Resolving a Ramen Validation Issue in Failover Cluster Post Hub Recovery #1431
Conversation
…ter Inaccessibility A new validation check in Ramen revealed an issue with failover clusters after hub recovery when the primary cluster is inaccessible. The problem arises because Ramen cannot retrieve the VRG from the primary cluster, leading to the omission of RDSpecs in the regenerated ManifestWork. The fix involves checking for the existence of the ManifestWork before creating it. Skip creation if a ManifestWork already exists for the target cluster. https://bugzilla.redhat.com/show_bug.cgi?id=2284021 Signed-off-by: Benamar Mekhissi <bmekhiss@ibm.com>
BenamarMk
force-pushed
the
fix-ramen-validation-issue-post-hub-recovery
branch
from
abc5380
to
60374a7
Compare
Created a utility function that returns a map of VRGs retrieved using MCV. If a primary VRG is not found, the function retrieves it from the S3 store and adds it to the map. This function replaces every occurrence of d.vrgs throughout the codebase, ensuring that DRPC has a near-accurate view of all VRGs in the managed clusters. Signed-off-by: Benamar Mekhissi <bmekhiss@ibm.com>
BenamarMk
force-pushed
the
fix-ramen-validation-issue-post-hub-recovery
branch
from
60374a7
to
00d3f10
Compare
Signed-off-by: Benamar Mekhissi <bmekhiss@ibm.com>
BenamarMk
force-pushed
the
fix-ramen-validation-issue-post-hub-recovery
branch
from
b7e0305
to
2cc42db
Compare
|
@ShyamsundarR unit test and e2e complete. Ready for review and merge by Monday if possible |
| @@ -912,7 +970,7 @@ func (d *DRPCInstance) ensureCleanupAndVolSyncReplicationSetup(srcCluster string | |||
|
|
|||
| // Check if the reset has already been applied. ResetVolSyncRDOnPrimary resets the VRG | |||
| // in the MW, but the VRGs in the vrgs slice are fetched using MCV. | |||
| vrg, ok := d.vrgs[srcCluster] | |||
| vrg, ok := d.fetchVRGsFromMClusterOrS3()[srcCluster] | |||
There was a problem hiding this comment.
This is a check to ensure reset has reached the managed cluster, so should use MCV VRG than s3 VRG (if one is found)?
| @@ -1531,7 +1591,7 @@ func (d *DRPCInstance) ensureVRGManifestWork(homeCluster string) error { | |||
| d.log.Info("Ensure VRG ManifestWork", | |||
| "Last State:", d.getLastDRState(), "cluster", homeCluster) | |||
|
|
|||
| cachedVrg := d.vrgs[homeCluster] | |||
| cachedVrg := d.fetchVRGsFromMClusterOrS3()[homeCluster] | |||
There was a problem hiding this comment.
I think we should add safety here to fetch the MW, and only create if one does not exist. Otherwise createVRGManifestWork would just create/upate VRG MW without any rdSpec etc.
| @@ -984,7 +1042,7 @@ func (d *DRPCInstance) prepareForFinalSync(homeCluster string) (bool, error) { | |||
|
|
|||
| const done = true | |||
|
|
|||
| vrg, ok := d.vrgs[homeCluster] | |||
| vrg, ok := d.fetchVRGsFromMClusterOrS3()[homeCluster] | |||
There was a problem hiding this comment.
Should we trust VRG from S3 to tell us vrg.Status.PrepareForFinalSyncComplete or should we wait on the MCV to report the status?
There was a problem hiding this comment.
@BenamarMk let's discuss the changes. Overall we should rely on the S3 version of VRG when MCV version is not found, but I am not sure we can make this the default in all/most cases.
| @@ -1042,7 +1100,8 @@ func (d *DRPCInstance) runFinalSync(homeCluster string) (bool, error) { | |||
| func (d *DRPCInstance) areMultipleVRGsPrimary() bool { | |||
| numOfPrimaries := 0 | |||
|
|
|||
| for _, vrg := range d.vrgs { | |||
| vrgs := d.fetchVRGsFromMClusterOrS3() | |||
There was a problem hiding this comment.
This path is from Relocate where both cluster should be active. So checking for vrg using MCV would be sufficient.
| @@ -1014,7 +1072,7 @@ func (d *DRPCInstance) runFinalSync(homeCluster string) (bool, error) { | |||
|
|
|||
| const done = true | |||
|
|
|||
| vrg, ok := d.vrgs[homeCluster] | |||
| vrg, ok := d.fetchVRGsFromMClusterOrS3()[homeCluster] | |||
There was a problem hiding this comment.
Same as prepareForFinalSync?
| @@ -1067,7 +1126,8 @@ func (d *DRPCInstance) selectCurrentPrimaryAndSecondaries() (string, []string) { | |||
|
|
|||
| primaryVRG := "" | |||
|
|
|||
| for cn, vrg := range d.vrgs { | |||
| vrgs := d.fetchVRGsFromMClusterOrS3() | |||
There was a problem hiding this comment.
Same as areMultipleVRGsPrimary
| @@ -1129,7 +1189,7 @@ func (d *DRPCInstance) readyToSwitchOver(homeCluster string, preferredCluster st | |||
| } | |||
|
|
|||
| func (d *DRPCInstance) checkReadinessAfterFailover(homeCluster string) bool { | |||
| vrg := d.vrgs[homeCluster] | |||
| vrg := d.fetchVRGsFromMClusterOrS3()[homeCluster] | |||
There was a problem hiding this comment.
Readiness check should rely on MCV.
One thing to note; we rely on s3 only when there is no primary. |
Fixing a day-one issue post-Hub Recovery process was recently uncovered due to the recent change where we added a new validation check in Ramen. This validation was designed to validate the failover cluster before initiating the failover procedure.
Before the introduction of this validation, the sync and failover operations functioned correctly post-hub recovery despite this underlying bug. The reason is that the
ReplicationDestinationexisted on the failover cluster. The missingRDSpechad no effect.I would like to point out that this issue happens only when the primary cluster is inaccessible. Ramen cannot retrieve the VRG from the primary cluster in these situations. As a result, when Ramen regenerates the
ManifestWorkfor the VRG, theRDSpecsare excluded. TheseRDSpecsare created for eachProtectedPVCobject in the primary VRG.The solution in this PR involves adding a check for the existence of the
ManifestWorkbefore creating it, to prevent accidentally overwriting a validVRG.spec. If aManifestWorkalready exists on the destination cluster, its creation is skipped. Additionally, a utility function has been created that returns a map of VRGs retrieved using MCV. If a primary VRG is not found, the function retrieves it from theS3store and adds it to the map. This new function replaces all occurrences ofd.vrgsthroughout the codebase, ensuring thatDRPCmaintains an accurate view of allVRGsin the managed clusters.https://bugzilla.redhat.com/show_bug.cgi?id=2284021
TODO: