[GitHub] [apisix] ziyou434 edited a comment on issue #2695: request help: config_etcd.lua has been consistently and frequently reporting errors

[GitBox]

ziyou434 edited a comment on issue #2695:
URL: https://github.com/apache/apisix/issues/2695#issuecomment-725804223


   > @ziyou434 Could you provides the options that used for etcd start.
   
   I use bitnami/etcd chart ,and --set auth.rbac.enabled=false.
   The chart use setup.sh start etcd
   
    setup.sh
   ```
   #!/bin/bash
   
   set -o errexit
   set -o pipefail
   set -o nounset
   
   # Debug section
   exec 3>&1
   exec 4>&2
   
   if [[ "${BITNAMI_DEBUG:-false}" = true ]]; then
       echo "==> Bash debug is on"
   else
       echo "==> Bash debug is off"
       exec 1>/dev/null
       exec 2>/dev/null
   fi
   
   # Constants
   HOSTNAME="$(hostname -s)"
   AUTH_OPTIONS=""
   export 
ETCDCTL_ENDPOINTS="etcd-0.etcd-headless.api-gateway.svc.cluster.local:2380"
   export ROOT_PASSWORD="${ETCD_ROOT_PASSWORD:-}"
   if [[ -n "${ETCD_ROOT_PASSWORD:-}" ]]; then
     unset ETCD_ROOT_PASSWORD
   fi
   # Functions
   ## Store member id for later member replacement
   store_member_id() {
       while ! etcdctl $AUTH_OPTIONS member list; do sleep 1; done
       etcdctl $AUTH_OPTIONS member list | grep -w "$HOSTNAME" | awk '{ print 
$1}' | awk -F "," '{ print $1}' > "$ETCD_DATA_DIR/member_id"
       echo "==> Stored member id: $(cat ${ETCD_DATA_DIR}/member_id)" 1>&3 2>&4
       exit 0
   }
   ## Configure RBAC
   configure_rbac() {
       # When there's more than one replica, we can assume the 1st member
       # to be created is "etcd-0" since a statefulset is used
       if [[ -n "${ROOT_PASSWORD:-}" ]] && [[ "$HOSTNAME" == "etcd-0" ]]; then
           echo "==> Configuring RBAC authentication!" 1>&3 2>&4
           etcd &
           ETCD_PID=$!
           while ! etcdctl $AUTH_OPTIONS member list; do sleep 1; done
           echo "$ROOT_PASSWORD" | etcdctl $AUTH_OPTIONS user add root 
--interactive=false
           etcdctl $AUTH_OPTIONS auth enable
           kill "$ETCD_PID"
           sleep 5
       fi
   }
   ## Checks whether there was a disaster or not
   is_disastrous_failure() {
       local endpoints_array=(${ETCDCTL_ENDPOINTS//,/ })
       local active_endpoints=0
       local -r min_endpoints=$(((1 + 1)/2))
   
       for e in "${endpoints_array[@]}"; do
           if [[ "$e" != "$ETCD_ADVERTISE_CLIENT_URLS" ]] && (unset -v 
ETCDCTL_ENDPOINTS; etcdctl $AUTH_OPTIONS  endpoint health --endpoints="$e"); 
then
               active_endpoints=$((active_endpoints + 1))
           fi
       done
       if [[ $active_endpoints -lt $min_endpoints ]]; then
           true
       else
           false
       fi
   }
   
   ## Check wether the member was succesfully removed from the cluster
   should_add_new_member() {
       return_value=0
       if (grep -E 
"^Member[[:space:]]+[a-z0-9]+\s+removed\s+from\s+cluster\s+[a-z0-9]+$" 
"$(dirname "$ETCD_DATA_DIR")/member_removal.log") || \
          ! ([[ -d "$ETCD_DATA_DIR/member/snap" ]] && [[ -f 
"$ETCD_DATA_DIR/member_id" ]]); then
           rm -rf $ETCD_DATA_DIR/* 1>&3 2>&4
       else
           return_value=1
       fi
       rm -f "$(dirname "$ETCD_DATA_DIR")/member_removal.log" 1>&3 2>&4
       return $return_value
   }
   
   if [[ ! -d "$ETCD_DATA_DIR" ]]; then
       echo "==> Creating data dir..." 1>&3 2>&4
       echo "==> There is no data at all. Initializing a new member of the 
cluster..." 1>&3 2>&4
       store_member_id & 1>&3 2>&4
       configure_rbac
   else
       echo "==> Detected data from previous deployments..." 1>&3 2>&4
       if [[ $(stat -c "%a" "$ETCD_DATA_DIR") != *700 ]]; then
           echo "==> Setting data directory permissions to 700 in a recursive 
way (required in etcd >=3.4.10)" 1>&3 2>&4
           chmod -R 700 $ETCD_DATA_DIR
       else
           echo "==> The data directory is already configured with the proper 
permissions" 1>&3 2>&4
       fi
       if [[ 1 -eq 1 ]]; then
           echo "==> Single node cluster detected!!" 1>&3 2>&4
       elif is_disastrous_failure; then
           echo "==> Cluster not responding!!" 1>&3 2>&4
           echo "==> Disaster recovery is disabled, the cluster will try to 
recover on it's own..." 1>&3 2>&4
       elif should_add_new_member; then
           echo "==> Adding new member to existing cluster..." 1>&3 2>&4
           etcdctl $AUTH_OPTIONS member add "$HOSTNAME" 
--peer-urls="http://${HOSTNAME}.etcd-headless.api-gateway.svc.cluster.local:2380";
 | grep "^ETCD_" > "$ETCD_DATA_DIR/new_member_envs"
           sed -ie "s/^/export /" "$ETCD_DATA_DIR/new_member_envs"
           echo "==> Loading env vars of existing cluster..." 1>&3 2>&4
           source "$ETCD_DATA_DIR/new_member_envs" 1>&3 2>&4
           store_member_id & 1>&3 2>&4
       else
           echo "==> Updating member in existing cluster..." 1>&3 2>&4
           etcdctl $AUTH_OPTIONS member update "$(cat 
"$ETCD_DATA_DIR/member_id")" 
--peer-urls="http://${HOSTNAME}.etcd-headless.api-gateway.svc.cluster.local:2380";
 1>&3 2>&4
       fi
   fi
   exec etcd 1>&3 2>&4
   ```


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org