1
=== modified file '.bzrignore'
2
--- .bzrignore	2014-10-14 10:12:50 +0000
3
+++ .bzrignore	2015-11-02 12:15:35 +0000
4
@@ -1,4 +1,6 @@
5
1
_trial_temp
1
_trial_temp
6
2
hooks/_trial_temp
2
hooks/_trial_temp
7
3
hooks/local_state.pickle
3
hooks/local_state.pickle
9
4
lib/test-client-charm/hooks/charmhelpers
4
lib/pgclient/hooks/charmhelpers/
10
5
coverage
11
6
.coverage
12
5
7
13
=== modified file 'Makefile'
14
--- Makefile	2015-06-25 08:13:25 +0000
15
+++ Makefile	2015-11-02 12:15:35 +0000
16
@@ -1,63 +1,72 @@
17
1
CHARM_DIR := $(shell pwd)
1
CHARM_DIR := $(shell pwd)
18
2
TEST_TIMEOUT := 900
2
TEST_TIMEOUT := 900
20
3
SERIES := $(juju get-environment default-series)
3
SERIES := $(shell juju get-environment default-series)
21
4
HOST_SERIES := $(shell lsb_release -sc)
22
4
5
23
5
default:
6
default:
24
6
	@echo "One of:"
7
	@echo "One of:"
26
7
	@echo "    make testdep"
8
	@echo "    make testdeps"
27
8
	@echo "    make lint"
9
	@echo "    make lint"
73
9
	@echo "    make unit_test"
10
	@echo "    make unittest"
74
10
	@echo "    make integration_test"
11
	@echo "    make integration"
75
11
	@echo "    make integration_test_91"
12
	@echo "    make coverage (opens browser)"
76
12
	@echo "    make integration_test_92"
13
77
13
	@echo "    make integration_test_93"
14
test: testdeps lint unittest integration
78
14
	@echo "    make integration_test_94"
15
79
15
	@echo
16
testdeps:
80
16
	@echo "There is no 'make test'"
17
	sudo add-apt-repository -y ppa:juju/stable
81
17
18
	sudo add-apt-repository -y ppa:stub/juju
82
18
test_bot_tests:
19
	sudo apt-get update
83
19
	@echo "Installing dependencies and running automatic-testrunner tests"
20
ifeq ($(HOST_SERIES),trusty)
84
20
	tests/00-setup.sh
21
	sudo apt-get install -y \
85
21
	tests/01-lint.sh
22
	    python3-psycopg2 python3-nose python3-flake8 amulet \
86
22
	tests/02-unit-tests.sh
23
	    python3-jinja2 python3-yaml juju-wait bzr python3-amulet \
87
23
	tests/03-basic-amulet.py
24
	    python-swiftclient moreutils
88
24
25
else
89
25
testdep:
26
	sudo apt-get install -y \
90
26
	tests/00-setup.sh
27
	    python3-psycopg2 python3-nose python3-flake8 amulet \
91
27
28
	    python3-jinja2 python3-yaml juju-wait bzr python3-amulet \
92
28
unit_test:
29
	    python3-nose-cov python3-nose-timer python-swiftclient moreutils
93
29
	@echo "Unit tests of hooks"
30
endif
49
30
	cd hooks && trial test_hooks.py
50
31
51
32
integration_test:
52
33
	@echo "PostgreSQL integration tests, all non-beta versions, ${SERIES}"
53
34
	trial test.PG91Tests
54
35
	trial test.PG92Tests
55
36
	trial test.PG93Tests
56
37
	trial test.PG94Tests
57
38
58
39
integration_test_91:
59
40
	@echo "PostgreSQL 9.1 integration tests, ${SERIES}"
60
41
	trial test.PG91Tests
61
42
62
43
integration_test_92:
63
44
	@echo "PostgreSQL 9.2 integration tests, ${SERIES}"
64
45
	trial test.PG92Tests
65
46
66
47
integration_test_93:
67
48
	@echo "PostgreSQL 9.3 integration tests, ${SERIES}"
68
49
	trial test.PG93Tests
69
50
70
51
integration_test_94:
71
52
	@echo "PostgreSQL 9.4 integration tests, ${SERIES}"
72
53
	trial test.PG94Tests
94
54
31
95
55
lint:
32
lint:
96
33
	@echo "Charm Proof"
97
34
	@charm proof
98
56
	@echo "Lint check (flake8)"
35
	@echo "Lint check (flake8)"
99
57
	@flake8 -v \
36
	@flake8 -v \
100
58
	    --exclude hooks/charmhelpers,hooks/_trial_temp \
101
59
            --ignore=E402 \
37
            --ignore=E402 \
103
60
	    hooks actions testing tests test.py
38
	    --exclude=hooks/charmhelpers,__pycache__ \
104
39
	    hooks actions testing tests
105
40
106
41
_co=,
107
42
_empty=
108
43
_sp=$(_empty) $(_empty)
109
44
110
45
TESTFILES=$(filter-out %/test_integration.py,$(wildcard tests/test_*.py))
111
46
PACKAGES=$(subst $(_sp),$(_co),$(notdir $(basename $(wildcard hooks/*.py))))
112
47
113
48
NOSE := nosetests3 -sv
114
49
ifeq ($(HOST_SERIES),trusty)
115
50
TIMING_NOSE := nosetests3 -sv
116
51
else
117
52
TIMING_NOSE := nosetests3 -sv --with-timer
118
53
endif
119
54
120
55
unittest:
121
56
	${NOSE} ${TESTFILES} --cover-package=${PACKAGES} \
122
57
	    --with-coverage --cover-branches
123
58
	@echo OK: Unit tests pass `date`
124
59
125
60
coverage:
126
61
	${NOSE} ${TESTFILES} --cover-package=${PACKAGES} \
127
62
	    --with-coverage --cover-branches \
128
63
	    --cover-erase --cover-html --cover-html-dir=coverage \
129
64
	    --cover-min-percentage=100 || \
130
65
		(gnome-open coverage/index.html; false)
131
66
132
67
integration:
133
68
	${TIMING_NOSE} tests/test_integration.py 2>&1 | ts
134
69
	@echo OK: Integration tests pass `date`
135
61
70
136
62
sync:
71
sync:
137
63
	@bzr cat \
72
	@bzr cat \
138
@@ -65,3 +74,9 @@
139
65
		> .charm_helpers_sync.py
74
		> .charm_helpers_sync.py
140
66
	@python .charm_helpers_sync.py -c charm-helpers.yaml
75
	@python .charm_helpers_sync.py -c charm-helpers.yaml
141
67
	@rm .charm_helpers_sync.py
76
	@rm .charm_helpers_sync.py
142
77
143
78
144
79
# These targets are to separate the test output in the Charm CI system
145
80
test_integration.py%:
146
81
	${TIMING_NOSE} tests/$@ 2>&1 | ts
147
82
	@echo OK: $@ tests pass `date`
148
68
83
149
=== modified file 'README.md'
150
--- README.md	2015-06-22 18:40:20 +0000
151
+++ README.md	2015-11-02 12:15:35 +0000
152
@@ -26,14 +26,8 @@
153
26
26
154
27
# Usage
27
# Usage
155
28
28
164
29
This charm supports several deployment models:
29
This charm can deploy a single standalone PostgreSQL unit, or a service
165
30
30
containing a single master unit and one or more replicas.
158
31
 - A single service containing one unit. This provides a 'standalone'
159
32
   environment.
160
33
161
34
 - A service containing multiple units. One unit will be a 'master', and every
162
35
   other unit is a 'hot standby'. The charm sets up and maintains replication
163
36
for you, using standard PostgreSQL streaming replication.
166
37
31
167
38
To setup a single 'standalone' service::
32
To setup a single 'standalone' service::
168
39
33
169
@@ -42,21 +36,18 @@
170
42
36
171
43
## Scale Out Usage
37
## Scale Out Usage
172
44
38
175
45
To replicate this 'standalone' database to a 'hot standby', turning the
39
To add a replica to an existing service::
174
46
existing unit into a 'master'::
176
47
40
177
48
    juju add-unit pg-a
41
    juju add-unit pg-a
178
49
42
180
50
To deploy a new service containing a 'master' and two 'hot standbys'::
43
To deploy a new service containing a master and two hot standby replicas::
181
51
44
185
52
    juju deploy -n 2 postgresql pg-b
45
    juju deploy -n 3 postgresql pg-b
183
53
    [ ... wait until units are stable ... ]
184
54
    juju add-unit pg-b
186
55
46
187
56
You can remove units as normal. If the master unit is removed, failover occurs
47
You can remove units as normal. If the master unit is removed, failover occurs
191
57
and the most up to date 'hot standby' is promoted to 'master'.  The
48
and the most up to date hot standby is promoted to the master.  The
192
58
'db-relation-changed' and 'db-admin-relation-changed' hooks are fired, letting
49
'db-relation-changed' and 'db-admin-relation-changed' hooks are fired,
193
59
clients adjust::
50
letting clients adjust::
194
60
51
195
61
    juju remove-unit pg-b/0
52
    juju remove-unit pg-b/0
196
62
53
197
@@ -74,12 +65,6 @@
198
74
65
199
75
## Known Limitations and Issues
66
## Known Limitations and Issues
200
76
67
201
77
⚠ Due to current [limitations][1] with juju, you cannot reliably
202
78
create a service initially containing more than 2 units (eg. juju deploy
203
79
-n 3 postgresql). Instead, you must first create a service with 2 units.
204
80
Once the environment is stable and all the hooks have finished running,
205
81
you may add more units.
206
82
207
83
⚠ Do not attempt to relate client charms to a PostgreSQL service containing
68
⚠ Do not attempt to relate client charms to a PostgreSQL service containing
208
84
  multiple units unless you know the charm supports a replicated service.
69
  multiple units unless you know the charm supports a replicated service.
209
85
70
210
@@ -106,20 +91,23 @@
211
106
  practice with your database permissions will make your life difficult
91
  practice with your database permissions will make your life difficult
212
107
  when you need to recover after failure.
92
  when you need to recover after failure.
213
108
93
224
109
_Always_ set the 'roles' relationship setting when joining a
94
PostgreSQL has comprehensive database security, including ownership
225
110
relationship. _Always_ grant permissions to database roles for _all_
95
and permissions on database objects. By default, any objects a client
226
111
database objects your charm creates. _Never_ rely on access permissions
96
service creates will be owned by a user with the same name as the
227
112
given directly to a user, either explicitly or implicitly (such as being
97
client service and inaccessible to other users. To share data, it
228
113
the user who created a table). Consider the users you are provided by
98
is best to create new roles, grant the relevant permissions and object
229
114
the PostgreSQL charm as ephemeral. Any rights granted directly to them
99
ownership to the new roles and finally grant these roles to the users
230
115
will be lost if relations are recreated, as the generated usernames will
100
your services can connect as. This also makes disaster recovery easier.
231
116
be different. _If you don't follow this advice, you will need to
101
If you restore a database into an indentical Juju environment, then
232
117
manually repair permissions on all your database objects after any of
102
the service names and usernames will be the same and database permissions
233
118
the available recovery mechanisms._
103
will match. However, if you restore a database into an environment
234
104
with different client service names then the usernames will not match
235
105
and the new users not have access to your data.
236
119
106
237
120
Learn about the SQL `GRANT` statement in the excellect [PostgreSQL
107
Learn about the SQL `GRANT` statement in the excellect [PostgreSQL
238
121
reference guide][3].
108
reference guide][3].
239
122
109
240
110
241
123
### block-storage-broker
111
### block-storage-broker
242
124
112
243
125
If you are using external storage provided by the block storage broker,
113
If you are using external storage provided by the block storage broker,
244
@@ -163,10 +151,9 @@
245
163
  will create it if necessary. If your charm sets this, then it must wait
151
  will create it if necessary. If your charm sets this, then it must wait
246
164
  until a matching `database` value is presented on the PostgreSQL side of
152
  until a matching `database` value is presented on the PostgreSQL side of
247
165
  the relation (ie. `relation-get database` returns the value you set).
153
  the relation (ie. `relation-get database` returns the value you set).
249
166
- `roles`: Optional. A comma separated list of database roles to grant the
154
- `roles`: Deprecated. A comma separated list of database roles to grant the
250
167
  database user. Typically these roles will have been granted permissions to
155
  database user. Typically these roles will have been granted permissions to
253
168
  access the tables and other database objects.  Do not grant permissions
156
  access the tables and other database objects.
252
169
  directly to juju generated database users, as the charm may revoke them.
254
170
- `extensions`: Optional. A comma separated list of required postgresql
157
- `extensions`: Optional. A comma separated list of required postgresql
255
171
  extensions.
158
  extensions.
256
172
159
257
@@ -210,28 +197,26 @@
258
210
A PostgreSQL service may contain multiple units (a single master, and
197
A PostgreSQL service may contain multiple units (a single master, and
259
211
optionally one or more hot standbys). The client charm can tell which
198
optionally one or more hot standbys). The client charm can tell which
260
212
unit in a relation is the master and which are hot standbys by
199
unit in a relation is the master and which are hot standbys by
276
213
inspecting the 'state' property on the relation, and it needs to be
200
inspecting the 'state' property on the relation.
277
214
aware of how many units are in the relation by using the 'relation-list'
201
278
215
hook tool.
202
The 'standalone' state is deprecated, and when a unit advertises itself
279
216
203
as 'standalone' you should treat it like a 'master'. The state only exists
280
217
If there is a single PostgreSQL unit related, the state will be
204
for backwards compatibility and will be removed soon.
281
218
'standalone'. All database connections of course go to this unit.
205
282
219
206
Writes must go to the unit identifying itself as 'master' or 'standalone'.
283
220
If there is more than one PostgreSQL unit related, the client charm
207
If you sent writes to a 'hot standby', they will fail.
284
221
must only use units with state set to 'master' or 'hot standby'.
208
285
222
The unit with 'master' state can accept read and write connections. The
209
Reads may go to any unit. Ideally they should be load balanced over
286
223
units with 'hot standby' state can accept read-only connections, and
210
the 'hot standby' units. If you need to ensure consistency, you may
287
224
any attempted writes will fail. Units with any other state must not be
211
need to read from the 'master'.
288
225
used and should be ignored ('standalone' units are new units joining the
212
289
226
service that are not yet setup, and 'failover' state will occur when the
213
Units in any other state, including no state, should not be used and
290
227
master unit is being shutdown and a new master is being elected).
214
connections to them will likely fail. These units may still be setting
291
215
up, or performing a maintenance operation such as a failover.
292
228
216
293
229
The client charm needs to watch for state changes in its
217
The client charm needs to watch for state changes in its
299
230
relation-changed hook. New units may be added to a single unit service,
218
relation-changed hook. During failover, one of the existing 'hot standby' 
300
231
and the client charm must stop using existing 'standalone' unit and wait
219
units will change into a 'master'.
296
232
for 'master' and 'hot standby' units to appear. Units may be removed,
297
233
possibly causing a 'hot standby' unit to be promoted to a master, or
298
234
even having the service revert to a single 'standalone' unit.
301
235
220
302
236
221
303
237
## Example client hooks
222
## Example client hooks
304
@@ -249,7 +234,6 @@
305
249
    @hook
234
    @hook
306
250
    def db_relation_joined():
235
    def db_relation_joined():
307
251
        relation_set('database', config('database'))  # Explicit database name
236
        relation_set('database', config('database'))  # Explicit database name
308
252
        relation_set('roles', 'reporting,standard')  # DB roles required
309
253
237
310
254
    @hook('db-relation-changed', 'db-relation-departed')
238
    @hook('db-relation-changed', 'db-relation-departed')
311
255
    def db_relation_changed():
239
    def db_relation_changed():
312
@@ -271,9 +255,7 @@
313
271
            conn_str = conn_str_tmpl.format(**relation_get(unit=db_unit)
255
            conn_str = conn_str_tmpl.format(**relation_get(unit=db_unit)
314
272
            remote_state = relation_get('state', db_unit)
256
            remote_state = relation_get('state', db_unit)
315
273
257
319
274
            if remote_state == 'standalone' and len(active_db_units) == 1:
258
            if remote_state in ('master', 'standalone'):
317
275
                master_conn_str = conn_str
318
276
            elif relation_state == 'master':
320
277
                master_conn_str = conn_str
259
                master_conn_str = conn_str
321
278
            elif relation_state == 'hot standby':
260
            elif relation_state == 'hot standby':
322
279
                slave_conn_strs.append(conn_str)
261
                slave_conn_strs.append(conn_str)
323
@@ -284,46 +266,17 @@
324
284
        hooks.execute(sys.argv)
266
        hooks.execute(sys.argv)
325
285
267
326
286
268
327
287
## Upgrade-charm hook notes
328
288
329
289
The PostgreSQL charm has deprecated volume-map and volume-ephemeral-storage
330
290
configuration options in favor of using the storage subordinate charm for
331
291
general external storage management. If the installation being upgraded is
332
292
using these deprecated options, there are a couple of manual steps necessary 
333
293
to finish migration and continue using the current external volumes.
334
294
Even though all data will remain intact, and PostgreSQL service will continue
335
295
running, the upgrade-charm hook will intentionally fail and exit 1 as well to
336
296
raise awareness of the manual procedure which will also be documented in the
337
297
juju logs on the PostgreSQL units.
