are attached to any databases that anyone else is attached to + */ +static int create_missing_local_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, + uint32_t vnn, struct ctdb_dbid_map **dbmap, TALLOC_CTX *mem_ctx) { int i, j, db, ret; struct ctdb_dbid_map *remote_dbmap; @@ -162,7 +181,7 @@ static int create_missing_local_databases(struct ctdb_context *ctdb, struct ctdb continue; } /* dont check nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -210,7 +229,11 @@ static int create_missing_local_databases(struct ctdb_context *ctdb, struct ctdb } -static int pull_all_remote_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) +/* + pull all the remote database contents into ours + */ +static int pull_all_remote_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, + uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) { int i, j, ret; @@ -224,7 +247,7 @@ static int pull_all_remote_databases(struct ctdb_context *ctdb, struct ctdb_node continue; } /* dont merge from nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } ret = ctdb_ctrl_copydb(ctdb, CONTROL_TIMEOUT(), nodemap->nodes[j].vnn, vnn, dbmap->dbids[i], CTDB_LMASTER_ANY, mem_ctx); @@ -239,7 +262,9 @@ static int pull_all_remote_databases(struct ctdb_context *ctdb, struct ctdb_node } - +/* + change the dmaster on all databases to point to us + */ static int update_dmaster_on_all_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) { @@ -249,7 +274,7 @@ static int update_dmaster_on_all_databases(struct ctdb_context *ctdb, struct ctd for (i=0;i<dbmap->num;i++) { for (j=0; j<nodemap->num; j++) { /* dont repoint nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } ret = ctdb_ctrl_setdmaster(ctdb, CONTROL_TIMEOUT(), nodemap->nodes[j].vnn, ctdb, dbmap->dbids[i], vnn); @@ -263,6 +288,35 @@ static int update_dmaster_on_all_databases(struct ctdb_context *ctdb, struct ctd return 0; } + +/* + update flags on all active nodes + */ +static int update_flags_on_all_nodes(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap) +{ + int i; + for (i=0;i<nodemap->num;i++) { + struct ctdb_node_flag_change c; + TDB_DATA data; + uint32_t flags = nodemap->nodes[i].flags; + + if (flags & NODE_FLAGS_DISCONNECTED) { + continue; + } + + c.vnn = nodemap->nodes[i].vnn; + c.flags = nodemap->nodes[i].flags; + + data.dptr = (uint8_t *)&c; + data.dsize = sizeof(c); + + ctdb_send_message(ctdb, CTDB_BROADCAST_VNNMAP, + CTDB_SRVID_NODE_FLAGS_CHANGED, data); + + } + return 0; +} + /* vacuum one database */ @@ -279,7 +333,7 @@ static int vacuum_db(struct ctdb_context *ctdb, uint32_t db_id, struct ctdb_node /* set rsn on non-empty records to max_rsn+1 */ for (i=0;i<nodemap->num;i++) { - if (!nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED) { + if (nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE) { continue; } ret = ctdb_ctrl_set_rsn_nonempty(ctdb, CONTROL_TIMEOUT(), nodemap->nodes[i].vnn, @@ -293,7 +347,7 @@ static int vacuum_db(struct ctdb_context *ctdb, uint32_t db_id, struct ctdb_node /* delete records with rsn < max_rsn+1 on all nodes */ for (i=0;i<nodemap->num;i++) { - if (!nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED) { + if (nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE) { continue; } ret = ctdb_ctrl_delete_low_rsn(ctdb, CONTROL_TIMEOUT(), nodemap->nodes[i].vnn, @@ -310,6 +364,9 @@ static int vacuum_db(struct ctdb_context *ctdb, uint32_t db_id, struct ctdb_node } +/* + vacuum all attached databases + */ static int vacuum_all_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, struct ctdb_dbid_map *dbmap) { @@ -325,6 +382,9 @@ static int vacuum_all_databases(struct ctdb_context *ctdb, struct ctdb_node_map } +/* + push out all our database contents to all other nodes + */ static int push_all_local_databases(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_dbid_map *dbmap, TALLOC_CTX *mem_ctx) { @@ -338,7 +398,7 @@ static int push_all_local_databases(struct ctdb_context *ctdb, struct ctdb_node_ continue; } /* dont push to nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } ret = ctdb_ctrl_copydb(ctdb, CONTROL_TIMEOUT(), vnn, nodemap->nodes[j].vnn, dbmap->dbids[i], CTDB_LMASTER_ANY, mem_ctx); @@ -353,6 +413,9 @@ static int push_all_local_databases(struct ctdb_context *ctdb, struct ctdb_node_ } +/* + ensure all nodes have the same vnnmap we do + */ static int update_vnnmap_on_all_nodes(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, uint32_t vnn, struct ctdb_vnn_map *vnnmap, TALLOC_CTX *mem_ctx) { @@ -361,7 +424,7 @@ static int update_vnnmap_on_all_nodes(struct ctdb_context *ctdb, struct ctdb_nod /* push the new vnn map out to all the nodes */ for (j=0; j<nodemap->num; j++) { /* dont push to nodes that are unavailable */ - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -375,17 +438,66 @@ static int update_vnnmap_on_all_nodes(struct ctdb_context *ctdb, struct ctdb_nod return 0; } + +struct ban_state { + struct ctdb_recoverd *rec; + uint32_t banned_node; +}; + +/* + called when a ban has timed out + */ +static void ctdb_ban_timeout(struct event_context *ev, struct timed_event *te, struct timeval t, void *p) +{ + struct ban_state *state = talloc_get_type(p, struct ban_state); + DEBUG(0,("Node %u in now unbanned\n", state->banned_node)); + + state->rec->banned_nodes[state->banned_node] = false; + talloc_free(state); +} + + /* we are the recmaster, and recovery is needed - start a recovery run */ -static int do_recovery(struct ctdb_context *ctdb, +static int do_recovery(struct ctdb_recoverd *rec, TALLOC_CTX *mem_ctx, uint32_t vnn, uint32_t num_active, - struct ctdb_node_map *nodemap, struct ctdb_vnn_map *vnnmap) + struct ctdb_node_map *nodemap, struct ctdb_vnn_map *vnnmap, + uint32_t culprit) { + struct ctdb_context *ctdb = rec->ctdb; int i, j, ret; uint32_t generation; struct ctdb_dbid_map *dbmap; + if (rec->last_culprit != culprit || + timeval_elapsed(&rec->first_recover_time) > ctdb->tunable.recovery_grace_period) { + /* either a new node is the culprit, or we've decide to forgive them */ + rec->last_culprit = culprit; + rec->first_recover_time = timeval_current(); + rec->culprit_counter = 0; + } + rec->culprit_counter++; + + if (rec->culprit_counter > 2*nodemap->num) { + struct ban_state *state; + + DEBUG(0,("Node %u has caused %u recoveries in %.0f seconds - banning it for %u seconds\n", + culprit, rec->culprit_counter, timeval_elapsed(&rec->first_recover_time), + ctdb->tunable.recovery_ban_period)); + ctdb_ctrl_modflags(ctdb, CONTROL_TIMEOUT(), culprit, NODE_FLAGS_BANNED, 0); + rec->banned_nodes[culprit] = true; + + state = talloc(rec->mem_ctx, struct ban_state); + CTDB_NO_MEMORY_FATAL(ctdb, state); + + state->rec = rec; + state->banned_node = culprit; + + event_add_timed(ctdb->ev, state, timeval_current_ofs(ctdb->tunable.recovery_ban_period, 0), + ctdb_ban_timeout, state); + } + if (!ctdb_recovery_lock(ctdb, true)) { DEBUG(0,("Unable to get recovery lock - aborting recovery\n")); return -1; @@ -398,7 +510,7 @@ static int do_recovery(struct ctdb_context *ctdb, return -1; } - DEBUG(0, (__location__ " Recovery initiated\n")); + DEBUG(0, (__location__ " Recovery initiated due to problem with node %u\n", culprit)); /* pick a new generation number */ generation = random(); @@ -473,7 +585,8 @@ static int do_recovery(struct ctdb_context *ctdb, - /* build a new vnn map with all the currently active nodes */ + /* build a new vnn map with all the currently active and + unbanned nodes */ generation = random(); vnnmap = talloc(mem_ctx, struct ctdb_vnn_map); CTDB_NO_MEMORY(ctdb, vnnmap); @@ -481,7 +594,7 @@ static int do_recovery(struct ctdb_context *ctdb, vnnmap->size = num_active; vnnmap->map = talloc_array(vnnmap, uint32_t, vnnmap->size); for (i=j=0;i<nodemap->num;i++) { - if (nodemap->nodes[i].flags&NODE_FLAGS_CONNECTED) { + if (!(nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE)) { vnnmap->map[j++] = nodemap->nodes[i].vnn; } } @@ -514,6 +627,15 @@ static int do_recovery(struct ctdb_context *ctdb, } /* + update all nodes to have the same flags that we have + */ + ret = update_flags_on_all_nodes(ctdb, nodemap); + if (ret != 0) { + DEBUG(0, (__location__ " Unable to update flags on all nodes\n")); + return -1; + } + + /* run a vacuum operation on empty records */ ret = vacuum_all_databases(ctdb, nodemap, dbmap); @@ -553,6 +675,10 @@ struct election_message { uint32_t vnn; }; + +/* + send out an election request + */ static int send_election_request(struct ctdb_context *ctdb, TALLOC_CTX *mem_ctx, uint32_t vnn) { int ret; @@ -589,8 +715,9 @@ static int send_election_request(struct ctdb_context *ctdb, TALLOC_CTX *mem_ctx, handler for recovery master elections */ static void election_handler(struct ctdb_context *ctdb, uint64_t srvid, - TDB_DATA data, void *private_data) + TDB_DATA data, void *private_data) { + struct ctdb_recoverd *rec = talloc_get_type(private_data, struct ctdb_recoverd); int ret; struct election_message *em = (struct election_message *)data.dptr; TALLOC_CTX *mem_ctx; @@ -628,11 +755,46 @@ static void election_handler(struct ctdb_context *ctdb, uint64_t srvid, return; } + /* release any ban information */ + talloc_free(rec->mem_ctx); + rec->mem_ctx = talloc_new(rec); + CTDB_NO_MEMORY_FATAL(rec->mem_ctx, rec->banned_nodes); + + rec->last_culprit = (uint32_t)-1; + talloc_free(rec->banned_nodes); + rec->banned_nodes = talloc_zero_array(rec, bool, ctdb->num_nodes); + CTDB_NO_MEMORY_FATAL(ctdb, rec->banned_nodes); + talloc_free(mem_ctx); return; } +/* + called when ctdb_wait_timeout should finish + */ +static void ctdb_wait_handler(struct event_context *ev, struct timed_event *te, + struct timeval yt, void *p) +{ + uint32_t *timed_out = (uint32_t *)p; + (*timed_out) = 1; +} + +/* + wait for a given number of seconds + */ +static void ctdb_wait_timeout(struct ctdb_context *ctdb, uint32_t secs) +{ + uint32_t timed_out = 0; + event_add_timed(ctdb->ev, ctdb, timeval_current_ofs(secs, 0), ctdb_wait_handler, &timed_out); + while (!timed_out) { + event_loop_once(ctdb->ev); + } +} + +/* + force the start of the election process + */ static void force_election(struct ctdb_context *ctdb, TALLOC_CTX *mem_ctx, uint32_t vnn, struct ctdb_node_map *nodemap) { int ret; @@ -651,14 +813,72 @@ static void force_election(struct ctdb_context *ctdb, TALLOC_CTX *mem_ctx, uint3 } /* wait for a few seconds to collect all responses */ - timed_out = 0; - event_add_timed(ctdb->ev, mem_ctx, timeval_current_ofs(ctdb->tunable.election_timeout, 0), - timeout_func, ctdb); - while (!timed_out) { - event_loop_once(ctdb->ev); + ctdb_wait_timeout(ctdb, ctdb->tunable.election_timeout); +} + + + +/* + handler for when a node changes its flags +*/ +static void monitor_handler(struct ctdb_context *ctdb, uint64_t srvid, + TDB_DATA data, void *private_data) +{ + int ret; + struct ctdb_node_flag_change *c = (struct ctdb_node_flag_change *)data.dptr; + struct ctdb_node_map *nodemap=NULL; + TALLOC_CTX *tmp_ctx; + int i; + + if (data.dsize != sizeof(*c)) { + DEBUG(0,(__location__ "Invalid data in ctdb_node_flag_change\n")); + return; + } + + tmp_ctx = talloc_new(ctdb); + CTDB_NO_MEMORY_VOID(ctdb, tmp_ctx); + + ret = ctdb_ctrl_getnodemap(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, tmp_ctx, &nodemap); + + for (i=0;i<nodemap->num;i++) { + if (nodemap->nodes[i].vnn == c->vnn) break; + } + + if (i == nodemap->num) { + DEBUG(0,(__location__ "Flag change for non-existant node %u\n", c->vnn)); + talloc_free(tmp_ctx); + return; + } + + if (nodemap->nodes[i].flags != c->flags) { + DEBUG(0,("Node %u has changed flags - now 0x%x\n", c->vnn, c->flags)); + } + + nodemap->nodes[i].flags = c->flags; + + ret = ctdb_ctrl_getrecmaster(ctdb, CONTROL_TIMEOUT(), + CTDB_CURRENT_NODE, &ctdb->recovery_master); + + if (ret == 0) { + ret = ctdb_ctrl_getrecmode(ctdb, CONTROL_TIMEOUT(), + CTDB_CURRENT_NODE, &ctdb->recovery_mode); } + + if (ret == 0 && + ctdb->recovery_master == ctdb->vnn && + ctdb->recovery_mode == CTDB_RECOVERY_NORMAL && + ctdb->takeover.enabled) { + ret = ctdb_takeover_run(ctdb, nodemap); + if (ret != 0) { + DEBUG(0, (__location__ " Unable to setup public takeover addresses\n")); + } + } + + talloc_free(tmp_ctx); } + + /* the main monitoring loop */ @@ -672,6 +892,23 @@ static void monitor_cluster(struct ctdb_context *ctdb) struct ctdb_vnn_map *remote_vnnmap=NULL; int i, j, ret; bool need_takeover_run; + struct ctdb_recoverd *rec; + + rec = talloc_zero(ctdb, struct ctdb_recoverd); + CTDB_NO_MEMORY_FATAL(ctdb, rec); + + rec->ctdb = ctdb; + rec->banned_nodes = talloc_zero_array(rec, bool, ctdb->num_nodes); + CTDB_NO_MEMORY_FATAL(ctdb, rec->banned_nodes); + + rec->mem_ctx = talloc_new(rec); + CTDB_NO_MEMORY_FATAL(ctdb, rec->mem_ctx); + + /* register a message port for recovery elections */ + ctdb_set_message_handler(ctdb, CTDB_SRVID_RECOVERY, election_handler, rec); + + /* and one for when nodes are disabled/enabled */ + ctdb_set_message_handler(ctdb, CTDB_SRVID_NODE_FLAGS_CHANGED, monitor_handler, rec); again: need_takeover_run = false; @@ -687,11 +924,7 @@ again: } /* we only check for recovery once every second */ - timed_out = 0; - event_add_timed(ctdb->ev, mem_ctx, MONITOR_TIMEOUT(), timeout_func, ctdb); - while (!timed_out) { - event_loop_once(ctdb->ev); - } + ctdb_wait_timeout(ctdb, ctdb->tunable.recover_interval); /* get relevant tunables */ ctdb_ctrl_get_tunable(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, @@ -702,6 +935,10 @@ again: "ElectionTimeout", &ctdb->tunable.election_timeout); ctdb_ctrl_get_tunable(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, "TakeoverTimeout", &ctdb->tunable.takeover_timeout); + ctdb_ctrl_get_tunable(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, + "RecoveryGracePeriod", &ctdb->tunable.recovery_grace_period); + ctdb_ctrl_get_tunable(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, + "RecoveryBanPeriod", &ctdb->tunable.recovery_ban_period); vnn = ctdb_ctrl_getvnn(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE); if (vnn == (uint32_t)-1) { @@ -709,8 +946,6 @@ again: goto again; } - ctdb->vnn = vnn; - /* get the vnnmap */ ret = ctdb_ctrl_getvnnmap(ctdb, CONTROL_TIMEOUT(), vnn, mem_ctx, &vnnmap); if (ret != 0) { @@ -730,7 +965,12 @@ again: /* count how many active nodes there are */ num_active = 0; for (i=0; i<nodemap->num; i++) { - if (nodemap->nodes[i].flags&NODE_FLAGS_CONNECTED) { + if (rec->banned_nodes[nodemap->nodes[i].vnn]) { + nodemap->nodes[i].flags |= NODE_FLAGS_BANNED; + } else { + nodemap->nodes[i].flags &= ~NODE_FLAGS_BANNED; + } + if (!(nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE)) { num_active++; } } @@ -762,7 +1002,7 @@ again: goto again; } - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { DEBUG(0, ("Recmaster node %u no longer available. Force reelection\n", nodemap->nodes[j].vnn)); force_election(ctdb, mem_ctx, vnn, nodemap); goto again; @@ -779,7 +1019,7 @@ again: /* verify that all active nodes agree that we are the recmaster */ for (j=0; j<nodemap->num; j++) { - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } if (nodemap->nodes[j].vnn == vnn) { @@ -804,7 +1044,7 @@ again: and not in recovery mode */ for (j=0; j<nodemap->num; j++) { - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } @@ -813,9 +1053,9 @@ again: DEBUG(0, ("Unable to get recmode from node %u\n", vnn)); goto again; } - if (recmode!=CTDB_RECOVERY_NORMAL) { + if (recmode != CTDB_RECOVERY_NORMAL) { DEBUG(0, (__location__ " Node:%u was in recovery mode. Restart recovery process\n", nodemap->nodes[j].vnn)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } } @@ -825,7 +1065,7 @@ again: they are the same as for this node */ for (j=0; j<nodemap->num; j++) { - if (!(nodemap->nodes[j].flags&NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } if (nodemap->nodes[j].vnn == vnn) { @@ -842,8 +1082,9 @@ again: then this is a good reason to try recovery */ if (remote_nodemap->num != nodemap->num) { - DEBUG(0, (__location__ " Remote node:%u has different node count. %u vs %u of the local node\n", nodemap->nodes[j].vnn, remote_nodemap->num, nodemap->num)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + DEBUG(0, (__location__ " Remote node:%u has different node count. %u vs %u of the local node\n", + nodemap->nodes[j].vnn, remote_nodemap->num, nodemap->num)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } @@ -852,10 +1093,11 @@ again: */ for (i=0;i<nodemap->num;i++) { if ((remote_nodemap->nodes[i].vnn != nodemap->nodes[i].vnn) - || ((remote_nodemap->nodes[i].flags&NODE_FLAGS_CONNECTED) != - (nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED))) { - DEBUG(0, (__location__ " Remote node:%u has different nodemap.\n", nodemap->nodes[j].vnn)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + || ((remote_nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE) != + (nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE))) { + DEBUG(0, (__location__ " Remote node:%u has different nodemap.