Page MenuHomePhabricator
Create Task
Maniphest T184634

Error in postgres puppettization for new installation (was Netbox: postgres cannot be restarted w/ current config)
Closed, ResolvedPublic
Actions

Description

With the current Puppetization for Netbox, Postgres is not able to start. This happened today after a reboot for the kernel security update.

To make it running again I had to manually modify the configurations as follows:

  • comment include 'tuning.conf' in /etc/postgresql/9.6/main/postgresql.conf
  • comment checkpoint_segments = 64 in /etc/postgresql/9.6/main/master.conf

Few action items here:

  • Puppet is broken on netmon2001 because postgres is not installed
  • Postgres DB was empty after I was able to have it restarted. No tables defined, but a netbox DB is defined.
  • Icinga doesn't have any check that Postgres is up and running, see T185504
  • Icinga doens't have any check that Netbox is up and running, see T185505
  • The Postgres module uses a master.conf.erb file that defines checkpoint_segments = <%= @checkpoint_segments %>, but the checkpoint_segments setting was deprecated in 9.5 and removed in 9.6, see https://www.postgresql.org/docs/9.6/static/release-9-5.html.
  • Netbox profile call the Postgres one with includes => ['tuning.conf'],, but it doesn't install the tuning.conf file, as required by our current puppetization. Does it need it? See modules/postgresql/manifests/server.pp:
#   includes
#       An array of files that will be included in the config. It is
#       the caller's responsibility to provide these
  • A bit unrelated to this error, but came out while debugging, in modules/role/manifests/postgres/common.pp the version 9.4 of Postgresql is hardcoded
  • Puppet was failing because the command defined in $userexists inside modules/postgresql/manifests/user.pp was failing, and the real reason (postgres not started) is a bit hidden in the middle of the message. I was wondering if it should had fail earlier. Here the log:
Notice: /Stage[main]/Profile::Netbox/Postgresql::User[replication@netmon2001]/Exec[create_user-replication@netmon2001]/returns: could not change directory to "/root": Permission denied
Notice: /Stage[main]/Profile::Netbox/Postgresql::User[replication@netmon2001]/Exec[create_user-replication@netmon2001]/returns: createuser: could not connect to database postgres: could not connect to server: No such file or directory
Notice: /Stage[main]/Profile::Netbox/Postgresql::User[replication@netmon2001]/Exec[create_user-replication@netmon2001]/returns:        Is the server running locally and accepting
Notice: /Stage[main]/Profile::Netbox/Postgresql::User[replication@netmon2001]/Exec[create_user-replication@netmon2001]/returns:        connections on Unix domain socket "/var/run/postgresql/.s.PGSQL.5432"?
Error: /usr/bin/createuser --no-superuser --no-createdb --no-createrole replication returned 1 instead of one of [0]
Error: /Stage[main]/Profile::Netbox/Postgresql::User[replication@netmon2001]/Exec[create_user-replication@netmon2001]/returns: change from notrun to 0 failed: /usr/bin/createuser --no-superuser --no-createdb --no-createrole replication returned 1 instead of one of [0]

Details

SubjectRepoBranchLines +/-
Postgres: remove hardcoded versionoperations/puppetproduction+7 -2
netbox: Add IPv6 postgresql::user resourceoperations/puppetproduction+11 -2
netbox: Add IPv6 ferm rules as welloperations/puppetproduction+1 -1
netbox: Allow slaves to to connect to masteroperations/puppetproduction+12 -0
postgresql::slave: Granular relationshipsoperations/puppetproduction+3 -3
Netbox: remove tunning.conf include; PGSQL fix 9.6 deprecated optionoperations/puppetproduction+2 -2
Customize query in gerrit

Related Objects
Search...

Event Timeline

Volans created this task.Jan 10 2018, 6:28 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 10 2018, 6:28 PM
Volans updated the task description. (Show Details)Jan 11 2018, 9:14 AM
Volans updated the task description. (Show Details)Jan 11 2018, 9:27 AM
Volans mentioned this in T170144: Evaluate NetBox as a Racktables replacement & IPAM.Jan 11 2018, 9:43 AM
gerritbot subscribed.Jan 16 2018, 5:28 PM

Change 404504 had a related patch set uploaded (by Ayounsi; owner: Ayounsi):
[operations/puppet@production] Netbox: remove tunning.conf include; PGSQL fix 9.6 deprecated option

https://gerrit.wikimedia.org/r/404504

gerritbot added a project: Patch-For-Review.Jan 16 2018, 5:28 PM
gerritbot added a comment.Jan 16 2018, 5:40 PM

Change 404504 merged by Ayounsi:
[operations/puppet@production] Netbox: remove tunning.conf include; PGSQL fix 9.6 deprecated option

https://gerrit.wikimedia.org/r/404504

Volans updated the task description. (Show Details)Jan 16 2018, 5:58 PM
ayounsi claimed this task.Jan 16 2018, 6:22 PM
ayounsi updated the task description. (Show Details)
gerritbot added a comment.Jan 16 2018, 6:29 PM

Change 404516 had a related patch set uploaded (by Ayounsi; owner: Ayounsi):
[operations/puppet@production] Postgres: remove hardcoded version

https://gerrit.wikimedia.org/r/404516

ayounsi added a subscriber: akosiaris.Jan 16 2018, 9:19 PM

About

Puppet is broken on netmon2001 because postgres is not installed

Is because package installation is done in https://github.com/wikimedia/puppet/blob/a867c8f6e95f5a6862bb911f76c54ac6449307ac/modules/postgresql/manifests/server.pp#L43

But https://github.com/wikimedia/puppet/blob/a867c8f6e95f5a6862bb911f76c54ac6449307ac/modules/postgresql/manifests/slave.pp#L70 says:

before  => Class['postgresql::server'],
require => Exec["pg_basebackup-${master_server}"],

So Puppet tries to execute a Postgres command before installing the packages, which fails.