338
298
339
299
The following steps must be additionally performed to continue using external
340
300
volume maps for the PostgreSQL units once juju upgrade-charm is run from the
341
301
command line:
342
302
  1. cat > storage.cfg <<EOF
343
303
     storage:
344
304
       provider:block-storage-broker
345
305
       root: /srv/data
346
306
       volume_map: "{postgresql/0: your-vol-id, postgresql/1: your-2nd-vol-id}"
347
307
     EOF
348
308
  2. juju deploy --config storage.cfg storage
349
309
  3. juju deploy block-storage-broker
350
310
  4. juju add-relation block-storage-broker storage
351
311
  5. juju resolved --retry postgresql/0   # for each postgresql unit running
352
312
  6. juju add-relation postgresql storage
353
313
354
314
355
315
# Point In Time Recovery
269
# Point In Time Recovery
356
316
270
367
317
The PostgreSQL charm has experimental support for log shipping and point
271
The PostgreSQL charm has support for log shipping and point in time
368
318
in time recovery. This feature uses the wal-e[2] tool, and requires access
272
recovery. This feature uses the wal-e[2] tool, which will be
369
319
to Amazon S3, Microsoft Azure Block Storage or Swift. This feature is
273
installed from the Launchpad PPA ppa:stub/pgcharm. This feature
370
320
flagged as experimental because it has only been tested with Swift, and
274
requires access to either Amazon S3, Microsoft Azure Block Storage or
371
321
not yet been tested under load. It also may require some API changes,
275
Swift. This feature is experimental because it has only been tested with
372
322
particularly on how authentication credentials are accessed when a standard
276
Swift. The charm can be configured to perform regular filesystem backups
373
323
emerges. The charm can be configured to perform regular filesystem backups
277
and ship WAL files to the object store. Hot standbys will make use of
374
324
and ship WAL files to the object store. Hot standbys will make use of the
278
the archived WAL files, allowing them to resync after extended netsplits
375
325
archived WAL files, allowing them to resync after extended netsplits or
279
or even let you turn off streaming replication entirely.
366
326
even let you turn off streaming replication entirely.
376
327
280
377
328
With a base backup and the WAL archive you can perform point in time
281
With a base backup and the WAL archive you can perform point in time
378
329
recovery, but this is still a manual process and the charm does not
282
recovery, but this is still a manual process and the charm does not
379
@@ -336,8 +289,7 @@
380
336
service.
289
service.
381
337
290
382
338
To enable the experimental wal-e support with Swift, you will need to
291
To enable the experimental wal-e support with Swift, you will need to
385
339
use Ubuntu 14.04 (Trusty), and set the service configuration settings
292
and set the service configuration settings similar to the following::
384
340
similar to the following::
386
341
293
387
342
    postgresql:
294
    postgresql:
388
343
        wal_e_storage_uri: swift://mycontainer
295
        wal_e_storage_uri: swift://mycontainer
389
344
296
390
=== removed file 'TODO'
391
--- TODO	2013-02-20 13:42:08 +0000
392
+++ TODO	1970-01-01 00:00:00 +0000
393
@@ -1,27 +0,0 @@
394
1
- Fix "run" function in hooks.py to log error rather than exiting silently
395
2
  (exceptions emitted at INFO level)
396
3
397
4
- Pick a better way to get machine specs than hacky bash functions - facter?
398
5
399
6
- Specify usernames when adding a relation, rather than generating them
400
7
  automagically. This will interact better with connection poolers.
401
8
402
9
- If we have three services deployed, related via master/slave, then the
403
10
  repmgr command line tools only work on the service containing the master
404
11
  unit, as the slave-only services have neither ssh nor postgresql access
405
12
  to each other. This may only be a problem with master/slave relationships
406
13
  between services and failover, and it is unclear how that would work
407
14
  anyway (get failover working fist for units within a service).
408
15
409
16
- Drop config_change_command from config.yaml, or make it work.
410
17
  "restart" should be the default, as there may be required config changes
411
18
  to get replication working. "reload" would mean blocking a hook requesting
412
19
  config changes requireing a restart, emitting warnings so the admin can
413
20
  do the restart manually. Is this good juju? An admin can already control
414
21
  when restarts happen by when they change the juju configuration, and can
415
22
  avoid unnecessary restarts when adding replicas by ensuring required
416
23
  configuration changes are made before hand.
417
24
418
25
- No hook is invoked when removing a unit, leaving the host standby PostgreSQL
419
26
  cluster running and attempting to replicate from a master that is refusing
420
27
  its connections. Bug #872264.
421
28
0
422
=== modified file 'actions.yaml'
423
--- actions.yaml	2015-06-25 11:35:33 +0000
424
+++ actions.yaml	2015-11-02 12:15:35 +0000
425
@@ -2,3 +2,14 @@
426
2
    description: Pause replication replay on a hot standby unit.
2
    description: Pause replication replay on a hot standby unit.
427
3
replication-resume:
3
replication-resume:
428
4
    description: Resume replication replay on a hot standby unit.
4
    description: Resume replication replay on a hot standby unit.
429
5
        
430
6
# Revisit this when actions are more mature. Per Bug #1483525, it seems
431
7
# impossible to return filenames in our results.
432
8
# backup:
433
9
#     description: Run backups
434
10
#     params:
435
11
#         type:
436
12
#             type: string
437
13
#             enum: [dump]
438
14
#             description: Type of backup. Currently only 'dump' supported.
439
15
#             default: dump
440
5
16
441
=== modified file 'actions/actions.py'
442
--- actions/actions.py	2015-06-25 11:35:33 +0000
443
+++ actions/actions.py	2015-11-02 12:15:35 +0000
444
@@ -25,17 +25,21 @@
445
25
    sys.path.append(hooks_dir)
25
    sys.path.append(hooks_dir)
446
26
26
447
27
from charmhelpers.core import hookenv
27
from charmhelpers.core import hookenv
449
28
import hooks
28
450
29
import postgresql
451
29
30
452
30
31
453
31
def replication_pause(params):
32
def replication_pause(params):
456
32
    offset = hooks.postgresql_wal_received_offset()
33
    if not postgresql.is_secondary():
455
33
    if offset is None:
457
34
        hookenv.action_fail('Not a hot standby')
34
        hookenv.action_fail('Not a hot standby')
458
35
        return
35
        return
459
36
460
37
    offset = postgresql.wal_received_offset()
461
36
    hookenv.action_set(dict(offset=offset))
38
    hookenv.action_set(dict(offset=offset))
462
37
39
464
38
    cur = hooks.db_cursor(autocommit=True)
40
    con = postgresql.connect()
465
41
    con.autocommit = True
466
42
    cur = con.cursor()
467
39
    cur.execute('SELECT pg_is_xlog_replay_paused()')
43
    cur.execute('SELECT pg_is_xlog_replay_paused()')
468
40
    if cur.fetchone()[0] is True:
44
    if cur.fetchone()[0] is True:
469
41
        hookenv.action_fail('Already paused')
45
        hookenv.action_fail('Already paused')
470
@@ -45,13 +49,16 @@
471
45
49
472
46
50
473
47
def replication_resume(params):
51
def replication_resume(params):
476
48
    offset = hooks.postgresql_wal_received_offset()
52
    if not postgresql.is_secondary():
475
49
    if offset is None:
477
50
        hookenv.action_fail('Not a hot standby')
53
        hookenv.action_fail('Not a hot standby')
478
51
        return
54
        return
479
55
480
56
    offset = postgresql.wal_received_offset()
481
52
    hookenv.action_set(dict(offset=offset))
57
    hookenv.action_set(dict(offset=offset))
482
53
58
484
54
    cur = hooks.db_cursor(autocommit=True)
59
    con = postgresql.connect()
485
60
    con.autocommit = True
486
61
    cur = con.cursor()
487
55
    cur.execute('SELECT pg_is_xlog_replay_paused()')
62
    cur.execute('SELECT pg_is_xlog_replay_paused()')
488
56
    if cur.fetchone()[0] is False:
63
    if cur.fetchone()[0] is False:
489
57
        hookenv.action_fail('Already resumed')
64
        hookenv.action_fail('Already resumed')
490
@@ -60,6 +67,34 @@
491
60
    hookenv.action_set(dict(result='Resumed'))
67
    hookenv.action_set(dict(result='Resumed'))
492
61
68
493
62
69
494
70
# Revisit this when actions are more mature. Per Bug #1483525, it seems
495
71
# impossible to return filenames in our results.
496
72
#
497
73
# def backup(params):
498
74
#     assert params['type'] == 'dump'
499
75
#     script = os.path.join(helpers.scripts_dir(), 'pg_backup_job')
500
76
#     cmd = ['sudo', '-u', 'postgres', '-H', script, str(params['retention'])]
501
77
#     hookenv.action_set(dict(command=' '.join(cmd)))
502
78
#
503
79
#     try:
504
80
#         subprocess.check_call(cmd)
505
81
#     except subprocess.CalledProcessError as x:
506
82
#         hookenv.action_fail(str(x))
507
83
#         return
508
84
#
509
85
#     backups = {}
510
86
#     for filename in os.listdir(backups_dir):
511
87
#         path = os.path.join(backups_dir, filename)
512
88
#         if not is.path.isfile(path):
513
89
#             continue
514
90
#         backups['{}.{}'.format(filename
515
91
#         backups[filename] = dict(name=filename,
516
92
#                                  size=os.path.getsize(path),
517
93
#                                  path=path,
518
94
#                                  scp_path='{}:{}'.format(unit, path))
519
95
#     hookenv.action_set(dict(backups=backups))
520
96
521
97
522
63
def main(argv):
98
def main(argv):
523
64
    action = os.path.basename(argv[0])
99
    action = os.path.basename(argv[0])
524
65
    params = hookenv.action_get()
100
    params = hookenv.action_get()
525
66
101
526
=== modified file 'config.yaml'
527
--- config.yaml	2015-07-10 17:05:44 +0000
528
+++ config.yaml	2015-11-02 12:15:35 +0000
529
@@ -3,12 +3,12 @@
530
3
    default: ""
3
    default: ""
531
4
    type: string
4
    type: string
532
5
    description: >
5
    description: >
539
6
      A comma-separated list of IP Addresses (or single IP) admin tools like 
6
      A comma-separated list of IP Addresses (or single IP) admin tools
540
7
      pgAdmin3 will connect from, this is most useful for developers running 
7
      like pgAdmin3 will connect from. The IP addresses added here will
541
8
      juju in local mode who need to connect tools like pgAdmin to a postgres. 
8
      be included in the pg_hba.conf file allowing ip connections to all
542
9
      The IP addresses added here will be included in the pg_hba.conf file 
9
      databases on the server from the given IP addresses using md5
543
10
      allowing ip connections to all databases on the server from the given 
10
      password encryption. IP address ranges are also supported, using
544
11
      using md5 password encryption.
11
      the standard format described in the PostgreSQL reference guide.
545
12
  locale:
12
  locale:
546
13
    default: "C"
13
    default: "C"
547
14
    type: string
14
    type: string
548
@@ -22,53 +22,294 @@
549
22
    description: >
22
    description: >
550
23
      Default encoding used to store text in this service. Can only be
23
      Default encoding used to store text in this service. Can only be
551
24
      set when deploying the first unit of a service.
24
      set when deploying the first unit of a service.
553
25
  extra-packages:
25
  relation_database_privileges:
554
26
    default: "ALL"
555
27
    type: string
556
28
    description: >
557
29
      A comma-separated list of database privileges to grant to relation
558
30
      users on their databases. The defaults allow to connect to the
559
31
      database (CONNECT), create objects such as tables (CREATE), and
560
32
      create temporary tables (TEMPORARY). Client charms that create
561
33
      objects in the database are responsible to granting suitable
562
34
      access on those objects to other roles and users (or PUBLIC) using
563
35
      standard GRANT statements.
564
36
  extra_packages:
565
26
    default: ""
37
    default: ""
566
27
    type: string
38
    type: string
568
28
    description: Extra packages to install on the postgresql service units.
39
    description: >
569
40
        Space separated list of extra packages to install.
570
29
  dumpfile_location:
41
  dumpfile_location:
571
30
    default: "None"
42
    default: "None"
572
31
    type: string
43
    type: string
573
32
    description: >
44
    description: >
574
33
        Path to a dumpfile to load into DB when service is initiated.
45
        Path to a dumpfile to load into DB when service is initiated.
575
34
  version:
46
  version:
577
35
    default: null
47
    default: ""
578
36
    type: string
48
    type: string
579
37
    description: >
49
    description: >
580
38
        Version of PostgreSQL that we want to install. Supported versions
50
        Version of PostgreSQL that we want to install. Supported versions
591
39
        are "9.1", "9.2", "9.3". The default version for the deployed Ubuntu
51
        are "9.1", "9.2", "9.3" & "9.4". The default version for the
592
40
        release is used when the version is not specified.
52
        deployed Ubuntu release is used when the version is not specified.
593
41
  cluster_name:
53
  extra_pg_conf:
594
42
    default: "main"
54
      # The defaults here match the defaults chosen by the charm,
595
43
    type: string
55
      # so removing them will not change them. They are listed
596
44
    description: Name of the cluster we want to install the DBs into
56
      # as documentation. The charm actually loads the non-calculated
597
45
  listen_ip:
57
      # defaults from this config.yaml file to make it unlikely it will
598
46
    default: "*"
58
      # get out of sync with reality.
599
47
    type: string
59
      default: |
600
48
    description: IP to listen on
60
        # Additional service specific postgresql.conf settings.
601
61
        listen_addresses='*'
602
62
        max_connections=100
603
63
        ssl=true
604
64
        log_timezone=UTC
605
65
        log_checkpoints=true
606
66
        log_connections=true
607
67
        log_disconnections=true
608
68
        log_autovacuum_min_duration=-1
609
69
        log_line_prefix='%t [%p]: [%l-1] db=%d,user=%u '
610
70
        archive_mode=true
611
71
        archive_command='/bin/true'
612
72
        hot_standby=true
613
73
        max_wal_senders=80
614
74
        # max_wal_senders=num_units * 2 + 5
615
75
        # wal_level=hot_standby (<9.4) or logical (>=9.4)
616
76
        # shared_buffers=total_ram*0.25
617
77
        # effective_cache_size=total_ram*0.75
618
78
        default_statistics_target=250
619
79
        from_collapse_limit=16
620
80
        join_collapse_limit=16
621
81
        wal_buffers=-1
622
82
        checkpoint_completion_target=0.9
623
83
        password_encryption=true
624
84
        max_connections=100
625
85
      type: string
626
86
      description: >
627
87
          postgresql.conf settings, one per line in standard key=value
628
88
          PostgreSQL format. These settings will generally override
629
89
          any values selected by the charm. The charm however will
630
90
          attempt to ensure minimum requirements for the charm's
631
91
          operation are met.
632
92
  extra_pg_auth:
633
93
    type: string
634
94
    default: ""
635
95
    description: >
636
96
        A comma separated extra pg_hba.conf auth rules.
637
97
        This will be written to the pg_hba.conf file, one line per rule.
638
98
        Note that this should not be needed as db relations already create
639
99
        those rules the right way. Only use this if you really need too
640
100
        (e.g. on a development environment), or are connecting juju managed
641
101
        databases to external managed systems, or configuring replication
642
102
        between unrelated PostgreSQL services using the manual_replication
643
103
        option.
644
104
  performance_tuning:
645
105
    default: "Mixed"
646
106
    type: string
647
107
    description: >
648
108
        DEPRECATED AND IGNORED. The pgtune project has been abandoned
649
109
        and the packages dropped from Debian and Ubuntu. The charm
650
110
        still performs some basic tuning, which users can tweak using
651
111
        extra_pg_config.
652
112
  manual_replication:
653
113
    type: boolean
654
114
    default: False
655
115
    description: >
656
116
        Enable or disable charm managed replication. When manual_replication
657
117
        is True, the operator is responsible for maintaining recovery.conf
658
118
        and performing any necessary database mirroring. The charm will
659
119
        still advertise the unit as standalone, master or hot standby to
660
120
        relations based on whether the system is in recovery mode or not.
661
121
        Note that this option makes it possible to create a PostgreSQL
662
122
        service with multiple master units, which is a very silly thing
663
123
        to do unless you are also using multi-master software like BDR.
664
124
  backup_schedule:
665
125
    default: "13 4 * * *"
666
126
    type: string
667
127
    description: Cron-formatted schedule for database backups.
668
128
  backup_retention_count:
669
129
    default: 7
670
130
    type: int
671
131
    description: Number of recent backups to retain.
672
132
  nagios_context:
673
133
    default: "juju"
674
134
    type: string
675
135
    description: >
676
136
        Used by the nrpe subordinate charms.
677
137
        A string that will be prepended to instance name to set the host name
678
138
        in nagios. So for instance the hostname would be something like:
679
139
            juju-postgresql-0
680
140
        If you're running multiple environments with the same services in them
681
141
        this allows you to differentiate between them.
682
142
  nagios_servicegroups:
683
143
    default: ""
684
144
    type: string
685
145
    description: >
686
146
        A comma-separated list of nagios servicegroups.
687
147
        If left empty, the nagios_context will be used as the servicegroup
688
148
  pgdg:
689
149
    description: >
690
150
        Enable the PostgreSQL Global Development Group APT repository
691
151
        (https://wiki.postgresql.org/wiki/Apt). This package source provides
692
152
        official PostgreSQL packages for Ubuntu LTS releases beyond those
693
153
        provided by the main Ubuntu archive.
694
154
    type: boolean
695
155
    default: false
696
156
  install_sources:
697
157
    description: >
698
158
        List of extra package sources, per charm-helpers standard.
699
159
        YAML format.
700
160
    type: string
701
161
    default: ""
702
162
  install_keys:
703
163
    description: >
704
164
        List of signing keys for install_sources package sources, per
705
165
        charmhelpers standard. YAML format.
706
166
    type: string
707
167
    default: ""
708
168
  wal_e_storage_uri:
709
169
    type: string
710
170
    default: ""
711
171
    description: |
712
172
      EXPERIMENTAL.
713
173
      Specify storage to be used by WAL-E. Every PostgreSQL service must use
714
174
      a unique URI. Backups will be unrecoverable if it is not unique. The
715
175
      URI's scheme must be one of 'swift' (OpenStack Swift), 's3' (Amazon AWS)
716
176
      or 'wabs' (Windows Azure). For example:
717
177
        'swift://some-container/directory/or/whatever'
718
178
        's3://some-bucket/directory/or/whatever'
719
179
        'wabs://some-bucket/directory/or/whatever'
720
180
      Setting the wal_e_storage_uri enables regular WAL-E filesystem level
721
181
      backups (per wal_e_backup_schedule), and log shipping to the configured
722
182
      storage. Point-in-time recovery becomes possible, as is disabling the
723
183
      streaming_replication configuration item and relying solely on
724
184
      log shipping for replication.
725
185
  wal_e_backup_schedule:
726
186
    type: string
727
187
    default: "13 0 * * *"
728
188
    description: >
729
189
      EXPERIMENTAL.
730
190
      Cron-formatted schedule for WAL-E database backups. If
731
191
      wal_e_backup_schedule is unset, WAL files will never be removed from
732
192
      WAL-E storage.
733
193
  wal_e_backup_retention:
734
194
    type: int
735
195
    default: 2
736
196
    description: >
737
197
      EXPERIMENTAL.
738
198
      Number of recent base backups and WAL files to retain.
739
199
      You need enough space for this many backups plus one more, as
740
200
      an old backup will only be removed after a new one has been
741
201
      successfully made to replace it.
742
202
  streaming_replication:
743
203
    type: boolean
744
204
    default: true
745
205
    description: >
746
206
      Enable streaming replication. Normally, streaming replication is
747
207
      always used, and any log shipping configured is used as a fallback.
748
208
      Turning this off without configuring log shipping is an error.
749
209
  os_username:
750
210
    type: string
751
211
    default: ""
752
212
    description: EXPERIMENTAL. OpenStack Swift username.
753
213
  os_password:
754
214
    type: string
755
215
    default: ""
756
216
    description: EXPERIMENTAL. OpenStack Swift password.
757
217
  os_auth_url:
758
218
    type: string
759
219
    default: ""
760
220
    description: EXPERIMENTAL. OpenStack Swift authentication URL.
761
221
  os_tenant_name:
762
222
    type: string
763
223
    default: ""
764
224
    description: EXPERIMENTAL. OpenStack Swift tenant name.
765
225
  aws_access_key_id:
766
226
    type: string
767
227
    default: ""
768
228
    description: EXPERIMENTAL. Amazon AWS access key id.
769
229
  aws_secret_access_key:
770
230
    type: string
771
231
    default: ""
772
232
    description: EXPERIMENTAL. Amazon AWS secret access key.
773
233
  wabs_account_name:
774
234
    type: string
775
235
    default: ""
776
236
    description: EXPERIMENTAL. Windows Azure account name.
777
237
  wabs_access_key:
778
238
    type: string
779
239
    default: ""
780
240
    description: EXPERIMENTAL. Windows Azure access key.
781
241
  package_status:
782
242
    default: "install"
783
243
    type: string
784
244
    description: >
785
245
        The status of service-affecting packages will be set to this
786
246
        value in the dpkg database. Useful valid values are "install"
787
247
        and "hold".
788
248
  # statsd-compatible metrics
789
249
  metrics_target:
790
250
    default: ""
791
251
    type: string
792
252
    description: >
793
253
        Destination for statsd-format metrics, format "host:port". If
794
254
        not present and valid, metrics disabled.
795
255
  metrics_prefix:
796
256
    default: "dev.$UNIT.postgresql"
797
257
    type: string
798
258
    description: >
799
259
        Prefix for metrics. Special value $UNIT can be used to include the
800
260
        name of the unit in the prefix.
801
261
  metrics_sample_interval:
802
262
    default: 5
803
263
    type: int
804
264
    description: Period for metrics cron job to run in minutes
805
265
806
266
807
267
  # DEPRECATED SETTINGS.
808
268
  # Remove them one day. They remain here to avoid making existing
809
269
  # configurations fail.
810
270
  advisory_lock_restart_key:
811
271
    default: 765
812
272
    type: int
813
273
    description: >
814
274
        DEPRECATED AND IGNORED.
815
275
        An advisory lock key used internally by the charm. You do not need
816
276
        to change it unless it happens to conflict with an advisory lock key
817
277
        being used by your applications.
818
278
  extra-packages:
819
279
    default: ""
820
280
    type: string
821
281
    description: DEPRECATED. Use extra_packages.
822
49
  listen_port:
282
  listen_port:
824
50
    default: null
283
    default: -1
825
51
    type: int
284
    type: int
827
52
    description: Port to listen on. Default is automatically assigned.
285
    description: >
828
286
        DEPRECATED. Use extra_pg_conf.
829
287
        Port to listen on. Default is automatically assigned.
830
53
  max_connections:
288
  max_connections:
831
54
    default: 100
289
    default: 100
832
55
    type: int
290
    type: int
834
56
    description: Maximum number of connections to allow to the PG database
291
    description: >
835
292
        DEPRECATED. Use extra_pg_conf.
836
293
        Maximum number of connections to allow to the PG database
837
57
  max_prepared_transactions:
294
  max_prepared_transactions:
838
58
    default: 0
295
    default: 0
839
59
    type: int
296
    type: int
840
60
    description: >
297
    description: >
844
61
      Maximum number of prepared two phase commit transactions, waiting
298
        DEPRECATED. Use extra_pg_conf.
845
62
      to be committed. Defaults to 0. as using two phase commit without
299
        Maximum number of prepared two phase commit transactions, waiting
846
63
      a process to monitor and resolve lost transactions is dangerous.
300
        to be committed. Defaults to 0. as using two phase commit without
847
301
        a process to monitor and resolve lost transactions is dangerous.
848
64
  ssl:
302
  ssl:
849
65
    default: "True"
303
    default: "True"
850
66
    type: string
304
    type: string
852
67
    description: Whether PostgreSQL should talk SSL
305
    description: >
853
306
        DEPRECATED. Use extra_pg_conf.
854
307
        Whether PostgreSQL should talk SSL
855
68
  log_min_duration_statement:
308
  log_min_duration_statement:
856
69
    default: -1
309
    default: -1
857
70
    type: int
310
    type: int
858
71
    description: >
311
    description: >
859
312
        DEPRECATED. Use extra_pg_conf.
860
72
        -1 is disabled, 0 logs all statements
313
        -1 is disabled, 0 logs all statements
861
73
        and their durations, > 0 logs only
314
        and their durations, > 0 logs only
862
74
        statements running at least this number
315
        statements running at least this number
863
@@ -76,19 +317,21 @@
864
76
  log_checkpoints:
317
  log_checkpoints:
865
77
    default: False
318
    default: False
866
78
    type: boolean
319
    type: boolean
868
79
    description: Log checkpoints
320
    description: >
869
321
        DEPRECATED. Use extra_pg_conf.
870
80
  log_connections:
322
  log_connections:
871
81
    default: False
323
    default: False
872
82
    type: boolean
324
    type: boolean
874
83
    description: Log connections
325
    description: DEPRECATED. Use extra_pg_conf.
875
84
  log_disconnections:
326
  log_disconnections:
876
85
    default: False
327
    default: False
877
86
    type: boolean
328
    type: boolean
879
87
    description: Log disconnections
329
    description: DEPRECATED. Use extra_pg_conf.
880
88
  log_temp_files:
330
  log_temp_files:
881
89
    default: "-1"
331
    default: "-1"
882
90
    type: string
332
    type: string
883
91
    description: >
333
    description: >
884
334
        DEPRECATED. Use extra_pg_conf.
885
92
        Log creation of temporary files larger than the threshold.
335
        Log creation of temporary files larger than the threshold.
886
93
        -1 disables the feature, 0 logs all temporary files, or specify
336
        -1 disables the feature, 0 logs all temporary files, or specify
887
94
        the threshold size with an optional unit (eg. "512KB", default
337
        the threshold size with an optional unit (eg. "512KB", default
888
@@ -97,6 +340,7 @@
889
97
    default: "%t [%p]: [%l-1] db=%d,user=%u "
340
    default: "%t [%p]: [%l-1] db=%d,user=%u "
890
98
    type: string
341
    type: string
891
99
    description: |
342
    description: |
892
343
        DEPRECATED. Use extra_pg_conf.
893
100
        special values:
344
        special values:
894
101
          %a = application name
345
          %a = application name
895
102
          %u = user name
346
          %u = user name
896
@@ -119,55 +363,68 @@
897
119
  log_lock_waits:
363
  log_lock_waits:
898
120
    default: False
364
    default: False
899
121
    type: boolean
365
    type: boolean
901
122
    description: log lock waits >= deadlock_timeout
366
    description: DEPRECATED. Use extra_pg_conf.
902
123
  log_timezone:
367
  log_timezone:
903
124
    default: "UTC"
368
    default: "UTC"
904
125
    type: string
369
    type: string
906
126
    description: Log timezone
370
    description: DEPRECATED. Use extra_pg_conf.
907
127
  autovacuum:
371
  autovacuum:
908
128
    default: True
372
    default: True
909
129
    type: boolean
373
    type: boolean
910
130
    description: >
374
    description: >
911
375
        DEPRECATED. Use extra_pg_conf.
912
131
        Autovacuum should almost always be running. If you want to turn this
376
        Autovacuum should almost always be running. If you want to turn this
913
132
        off, you are probably following out of date documentation.
377
        off, you are probably following out of date documentation.
914
133
  log_autovacuum_min_duration:
378
  log_autovacuum_min_duration:
915
134
    default: -1
379
    default: -1
916
135
    type: int
380
    type: int
917
136
    description: >
381
    description: >
918
382
        DEPRECATED. Use extra_pg_conf.
919
137
        -1 disables, 0 logs all actions and their durations, > 0 logs only
383
        -1 disables, 0 logs all actions and their durations, > 0 logs only
920
138
        actions running at least this number of milliseconds.
384
        actions running at least this number of milliseconds.
921
139
  autovacuum_analyze_threshold:
385
  autovacuum_analyze_threshold:
922
140
    default: 50
386
    default: 50
923
141
    type: int
387
    type: int
925
142
    description: min number of row updates before analyze
388
    description: >
926
389
        DEPRECATED. Use extra_pg_conf.
927
390
        min number of row updates before analyze
928
143
  autovacuum_vacuum_scale_factor:
391
  autovacuum_vacuum_scale_factor:
929
144
    default: 0.2
392
    default: 0.2
930
145
    type: float
393
    type: float
932
146
    description: Fraction of table size before vacuum
394
    description: >
933
395
        DEPRECATED. Use extra_pg_conf.
934
396
        Fraction of table size before vacuum
935
147
  autovacuum_analyze_scale_factor:
397
  autovacuum_analyze_scale_factor:
936
148
    default: 0.1  
398
    default: 0.1  
937
149
    type: float
399
    type: float
939
150
    description: Fraction of table size before analyze
400
    description: >
940
401
        DEPRECATED. Use extra_pg_conf.
941
402
        Fraction of table size before analyze
942
151
  autovacuum_vacuum_cost_delay:
403
  autovacuum_vacuum_cost_delay:
943
152
    default: "20ms"
404
    default: "20ms"
944
153
    type: string
405
    type: string
945
154
    description: >
406
    description: >
946
407
        DEPRECATED. Use extra_pg_conf.
947
155
        Default vacuum cost delay for autovacuum, in milliseconds;
408
        Default vacuum cost delay for autovacuum, in milliseconds;
948
156
        -1 means use vacuum_cost_delay
409
        -1 means use vacuum_cost_delay
949
157
  search_path:
410
  search_path:
950
158
    default: "\"$user\",public"
411
    default: "\"$user\",public"
951
159
    type: string
412
    type: string
952
160
    description: >
413
    description: >
953
414
        DEPRECATED. Use extra_pg_conf.
954
161
        Comma separated list of schema names for
415
        Comma separated list of schema names for
955
162
        the default SQL search path.
416
        the default SQL search path.
956
163
  standard_conforming_strings:
417
  standard_conforming_strings:
957
164
    default: True
418
    default: True
958
165
    type: boolean
419
    type: boolean
960
166
    description: Standard conforming strings
420
    description: >
961
421
        DEPRECATED. Use extra_pg_conf.
962
422
        Standard conforming strings
963
167
  hot_standby:
423
  hot_standby:
964
168
    default: False
424
    default: False
965
169
    type: boolean
425
    type: boolean
966
170
    description: >
426
    description: >
967
427
        DEPRECATED. Use extra_pg_conf.
968
171
        Hot standby or warm standby. When True, queries can be run against
428
        Hot standby or warm standby. When True, queries can be run against
969
172
        the database when in recovery or standby mode (ie. replicated).
429
        the database when in recovery or standby mode (ie. replicated).
970
173
        Overridden when service contains multiple units.
430
        Overridden when service contains multiple units.
971
@@ -175,6 +432,7 @@
972
175
    default: False
432
    default: False
973
176
    type: boolean
433
    type: boolean
974
177
    description: >
434
    description: >
975
435
        DEPRECATED. Use extra_pg_conf.
976
178
        Hot standby feedback, informing a master about in progress
436
        Hot standby feedback, informing a master about in progress
977
179
        transactions on a streaming hot standby and allowing the master to
437
        transactions on a streaming hot standby and allowing the master to
978
180
        defer cleanup and avoid query cancelations on the hot standby.
438
        defer cleanup and avoid query cancelations on the hot standby.
979
@@ -182,6 +440,7 @@
980
182
    default: minimal
440
    default: minimal
981
183
    type: string
441
    type: string
982
184
    description: >
442
    description: >
983
443
        DEPRECATED. Use extra_pg_conf.
984
185
        'minimal', 'archive', 'hot_standby' or 'logical'. Defines how much
444
        'minimal', 'archive', 'hot_standby' or 'logical'. Defines how much
985
186
        information is written to the WAL. Set to 'minimal' for stand alone
445
        information is written to the WAL. Set to 'minimal' for stand alone
986
187
        databases and 'hot_standby' for replicated setups. Overridden by
446
        databases and 'hot_standby' for replicated setups. Overridden by
987
@@ -190,6 +449,7 @@
988
190
    default: 0
449
    default: 0
989
191
    type: int
450
    type: int
990
192
    description: >
451
    description: >
991
452
        DEPRECATED. Use extra_pg_conf.
992
193
        Maximum number of hot standbys that can connect using
453
        Maximum number of hot standbys that can connect using
993
194
        streaming replication. Set this to the expected maximum number of
454
        streaming replication. Set this to the expected maximum number of
994
195
        hot standby units to avoid unnecessary blocking and database restarts.
455
        hot standby units to avoid unnecessary blocking and database restarts.
995
@@ -198,6 +458,7 @@
996
198
    default: 0
458
    default: 0
997
199
    type: int
459
    type: int
998
200
    description: >
460
    description: >
999
461
        DEPRECATED. Use extra_pg_conf.
1000
201
        Number of old WAL files to keep, providing a larger buffer for
462
        Number of old WAL files to keep, providing a larger buffer for
1001
202
        streaming hot standbys to catch up from when lagged. Each WAL file
463
        streaming hot standbys to catch up from when lagged. Each WAL file
1002
203
        is 16MB in size. The WAL files are the buffer of how far a
464
        is 16MB in size. The WAL files are the buffer of how far a
1003
@@ -208,6 +469,7 @@
1004
208
    default: 5000
469
    default: 5000
1005
209
    type: int
470
    type: int
1006
210
    description: >
471
    description: >
1007
472
        DEPRECATED. Use extra_pg_conf.
1008
211
        Value of wal_keep_segments used when this service is replicated.
473
        Value of wal_keep_segments used when this service is replicated.
1009
212
        This setting only exists to provide a sane default when replication
474
        This setting only exists to provide a sane default when replication
1010
213
        is requested (so it doesn't fail) and nobody bothered to change the
475
        is requested (so it doesn't fail) and nobody bothered to change the
1011
@@ -216,6 +478,7 @@
1012
216
    default: False
478
    default: False
1013
217
    type: boolean
479
    type: boolean
1014
218
    description: >
480
    description: >
1015
481
        DEPRECATED. Use extra_pg_conf.
1016
219
        Enable archiving of WAL files using the command specified by
482
        Enable archiving of WAL files using the command specified by
1017
220
        archive_command. If archive_mode is enabled and archive_command not
483
        archive_command. If archive_mode is enabled and archive_command not
1018
221
        set, then archiving is deferred until archive_command is set and the
484
        set, then archiving is deferred until archive_command is set and the
1019
@@ -224,45 +487,38 @@
1020
224
    default: ""
487
    default: ""
1021
225
    type: string
488
    type: string
1022
226
    description: >
489
    description: >
1023
490
        DEPRECATED. Use extra_pg_conf.
1024
227
        Command used to archive WAL files when archive_mode is set and
491
        Command used to archive WAL files when archive_mode is set and
1025
228
        wal_level > minimal.
