Bug 2055935
Summary: | A stonith device added while stonith-enabled=false is not available to stonith_admin if it fails to start | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Reid Wahl <nwahl> |
Component: | pacemaker | Assignee: | Christine Caulfield <ccaulfie> |
Status: | CLOSED ERRATA | QA Contact: | cluster-qe <cluster-qe> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 8.5 | CC: | cluster-maint, kgaillot, msmazova, sbradley, slevine |
Target Milestone: | rc | Keywords: | Triaged |
Target Release: | 8.7 | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | pacemaker-2.1.4-1.el8 | Doc Type: | Bug Fix |
Doc Text: |
Cause: Pacemaker's fencer would not process fence device configuration changes while the stonith-enabled cluster property is false.
Consequence: Manual fencing (executed via stonith_admin or the pcs stonith fence command), which is unaffected by stonith-enabled, could use an outdated fence device configuration.
Fix: The fencer processes configuration changes even if stonith-enabled is false.
Result: Manual fencing always uses the current device configuration.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2022-11-08 09:42:25 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Reid Wahl
2022-02-18 00:45:11 UTC
I do think the second issue is the more important one, but both need to be taken care of. For the second issue, the fencer explicitly ignores CIB updates when stonith-enabled is false, which is probably not a good idea for this reason. QE: The two scenarios here both involve manual fencing (via the stonith_admin command or the pcs stonith fence command). 1. If a stonith device is created while stonith-enabled=false, and that stonith device fails to start, then manual fencing doesn't find the device when it looks for devices capable of fencing a node. 2. Manual fencing might use a deleted stonith device if the device was deleted while stonith-enabled=false. Fixed in upstream main branch as of commit c600ef4 Verified as SanityOnly in pacemaker-2.1.4-1.el8 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (pacemaker bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:7573 |