Puppet Class: profile::mariadb::core

Defined in:
modules/profile/manifests/mariadb/core.pp

Overview

Parameters:

  • shard (Profile::Mariadb::Valid_section) (defaults to: lookup('mariadb::shard'))
  • binlog_format (String) (defaults to: lookup('mariadb::binlog_format', {'default_value' => 'ROW'}))
  • sync_binlog (String) (defaults to: lookup('profile::mariadb::config::sync_binlog', {'default_value' => '1'}))
  • flush_log_at_trx_commit (String) (defaults to: lookup('profile::mariadb::config::innodb_flush_log_at_trx_commit', {'default_value' => '1'}))
  • wikiuser_username (String) (defaults to: lookup('profile::mariadb::wikiuser_username'))


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
# File 'modules/profile/manifests/mariadb/core.pp', line 1

class profile::mariadb::core (
    Profile::Mariadb::Valid_section $shard = lookup('mariadb::shard'),
    String $binlog_format = lookup('mariadb::binlog_format', {'default_value' => 'ROW'}),
    String $sync_binlog = lookup('profile::mariadb::config::sync_binlog', {'default_value' => '1'}),
    String $flush_log_at_trx_commit = lookup('profile::mariadb::config::innodb_flush_log_at_trx_commit', {'default_value' => '1'}),
    String $wikiuser_username = lookup('profile::mariadb::wikiuser_username'),
){
    require profile::mariadb::mysql_role
    require passwords::misc::scripts

    $mysql_role = $profile::mariadb::mysql_role::role

    # Semi-sync replication
    # off: for shard(s) of a single machine, with no slaves
    # slave: for all slaves
    # both: for masters (they are slaves and masters at the same time)
    if ($mysql_role == 'standalone') {
        $semi_sync = 'off'
    } elsif $mysql_role == 'master' {
        $semi_sync = 'master'
    } else {
        $semi_sync = 'slave'
    }

    include profile::mariadb::monitor::prometheus

    require profile::mariadb::packages_wmf
    include profile::mariadb::wmfmariadbpy
    class {'mariadb::service':
        # override not needed, default configuration changed on package
        # override => "[Service]\nLimitNOFILE=200000",
    }

    # Read only forced on also for the masters of the primary datacenter
    class { 'mariadb::config':
        config                  => 'role/mariadb/mysqld_config/production.my.cnf.erb',
        basedir                 => $profile::mariadb::packages_wmf::basedir,
        p_s                     => 'on',
        ssl                     => 'puppet-cert',
        binlog_format           => $binlog_format,
        semi_sync               => $semi_sync,
        replication_role        => $mysql_role,
        sync_binlog             => $sync_binlog,
        flush_log_at_trx_commit => $flush_log_at_trx_commit,
    }

    profile::mariadb::section { $shard: }

    profile::mariadb::grants::core { $shard:
        wikiadmin_pass    => $passwords::misc::scripts::wikiadmin_pass,
        wikiuser_username => $wikiuser_username,
        wikiuser_pass     => $passwords::misc::scripts::wikiuser_pass,
    }
    class { 'profile::mariadb::grants::production':
        shard    => 'core',
        prompt   => "PRODUCTION ${shard} ${mysql_role}",
        password => $passwords::misc::scripts::mysql_root_pass,
    }

    $is_writeable_dc = profile::mariadb::section_params::is_writeable_dc($shard)

    if profile::mariadb::section_params::is_repl_client($shard, $mysql_role) {
        $source_dc = profile::mariadb::section_params::get_repl_src_dc($mysql_role)
        mariadb::monitor_replication { $shard:
            is_critical => $is_writeable_dc,
            source_dc   => $source_dc,
        }
        profile::mariadb::replication_lag { $shard: }
    }

    $is_read_only = profile::mariadb::section_params::is_read_only($shard, $mysql_role)
    $is_critical = profile::mariadb::section_params::is_alert_critical($shard, $mysql_role)
    mariadb::monitor_readonly { $shard:
        read_only   => $is_read_only,
        # XXX(kormat): Not using $is_critical, as we want to alert even for an inactive DC.
        is_critical => ($mysql_role == 'master'),
    }

    class { 'mariadb::monitor_disk':
        is_critical   => $is_critical,
    }

    class { 'mariadb::monitor_process':
        is_critical   => $is_critical,
    }

    class { 'mariadb::heartbeat':
        shard      => $shard,
        datacenter => $::site,
        enabled    => $mysql_role == 'master',
    }

    # hack; remove after wikitech moves to a standard app server
    #  T282209
    if $shard == 's6' {
        profile::mariadb::ferm_wikitech { $shard: }
    }

    class { 'mariadb::monitor_memory': }
}