492
        wal_level > minimal.
1026
229
  work_mem:
493
  work_mem:
1027
230
    default: "1MB"
494
    default: "1MB"
1028
231
    type: string
495
    type: string
1029
232
    description: >
496
    description: >
1031
233
        Working Memory.
497
        DEPRECATED. Use extra_pg_conf. Working Memory.
1032
234
        Ignored unless 'performance_tuning' is set to 'manual'.
498
        Ignored unless 'performance_tuning' is set to 'manual'.
1033
235
  maintenance_work_mem:
499
  maintenance_work_mem:
1034
236
    default: "1MB"
500
    default: "1MB"
1035
237
    type: string
501
    type: string
1036
238
    description: >
502
    description: >
1038
239
        Maintenance working memory.
503
        DEPRECATED. Use extra_pg_conf. Maintenance working memory.
1039
240
        Ignored unless 'performance_tuning' is set to 'manual'.
504
        Ignored unless 'performance_tuning' is set to 'manual'.
1040
241
  performance_tuning:
1041
242
    default: "Mixed"
1042
243
    type: string
1043
244
    description: >
1044
245
        Possible values here are "manual", "DW" (data warehouse),
1045
246
        "OLTP" (online transaction processing), "Web" (web application),
1046
247
        "Desktop" or "Mixed". When this is set to a value other than
1047
248
        "manual", the charm invokes the pgtune tool to tune a number
1048
249
        of performance parameters based on the specified load type.
1049
250
        pgtune gathers information about the node on which you are deployed and
1050
251
        tries to make intelligent guesses about what tuning parameters to set
1051
252
        based on available RAM and CPU under the assumption that it's the only
1052
253
        significant service running on this node.
1053
254
  kernel_shmall:
505
  kernel_shmall:
1054
255
    default: 0
506
    default: 0
1055
256
    type: int
507
    type: int
1057
257
    description: Total amount of shared memory available, in bytes.
508
    description: >
1058
509
        DEPRECATED and ignored. 
1059
510
        Total amount of shared memory available, in bytes.
1060
258
  kernel_shmmax:
511
  kernel_shmmax:
1061
259
    default: 0
512
    default: 0
1062
260
    type: int
513
    type: int
1064
261
    description: The maximum size, in bytes, of a shared memory segment.
514
    description: >
1065
515
        DEPRECATED and ignored.
1066
516
        The maximum size, in bytes, of a shared memory segment.
1067
262
  shared_buffers:
517
  shared_buffers:
1068
263
    default: ""
518
    default: ""
1069
264
    type: string
519
    type: string
1070
265
    description: >
520
    description: >
1071
521
        DEPRECATED. Use extra_pg_conf.
1072
266
        The amount of memory the database server uses for shared memory
522
        The amount of memory the database server uses for shared memory
1073
267
        buffers. This string should be of the format '###MB'.
523
        buffers. This string should be of the format '###MB'.
1074
268
        Ignored unless 'performance_tuning' is set to 'manual'.
524
        Ignored unless 'performance_tuning' is set to 'manual'.
1075
@@ -270,6 +526,7 @@
1076
270
    default: ""
526
    default: ""
1077
271
    type: string
527
    type: string
1078
272
    description: >
528
    description: >
1079
529
        DEPRECATED. Use extra_pg_conf.
1080
273
        Effective cache size is an estimate of how much memory is available for
530
        Effective cache size is an estimate of how much memory is available for
1081
274
        disk caching within the database. (50% to 75% of system memory). This
531
        disk caching within the database. (50% to 75% of system memory). This
1082
275
        string should be of the format '###MB'. Ignored unless
532
        string should be of the format '###MB'. Ignored unless
1083
@@ -278,6 +535,7 @@
1084
278
    default: -1
535
    default: -1
1085
279
    type: int
536
    type: int
1086
280
    description: >
537
    description: >
1087
538
        DEPRECATED. Use extra_pg_conf.
1088
281
        Sets the default statistics target for table columns without a
539
        Sets the default statistics target for table columns without a
1089
282
        column-specific target set via ALTER TABLE SET STATISTICS.
540
        column-specific target set via ALTER TABLE SET STATISTICS.
1090
283
        Leave unchanged to use the server default, which in recent
541
        Leave unchanged to use the server default, which in recent
1091
@@ -288,6 +546,7 @@
1092
288
    default: -1 
546
    default: -1 
1093
289
    type: int
547
    type: int
1094
290
    description: >
548
    description: >
1095
549
        DEPRECATED. Use extra_pg_conf.
1096
291
        Sets the from_collapse_limit and join_collapse_limit query planner
550
        Sets the from_collapse_limit and join_collapse_limit query planner
1097
292
        options, controlling the maximum number of tables that can be joined
551
        options, controlling the maximum number of tables that can be joined
1098
293
        before the turns off the table collapse query optimization.
552
        before the turns off the table collapse query optimization.
1099
@@ -295,35 +554,41 @@
1100
295
    default: "1MB"
554
    default: "1MB"
1101
296
    type: string
555
    type: string
1102
297
    description: >
556
    description: >
1103
557
        DEPRECATED. Use extra_pg_conf.
1104
298
        The maximum number of temporary buffers used by each database session.
558
        The maximum number of temporary buffers used by each database session.
1105
299
  wal_buffers:
559
  wal_buffers:
1106
300
    default: "-1"
560
    default: "-1"
1107
301
    type: string
561
    type: string
1108
302
    description: >
562
    description: >
1109
563
        DEPRECATED. Use extra_pg_conf.
1110
303
        min 32kB, -1 sets based on shared_buffers (change requires restart).
564
        min 32kB, -1 sets based on shared_buffers (change requires restart).
1111
304
        Ignored unless 'performance_tuning' is set to 'manual'.
565
        Ignored unless 'performance_tuning' is set to 'manual'.
1112
305
  checkpoint_segments:
566
  checkpoint_segments:
1113
306
    default: 10 
567
    default: 10 
1114
307
    type: int
568
    type: int
1115
308
    description: >
569
    description: >
1116
570
        DEPRECATED. Use extra_pg_conf.
1117
309
        in logfile segments, min 1, 16MB each.
571
        in logfile segments, min 1, 16MB each.
1118
310
        Ignored unless 'performance_tuning' is set to 'manual'.
572
        Ignored unless 'performance_tuning' is set to 'manual'.
1119
311
  checkpoint_completion_target:
573
  checkpoint_completion_target:
1120
312
    default: 0.9
574
    default: 0.9
1121
313
    type: float
575
    type: float
1122
314
    description: >
576
    description: >
1125
315
      checkpoint target duration time, as a fraction of checkpoint_timeout.
577
        DEPRECATED. Use extra_pg_conf.
1126
316
      Range [0.0, 1.0].
578
        checkpoint target duration time, as a fraction of checkpoint_timeout.
1127
579
        Range [0.0, 1.0].
1128
317
  checkpoint_timeout:
580
  checkpoint_timeout:
1129
318
    default: ""
581
    default: ""
1130
319
    type: string
582
    type: string
1131
320
    description: >
583
    description: >
1132
584
        DEPRECATED. Use extra_pg_conf.
1133
321
        Maximum time between automatic WAL checkpoints. range '30s-1h'.
585
        Maximum time between automatic WAL checkpoints. range '30s-1h'.
1134
322
        If left empty, the default postgresql value will be used.
586
        If left empty, the default postgresql value will be used.
1135
323
  fsync:
587
  fsync:
1136
324
    type: boolean
588
    type: boolean
1137
325
    default: True
589
    default: True
1138
326
    description: >
590
    description: >
1139
591
        DEPRECATED. Use extra_pg_conf.
1140
327
        Turns forced synchronization on/off. If fsync is turned off, database
592
        Turns forced synchronization on/off. If fsync is turned off, database
1141
328
        failures are likely to involve database corruption and require
593
        failures are likely to involve database corruption and require
1142
329
        recreating the unit
594
        recreating the unit
1143
@@ -331,231 +596,23 @@
1144
331
    type: boolean
596
    type: boolean
1145
332
    default: True
597
    default: True
1146
333
    description: >
598
    description: >
1147
599
        DEPRECATED. Use extra_pg_conf.
1148
334
        Immediate fsync after commit.
600
        Immediate fsync after commit.
1149
335
  full_page_writes:
601
  full_page_writes:
1150
336
    type: boolean
602
    type: boolean
1151
337
    default: True
603
    default: True
1152
338
    description: >
604
    description: >
1153
605
        DEPRECATED. Use extra_pg_conf.
1154
339
        Recover from partial page writes.
606
        Recover from partial page writes.
1155
340
  random_page_cost:
607
  random_page_cost:
1156
341
    default: 4.0
608
    default: 4.0
1157
342
    type: float
609
    type: float
1183
343
    description: Random page cost
610
    description: >
1184
344
  extra_pg_auth:
611
        DEPRECATED. Use extra_pg_conf. Random page cost
1160
345
    type: string
1161
346
    default: ""
1162
347
    description: >
1163
348
        A comma separated extra pg_hba.conf auth rules.
1164
349
        This will be written to the pg_hba.conf file, one line per rule.
1165
350
        Note that this should not be needed as db relations already create
1166
351
        those rules the right way. Only use this if you really need too
1167
352
        (e.g. on a development environment), or are connecting juju managed
1168
353
        databases to external managed systems, or configuring replication
1169
354
        between unrelated PostgreSQL services using the manual_replication
1170
355
        option.
1171
356
  manual_replication:
1172
357
    type: boolean
1173
358
    default: False
1174
359
    description: >
1175
360
        Enable or disable charm managed replication. When manual_replication
1176
361
        is True, the operator is responsible for maintaining recovery.conf
1177
362
        and performing any necessary database mirroring. The charm will
1178
363
        still advertise the unit as standalone, master or hot standby to
1179
364
        relations based on whether the system is in recovery mode or not.
1180
365
        Note that this option makes it possible to create a PostgreSQL
1181
366
        service with multiple master units, which is probably a very silly
1182
367
        thing to do.
1185
368
  backup_dir:
612
  backup_dir:
1186
369
    default: "/var/lib/postgresql/backups"
613
    default: "/var/lib/postgresql/backups"
1187
370
    type: string
614
    type: string
1379
371
    description: Directory to place backups in
615
    description: >
1380
372
  backup_schedule:
616
        DEPRECATED. Directory to place backups in. If you change this,
1381
373
    default: "13 4 * * *"
617
        your backups will go to this path and not the 'backups' Juju
1382
374
    type: string
618
        storage mount.
1192
375
    description: Cron-formatted schedule for database backups.
1193
376
  backup_retention_count:
1194
377
    default: 7
1195
378
    type: int
1196
379
    description: Number of recent backups to retain.
1197
380
  nagios_context:
1198
381
    default: "juju"
1199
382
    type: string
1200
383
    description: >
1201
384
        Used by the nrpe-external-master subordinate charm.
1202
385
        A string that will be prepended to instance name to set the host name
1203
386
        in nagios. So for instance the hostname would be something like:
1204
387
            juju-postgresql-0
1205
388
        If you're running multiple environments with the same services in them
1206
389
        this allows you to differentiate between them.
1207
390
  nagios_additional_servicegroups:
1208
391
    default: ""
1209
392
    type: string
1210
393
    description: >
1211
394
        Used by the nrpe-external-master subordinate charm.
1212
395
        A comma-separated list of servicegroups to include along with
1213
396
        nagios_context when generating nagios service check configs.
1214
397
        This is useful for nagios installations where servicegroups
1215
398
        are used to apply special treatment to particular checks.
1216
399
  pgdg:
1217
400
    description: >
1218
401
        Enable the PostgreSQL Global Development Group APT repository
1219
402
        (https://wiki.postgresql.org/wiki/Apt). This package source provides
1220
403
        official PostgreSQL packages for Ubuntu LTS releases beyond those
1221
404
        provided by the main Ubuntu archive.
1222
405
    type: boolean
1223
406
    default: false
1224
407
  install_sources:
1225
408
    description: >
1226
409
        List of extra package sources, per charm-helpers standard.
1227
410
        YAML format.
1228
411
    type: string
1229
412
    default: null
1230
413
  install_keys:
1231
414
    description: >
1232
415
        List of signing keys for install_sources package sources, per
1233
416
        charmhelpers standard. YAML format.
1234
417
    type: string
1235
418
    default: null
1236
419
  extra_archives:
1237
420
    default: ""
1238
421
    type: string
1239
422
    description: >
1240
423
        DEPRECATED & IGNORED. Use install_sources and install_keys. 
1241
424
  advisory_lock_restart_key:
1242
425
    default: 765
1243
426
    type: int
1244
427
    description: >
1245
428
        An advisory lock key used internally by the charm. You do not need
1246
429
        to change it unless it happens to conflict with an advisory lock key
1247
430
        being used by your applications.
1248
431
  # Swift backups and PITR via SwiftWAL
1249
432
  swiftwal_container_prefix:
1250
433
    type: string
1251
434
    default: null
1252
435
    description: >
1253
436
      EXPERIMENTAL.
1254
437
      Swift container prefix for SwiftWAL to use. Must be set if any
1255
438
      SwiftWAL features are enabled. This will become a simple
1256
439
      swiftwal_container config item when proper leader election is
1257
440
      implemented in juju.
1258
441
  swiftwal_backup_schedule:
1259
442
    type: string
1260
443
    default: null
1261
444
    description: >
1262
445
      EXPERIMENTAL.
1263
446
      Cron-formatted schedule for SwiftWAL database backups.
1264
447
  swiftwal_backup_retention:
1265
448
    type: int
1266
449
    default: 2
1267
450
    description: >
1268
451
      EXPERIMENTAL.
1269
452
      Number of recent base backups to retain. You need enough space in
1270
453
      Swift for this many backups plus one more, as an old backup will only
1271
454
      be removed after a new one has been successfully made to replace it.
1272
455
  swiftwal_log_shipping:
1273
456
    type: boolean
1274
457
    default: false
1275
458
    description: >
1276
459
      EXPERIMENTAL.
1277
460
      Archive WAL files into Swift. If swiftwal_backup_schedule is set,
1278
461
      allows point-in-time recovery and WAL files are removed
1279
462
      automatically with old backups. If swiftwal_backup_schedule is not set
1280
463
      then WAL files are never removed. Enabling this option will override
1281
464
      the archive_mode and archive_command settings.
1282
465
  wal_e_storage_uri:
1283
466
    type: string
1284
467
    default: null
1285
468
    description: |
1286
469
      EXPERIMENTAL.
1287
470
      Specify storage to be used by WAL-E. Every PostgreSQL service must use
1288
471
      a unique URI. Backups will be unrecoverable if it is not unique. The
1289
472
      URI's scheme must be one of 'swift' (OpenStack Swift), 's3' (Amazon AWS)
1290
473
      or 'wabs' (Windows Azure). For example:
1291
474
        'swift://some-container/directory/or/whatever'
1292
475
        's3://some-bucket/directory/or/whatever'
1293
476
        'wabs://some-bucket/directory/or/whatever'
1294
477
      Setting the wal_e_storage_uri enables regular WAL-E filesystem level
1295
478
      backups (per wal_e_backup_schedule), and log shipping to the configured
1296
479
      storage. Point-in-time recovery becomes possible, as is disabling the
1297
480
      streaming_replication configuration item and relying solely on
1298
481
      log shipping for replication.
1299
482
  wal_e_backup_schedule:
1300
483
    type: string
1301
484
    default: "13 0 * * *"
1302
485
    description: >
1303
486
      EXPERIMENTAL.
1304
487
      Cron-formatted schedule for WAL-E database backups. If
1305
488
      wal_e_backup_schedule is unset, WAL files will never be removed from
1306
489
      WAL-E storage.
1307
490
  wal_e_backup_retention:
1308
491
    type: int
1309
492
    default: 2
1310
493
    description: >
1311
494
      EXPERIMENTAL.
1312
495
      Number of recent base backups and WAL files to retain.
1313
496
      You need enough space for this many backups plus one more, as
1314
497
      an old backup will only be removed after a new one has been
1315
498
      successfully made to replace it.
1316
499
  streaming_replication:
1317
500
    type: boolean
1318
501
    default: true
1319
502
    description: >
1320
503
      Enable streaming replication. Normally, streaming replication is
1321
504
      always used, and any log shipping configured is used as a fallback.
1322
505
      Turning this off without configuring log shipping is an error.
1323
506
  os_username:
1324
507
    type: string
1325
508
    default: null
1326
509
    description: EXPERIMENTAL. OpenStack Swift username.
1327
510
  os_password:
1328
511
    type: string
1329
512
    default: null
1330
513
    description: EXPERIMENTAL. OpenStack Swift password.
1331
514
  os_auth_url:
1332
515
    type: string
1333
516
    default: null
1334
517
    description: EXPERIMENTAL. OpenStack Swift authentication URL.
1335
518
  os_tenant_name:
1336
519
    type: string
1337
520
    default: null
1338
521
    description: EXPERIMENTAL. OpenStack Swift tenant name.
1339
522
  aws_access_key_id:
1340
523
    type: string
1341
524
    default: null
1342
525
    description: EXPERIMENTAL. Amazon AWS access key id.
1343
526
  aws_secret_access_key:
1344
527
    type: string
1345
528
    default: null
1346
529
    description: EXPERIMENTAL. Amazon AWS secret access key.
1347
530
  wabs_account_name:
1348
531
    type: string
1349
532
    default: null
1350
533
    description: EXPERIMENTAL. Windows Azure account name.
