[pve-devel] [PATCH cluster] allow to add and delete qdevice to cluster

[Thomas Lamprecht]

On 7/19/18 8:44 AM, Dietmar Maurer wrote:
> So far, we always avoided commands with such requirements...
>  

I have to setup node local certificates for all nodes.
So either I copy all those files to /etc/pve and handle it with links from their
place in /etc/corosync/qdevice/net/nssdb/ or this.

As this is, normally, a one time operation per cluster, and a healthy cluster -
where healthy is the fact that all nodes are online - should really not be a
problem and big thing to ask for a cluster wide quorum voting modification.
Thus, my initial POC just used somewhat strict assumptions to make things
easier and in the way upstream dictated their sample workflow.

But maybe there's a way doing it without directly connecting to all nodes.
We could generated all certificates/handle signing with the QDevice from only
one node, there are three shared + three per-node files.
But even then I would abort if not all configured nodes are online, an admin
should fix his stuff before doing cluster wide modifications...

>> +	# connect to all member to get their local IP on the given network
>> +	my $addresses = [];
>> +	foreach my $node (sort keys %$members) {
>> +	    die "All nodes must be online! Node '$node' is offline, abort.\n"
>> +		if !$members->{$node}->{online};