[pve-devel] [RFC ha-manager v2 5/7] allow LRM lock stealing for fenced nodes

Dietmar Maurer dietmar at proxmox.com
Sat Mar 12 13:39:37 CET 2016


> We are only allowed to recover (=steal) a service when we have its
> LRMs lock, as this guarantees us that even if said LRM comes up
> again during the steal operation the LRM cannot start the services
> when the service config still belongs to it for a short time.
> 
> This is important, else we have a possible race for the resource
> which can result in a service started on the old (restarted) node
> and the node where the service was recovered too, which is really
> bad!

I don't really understand that. Wouldn't it be safer to simply wait
for the LRM lock after fencing?




More information about the pve-devel mailing list