\n", + nodemap->nodes[j].vnn)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } } @@ -876,8 +1118,9 @@ again: as there are active nodes or we will have to do a recovery */ if (vnnmap->size != num_active) { - DEBUG(0, (__location__ " The vnnmap count is different from the number of active nodes. %u vs %u\n", vnnmap->size, num_active)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + DEBUG(0, (__location__ " The vnnmap count is different from the number of active nodes. %u vs %u\n", + vnnmap->size, num_active)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, ctdb->vnn); goto again; } @@ -885,7 +1128,7 @@ again: the vnnmap. */ for (j=0; j<nodemap->num; j++) { - if (!(nodemap->nodes[j].flags & NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } if (nodemap->nodes[j].vnn == vnn) { @@ -897,9 +1140,10 @@ again: break; } } - if (i==vnnmap->size) { - DEBUG(0, (__location__ " Node %u is active in the nodemap but did not exist in the vnnmap\n", nodemap->nodes[j].vnn)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + if (i == vnnmap->size) { + DEBUG(0, (__location__ " Node %u is active in the nodemap but did not exist in the vnnmap\n", + nodemap->nodes[j].vnn)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } } @@ -909,7 +1153,7 @@ again: and are from the same generation */ for (j=0; j<nodemap->num; j++) { - if (!(nodemap->nodes[j].flags & NODE_FLAGS_CONNECTED)) { + if (nodemap->nodes[j].flags & NODE_FLAGS_INACTIVE) { continue; } if (nodemap->nodes[j].vnn == vnn) { @@ -924,23 +1168,26 @@ again: /* verify the vnnmap generation is the same */ if (vnnmap->generation != remote_vnnmap->generation) { - DEBUG(0, (__location__ " Remote node %u has different generation of vnnmap. %u vs %u (ours)\n", nodemap->nodes[j].vnn, remote_vnnmap->generation, vnnmap->generation)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + DEBUG(0, (__location__ " Remote node %u has different generation of vnnmap. %u vs %u (ours)\n", + nodemap->nodes[j].vnn, remote_vnnmap->generation, vnnmap->generation)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } /* verify the vnnmap size is the same */ if (vnnmap->size != remote_vnnmap->size) { - DEBUG(0, (__location__ " Remote node %u has different size of vnnmap. %u vs %u (ours)\n", nodemap->nodes[j].vnn, remote_vnnmap->size, vnnmap->size)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + DEBUG(0, (__location__ " Remote node %u has different size of vnnmap. %u vs %u (ours)\n", + nodemap->nodes[j].vnn, remote_vnnmap->size, vnnmap->size)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } /* verify the vnnmap is the same */ for (i=0;i<vnnmap->size;i++) { if (remote_vnnmap->map[i] != vnnmap->map[i]) { - DEBUG(0, (__location__ " Remote node %u has different vnnmap.\n", nodemap->nodes[j].vnn)); - do_recovery(ctdb, mem_ctx, vnn, num_active, nodemap, vnnmap); + DEBUG(0, (__location__ " Remote node %u has different vnnmap.\n", + nodemap->nodes[j].vnn)); + do_recovery(rec, mem_ctx, vnn, num_active, nodemap, vnnmap, nodemap->nodes[j].vnn); goto again; } } @@ -958,67 +1205,9 @@ again: } - /* - handler for when a node changes its flags -*/ -static void monitor_handler(struct ctdb_context *ctdb, uint64_t srvid, - TDB_DATA data, void *private_data) -{ - int ret; - struct ctdb_node_flag_change *c = (struct ctdb_node_flag_change *)data.dptr; - struct ctdb_node_map *nodemap=NULL; - TALLOC_CTX *tmp_ctx; - int i; - - if (data.dsize != sizeof(*c)) { - DEBUG(0,(__location__ "Invalid data in ctdb_node_flag_change\n")); - return; - } - - tmp_ctx = talloc_new(ctdb); - CTDB_NO_MEMORY_VOID(ctdb, tmp_ctx); - - ret = ctdb_ctrl_getnodemap(ctdb, CONTROL_TIMEOUT(), CTDB_CURRENT_NODE, tmp_ctx, &nodemap); - - for (i=0;i<nodemap->num;i++) { - if (nodemap->nodes[i].vnn == c->vnn) break; - } - - if (i == nodemap->num) { - DEBUG(0,(__location__ "Flag change for non-existant node %u\n", c->vnn)); - talloc_free(tmp_ctx); - return; - } - - if (c->vnn != ctdb->vnn) { - DEBUG(0,("Node %u has changed flags - now 0x%x\n", c->vnn, c->flags)); - } - - nodemap->nodes[i].flags = c->flags; - - ret = ctdb_ctrl_getrecmaster(ctdb, CONTROL_TIMEOUT(), - CTDB_CURRENT_NODE, &ctdb->recovery_master); - - if (ret == 0) { - ret = ctdb_ctrl_getrecmode(ctdb, CONTROL_TIMEOUT(), - CTDB_CURRENT_NODE, &ctdb->recovery_mode); - } - - if (ret == 0 && - ctdb->recovery_master == ctdb->vnn && - ctdb->recovery_mode == CTDB_RECOVERY_NORMAL && - ctdb->takeover.enabled) { - ret = ctdb_takeover_run(ctdb, nodemap); - if (ret != 0) { - DEBUG(0, (__location__ " Unable to setup public takeover addresses\n")); - } - } - - talloc_free(tmp_ctx); -} - - + event handler for when the main ctdbd dies + */ static void ctdb_recoverd_parent(struct event_context *ev, struct fd_event *fde, uint16_t flags, void *private_data) { @@ -1026,6 +1215,11 @@ static void ctdb_recoverd_parent(struct event_context *ev, struct fd_event *fde, _exit(1); } + + +/* + startup the recovery daemon as a child of the main ctdb daemon + */ int ctdb_start_recoverd(struct ctdb_context *ctdb) { int ret; @@ -1070,12 +1264,6 @@ int ctdb_start_recoverd(struct ctdb_context *ctdb) exit(1); } - /* register a message port for recovery elections */ - ctdb_set_message_handler(ctdb, CTDB_SRVID_RECOVERY, election_handler, NULL); - - /* and one for when nodes are disabled/enabled */ - ctdb_set_message_handler(ctdb, CTDB_SRVID_NODE_FLAGS_CHANGED, monitor_handler, NULL); - monitor_cluster(ctdb); DEBUG(0,("ERROR: ctdb_recoverd finished!?\n")); diff --git a/ctdb/common/ctdb_tunables.c b/ctdb/common/ctdb_tunables.c index 09ba515abe..2005f3ada4 100644 --- a/ctdb/common/ctdb_tunables.c +++ b/ctdb/common/ctdb_tunables.c @@ -25,19 +25,21 @@ static const struct { uint32_t default_v; size_t offset; } tunable_map[] = { - { "MaxRedirectCount", 3, offsetof(struct ctdb_tunable, max_redirect_count) }, - { "SeqnumFrequency", 1, offsetof(struct ctdb_tunable, seqnum_frequency) }, - { "ControlTimeout", 60, offsetof(struct ctdb_tunable, control_timeout) }, - { "TraverseTimeout", 20, offsetof(struct ctdb_tunable, traverse_timeout) }, - { "KeepaliveInterval", 2, offsetof(struct ctdb_tunable, keepalive_interval) }, - { "KeepaliveLimit", 3, offsetof(struct ctdb_tunable, keepalive_limit) }, - { "MaxLACount", 7, offsetof(struct ctdb_tunable, max_lacount) }, - { "RecoverTimeout", 5, offsetof(struct ctdb_tunable, recover_timeout) }, - { "RecoverInterval", 1, offsetof(struct ctdb_tunable, recover_interval) }, - { "ElectionTimeout", 3, offsetof(struct ctdb_tunable, election_timeout) }, - { "TakeoverTimeout", 5, offsetof(struct ctdb_tunable, takeover_timeout) }, - { "MonitorInterval", 15, offsetof(struct ctdb_tunable, monitor_interval) }, - { "EventScriptTimeout", 20, offsetof(struct ctdb_tunable, script_timeout) }, + { "MaxRedirectCount", 3, offsetof(struct ctdb_tunable, max_redirect_count) }, + { "SeqnumFrequency", 1, offsetof(struct ctdb_tunable, seqnum_frequency) }, + { "ControlTimeout", 60, offsetof(struct ctdb_tunable, control_timeout) }, + { "TraverseTimeout", 20, offsetof(struct ctdb_tunable, traverse_timeout) }, + { "KeepaliveInterval", 2, offsetof(struct ctdb_tunable, keepalive_interval) }, + { "KeepaliveLimit", 3, offsetof(struct ctdb_tunable, keepalive_limit) }, + { "MaxLACount", 7, offsetof(struct ctdb_tunable, max_lacount) }, + { "RecoverTimeout", 5, offsetof(struct ctdb_tunable, recover_timeout) }, + { "RecoverInterval", 1, offsetof(struct ctdb_tunable, recover_interval) }, + { "ElectionTimeout", 3, offsetof(struct ctdb_tunable, election_timeout) }, + { "TakeoverTimeout", 5, offsetof(struct ctdb_tunable, takeover_timeout) }, + { "MonitorInterval", 15, offsetof(struct ctdb_tunable, monitor_interval) }, + { "EventScriptTimeout", 20, offsetof(struct ctdb_tunable, script_timeout) }, + { "RecoveryGracePeriod", 60, offsetof(struct ctdb_tunable, recovery_grace_period) }, + { "RecoveryBanPeriod", 300, offsetof(struct ctdb_tunable, recovery_ban_period) }, }; /* diff --git a/ctdb/include/ctdb.h b/ctdb/include/ctdb.h index 4e8fe4fa3c..545120b174 100644 --- a/ctdb/include/ctdb.h +++ b/ctdb/include/ctdb.h @@ -351,9 +351,9 @@ int ctdb_ctrl_list_tunables(struct ctdb_context *ctdb, TALLOC_CTX *mem_ctx, const char ***list, uint32_t *count); -int ctdb_ctrl_permdisable(struct ctdb_context *ctdb, - struct timeval timeout, - uint32_t destnode, - uint32_t mode); +int ctdb_ctrl_modflags(struct ctdb_context *ctdb, + struct timeval timeout, + uint32_t destnode, + uint32_t set, uint32_t clear); #endif diff --git a/ctdb/include/ctdb_private.h b/ctdb/include/ctdb_private.h index 2ec3081762..aced667b15 100644 --- a/ctdb/include/ctdb_private.h +++ b/ctdb/include/ctdb_private.h @@ -53,6 +53,8 @@ struct ctdb_tunable { uint32_t takeover_timeout; uint32_t monitor_interval; uint32_t script_timeout; + uint32_t recovery_grace_period; + uint32_t recovery_ban_period; }; /* @@ -111,10 +113,12 @@ struct ctdb_node { const char *name; /* for debug messages */ void *private_data; /* private to transport */ uint32_t vnn; -#define NODE_FLAGS_CONNECTED 0x00000001 -#define NODE_FLAGS_UNHEALTHY 0x00000002 -#define NODE_FLAGS_PERMANENTLY_DISABLED 0x00000004 +#define NODE_FLAGS_DISCONNECTED 0x00000001 /* node isn't connected */ +#define NODE_FLAGS_UNHEALTHY 0x00000002 /* monitoring says node is unhealthy */ +#define NODE_FLAGS_PERMANENTLY_DISABLED 0x00000004 /* administrator has disabled node */ +#define NODE_FLAGS_BANNED 0x00000008 /* recovery daemon has banned the node */ #define NODE_FLAGS_DISABLED (NODE_FLAGS_UNHEALTHY|NODE_FLAGS_PERMANENTLY_DISABLED) +#define NODE_FLAGS_INACTIVE (NODE_FLAGS_DISCONNECTED|NODE_FLAGS_BANNED) uint32_t flags; /* used by the dead node monitoring */ @@ -414,7 +418,7 @@ enum ctdb_controls {CTDB_CONTROL_PROCESS_EXISTS = 0, CTDB_CONTROL_GET_TUNABLE = 49, CTDB_CONTROL_LIST_TUNABLES = 50, CTDB_CONTROL_GET_PUBLIC_IPS = 51, - CTDB_CONTROL_PERMANENTLY_DISABLE = 52, + CTDB_CONTROL_MODIFY_FLAGS = 52, }; /* @@ -467,6 +471,14 @@ struct ctdb_node_flag_change { uint32_t flags; }; +/* + structure to change flags on a node + */ +struct ctdb_node_modflags { + uint32_t set; + uint32_t clear; +}; + enum call_state {CTDB_CALL_WAIT, CTDB_CALL_DONE, CTDB_CALL_ERROR}; #define CTDB_LMASTER_ANY 0xffffffff @@ -1010,6 +1022,6 @@ int32_t ctdb_control_list_tunables(struct ctdb_context *ctdb, TDB_DATA *outdata) void ctdb_tunables_set_defaults(struct ctdb_context *ctdb); -int32_t ctdb_control_permdisable(struct ctdb_context *ctdb, TDB_DATA indata); +int32_t ctdb_control_modflags(struct ctdb_context *ctdb, TDB_DATA indata); #endif diff --git a/ctdb/takeover/ctdb_takeover.c b/ctdb/takeover/ctdb_takeover.c index a90a1a08c9..c18203ff58 100644 --- a/ctdb/takeover/ctdb_takeover.c +++ b/ctdb/takeover/ctdb_takeover.c @@ -404,6 +404,29 @@ static bool ctdb_same_subnet(const char *ip1, const char *ip2, uint8_t netmask_b return true; } + +/* + try to find an available node to take a given nodes IP that meets the + criterion given by the flags + */ +static void ctdb_takeover_find_node(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap, + int start_node, uint32_t mask_flags) +{ + int j; + for (j=(start_node+1)%nodemap->num; + j != start_node; + j=(j+1)%nodemap->num) { + if (!(nodemap->nodes[j].flags & mask_flags) && + ctdb_same_subnet(ctdb->nodes[j]->public_address, + ctdb->nodes[start_node]->public_address, + ctdb->nodes[j]->public_netmask_bits)) { + ctdb->nodes[start_node]->takeover_vnn = nodemap->nodes[j].vnn; + break; + } + } +} + + /* make any IP alias changes for public addresses that are necessary */ @@ -413,51 +436,32 @@ int ctdb_takeover_run(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap) int ret; struct ctdb_public_ip ip; - /* work out which node will look after each public IP */ + /* Work out which node will look after each public IP. + * takeover_node cycles over the nodes and is incremented each time a + * node has been assigned to take over for another node. + * This spreads the failed nodes out across the remaining + * nodes more evenly + */ for (i=0;i<nodemap->num;i++) { - if ((nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED) && - !(nodemap->nodes[i].flags & NODE_FLAGS_DISABLED)) { + if (!(nodemap->nodes[i].flags & (NODE_FLAGS_INACTIVE|NODE_FLAGS_DISABLED))) { ctdb->nodes[i]->takeover_vnn = nodemap->nodes[i].vnn; } else { - /* assign this dead nodes IP to the next higher node */ - for (j=(i+1)%nodemap->num; - j != i; - j=(j+1)%nodemap->num) { - if ((nodemap->nodes[j].flags & NODE_FLAGS_CONNECTED) && - !(nodemap->nodes[j].flags & NODE_FLAGS_DISABLED) && - ctdb_same_subnet(ctdb->nodes[j]->public_address, - ctdb->nodes[i]->public_address, - ctdb->nodes[j]->public_netmask_bits)) { - ctdb->nodes[i]->takeover_vnn = nodemap->nodes[j].vnn; - break; - } - } + ctdb->nodes[i]->takeover_vnn = (uint32_t)-1; + + ctdb_takeover_find_node(ctdb, nodemap, i, NODE_FLAGS_INACTIVE|NODE_FLAGS_DISABLED); /* if no enabled node can take it, then we - might as well use any connected node. It + might as well use any active node. It probably means that some subsystem (such as NFS) is sick on all nodes. Best we can do is to keep the other services up. */ - if (j == i) { - for (j=(i+1)%nodemap->num; - j != i; - j=(j+1)%nodemap->num) { - if ((nodemap->nodes[j].flags & NODE_FLAGS_CONNECTED) && - ctdb_same_subnet(ctdb->nodes[j]->public_address, - ctdb->nodes[i]->public_address, - ctdb->nodes[j]->public_netmask_bits)) { - ctdb->nodes[i]->takeover_vnn = nodemap->nodes[j].vnn; - DEBUG(0,("All available nodes disabled for %s - using a connected node\n", - ctdb->nodes[i]->public_address)); - break; - } - } + if (ctdb->nodes[i]->takeover_vnn == (uint32_t)-1) { + ctdb_takeover_find_node(ctdb, nodemap, i, NODE_FLAGS_INACTIVE); } - - if (j == i) { + + if (ctdb->nodes[i]->takeover_vnn == (uint32_t)-1) { DEBUG(0,(__location__ " No node available on same network to take %s\n", ctdb->nodes[i]->public_address)); - ctdb->nodes[i]->takeover_vnn = -1; } } } @@ -470,7 +474,9 @@ int ctdb_takeover_run(struct ctdb_context *ctdb, struct ctdb_node_map *nodemap) hold the given alias */ for (i=0;i<nodemap->num;i++) { /* don't talk to unconnected nodes */ - if (!(nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED)) continue; + if (nodemap->nodes[i].flags & NODE_FLAGS_INACTIVE) { + continue; + } /* tell this node to delete all of the aliases that it should not have */ for (j=0;j<nodemap->num;j++) { diff --git a/ctdb/tcp/tcp_connect.c b/ctdb/tcp/tcp_connect.c index e44fbfb923..79717845f5 100644 --- a/ctdb/tcp/tcp_connect.c +++ b/ctdb/tcp/tcp_connect.c @@ -274,7 +274,7 @@ static int ctdb_tcp_listen_automatic(struct ctdb_context *ctdb) ctdb->address.address, ctdb->address.port); ctdb->vnn = ctdb->nodes[i]->vnn; - ctdb->nodes[i]->flags |= NODE_FLAGS_CONNECTED; + ctdb->nodes[i]->flags &= ~NODE_FLAGS_DISCONNECTED; DEBUG(1,("ctdb chose network address %s:%u vnn %u\n", ctdb->address.address, ctdb->address.port, diff --git a/ctdb/tests/nodes.txt b/ctdb/tests/nodes.txt index 876f0c241a..99b07328b3 100644 --- a/ctdb/tests/nodes.txt +++ b/ctdb/tests/nodes.txt @@ -1,3 +1,4 @@ 127.0.0.1 127.0.0.2 - +127.0.0.3 +127.0.0.4 diff --git a/ctdb/tools/ctdb_control.c b/ctdb/tools/ctdb_control.c index 3525fd672c..f7e7ea6ce9 100644 --- a/ctdb/tools/ctdb_control.c +++ b/ctdb/tools/ctdb_control.c @@ -285,13 +285,13 @@ static int control_status(struct ctdb_context *ctdb, int argc, const char **argv } if(options.machinereadable){ - printf(":Node:IP:Connected:Disabled:Permanently Disabled:\n"); + printf(":Node:IP:Disonnected:Disabled:Permanently Disabled:\n"); for(i=0;i<nodemap->num;i++){ printf(":%d:%s:%d:%d:%d:\n", nodemap->nodes[i].vnn, inet_ntoa(nodemap->nodes[i].sin.sin_addr), - !!(nodemap->nodes[i].flags&NODE_FLAGS_CONNECTED), - !!(nodemap->nodes[i].flags&NODE_FLAGS_UNHEALTHY), - !!(nodemap->nodes[i].flags&NODE_FLAGS_PERMANENTLY_DISABLED)); + !!(nodemap->nodes[i].flags&NODE_FLAGS_DISCONNECTED), + !!(nodemap->nodes[i].flags&NODE_FLAGS_UNHEALTHY), + !!(nodemap->nodes[i].flags&NODE_FLAGS_PERMANENTLY_DISABLED)); } return 0; } @@ -303,10 +303,10 @@ static int control_status(struct ctdb_context *ctdb, int argc, const char **argv flags_str = "DISABLED"; } else if (nodemap->nodes[i].flags & NODE_FLAGS_UNHEALTHY) { flags_str = "UNHEALTHY"; - } else if (nodemap->nodes[i].flags & NODE_FLAGS_CONNECTED) { - flags_str = "CONNECTED"; + } else if (nodemap->nodes[i].flags & NODE_FLAGS_DISCONNECTED) { + flags_str = "DISCONNECTED"; } else { - flags_str = "UNAVAILABLE"; + flags_str = "OK"; } printf("vnn:%d %-16s %s%s\n", nodemap->nodes[i].vnn, inet_ntoa(nodemap->nodes[i].sin.sin_addr), @@ -405,7 +405,7 @@ static int control_disable(struct ctdb_context *ctdb, int argc, const char **arg { int ret; - ret = ctdb_ctrl_permdisable(ctdb, TIMELIMIT(), options.vnn, NODE_FLAGS_PERMANENTLY_DISABLED); + ret = ctdb_ctrl_modflags(ctdb, TIMELIMIT(), options.vnn, NODE_FLAGS_PERMANENTLY_DISABLED, 0); if (ret != 0) { printf("Unable to disable node %u\n", options.vnn); return ret; @@ -421,7 +421,7 @@ static int control_enable(struct ctdb_context *ctdb, int argc, const char **argv { int ret; - ret = ctdb_ctrl_permdisable(ctdb, TIMELIMIT(), options.vnn, 0); + ret = ctdb_ctrl_modflags(ctdb, TIMELIMIT(), options.vnn, 0, NODE_FLAGS_PERMANENTLY_DISABLED); if (ret != 0) { printf("Unable to enable node %u\n", options.vnn); return ret; @@ -618,7 +618,7 @@ static int control_getvar(struct ctdb_context *ctdb, int argc, const char **argv return -1; } - printf("%-18s = %u\n", name, value); + printf("%-19s = %u\n", name, value); return 0; } |