On 05/11/2010 04:06 PM, Dag Stenstad wrote: > I've looked at the patches again, and I also feel that I'm doing it the > wrong way. > > The use of "host" to check the FQDN is just faulty,
Why? > and I actually now > prefer the use of "parent_domain" wich I submitted earlier. That means that for this to work the cluster must never consist of two nodes named alice.foo and bob.bar, and I've not seen that requirement documented for Pacemaker clusters before. Plus, this whole thing _only_ applies on systems where "uname -n" does not include the domain name. Which isn't the case for all platforms, RHEL/CentOS/Fedora do include the domain name. Should we just back out the patch and document that "if you want TLS, either configure your system such that hostname does contain the domain name, or create SSL certs for just the unqualified domain name"? > An > alternative is to use the "dnsdomainname" function to look up the local > dns domainname, wich should work if the resolver works. I'm making a new > patch using this. Which also operates on the assumption that all nodes are in the same domain. I don't see how this is better than specifying parent_domain explicitly. > With regards to the loop in VirtualDomain_Define I've encountered a new > problem wich I am trying to work around. The dependencies in my cluster > is as following: > > VirtualMachine -> libvirtd -> LVM VG -> clvm -> dlm > > I just made my cluster unclean; Thus at boot it needs to check all > resources. It won't make the cluster clean before it knows for sure that > the VirtualMachine resource is not running. But VirtualMachine will > never report a Stopped status, as libvirtd is not running; Instead it > times out (or reports a generic error). > > So, what I really would want to do is to wait X seconds (30?) for the > libvirtd socket to be available, and if that doesn't work, try to check > manually if the VM is running.. I.e. by checking if the qemu socket > exists in /var/lib/libvirt/qemu/ or if there exists a .pid and/or .xml > file in /var/run/libvirt/qemu/. If it doesn't, report the resource as > Stopped. > > This is ofcourse KVM specific, and probably Ubuntu specific, and > extremly ugly. What do people propose? I'm beginning to believe we should really parse the domain name directly from the config file, with some XPath statement. Ugly as that may be. Cheers, Florian
signature.asc
Description: OpenPGP digital signature
_______________________________________________________ Linux-HA-Dev: [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha-dev Home Page: http://linux-ha.org/