From the file history, maybe @akosiaris can help here.

ayounsi removed ayounsi as the assignee of this task.Jan 17 2018, 12:07 AM

About:

Postgres DB was empty after I was able to have it restarted. No tables defined, but a netbox DB is defined.

I re-ran the scap script which recreated the tables properly. Will monitor to see if that happens again.

ayounsi added a comment.Jan 19 2018, 5:08 PM

Alex found the issue!

The data was in /var/lib/postgres/9.6 (default location). The restart made postgres use the "proper" location (set by puppet) of /srv/postgresql/9.6.
I moved the data over and everything is back as normal.

ayounsi updated the task description. (Show Details)Jan 19 2018, 5:09 PM
Volans added a comment.Jan 19 2018, 5:11 PM

Nice! So I guess that our puppetization is not correct and should restart Postgres after the first configuration change to ensure that the new data directory is used from the start.

Volans removed a project: observability.Jan 22 2018, 4:24 PM
Volans updated the task description. (Show Details)
gerritbot added a comment.Feb 1 2018, 11:58 AM

Change 407415 had a related patch set uploaded (by Alexandros Kosiaris; owner: Alexandros Kosiaris):
[operations/puppet@production] postgresql::slave: Granular relationships

https://gerrit.wikimedia.org/r/407415

gerritbot added a comment.Feb 1 2018, 12:08 PM

Change 407415 merged by Alexandros Kosiaris:
[operations/puppet@production] postgresql::slave: Granular relationships

https://gerrit.wikimedia.org/r/407415

gerritbot added a comment.Feb 1 2018, 2:06 PM

Change 407432 had a related patch set uploaded (by Alexandros Kosiaris; owner: Alexandros Kosiaris):
[operations/puppet@production] netbox: Allow slaves to to connect to master

https://gerrit.wikimedia.org/r/407432

gerritbot added a comment.Feb 1 2018, 2:28 PM

Change 407432 merged by Alexandros Kosiaris:
[operations/puppet@production] netbox: Allow slaves to to connect to master

https://gerrit.wikimedia.org/r/407432

gerritbot added a comment.Feb 1 2018, 2:39 PM

Change 407438 had a related patch set uploaded (by Alexandros Kosiaris; owner: Alexandros Kosiaris):
[operations/puppet@production] netbox: Add IPv6 ferm rules as well

https://gerrit.wikimedia.org/r/407438

gerritbot added a comment.Feb 1 2018, 2:40 PM

Change 407438 merged by Alexandros Kosiaris:
[operations/puppet@production] netbox: Add IPv6 ferm rules as well

https://gerrit.wikimedia.org/r/407438

gerritbot added a comment.Feb 1 2018, 3:20 PM

Change 407446 had a related patch set uploaded (by Alexandros Kosiaris; owner: Alexandros Kosiaris):
[operations/puppet@production] netbox: Add IPv6 postgresql::user resource

https://gerrit.wikimedia.org/r/407446

gerritbot added a comment.Feb 1 2018, 3:24 PM

Change 407446 merged by Alexandros Kosiaris:
[operations/puppet@production] netbox: Add IPv6 postgresql::user resource

https://gerrit.wikimedia.org/r/407446

akosiaris added a comment.Feb 1 2018, 3:35 PM

The above series of patches fixed netmon2001 not running puppet.

akosiaris updated the task description. (Show Details)Feb 1 2018, 3:35 PM
Dzahn triaged this task as High priority.Feb 1 2018, 9:45 PM
gerritbot added a comment.Feb 2 2018, 5:55 PM

Change 404516 merged by Ayounsi:
[operations/puppet@production] Postgres: remove hardcoded version

https://gerrit.wikimedia.org/r/404516

Volans closed subtask T185505: Netbox: add Icinga check for the website as Resolved.Mar 19 2018, 3:59 PM
Volans updated the task description. (Show Details)
Dzahn closed subtask T185504: Netbox: add Icinga check for PostgreSQL as Resolved.Aug 23 2018, 12:32 AM
Dzahn updated the task description. (Show Details)Aug 24 2018, 3:37 PM
Dzahn subscribed.

Checked the monitoring check box. We have that now. Details in subtask.

ArielGlenn removed a project: Patch-For-Review.Aug 30 2018, 2:37 PM
Phabricator_maintenance moved this task from Backlog to Acknowledged on the SRE board.Jan 26 2019, 9:41 PM
Volans added a project: netbox.May 2 2019, 10:27 AM
MoritzMuehlenhoff subscribed.Jul 5 2019, 12:41 PM

Is rebooted the Netbox hosts (1002, 2001) for the MDS kernel issues this week and that does not seem to be an issue any more. Can this bug be closed or is there anything else actionable?

Volans added a comment.Jul 5 2019, 3:03 PM

Most things were indeed fixed, I'm not sure on the status of the last 2 in the description checkboxes list. But they shouldn't affect anymore reboots/restarts but at most new installations. I'll rename it

Volans renamed this task from Netbox: postgres cannot be restarted w/ current config to Error in postgres puppettization for new installation (was Netbox: postgres cannot be restarted w/ current config).Jul 5 2019, 3:04 PM
Volans lowered the priority of this task from High to Low.
crusnov subscribed.Apr 14 2020, 5:54 PM

I believe this is fixed.

ayounsi updated the task description. (Show Details)Jun 17 2021, 2:06 PM
ayounsi closed this task as Resolved.Jun 17 2021, 2:49 PM
ayounsi claimed this task.

Talked with John who is working on Postgres for PuppetDB, the last issue is not happening anymore.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL