[FR] Enable operators to "cure" bugged instances using Terraform #417
Comments
|
We have created an issue in Pivotal Tracker to manage this: https://www.pivotaltracker.com/story/show/181529116 The labels on this github issue will be updated when the story is started. |
mogul
changed the title
|
A couple of points: A contract like Secondly, CSB currently relies on mutex locking within the workspace to ensure different processes dont modify the same workspace, if we implemented the feature above, we would have to use another method to ensure two processes are not modifying the cloud provider at the same time. |
|
That option ("run this tf command") would be fine as well; we just need a way to understand and fix what's going on. Sometimes that requires |
|
I think the feature overall makes a lot of sense. Its not in the project's upcoming roadmap, but I think we should add that feature to CSB if you can create a pull request. A couple of things to keep in mind of the pull request:
|
|
Sadly I'm not enough of a Go programmer to attempt this! 😞 |
pivotal-marcela-campo
added
help wanted
mogul
changed the title
|
Note I've updated the original post to reflect this discussion, adding just However, I also added another potential command, |
Is your feature request related to a problem? Please describe.
When a brokered instance is in a bad state, the only way offered by the CSB to recover it is to deprovision and reprovision it, often losing all the data/state contained in it. The upcoming change to allow for updating HCL code during an update operation is great, but we expect that it won't cover all the occasions when, for example, an operator might need to tinker with the Terraform state to fix problems (eg migrating resources between providers).
Describe the solution you'd like
Given this recent change that makes the rehydration of Terraform workspaces a separate process from what commands will be run there, we would like two new client commands:
$(CSB_EXEC) tf exec <INSTANCE> <TERRAFORM-ARGS>- Do the normal workspace rehydration, then run Terraform in the workspace with the commands specified. Display the output as if terraform was run locally.$(CSB_EXEC) tf state-[pull|push] <INSTANCE>- This would be the equivalent ofterraform state pullandterraform state push. Essentially this would enable an operator to do operations outside of the CSB, and then inform the CSB of the new state that results.Describe alternatives you've considered
We have tried to accomplish this by looking in /proc for the working directory of a terraform operation the CSB has underway but there's no way to tell the CSB to stop and give us a chance to work with that environment... The best we've been able to do is set TF_LOG and TF_LOG_PATH environment variables for the CSB to at least give us a chance to see what's going on during the operation.
Additional Context
Priority
High
We are constantly nervous that we will only be able to destroy brokered instances, whereas statically-deployed instances give us the opportunity to try to get the instance working again. This is making us reluctant to use the broker as intended.
We have a service that are expensive to provision/deprovision (EKS, 20 minutes) and a service built on top of that one that's expensive to repopulate with data (Solr, 3+ days). Having to destroy/recreate rather than "cure" existing instances can be deadly to our product's availability.
Priority Context
With the new feature to update HCL code during an update, there may be unforeseen complications when brokerpak authors start using the feature. This will enable them to move forward with existing instances even as those complications are addressed in the CSB.
Platform
N/A
Applicable Services
It applies to EKS and Solr, for which we maintain brokerpaks.
The text was updated successfully, but these errors were encountered: