This document outlines procedures for upgrading the packages on Gluster servers.
The playbook playbooks/check-upgrade.yml will count the total and
security-specific package updates that are available. The playbook does not
make any modifications to the hosts.
Usage:
$ ./ansible-ec2 playbooks/check-upgrade.yml
# ... ansible output ...
CUSTOM STATS: ********************************************************
node3: { "security_updates": "0", "total_updates": "11"}
jumper: { "security_updates": "0", "total_updates": "2"}
node2: { "security_updates": "0", "total_updates": "11"}
node1: { "security_updates": "0", "total_updates": "11"}
node5: { "security_updates": "0", "total_updates": "11"}
node0: { "security_updates": "0", "total_updates": "11"}
node4: { "security_updates": "0", "total_updates": "11"}The steps below have been automated via the playbooks/upgrade.yml Ansible
playbook. This playbook will update all packages to their latest version (not
just security updates), checking and waiting for the cluster to be healthy with
each host upgraded.
An optional playbook, playbooks/download-upgrades.yml is available to
pre-download the available packages across all hosts to speed the upgrade
process.
Usage:
$ ./ansible-ec2 playbooks/download-upgrades.yml
# ... ansible output ...
$ ./ansible-ec2 -l g-us-east-2-c00,g-us-east-2-c01 playbooks/upgrade.yml
# ... ansible output ...The above playbook can also be used to upgrade the jump host.
Before upgrading, it is necessary to decide how extensively packages will be updated. There are several options:
- All packages can be upgraded via:
sudo yum update - Only security fixes can be applied via:
sudo yum update --security
General advice: If Gluster or the kernel is going to be upgraded, it will entail stopping Gluster, and a reboot at the end. In this case, go ahead and fully upgrade the server (all packages).
-
Determine if what is going to be upgraded: Run
sudo yum updateinfo list secfor security-only updates orsudo yum updateinfo listfor all. If the desired update type includes any kernel or Gluster packages, the above advice applies. -
Run the upgrade commands through
screento avoid problems w/ ssh disconnection.-
To start or reconnect to screen:
$ screen -xR
-
To detach:
ctrl-a d
-
-
Pre-flight
-
Ensure all bricks are online:
sudo gluster vol statusshould show pids for all bricks in each volume -
Ensure all volumes are fully healed:
sudo gluster vol heal <volname> infoshould be run for each volume on that server. The output should show no pending entries and all bricks should be "connected." Example:$ sudo gluster vol heal supervol00 info Brick ip-192-168-0-11.us-east-2.compute.internal:/bricks/supervol00/brick Status: Connected Number of entries: 0 Brick ip-192-168-0-13.us-east-2.compute.internal:/bricks/supervol00/brick Status: Connected Number of entries: 0 Brick ip-192-168-0-12.us-east-2.compute.internal:/bricks/supervol00/brick Status: Connected Number of entries: 0
-
-
Upgrade
-
If gluster packages are going to be upgraded, stop Gluster on this node:
$ sudo systemctl stop glusterd $ sudo pkill glusterfs $ sudo pkill glusterfsd
Then verify Gluster is stopped:
$ ps ax | grep gluster -
Perform the update:
$ sudo yum update # ... or ... $ sudo yum update --security -
Make sure all data is safely written to disk:
$ sync
-
If the kernel or Gluster was updated, ensure Gluster is stopped (see above) and reboot:
# Gluster should already be stopped! $ sudo shutdown -r now
-
-
Post
-
Ensure
shared_storagewas properly re-mounted$ grep shared_storage /proc/mounts ip-192-168-0-11.us-east-2.compute.internal:/gluster_shared_storage /run/gluster/shared_storage fuse.glusterfs rw,relatime,user_id=0,group_id=0,default_permissions,allow_other,max_read=131072 0 0
-
Recheck gluster and wait for pending heals to complete
$ sudo gluster vol status $ sudo gluster vol heal <volname> info summary # ... repeat above until the count is low ... $ sudo gluster vol heal <volname> info
-
The above steps should be repeated for each server in a cluster.