1351
534
  wabs_access_key:
1352
535
    type: string
1353
536
    default: null
1354
537
    description: EXPERIMENTAL. Windows Azure access key.
1355
538
  package_status:
1356
539
    default: "install"
1357
540
    type: string
1358
541
    description: >
1359
542
        The status of service-affecting packages will be set to this
1360
543
        value in the dpkg database. Useful valid values are "install"
1361
544
        and "hold".
1362
545
  # statsd-compatible metrics
1363
546
  metrics_target:
1364
547
    default: ""
1365
548
    type: string
1366
549
    description: >
1367
550
        Destination for statsd-format metrics, format "host:port". If
1368
551
        not present and valid, metrics disabled.
1369
552
  metrics_prefix:
1370
553
    default: "dev.$UNIT.postgresql"
1371
554
    type: string
1372
555
    description: >
1373
556
        Prefix for metrics. Special value $UNIT can be used to include the
1374
557
        name of the unit in the prefix.
1375
558
  metrics_sample_interval:
1376
559
    default: 5
1377
560
    type: int
1378
561
    description: Period for metrics cron job to run in minutes
1383
562
619
1384
=== modified file 'copyright'
1385
--- copyright	2011-07-10 09:53:13 +0000
1386
+++ copyright	2015-11-02 12:15:35 +0000
1387
@@ -1,17 +1,16 @@
1388
1
Format: http://dep.debian.net/deps/dep5/
1
Format: http://dep.debian.net/deps/dep5/
1389
2
2
1390
3
Files: *
3
Files: *
1392
4
Copyright: Copyright 2011, Canonical Ltd., All Rights Reserved.
4
Copyright: Copyright 2011-2015, Canonical Ltd.
1393
5
License: GPL-3
5
License: GPL-3
1394
6
 This program is free software: you can redistribute it and/or modify
6
 This program is free software: you can redistribute it and/or modify
1398
7
 it under the terms of the GNU General Public License as published by
7
 it under the terms of the GNU General Public License version 3, as
1399
8
 the Free Software Foundation, either version 3 of the License, or
8
 published by the Free Software Foundation.
1397
9
 (at your option) any later version.
1400
10
 .
9
 .
1401
11
 This program is distributed in the hope that it will be useful,
10
 This program is distributed in the hope that it will be useful,
1405
12
 but WITHOUT ANY WARRANTY; without even the implied warranty of
11
 but WITHOUT ANY WARRANTY; without even the implied warranties of
1406
13
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
12
 MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1407
14
 GNU General Public License for more details.
13
 PURPOSE.  See the GNU General Public License for more details.
1408
15
 .
14
 .
1409
16
 You should have received a copy of the GNU General Public License
15
 You should have received a copy of the GNU General Public License
1410
17
 along with this program.  If not, see <http://www.gnu.org/licenses/>.
16
 along with this program.  If not, see <http://www.gnu.org/licenses/>.
1411
18
17
1412
=== added file 'hooks/bootstrap.py'
1413
--- hooks/bootstrap.py	1970-01-01 00:00:00 +0000
1414
+++ hooks/bootstrap.py	2015-11-02 12:15:35 +0000
1415
@@ -0,0 +1,57 @@
1416
1
#!/usr/bin/python3
1417
2
1418
3
# Copyright 2015 Canonical Ltd.
1419
4
#
1420
5
# This file is part of the PostgreSQL Charm for Juju.
1421
6
#
1422
7
# This program is free software: you can redistribute it and/or modify
1423
8
# it under the terms of the GNU General Public License version 3, as
1424
9
# published by the Free Software Foundation.
1425
10
#
1426
11
# This program is distributed in the hope that it will be useful, but
1427
12
# WITHOUT ANY WARRANTY; without even the implied warranties of
1428
13
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1429
14
# PURPOSE.  See the GNU General Public License for more details.
1430
15
#
1431
16
# You should have received a copy of the GNU General Public License
1432
17
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1433
18
1434
19
from charmhelpers import fetch
1435
20
from charmhelpers.core import hookenv
1436
21
1437
22
1438
23
def bootstrap():
1439
24
    try:
1440
25
        import psycopg2  # NOQA: flake8
1441
26
        import jinja2  # NOQA: flake8
1442
27
    except ImportError:
1443
28
        packages = ['python3-psycopg2', 'python3-jinja2']
1444
29
        fetch.apt_install(packages, fatal=True)
1445
30
        import psycopg2  # NOQA: flake8
1446
31
1447
32
1448
33
def block_on_bad_juju():
1449
34
    if not hookenv.has_juju_version('1.24'):
1450
35
        hookenv.status_set('blocked', 'Requires Juju 1.24 or higher')
1451
36
        # Error state, since we don't have 1.24 to give a nice blocked state.
1452
37
        raise SystemExit(1)
1453
38
1454
39
1455
40
def upgrade_charm():
1456
41
    block_on_bad_juju()
1457
42
    # This needs to be imported after bootstrap() or required Python
1458
43
    # packages may not have been installed.
1459
44
    import upgrade
1460
45
    upgrade.upgrade_charm()
1461
46
1462
47
1463
48
def default_hook():
1464
49
    block_on_bad_juju()
1465
50
    # This needs to be imported after bootstrap() or required Python
1466
51
    # packages may not have been installed.
1467
52
    import definitions
1468
53
1469
54
    hookenv.log('*** Start {!r} hook'.format(hookenv.hook_name()))
1470
55
    sm = definitions.get_service_manager()
1471
56
    sm.manage()
1472
57
    hookenv.log('*** End {!r} hook'.format(hookenv.hook_name()))
1473
0
58
1474
=== added file 'hooks/client.py'
1475
--- hooks/client.py	1970-01-01 00:00:00 +0000
1476
+++ hooks/client.py	2015-11-02 12:15:35 +0000
1477
@@ -0,0 +1,182 @@
1478
1
# Copyright 2015 Canonical Ltd.
1479
2
#
1480
3
# This file is part of the PostgreSQL Charm for Juju.
1481
4
#
1482
5
# This program is free software: you can redistribute it and/or modify
1483
6
# it under the terms of the GNU General Public License version 3, as
1484
7
# published by the Free Software Foundation.
1485
8
#
1486
9
# This program is distributed in the hope that it will be useful, but
1487
10
# WITHOUT ANY WARRANTY; without even the implied warranties of
1488
11
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1489
12
# PURPOSE.  See the GNU General Public License for more details.
1490
13
#
1491
14
# You should have received a copy of the GNU General Public License
1492
15
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1493
16
1494
17
from charmhelpers.core import hookenv, host
1495
18
1496
19
from decorators import relation_handler, master_only
1497
20
import helpers
1498
21
import postgresql
1499
22
1500
23
1501
24
@relation_handler('db', 'db-admin', 'master')
1502
25
def publish_db_relations(rel):
1503
26
    if postgresql.is_master():
1504
27
        db_relation_master(rel)
1505
28
    else:
1506
29
        db_relation_mirror(rel)
1507
30
    db_relation_common(rel)
1508
31
1509
32
1510
33
def _credential_types(rel):
1511
34
    superuser = (rel.relname in ('db-admin', 'master'))
1512
35
    replication = (rel.relname == 'master')
1513
36
    return (superuser, replication)
1514
37
1515
38
1516
39
def db_relation_master(rel):
1517
40
    '''The master generates credentials and negotiates resources.'''
1518
41
    master = rel.local
1519
42
    # Pick one remote unit as representative. They should all converge.
1520
43
    for remote in rel.values():
1521
44
        break
1522
45
1523
46
    # The requested database name, the existing database name, or use
1524
47
    # the remote service name as a default. We no longer use the
1525
48
    # relation id for the database name or usernames, as when a
1526
49
    # database dump is restored into a new Juju environment we
1527
50
    # are more likely to have matching service names than relation ids
1528
51
    # and less likely to have to perform manual permission and ownership
1529
52
    # cleanups.
1530
53
    if 'database' in remote:
1531
54
        master['database'] = remote['database']
1532
55
    elif 'database' not in master:
1533
56
        master['database'] = remote.service
1534
57
1535
58
    superuser, replication = _credential_types(rel)
1536
59
1537
60
    if 'user' not in master:
1538
61
        user = postgresql.username(remote.service, superuser=superuser,
1539
62
                                   replication=replication)
1540
63
        password = host.pwgen()
1541
64
        master['user'] = user
1542
65
        master['password'] = password
1543
66
1544
67
        # schema_user has never been documented and is deprecated.
1545
68
        if not superuser:
1546
69
            master['schema_user'] = user
1547
70
            master['schema_password'] = password
1548
71
1549
72
    hookenv.log('** Master providing {} ({}/{})'.format(rel,
1550
73
                                                        master['database'],
1551
74
                                                        master['user']))
1552
75
1553
76
    # Reflect these settings back so the client knows when they have
1554
77
    # taken effect.
1555
78
    if not replication:
1556
79
        master['roles'] = remote.get('roles')
1557
80
        master['extensions'] = remote.get('extensions')
1558
81
1559
82
1560
83
def db_relation_mirror(rel):
1561
84
    '''Non-masters mirror relation information from the master.'''
1562
85
    master = postgresql.master()
1563
86
    master_keys = ['database', 'user', 'password', 'roles',
1564
87
                   'schema_user', 'schema_password', 'extensions']
1565
88
    master_info = rel.peers.get(master)
1566
89
    if master_info is None:
1567
90
        hookenv.log('Waiting for {} to join {}'.format(master, rel))
1568
91
        return
1569
92
    hookenv.log('Mirroring {} database credentials from {}'.format(rel,
1570
93
                                                                   master))
1571
94
    rel.local.update({k: master_info.get(k) for k in master_keys})
1572
95
1573
96
1574
97
def db_relation_common(rel):
1575
98
    '''Publish unit specific relation details.'''
1576
99
    local = rel.local
1577
100
    if 'database' not in local:
1578
101
        return  # Not yet ready.
1579
102
1580
103
    # Version number, allowing clients to adjust or block if their
1581
104
    # expectations are not met.
1582
105
    local['version'] = postgresql.version()
1583
106
1584
107
    # Calculate the state of this unit. 'standalone' will disappear
1585
108
    # in a future version of this interface, as this state was
1586
109
    # only needed to deal with race conditions now solved by
1587
110
    # Juju leadership.
1588
111
    if postgresql.is_primary():
1589
112
        if hookenv.is_leader() and len(helpers.peers()) == 0:
1590
113
            local['state'] = 'standalone'
1591
114
        else:
1592
115
            local['state'] = 'master'
1593
116
    else:
1594
117
        local['state'] = 'hot standby'
1595
118
1596
119
    # Host is the private ip address, but this might change and
1597
120
    # become the address of an attached proxy or alternative peer
1598
121
    # if this unit is in maintenance.
1599
122
    local['host'] = hookenv.unit_private_ip()
1600
123
1601
124
    # Port will be 5432, unless the user has overridden it or
1602
125
    # something very weird happened when the packages where installed.
1603
126
    local['port'] = str(postgresql.port())
1604
127
1605
128
    # The list of remote units on this relation granted access.
1606
129
    # This is to avoid the race condition where a new client unit
1607
130
    # joins an existing client relation and sees valid credentials,
1608
131
    # before we have had a chance to grant it access.
1609
132
    local['allowed-units'] = ' '.join(rel.keys())
1610
133
1611
134
1612
135
@master_only
1613
136
@relation_handler('db', 'db-admin', 'master')
1614
137
def ensure_db_relation_resources(rel):
1615
138
    '''Create the database resources needed for the relation.'''
1616
139
1617
140
    master = rel.local
1618
141
1619
142
    hookenv.log('Ensuring database {!r} and user {!r} exist for {}'
1620
143
                ''.format(master['database'], master['user'], rel))
1621
144
1622
145
    # First create the database, if it isn't already.
1623
146
    postgresql.ensure_database(master['database'])
1624
147
1625
148
    # Next, connect to the database to create the rest in a transaction.
1626
149
    con = postgresql.connect(database=master['database'])
1627
150
1628
151
    superuser, replication = _credential_types(rel)
1629
152
    postgresql.ensure_user(con, master['user'], master['password'],
1630
153
                           superuser=superuser, replication=replication)
1631
154
    if not superuser:
1632
155
        postgresql.ensure_user(con,
1633
156
                               master['schema_user'],
1634
157
                               master['schema_password'])
1635
158
1636
159
    # Grant specified privileges on the database to the user. This comes
1637
160
    # from the PostgreSQL service configuration, as allowing the
1638
161
    # relation to specify how much access it gets is insecure.
1639
162
    config = hookenv.config()
1640
163
    privs = set(filter(None,
1641
164
                       config['relation_database_privileges'].split(',')))
1642
165
    postgresql.grant_database_privileges(con, master['user'],
1643
166
                                         master['database'], privs)
1644
167
    if not superuser:
1645
168
        postgresql.grant_database_privileges(con, master['schema_user'],
1646
169
                                             master['database'], privs)
1647
170
1648
171
    # Reset the roles granted to the user as requested.
1649
172
    if 'roles' in master:
1650
173
        roles = filter(None, master.get('roles', '').split(','))
1651
174
        postgresql.grant_user_roles(con, master['user'], roles)
1652
175
1653
176
    # Create requested extensions. We never drop extensions, as there
1654
177
    # may be dependent objects.
1655
178
    if 'extensions' in master:
1656
179
        extensions = filter(None, master.get('extensions', '').split(','))
1657
180
        postgresql.ensure_extensions(con, extensions)
1658
181
1659
182
    con.commit()  # Don't throw away our changes.
1660
0
183
1661
=== removed symlink 'hooks/config-changed'
1662
=== target was u'hooks.py'
1663
=== added file 'hooks/coordinator.py'
1664
--- hooks/coordinator.py	1970-01-01 00:00:00 +0000
1665
+++ hooks/coordinator.py	2015-11-02 12:15:35 +0000
1666
@@ -0,0 +1,19 @@
1667
1
# Copyright 2015 Canonical Ltd.
1668
2
#
1669
3
# This file is part of the PostgreSQL Charm for Juju.
1670
4
#
1671
5
# This program is free software: you can redistribute it and/or modify
1672
6
# it under the terms of the GNU General Public License version 3, as
1673
7
# published by the Free Software Foundation.
1674
8
#
1675
9
# This program is distributed in the hope that it will be useful, but
1676
10
# WITHOUT ANY WARRANTY; without even the implied warranties of
1677
11
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1678
12
# PURPOSE.  See the GNU General Public License for more details.
1679
13
#
1680
14
# You should have received a copy of the GNU General Public License
1681
15
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1682
16
1683
17
from charmhelpers.coordinator import Serial
1684
18
1685
19
coordinator = Serial()
1686
0
20
1687
=== added file 'hooks/data-relation-changed'
1688
--- hooks/data-relation-changed	1970-01-01 00:00:00 +0000
1689
+++ hooks/data-relation-changed	2015-11-02 12:15:35 +0000
1690
@@ -0,0 +1,23 @@
1691
1
#!/usr/bin/python3
1692
2
1693
3
# Copyright 2015 Canonical Ltd.
1694
4
#
1695
5
# This file is part of the PostgreSQL Charm for Juju.
1696
6
#
1697
7
# This program is free software: you can redistribute it and/or modify
1698
8
# it under the terms of the GNU General Public License version 3, as
1699
9
# published by the Free Software Foundation.
1700
10
#
1701
11
# This program is distributed in the hope that it will be useful, but
1702
12
# WITHOUT ANY WARRANTY; without even the implied warranties of
1703
13
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1704
14
# PURPOSE.  See the GNU General Public License for more details.
1705
15
#
1706
16
# You should have received a copy of the GNU General Public License
1707
17
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1708
18
1709
19
import bootstrap
1710
20
1711
21
if __name__ == '__main__':
1712
22
    bootstrap.bootstrap()
1713
23
    bootstrap.default_hook()
1714
0
24
1715
=== removed symlink 'hooks/data-relation-changed'
1716
=== target was u'hooks.py'
1717
=== added file 'hooks/data-relation-departed'
1718
--- hooks/data-relation-departed	1970-01-01 00:00:00 +0000
1719
+++ hooks/data-relation-departed	2015-11-02 12:15:35 +0000
1720
@@ -0,0 +1,23 @@
1721
1
#!/usr/bin/python3
1722
2
1723
3
# Copyright 2015 Canonical Ltd.
1724
4
#
1725
5
# This file is part of the PostgreSQL Charm for Juju.
1726
6
#
1727
7
# This program is free software: you can redistribute it and/or modify
1728
8
# it under the terms of the GNU General Public License version 3, as
1729
9
# published by the Free Software Foundation.
1730
10
#
1731
11
# This program is distributed in the hope that it will be useful, but
1732
12
# WITHOUT ANY WARRANTY; without even the implied warranties of
1733
13
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1734
14
# PURPOSE.  See the GNU General Public License for more details.
1735
15
#
1736
16
# You should have received a copy of the GNU General Public License
1737
17
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1738
18
1739
19
import bootstrap
1740
20
1741
21
if __name__ == '__main__':
1742
22
    bootstrap.bootstrap()
1743
23
    bootstrap.default_hook()
1744
0
24
1745
=== removed symlink 'hooks/data-relation-departed'
1746
=== target was u'hooks.py'
1747
=== removed symlink 'hooks/data-relation-joined'
1748
=== target was u'hooks.py'
1749
=== removed symlink 'hooks/db-admin-relation-broken'
1750
=== target was u'hooks.py'
1751
=== removed symlink 'hooks/db-admin-relation-changed'
1752
=== target was u'hooks.py'
1753
=== added file 'hooks/db-admin-relation-departed'
1754
--- hooks/db-admin-relation-departed	1970-01-01 00:00:00 +0000
1755
+++ hooks/db-admin-relation-departed	2015-11-02 12:15:35 +0000
1756
@@ -0,0 +1,23 @@
1757
1
#!/usr/bin/python3
1758
2
1759
3
# Copyright 2015 Canonical Ltd.
1760
4
#
1761
5
# This file is part of the PostgreSQL Charm for Juju.
1762
6
#
1763
7
# This program is free software: you can redistribute it and/or modify
1764
8
# it under the terms of the GNU General Public License version 3, as
1765
9
# published by the Free Software Foundation.
1766
10
#
1767
11
# This program is distributed in the hope that it will be useful, but
1768
12
# WITHOUT ANY WARRANTY; without even the implied warranties of
1769
13
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1770
14
# PURPOSE.  See the GNU General Public License for more details.
1771
15
#
1772
16
# You should have received a copy of the GNU General Public License
1773
17
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1774
18
1775
19
import bootstrap
1776
20
1777
21
if __name__ == '__main__':
1778
22
    bootstrap.bootstrap()
1779
23
    bootstrap.default_hook()
1780
0
24
1781
=== removed symlink 'hooks/db-admin-relation-joined'
1782
=== target was u'hooks.py'
1783
=== removed symlink 'hooks/db-relation-broken'
1784
=== target was u'hooks.py'
1785
=== removed symlink 'hooks/db-relation-changed'
1786
=== target was u'hooks.py'
1787
=== added file 'hooks/db-relation-departed'
1788
--- hooks/db-relation-departed	1970-01-01 00:00:00 +0000
1789
+++ hooks/db-relation-departed	2015-11-02 12:15:35 +0000
1790
@@ -0,0 +1,23 @@
1791
1
#!/usr/bin/python3
1792
2
1793
3
# Copyright 2015 Canonical Ltd.
1794
4
#
1795
5
# This file is part of the PostgreSQL Charm for Juju.
1796
6
#
1797
7
# This program is free software: you can redistribute it and/or modify
1798
8
# it under the terms of the GNU General Public License version 3, as
1799
9
# published by the Free Software Foundation.
1800
10
#
1801
11
# This program is distributed in the hope that it will be useful, but
1802
12
# WITHOUT ANY WARRANTY; without even the implied warranties of
1803
13
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1804
14
# PURPOSE.  See the GNU General Public License for more details.
1805
15
#
1806
16
# You should have received a copy of the GNU General Public License
1807
17
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1808
18
1809
19
import bootstrap
1810
20
1811
21
if __name__ == '__main__':
1812
22
    bootstrap.bootstrap()
1813
23
    bootstrap.default_hook()
1814
0
24
1815
=== removed symlink 'hooks/db-relation-joined'
1816
=== target was u'hooks.py'
1817
=== added file 'hooks/decorators.py'
1818
--- hooks/decorators.py	1970-01-01 00:00:00 +0000
1819
+++ hooks/decorators.py	2015-11-02 12:15:35 +0000
1820
@@ -0,0 +1,124 @@
1821
1
# Copyright 2015 Canonical Ltd.
1822
2
#
1823
3
# This file is part of the PostgreSQL Charm for Juju.
1824
4
#
1825
5
# This program is free software: you can redistribute it and/or modify
1826
6
# it under the terms of the GNU General Public License version 3, as
1827
7
# published by the Free Software Foundation.
1828
8
#
1829
9
# This program is distributed in the hope that it will be useful, but
1830
10
# WITHOUT ANY WARRANTY; without even the implied warranties of
1831
11
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1832
12
# PURPOSE.  See the GNU General Public License for more details.
1833
13
#
1834
14
# You should have received a copy of the GNU General Public License
1835
15
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1836
16
from functools import wraps
1837
17
1838
18
from charmhelpers import context
1839
19
from charmhelpers.core import hookenv
1840
20
from charmhelpers.core.hookenv import DEBUG
1841
21
1842
22
import helpers
1843
23
1844
24
1845
25
def data_ready_action(func):
1846
26
    '''Decorate func to be used as a data_ready item.'''
1847
27
    @wraps(func)
1848
28
    def wrapper(service_name=None):
1849
29
        if hookenv.remote_unit():
1850
30
            hookenv.log("** Action {}/{} ({})".format(hookenv.hook_name(),
1851
31
                                                      func.__name__,
1852
32
                                                      hookenv.remote_unit()))
1853
33
        else:
1854
34
            hookenv.log("** Action {}/{}".format(hookenv.hook_name(),
1855
35
                                                 func.__name__))
1856
36
        return func()
1857
37
    return wrapper
1858
38
1859
39
1860
40
class requirement:
1861
41
    '''Decorate a function so it can be used as a required_data item.
1862
42
1863
43
    Function must True if requirements are met. Sets the unit state
1864
44
    to blocked if requirements are not met and the unit not already blocked.
1865
45
    '''
1866
46
    def __init__(self, func):
1867
47
        self._func = func
1868
48
1869
49
    def __bool__(self):
1870
50
        name = self._func.__name__
1871
51
        if self._func():
1872
52
            hookenv.log('** Requirement {} passed'.format(name))
1873
53
            return True
1874
54
        else:
1875
55
            if hookenv.status_get() != 'blocked':
1876
56
                helpers.status_set('blocked',
1877
57
                                   'Requirement {} failed'.format(name))
1878
58
            return False
1879
59
1880
60
1881
61
def relation_handler(*relnames):
1882
62
    '''Invoke the decorated function once per matching relation.
1883
63
1884
64
    The decorated function should accept the Relation() instance
1885
65
    as its single parameter.
1886
66
    '''
1887
67
    assert relnames, 'relation names required'
1888
68
1889
69
    def decorator(func):
1890
70
        @wraps(func)
1891
71
        def wrapper(service_name=None):
1892
72
            rels = context.Relations()
1893
73
            for relname in relnames:
1894
74
                for rel in rels[relname].values():
1895
75
                    if rel:
1896
76
                        func(rel)
1897
77
        return wrapper
1898
78
    return decorator
1899
79
1900
80
1901
81
def leader_only(func):
1902
82
    '''Only run on the service leader.'''
1903
83
    @wraps(func)
1904
84
    def wrapper(*args, **kw):
1905
85
        if hookenv.is_leader():
1906
86
            return func(*args, **kw)
1907
87
        else:
1908
88
            hookenv.log('Not the leader', DEBUG)
1909
89
    return wrapper
1910
90
1911
91
1912
92
def not_leader(func):
1913
93
    '''Only run on the service leader.'''
1914
94
    @wraps(func)
1915
95
    def wrapper(*args, **kw):
1916
96
        if not hookenv.is_leader():
1917
97
            return func(*args, **kw)
1918
98
        else:
1919
99
            hookenv.log("I'm the leader", DEBUG)
1920
100
    return wrapper
1921
101
1922
102
1923
103
def master_only(func):
1924
104
    '''Only run on the appointed master.'''
1925
105
    @wraps(func)
1926
106
    def wrapper(*args, **kw):
1927
107
        import postgresql
1928
108
        if postgresql.is_master():
1929
109
            return func(*args, **kw)
1930
110
        else:
1931
111
            hookenv.log('Not the master', DEBUG)
1932
112
    return wrapper
1933
113
1934
114
1935
115
def not_master(func):
1936
116
    '''Don't run on the appointed master.'''
1937
117
    @wraps(func)
1938
118
    def wrapper(*args, **kw):
1939
119
        import postgresql
1940
120
        if postgresql.is_master():
1941
121
            hookenv.log("I'm the master", DEBUG)
1942
122
        else:
1943
123
            return func(*args, **kw)
1944
124
    return wrapper
1945
0
125
1946
=== added file 'hooks/definitions.py'
1947
--- hooks/definitions.py	1970-01-01 00:00:00 +0000
1948
+++ hooks/definitions.py	2015-11-02 12:15:35 +0000
1949
@@ -0,0 +1,86 @@
1950
1
# Copyright 2011-2015 Canonical Ltd.
1951
2
#
1952
3
# This file is part of the PostgreSQL Charm for Juju.
1953
4
#
1954
5
# This program is free software: you can redistribute it and/or modify
1955
6
# it under the terms of the GNU General Public License version 3, as
1956
7
# published by the Free Software Foundation.
1957
8
#
1958
9
# This program is distributed in the hope that it will be useful, but
1959
10
# WITHOUT ANY WARRANTY; without even the implied warranties of
1960
11
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
1961
12
# PURPOSE.  See the GNU General Public License for more details.
1962
13
#
1963
14
# You should have received a copy of the GNU General Public License
1964
15
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
1965
16
1966
17
from charmhelpers.core import services
1967
18
1968
19
import client
1969
20
import nagios
1970
21
import replication
1971
22
import service
1972
23
import storage
1973
24
import syslogrel
1974
25
import wal_e
1975
26
1976
27
1977
28
SERVICE_DEFINITION = [
1978
29
    dict(service='postgresql',
1979
30
         required_data=[service.valid_config],
1980
31
         data_ready=[service.preinstall,
1981
32
                     service.configure_sources,
1982
33
                     service.install_packages,
1983
34
                     service.ensure_package_status,
1984
35
                     service.update_kernel_settings,
1985
36
                     service.appoint_master,
1986
37
1987
38
                     service.wait_for_peers,  # Exit if there are no peers.
1988
39
1989
40
                     nagios.ensure_nagios_credentials,
1990
41
                     replication.ensure_replication_credentials,
1991
42
                     replication.publish_replication_details,
1992
43
1993
44
                     # Exit if required leader settings are not set.
1994
45
                     service.wait_for_leader,
1995
46
1996
47
                     service.ensure_cluster,
1997
48
                     service.update_pgpass,
1998
49
                     service.update_pg_hba_conf,
1999
50
                     service.update_pg_ident_conf,
2000
51
                     service.update_postgresql_conf,
2001
52
                     syslogrel.handle_syslog_relations,
2002
53
                     storage.handle_storage_relation,
2003
54
                     wal_e.update_wal_e_env_dir,
2004
55
                     service.request_restart,
2005
56
2006
57
                     service.wait_for_restart,  # Exit if cannot restart yet.
2007
58
2008
59
                     replication.promote_master,
2009
60
                     storage.remount,
2010
61
                     replication.clone_master,  # Exit if cannot clone yet.
2011
62
                     replication.update_recovery_conf,
2012
63
                     service.restart_or_reload,
2013
64
2014
65
                     replication.ensure_replication_user,
2015
66
                     nagios.ensure_nagios_user,
2016
67
                     service.install_administrative_scripts,
2017
68
                     service.update_postgresql_crontab,
2018
69
2019
70
                     client.publish_db_relations,
2020
71
                     client.ensure_db_relation_resources,
2021
72
2022
73
                     service.update_pg_hba_conf,  # Again, after client setup.
2023
74
                     service.reload_config,
2024
75
2025
76
                     service.set_active,
2026
77
2027
78
                     # At the end, as people check the end of logs
2028
79
                     # most frequently.
2029
80
                     service.emit_deprecated_option_warnings],
2030
81
         start=[service.open_ports],
2031
82
         stop=[service.stop_postgresql, service.close_ports])]
2032
83
2033
84
2034
85
def get_service_manager():
2035
86
    return services.ServiceManager(SERVICE_DEFINITION)
2036
0
87
2037
=== added file 'hooks/helpers.py'
2038
--- hooks/helpers.py	1970-01-01 00:00:00 +0000
2039
+++ hooks/helpers.py	2015-11-02 12:15:35 +0000
2040
@@ -0,0 +1,151 @@
2041
1
# Copyright 2015 Canonical Ltd.
2042
2
#
2043
3
# This file is part of the PostgreSQL Charm for Juju.
2044
4
#
2045
5
# This program is free software: you can redistribute it and/or modify
2046
6
# it under the terms of the GNU General Public License version 3, as
2047
7
# published by the Free Software Foundation.
2048
8
#
2049
9
# This program is distributed in the hope that it will be useful, but
2050
10
# WITHOUT ANY WARRANTY; without even the implied warranties of
2051
11
# MERCHANTABILITY, SATISFACTORY QUALITY, or FITNESS FOR A PARTICULAR
2052
12
# PURPOSE.  See the GNU General Public License for more details.
2053
13
#
2054
14
# You should have received a copy of the GNU General Public License
2055
15
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
2056
16
2057
17
from contextlib import contextmanager
2058
18
import os
2059
19
import shutil
2060
20
import stat
2061
21
import tempfile
2062
22
2063
23
import yaml
2064
24
2065
25
from charmhelpers import context
2066
26
from charmhelpers.core import hookenv, host
2067
27
from charmhelpers.core.hookenv import INFO, CRITICAL
2068
28
2069
29
2070
30
def status_set(status_or_msg, msg=None):
2071
31
    '''Set the unit status message, and log the change too.'''
2072
32
    if msg is None:
2073
33
        msg = status_or_msg
2074
34
        status = hookenv.status_get()
2075
35
    else:
2076
36
        status = status_or_msg
2077
37
2078
38
    if status == 'blocked':
2079
39
        lvl = CRITICAL
2080
40
    else:
2081
41
        lvl = INFO
2082
42
    hookenv.log('{}: {}'.format(status, msg), lvl)
2083
43
    hookenv.status_set(status, msg)
2084
44
2085
45
2086
46
def distro_codename():
2087
47
    """Return the distro release code name, eg. 'precise' or 'trusty'."""
2088
48
    return host.lsb_release()['DISTRIB_CODENAME']
2089
49
2090
50
2091
51
def extra_packages():
2092
52
    config = hookenv.config()
2093
53
    packages = set()
2094
54
2095
55
    packages.update(set(config['extra_packages'].split()))
2096
56
    packages.update(set(config['extra-packages'].split()))  # Deprecated.
2097
57
2098
58
    if config['wal_e_storage_uri']:
2099
59
        packages.add('daemontools')
2100
60
        packages.add('wal-e')
2101
61
2102
62
    return packages
2103
63
2104
64
2105
65
def peers():
2106
66
    '''Return the set of peers, not including the local unit.'''
2107
67
    rel = context.Relations().peer
2108
68
    return frozenset(rel.keys()) if rel else frozenset()
2109
69
2110
70
2111
71
def rewrite(path, content):
2112
72
    '''Rewrite a file atomically, preserving ownership and permissions.'''
2113
73
    attr = os.lstat(path)
2114
74
    write(path, content,
2115
75
          mode=stat.S_IMODE(attr.st_mode),
2116
76
          user=attr[stat.ST_UID],
2117
77
          group=attr[stat.ST_GID])
2118
78
2119
79
2120
80
def write(path, content, mode=0o640, user='root', group='root'):
2121
81
    '''Write a file atomically.'''
2122
82
    open_mode = 'wb' if isinstance(content, bytes) else 'w'
2123
83
    with tempfile.NamedTemporaryFile(mode=open_mode, delete=False) as f:
2124
84
        try:
2125
85
            f.write(content)
2126
86
            f.flush()
2127
87
            shutil.chown(f.name, user, group)
2128
88
            os.chmod(f.name, mode)
2129
89
            os.replace(f.name, path)
2130
90
        finally:
2131
91
            if os.path.exists(f.name):
2132
92
                os.unlink(f.name)
2133
93
2134
94
2135
95
def makedirs(path, mode=0o750, user='root', group='root'):
2136
96
    if os.path.exists(path):
2137
97
        assert os.path.isdir(path), '{} is not a directory'
2138
98
    else:
2139
99
        os.makedirs(path, mode=mode)
2140
100
    shutil.chown(path, user, group)
2141
101
    os.chmod(path, mode)
2142
102
2143
103
2144
104
@contextmanager
2145
105
def switch_cwd(new_working_directory='/tmp'):
2146
106
    'Switch working directory.'
2147
107
    org_dir = os.getcwd()
2148
108
    os.chdir(new_working_directory)
2149
109
    try:
2150
110
        yield new_working_directory
2151
111
    finally:
2152
112
        os.chdir(org_dir)
2153
113
2154
114
2155
115
def config_yaml():
2156
116
    config_yaml_path = os.path.join(hookenv.charm_dir(), 'config.yaml')
2157
117
    with open(config_yaml_path, 'r') as f:
2158
118
        return yaml.load(f)
2159
119
2160
120
2161
121
def deprecated_config_in_use():
2162
122
    options = config_yaml()['options']
2163
123
    config = hookenv.config()
2164
124
    deprecated = [key for key in options
2165
125
                  if ('DEPRECATED' in options[key]['description'] and
2166
126
                      config[key] != options[key]['default'])]
2167
127
    return set(deprecated)
2168
128
2169
129
2170
130
def cron_dir():
2171
131
    '''Where we put crontab files.'''
2172
132
    return '/etc/cron.d'
2173
133
2174
134
2175
135
def scripts_dir():
2176
136
    '''Where the charm puts adminstrative scripts.'''
2177
137
    return '/var/lib/postgresql/scripts'
2178
138
2179
139
2180
140
def logs_dir():
2181
141
    '''Where the charm administrative scripts log their output.'''
2182
142
    return '/var/lib/postgresql/logs'
2183
143
2184
144
2185
145
def backups_dir():
2186
146
    '''Where pg_dump backups are stored.'''
2187
147
    return hookenv.config()['backup_dir']
2188
148
2189
149
2190
150
def backups_log_path():
2191
151
    return os.path.join(logs_dir(), 'backups.log')
2192
0
152
2193
=== removed file 'hooks/helpers.py'
2194
--- hooks/helpers.py	2015-02-24 16:57:31 +0000
2195
+++ hooks/helpers.py	1970-01-01 00:00:00 +0000
2196
@@ -1,197 +0,0 @@
2197
1
# Copyright 2012 Canonical Ltd.  This software is licensed under the
2198
2
# GNU Affero General Public License version 3 (see the file LICENSE).
2199
3
2200
4
"""Helper functions for writing hooks in python."""
2201
5
2202
6
__metaclass__ = type
2203
7
__all__ = [
2204
8
    'get_config',
2205
9
    'juju_status',
2206
10
    'log',
2207
11
    'log_entry',
2208
12
    'log_exit',
2209
13
    'make_charm_config_file',
2210
14
    'relation_get',
2211
15
    'relation_set',
2212
16
    'unit_info',
2213
17
    'wait_for_machine',
2214
18
    'wait_for_page_contents',
2215
19
    'wait_for_relation',
2216
20
    'wait_for_unit']
2217
21
2218
22
from contextlib import contextmanager
2219
23
import json
2220
24
import operator
2221
25
from shelltoolbox import (
2222
26
    command,
2223
27
    run,
2224
28
    script_name)
2225
29
import os
2226
30
import tempfile
2227
31
import time
2228
32
import urllib2
2229
33
import yaml
2230
34
2231
35
2232
36
log = command('juju-log')
2233
37
2234
38
2235
39
def log_entry():
2236
40
    log("--> Entering {}".format(script_name()))
2237
41
2238
42
2239
43
def log_exit():
2240
44
    log("<-- Exiting {}".format(script_name()))
2241
45
2242
46
2243
47
def get_config():
2244
48
    config_get = command('config-get', '--format=json')
2245
49
    return json.loads(config_get())
2246
50
2247
51
2248
52
def relation_get(*args):
2249
53
    cmd = command('relation-get')
2250
54
    return cmd(*args).strip()
2251
55
2252
56
2253
57
def relation_set(**kwargs):
2254
58
    cmd = command('relation-set')
2255
59
    args = ['{}={}'.format(k, v) for k, v in kwargs.items()]
2256
60
    return cmd(*args)
2257
61
2258
62
2259
63
def make_charm_config_file(charm_config):
2260
64
    charm_config_file = tempfile.NamedTemporaryFile()
2261
65
    charm_config_file.write(yaml.dump(charm_config))
2262
66
    charm_config_file.flush()
2263
67
    # The NamedTemporaryFile instance is returned instead of just the name
2264
68
    # because we want to take advantage of garbage collection-triggered
2265
69
    # deletion of the temp file when it goes out of scope in the caller.
2266
70
    return charm_config_file
2267
71
2268
72
2269
73
def juju_status(key):
2270
74
    return yaml.safe_load(run('juju', 'status'))[key]
2271
75
2272
76
2273
77
def get_charm_revision(service_name):
2274
78
    service = juju_status('services')[service_name]
2275
79
    return int(service['charm'].split('-')[-1])
2276
80
2277
81
2278
82
def unit_info(service_name, item_name, data=None):
2279
83
    services = juju_status('services') if data is None else data['services']
2280
84
    service = services.get(service_name)
2281
85
    if service is None:
2282
86
        # XXX 2012-02-08 gmb:
2283
87
        #     This allows us to cope with the race condition that we
2284
88
        #     have between deploying a service and having it come up in
2285
89
        #     `juju status`. We could probably do with cleaning it up so
2286
90
        #     that it fails a bit more noisily after a while.
2287
91
        return ''
2288
92
    units = service['units']
2289
93
    item = units.items()[0][1][item_name]
2290
94
    return item
2291
95
2292
96
2293
97
@contextmanager
2294
98
def maintain_charm_revision(path=None):
2295
99
    if path is None:
2296
100
        path = os.path.join(os.path.dirname(__file__), '..', 'revision')
2297
101
    revision = open(path).read()
2298
102
    try:
2299
103
        yield revision
2300
104
    finally:
2301
105
        with open(path, 'w') as f:
2302
106
            f.write(revision)
2303
107
2304
108
2305
109
def upgrade_charm(service_name, timeout=120):
2306
110
    next_revision = get_charm_revision(service_name) + 1
2307
111
    start_time = time.time()
2308
112
    run('juju', 'upgrade-charm', service_name)
2309
113
    while get_charm_revision(service_name) != next_revision:
2310
114
        if time.time() - start_time >= timeout:
2311
115
            raise RuntimeError('timeout waiting for charm to be upgraded')
2312
116
        time.sleep(0.1)
2313
117
    return next_revision
2314
118
2315
119
2316
120
def wait_for_machine(num_machines=1, timeout=300):
2317
121
    """Wait `timeout` seconds for `num_machines` machines to come up.
2318
122
2319
123
    This wait_for... function can be called by other wait_for functions
2320
124
    whose timeouts might be too short in situations where only a bare
2321
125
    Juju setup has been bootstrapped.
2322
126
    """
2323
127
    # You may think this is a hack, and you'd be right. The easiest way
2324
128
    # to tell what environment we're working in (LXC vs EC2) is to check
2325
129
    # the dns-name of the first machine. If it's localhost we're in LXC
2326
130
    # and we can just return here.
2327
131
    if juju_status('machines')[0]['dns-name'] == 'localhost':
2328
132
        return
2329
133
    start_time = time.time()
2330
134
    while True:
2331
135
        # Drop the first machine, since it's the Zookeeper and that's
2332
136
        # not a machine that we need to wait for. This will only work
2333
137
        # for EC2 environments, which is why we return early above if
2334
138
        # we're in LXC.
2335
139
        machine_data = juju_status('machines')
2336
140
        non_zookeeper_machines = [
2337
141
            machine_data[key] for key in machine_data.keys()[1:]]
2338
142
        if len(non_zookeeper_machines) >= num_machines:
2339
143
            all_machines_running = True
2340
144
            for machine in non_zookeeper_machines:
2341
145
                if machine['instance-state'] != 'running':
2342
146
                    all_machines_running = False
2343
147
                    break
2344
148
            if all_machines_running:
2345
149
                break
2346
150
        if time.time() - start_time >= timeout:
2347
151
            raise RuntimeError('timeout waiting for service to start')
2348
152
        time.sleep(0.1)
2349
153
2350
154
2351
155
def wait_for_unit(service_name, timeout=480):
2352
156
    """Wait `timeout` seconds for a given service name to come up."""
2353
157
    wait_for_machine(num_machines=1)
2354
158
    start_time = time.time()
2355
159
    while True:
2356
160
        state = unit_info(service_name, 'state')
2357
161
        if 'error' in state or state == 'started':
2358
162
            break
2359
163
        if time.time() - start_time >= timeout:
2360
164
            raise RuntimeError('timeout waiting for service to start')
2361
165
        time.sleep(0.1)
2362
166
    if state != 'started':
2363
167
        raise RuntimeError('unit did not start, state: ' + state)
2364
168
2365
169
2366
170
def wait_for_relation(service_name, relation_name, timeout=120):
2367
171
    """Wait `timeout` seconds for a given relation to come up."""
2368
172
    start_time = time.time()
2369
173
    while True:
2370
174
        relation = unit_info(service_name, 'relations').get(relation_name)
2371
175
        if relation is not None and relation['state'] == 'up':
2372
176
            break
2373
177
        if time.time() - start_time >= timeout:
2374
178
            raise RuntimeError('timeout waiting for relation to be up')
2375
179
        time.sleep(0.1)
2376
180
2377
181
2378
182
def wait_for_page_contents(url, contents, timeout=120, validate=None):
2379
183
    if validate is None:
2380
184
        validate = operator.contains
2381
185
    start_time = time.time()
2382
186
    while True:
2383
187
        try:
2384
188
            stream = urllib2.urlopen(url)
2385
189
        except (urllib2.HTTPError, urllib2.URLError):
2386
190
            pass
2387
191
        else:
2388
192
            page = stream.read()
2389
193
            if validate(page, contents):
2390
194
                return page
2391
195
        if time.time() - start_time >= timeout:
2392
196
            raise RuntimeError('timeout waiting for contents of ' + url)
2393
197
        time.sleep(0.1)
2394
198
0
2395
=== removed file 'hooks/hooks.py'
2396
--- hooks/hooks.py	2015-08-11 11:15:27 +0000
2397
+++ hooks/hooks.py	1970-01-01 00:00:00 +0000
2398
@@ -1,2820 +0,0 @@
2399
1
#!/usr/bin/env python
2400
2
# vim: et ai ts=4 sw=4:
2401
3
2402
4
from contextlib import contextmanager
2403
5
import commands
2404
6
import cPickle as pickle
2405
7
from distutils.version import StrictVersion
2406
8
import glob
2407
9
from grp import getgrnam
2408
10
import os
2409
11
from pwd import getpwnam
2410
12
import re
2411
13
import shutil
2412
14
import socket
2413
15
import subprocess
2414
16
import sys
2415
17
from tempfile import NamedTemporaryFile
2416
18
from textwrap import dedent
2417
19
import time
2418
20
import urlparse
2419
21
2420
22
from charmhelpers import fetch
2421
23
from charmhelpers.core import hookenv, host
2422
24
from charmhelpers.core.hookenv import (
2423
25
    CRITICAL, ERROR, WARNING, INFO, DEBUG)
2424
26
2425
27
try:
2426
28
    import psycopg2
2427
29
    from jinja2 import Template
2428
30
except ImportError:
2429
31
    fetch.apt_update(fatal=True)
2430
32
    fetch.apt_install(['python-psycopg2', 'python-jinja2'], fatal=True)
2431
33
    import psycopg2
2432
34
    from jinja2 import Template
2433
35
2434
36
from psycopg2.extensions import AsIs
2435
37
from jinja2 import Environment, FileSystemLoader
2436
38
2437
39
2438
40
hooks = hookenv.Hooks()
2439
41
2440
42
2441
43
def log(msg, lvl=INFO):
2442
44
    '''Log a message.
2443
45
2444
46
    Per Bug #1208787, log messages sent via juju-log are being lost.
2445
47
    Spit messages out to a log file to work around the problem.
2446
48
    It is also rather nice to have the log messages we explicitly emit
2447
49
    in a separate log file, rather than just mashed up with all the
2448
50
    juju noise.
2449
51
    '''
2450
52
    myname = hookenv.local_unit().replace('/', '-')
2451
53
    ts = time.strftime('%Y-%m-%d %H:%M:%S', time.gmtime())
2452
54
    with open('{}/{}-debug.log'.format(juju_log_dir, myname), 'a') as f:
2453
55
        f.write('{} {}: {}\n'.format(ts, lvl, msg))
2454
56
    hookenv.log(msg, lvl)
2455
57
2456
58
2457
59
def pg_version():
2458
60
    '''Return pg_version to use.
2459
61
2460
62
    Return "version" config item if set, else use version from "postgresql"
2461
63
    package candidate, saving it in local_state for later.
2462
64
    '''
2463
65
    config_data = hookenv.config()
2464
66
    if 'pg_version' in local_state:
2465
67
        version = local_state['pg_version']
2466
68
    elif 'version' in config_data:
2467
69
        version = config_data['version']
2468
70
    else:
2469
71
        log("map version from distro release ...")
2470
72
        version_map = {'precise': '9.1',
2471
73
                       'trusty': '9.3'}
2472
74
        version = version_map.get(distro_codename())
2473
75
        if not version:
2474
76
            log("No PG version map for distro_codename={}, "
2475
77
                "you'll need to explicitly set it".format(distro_codename()),
2476
78
                CRITICAL)
2477
79
            sys.exit(1)
2478
80
        log("version={} from distro_codename='{}'".format(
2479
81
            version, distro_codename()))
2480
82
        # save it for later
2481
83
        local_state.setdefault('pg_version', version)
2482
84
        local_state.save()
2483
85
2484
86
    assert version, "pg_version couldn't find a version to use"
2485
87
    return version
2486
88
2487
89
2488
90
def distro_codename():
2489
91
    """Return the distro release code name, eg. 'precise' or 'trusty'."""
2490
92
    return host.lsb_release()['DISTRIB_CODENAME']
2491
93
2492
94
2493
95
def render_template(template_name, vars):
2494
96
    # deferred import so install hook can install jinja2
2495
97
    templates_dir = os.path.join(os.environ['CHARM_DIR'], 'templates')
2496
98
    template_env = Environment(loader=FileSystemLoader(templates_dir))
2497
99
    template = template_env.get_template(template_name)
2498
100
    return template.render(vars)
2499
101
2500
102
2501
103
class State(dict):
2502
104
    """Encapsulate state common to the unit for republishing to relations."""
2503
105
    def __init__(self, state_file):
2504
106
        super(State, self).__init__()
2505
107
        self._state_file = state_file
2506
108
        self.load()
2507
109
2508
110
    def load(self):
2509
111
        '''Load stored state from local disk.'''
2510
112
        if os.path.exists(self._state_file):
2511
113
            state = pickle.load(open(self._state_file, 'rb'))
2512
114
        else:
2513
115
            state = {}
2514
116
        self.clear()
2515
117
2516
118
        self.update(state)
2517
119
2518
120
    def save(self):
2519
121
        '''Store state to local disk.'''
2520
122
        state = {}
2521
123
        state.update(self)
2522
124
        old_mask = os.umask(0o077)  # This file contains database passwords!
2523
125
        try:
2524
126
            pickle.dump(state, open(self._state_file, 'wb'))
2525
127
        finally:
2526
128
            os.umask(old_mask)
2527
129
2528
130
    def publish(self):
2529
131
        """Publish relevant unit state to relations"""
2530
132
2531
133
        def add(state_dict, key):
2532
134
            if key in self:
2533
135
                state_dict[key] = self[key]
2534
136
2535
137
        client_state = {}
2536
138
        add(client_state, 'state')
2537
139
2538
140
        for relid in hookenv.relation_ids('db'):
2539
141
            hookenv.relation_set(relid, client_state)
2540
142
2541
143
        for relid in hookenv.relation_ids('db-admin'):
2542
144
            hookenv.relation_set(relid, client_state)
2543
145
2544
146
        replication_state = dict(client_state)
2545
147
2546
148
        add(replication_state, 'replication_password')
2547
149
        add(replication_state, 'port')
2548
150
        add(replication_state, 'wal_received_offset')
2549
151
        add(replication_state, 'following')
2550
152
        add(replication_state, 'client_relations')
2551
153
2552
154
        authorized = self.get('authorized', None)
2553
155
        if authorized:
2554
156
            replication_state['authorized'] = ' '.join(sorted(authorized))
2555
157
2556
158
        for relid in hookenv.relation_ids('replication'):
2557
159
            hookenv.relation_set(relid, replication_state)
2558
160
2559
161
        for relid in hookenv.relation_ids('master'):
2560
162
            hookenv.relation_set(relid, state=self.get('state'))
2561
163
2562
164
        log('saving local state', DEBUG)
2563
165
        self.save()
2564
166
2565
167
2566
168
def volume_get_all_mounted():
2567
169
    command = ("mount |egrep %s" % external_volume_mount)
2568
170
    status, output = commands.getstatusoutput(command)
2569
171
    if status != 0:
2570
172
        return None
2571
173
    return output
2572
174
2573
175
2574
176
def postgresql_autostart(enabled):
2575
177
    postgresql_config_dir = _get_postgresql_config_dir()
2576
178
    startup_file = os.path.join(postgresql_config_dir, 'start.conf')
2577
179
    if enabled:
2578
180
        log("Enabling PostgreSQL startup in {}".format(startup_file))
2579
181
        mode = 'auto'
2580
182
    else:
2581
183
        log("Disabling PostgreSQL startup in {}".format(startup_file))
2582
184
        mode = 'manual'
2583
185
    template_file = "{}/templates/start_conf.tmpl".format(hookenv.charm_dir())
2584
186
    contents = Template(open(template_file).read()).render({'mode': mode})
2585
187
    host.write_file(
2586
188
        startup_file, contents, 'postgres', 'postgres', perms=0o644)
2587
189
2588
190
2589
191
def run(command, exit_on_error=True, quiet=False):
2590
192
    '''Run a command and return the output.'''
2591
193
    if not quiet:
2592
194
        log("Running {!r}".format(command), DEBUG)
2593
195
    p = subprocess.Popen(
2594
196
        command, stdin=subprocess.PIPE, stdout=subprocess.PIPE,
2595
197
        shell=isinstance(command, basestring))
2596
198
    p.stdin.close()
2597
199
    lines = []
2598
200
    for line in p.stdout:
2599
201
        if line:
2600
202
            # LP:1274460 & LP:1259490 mean juju-log is no where near as
2601
203
            # useful as we would like, so just shove a copy of the
2602
204
            # output to stdout for logging.
2603
205
            # log("> {}".format(line), DEBUG)
2604
206
            if not quiet:
2605
207
                print line
2606
208
            lines.append(line)
2607
209
        elif p.poll() is not None:
2608
210
            break
2609
211
2610
212
    p.wait()
2611
213
2612
214
    if p.returncode == 0:
2613
215
        return '\n'.join(lines)
2614
216
2615
217
    if p.returncode != 0 and exit_on_error:
2616
218
        log("ERROR: {}".format(p.returncode), ERROR)
2617
219
        sys.exit(p.returncode)
2618
220
2619
221
    raise subprocess.CalledProcessError(p.returncode, command,
2620
222
                                        '\n'.join(lines))
2621
223
2622
224
2623
225
def postgresql_is_running():
2624
226
    '''Return true if PostgreSQL is running.'''
2625
227
    for version, name, _, status in lsclusters(slice(4)):
2626
228
        if (version, name) == (pg_version(), hookenv.config('cluster_name')):
2627
229
            if 'online' in status.split(','):
2628
230
                log('PostgreSQL is running', DEBUG)
2629
231
                return True
2630
232
            else:
2631
233
                log('PostgreSQL is not running', DEBUG)
2632
234
                return False
2633
235
    assert False, 'Cluster {} {} not found'.format(
2634
236
        pg_version(), hookenv.config('cluster_name'))
2635
237
2636
238
2637
239
def postgresql_stop():
2638
240
    '''Shutdown PostgreSQL.'''
2639
241
    if postgresql_is_running():
2640
242
        run([
2641
243
            'pg_ctlcluster', '--force',
2642
244
            pg_version(), hookenv.config('cluster_name'), 'stop'])
2643
245
        log('PostgreSQL shut down')
2644
246
2645
247
2646
248
def postgresql_start():
2647
249
    '''Start PostgreSQL if it is not already running.'''
2648
250
    if not postgresql_is_running():
2649
251
        run([
2650
252
            'pg_ctlcluster', pg_version(),
2651
253
            hookenv.config('cluster_name'), 'start'])
2652
254
        log('PostgreSQL started')
2653
255
2654
256
2655
257
def postgresql_restart():
2656
258
    '''Restart PostgreSQL, or start it if it is not already running.'''
2657
259
    if postgresql_is_running():
2658
260
        with restart_lock(hookenv.local_unit(), True):
2659
261
            run([
2660
262
                'pg_ctlcluster', '--force',
2661
263
                pg_version(), hookenv.config('cluster_name'), 'restart'])
2662
264
            log('PostgreSQL restarted')
2663
265
    else:
2664
266
        postgresql_start()
2665
267
2666
268
    assert postgresql_is_running()
2667
269
2668
270
    # Store a copy of our known live configuration so
2669
271
    # postgresql_reload_or_restart() can make good choices.
2670
272
    if 'saved_config' in local_state:
2671
273
        local_state['live_config'] = local_state['saved_config']
2672
274
        local_state.save()
2673
275
2674
276
2675
277
def postgresql_reload():
2676
278
    '''Make PostgreSQL reload its configuration.'''
2677
279
    # reload returns a reliable exit status
2678
280
    if postgresql_is_running():
2679
281
        # I'm using the PostgreSQL function to avoid as much indirection
2680
282
        # as possible.
2681
283
        success = run_select_as_postgres('SELECT pg_reload_conf()')[1][0][0]
2682
284
        assert success, 'Failed to reload PostgreSQL configuration'
2683
285
        log('PostgreSQL configuration reloaded')
2684
286
    return postgresql_start()
2685
287
2686
288
2687
289
def requires_restart():
2688
290
    '''Check for configuration changes requiring a restart to take effect.'''
2689
291
    if not postgresql_is_running():
2690
292
        return True
2691
293
2692
294
    saved_config = local_state.get('saved_config', None)
2693
295
    if not saved_config:
2694
296
        log("No record of postgresql.conf state. Better restart.")
2695
297
        return True
2696
298
2697
299
    live_config = local_state.setdefault('live_config', {})
2698
300
2699
301
    # Pull in a list of PostgreSQL settings.
2700
302
    cur = db_cursor()
2701
303
    cur.execute("SELECT name, context FROM pg_settings")
2702
304
    restart = False
2703
305
    for name, context in cur.fetchall():
2704
306
        live_value = live_config.get(name, None)
2705
307
        new_value = saved_config.get(name, None)
2706
308
2707
309
        if new_value != live_value:
2708
310
            if live_config:
2709
311
                log("Changed {} from {!r} to {!r}".format(
2710
312
                    name, live_value, new_value), DEBUG)
2711
313
            if context == 'postmaster':
2712
314
                # A setting has changed that requires PostgreSQL to be
2713
315
                # restarted before it will take effect.
2714
316
                restart = True
2715
317
                log('{} changed from {} to {}. Restart required.'.format(
2716
318
                    name, live_value, new_value), DEBUG)
2717
319
    return restart
2718
320
2719
321
2720
322
def postgresql_reload_or_restart():
2721
323
    """Reload PostgreSQL configuration, restarting if necessary."""
2722
324
    if requires_restart():
2723
325
        log("Configuration change requires PostgreSQL restart", WARNING)
2724
326
        postgresql_restart()
2725
327
        assert not requires_restart(), "Configuration changes failed to apply"
2726
328
    else:
2727
329
        postgresql_reload()
2728
330
2729
331
    local_state['saved_config'] = local_state['live_config']
2730
332
    local_state.save()
2731
333
2732
334
2733
335
def get_service_port():
2734
336
    '''Return the port PostgreSQL is listening on.'''
2735
337
    for version, name, port in lsclusters(slice(3)):
2736
338
        if (version, name) == (pg_version(), hookenv.config('cluster_name')):
2737
339
            return int(port)
2738
340
2739
341
    assert False, 'No port found for {!r} {!r}'.format(
2740
342
        pg_version(), hookenv.config['cluster_name'])
2741
343
2742
344
2743
345
def lsclusters(s=slice(0, -1)):
2744
346
    for line in run('pg_lsclusters', quiet=True).splitlines()[1:]:
2745
347
        if line:
2746
348
            yield line.split()[s]
2747
349
2748
350
2749
351
def createcluster():
2750
352
    with switch_cwd('/tmp'):  # Ensure cwd is readable as the postgres user
2751
353
        create_cmd = [
2752
354
            "pg_createcluster",
2753
355
            "--locale", hookenv.config('locale'),
2754
356
            "-e", hookenv.config('encoding')]
2755
357
        if hookenv.config('listen_port'):
2756
358
            create_cmd.extend(["-p", str(hookenv.config('listen_port'))])
2757
359
        version = pg_version()
2758
360
        create_cmd.append(version)
2759
361
        create_cmd.append(hookenv.config('cluster_name'))
2760
362
2761
363
        # With 9.3+, we make an opinionated decision to always enable
2762
364
        # data checksums. This seems to be best practice. We could
2763
365
        # turn this into a configuration item if there is need. There
2764
366
        # is no way to enable this option on existing clusters.
2765
367
        if StrictVersion(version) >= StrictVersion('9.3'):
2766
368
            create_cmd.extend(['--', '--data-checksums'])
2767
369
2768
370
        run(create_cmd)
2769
371
        # Ensure SSL certificates exist, as we enable SSL by default.
2770
372
        create_ssl_cert(os.path.join(
2771
373
            postgresql_data_dir, pg_version(), hookenv.config('cluster_name')))
2772
374
2773
375
2774
376
def _get_system_ram():
2775
377
    """ Return the system ram in Megabytes """
2776
378
    import psutil
2777
379
    return psutil.phymem_usage()[0] / (1024 ** 2)
2778
380
2779
381
2780
382
def _get_page_size():
2781
383
    """ Return the operating system's configured PAGE_SIZE """
2782
384
    return int(run("getconf PAGE_SIZE"))   # frequently 4096
2783
385
2784
386
2785
387
def _run_sysctl(postgresql_sysctl):
2786
388
    """sysctl -p postgresql_sysctl, helper for easy test mocking."""
2787
389
    # Do not error out when this fails. It is not likely to work under LXC.
2788
390
    return run("sysctl -p {}".format(postgresql_sysctl), exit_on_error=False)
2789
391
2790
392
2791
393
def create_postgresql_config(config_file):
2792
394
    '''Create the postgresql.conf file'''
2793
395
    config_data = hookenv.config()
2794
396
    if not config_data.get('listen_port', None):
2795
397
        config_data['listen_port'] = get_service_port()
2796
398
    if config_data["performance_tuning"].lower() != "manual":
2797
399
        total_ram = _get_system_ram()
2798
400
        config_data["kernel_shmmax"] = (int(total_ram) * 1024 * 1024) + 1024
2799
401
        config_data["kernel_shmall"] = config_data["kernel_shmmax"]
2800
402
2801
403
    # XXX: This is very messy - should probably be a subordinate charm
2802
404
    lines = ["kernel.sem = 250 32000 100 1024\n"]
2803
405
    if config_data["kernel_shmall"] > 0:
2804
406
        # Convert config kernel_shmall (bytes) to pages
2805
407
        page_size = _get_page_size()
2806
408
        num_pages = config_data["kernel_shmall"] / page_size
2807
409
        if (config_data["kernel_shmall"] % page_size) > 0:
2808
410
            num_pages += 1
2809
411
        lines.append("kernel.shmall = %s\n" % num_pages)
2810
412
    if config_data["kernel_shmmax"] > 0:
2811
413
        lines.append("kernel.shmmax = %s\n" % config_data["kernel_shmmax"])
2812
414
    host.write_file(postgresql_sysctl, ''.join(lines), perms=0600)
2813
415
    _run_sysctl(postgresql_sysctl)
2814
416
2815
417
    # Our config file specifies a default wal_level that only works
2816
418
    # with PostgreSQL 9.4. Downgrade this for earlier versions of
2817
419
    # PostgreSQL. We have this default so more things Just Work.
2818
420
    if pg_version() < '9.4' and config_data['wal_level'] == 'logical':
2819
421
        config_data['wal_level'] = 'hot_standby'
2820
422
2821
423
    # If we are replicating, some settings may need to be overridden to
2822
424
    # certain minimum levels.
2823
425
    num_slaves = slave_count()
2824
426
    if num_slaves > 0:
2825
427
        log('{} hot standbys in peer relation.'.format(num_slaves))
2826
428
        log('Ensuring minimal replication settings')
2827
429
        config_data['hot_standby'] = True
2828
430
        if config_data['wal_level'] != 'logical':
2829
431
            config_data['wal_level'] = 'hot_standby'
2830
432
        config_data['wal_keep_segments'] = max(
2831
433
            config_data['wal_keep_segments'],
2832
434
            config_data['replicated_wal_keep_segments'])
2833
435
        # We need this set even if config_data['streaming_replication']
2834
436
        # is False, because the replication connection is still needed
2835
437
        # by pg_basebackup to build a hot standby.
2836
438
        config_data['max_wal_senders'] = max(
2837
439
            num_slaves, config_data['max_wal_senders'])
2838
440
2839
441
    # Log shipping to Swift using SwiftWAL. This could be for
2840
442
    # non-streaming replication, or for PITR.
2841
443
    if config_data.get('swiftwal_log_shipping', None):
2842
444
        config_data['archive_mode'] = True
2843
445
        if config_data['wal_level'] != 'logical':
2844
446
            config_data['wal_level'] = 'hot_standby'
2845
447
        config_data['archive_command'] = swiftwal_archive_command()
2846
448
2847
449
    if config_data.get('wal_e_storage_uri', None):
2848
450
        config_data['archive_mode'] = True
2849
451
        if config_data['wal_level'] != 'logical':
2850
452
            config_data['wal_level'] = 'hot_standby'
2851
453
        config_data['archive_command'] = wal_e_archive_command()
2852
454
2853
455
    # Send config data to the template
2854
456
    # Return it as pg_config
2855
457
    charm_dir = hookenv.charm_dir()
2856
458
    template_file = "{}/templates/postgresql.conf.tmpl".format(charm_dir)
2857
459
    if not config_data.get('version', None):
2858
460
        config_data['version'] = pg_version()
2859
461
    pg_config = Template(
2860
462
        open(template_file).read()).render(config_data)
2861
463
    host.write_file(
2862
464
        config_file, pg_config,
2863
465
        owner="postgres", group="postgres", perms=0600)
2864
466
2865
467
    # Create or update files included from postgresql.conf.
2866
468
    configure_log_destination(os.path.dirname(config_file))
2867
469
2868
470
    tune_postgresql_config(config_file)
2869
471
2870
472
    local_state['saved_config'] = dict(config_data)
2871
473
    local_state.save()
2872
474
2873
475
2874
476
def tune_postgresql_config(config_file):
2875
477
    tune_workload = hookenv.config('performance_tuning').lower()
2876
478
    if tune_workload == "manual":
2877
479
        return  # Requested no autotuning.
2878
480
2879
481
    if tune_workload == "auto":
2880
482
        tune_workload = "mixed"  # Pre-pgtune backwards compatibility.
2881
483
2882
484
    with NamedTemporaryFile() as tmp_config:
2883
485
        run(['pgtune', '-i', config_file, '-o', tmp_config.name,
2884
486
             '-T', tune_workload,
2885
487
             '-c', str(hookenv.config('max_connections'))])
2886
488
        host.write_file(
2887
489
            config_file, open(tmp_config.name, 'r').read(),
2888
490
            owner='postgres', group='postgres', perms=0o600)
2889
491
2890
492
2891
493
def create_postgresql_ident(output_file):
2892
494
    '''Create the pg_ident.conf file.'''
2893
495
    ident_data = {}
2894
496
    charm_dir = hookenv.charm_dir()
2895
497
    template_file = "{}/templates/pg_ident.conf.tmpl".format(charm_dir)
2896
498
    pg_ident_template = Template(open(template_file).read())
2897
499
    host.write_file(
2898
500
        output_file, pg_ident_template.render(ident_data),
2899
501
        owner="postgres", group="postgres", perms=0600)
2900
502
2901
503
2902
504
def generate_postgresql_hba(
2903
505
        output_file, user=None, schema_user=None, database=None):
2904
506
    '''Create the pg_hba.conf file.'''
2905
507
2906
508
    # Per Bug #1117542, when generating the postgresql_hba file we
2907
509
    # need to cope with private-address being either an IP address
2908
510
    # or a hostname.
2909
511
    def munge_address(addr):
2910
512
        # http://stackoverflow.com/q/319279/196832
2911
513
        try:
2912
514
            socket.inet_aton(addr)
2913
515
            return "%s/32" % addr
2914
516
        except socket.error:
2915
517
            # It's not an IP address.
2916
518
            # XXX workaround for MAAS bug
2917
519
            # https://bugs.launchpad.net/maas/+bug/1250435
2918
520
            # If it's a CNAME, use the A record it points to.
2919
521
            # If it fails for some reason, return the original address
2920
522
            try:
2921
523
                output = run("dig +short -t CNAME %s" % addr, True).strip()
2922
524
            except:
2923
525
                return addr
2924
526
            if len(output) != 0:
2925
527
                return output.rstrip(".")  # trailing dot
2926
528
            return addr
2927
529
2928
530
    config_data = hookenv.config()
2929
531
    allowed_units = set()
2930
532
    relation_data = []
2931
533
    relids = hookenv.relation_ids('db') + hookenv.relation_ids('db-admin')
2932
534
    for relid in relids:
2933
535
        local_relation = hookenv.relation_get(
2934
536
            unit=hookenv.local_unit(), rid=relid)
2935
537
2936
538
        # We might see relations that have not yet been setup enough.
2937
539
        # At a minimum, the relation-joined hook needs to have been run
2938
540
        # on the server so we have information about the usernames and
2939
541
        # databases to allow in.
2940
542
        if 'user' not in local_relation:
2941
543
            continue
2942
544
2943
545
        for unit in hookenv.related_units(relid):
2944
546
            relation = hookenv.relation_get(unit=unit, rid=relid)
2945
547
2946
548
            relation['relation-id'] = relid
2947
549
            relation['unit'] = unit
2948
550
2949
551
            if relid.startswith('db-admin:'):
2950
552
                relation['user'] = 'all'
2951
553
                relation['database'] = 'all'
2952
554
            elif relid.startswith('db:'):
2953
555
                relation['user'] = local_relation.get('user', user)
2954
556
                relation['schema_user'] = local_relation.get('schema_user',
2955
557
                                                             schema_user)
2956
558
                relation['database'] = local_relation.get('database', database)
2957
559
2958
560
                if ((relation['user'] is None
2959
561
                     or relation['schema_user'] is None
2960
562
                     or relation['database'] is None)):
2961
563
                    # Missing info in relation for this unit, so skip it.
2962
564
                    continue
2963
565
            else:
2964
566
                raise RuntimeError(
2965
567
                    'Unknown relation type {}'.format(repr(relid)))
2966
568
2967
569
            allowed_units.add(unit)
2968
570
            relation['private-address'] = munge_address(
2969
571
                relation['private-address'])
2970
572
            relation_data.append(relation)
2971
573
2972
574
    log(str(relation_data), INFO)
2973
575
2974
576
    # Replication connections. Each unit needs to be able to connect to
2975
577
    # every other unit's postgres database and the magic replication
2976
578
    # database. It also needs to be able to connect to its own postgres
2977
579
    # database.
2978
580
    relids = hookenv.relation_ids('replication')
2979
581
    for relid in relids:
2980
582
        for unit in hookenv.related_units(relid):
2981
583
            relation = hookenv.relation_get(unit=unit, rid=relid)
2982
584
            remote_addr = munge_address(relation['private-address'])
2983
585
            remote_replication = {'database': 'replication',
2984
586
                                  'user': 'juju_replication',
2985
587
                                  'private-address': remote_addr,
2986
588
                                  'relation-id': relid,
2987
589
                                  'unit': unit,
2988
590
                                  }
2989
591
            relation_data.append(remote_replication)
2990
592
            remote_pgdb = {'database': 'postgres',
2991
593
                           'user': 'juju_replication',
2992
594
                           'private-address': remote_addr,
2993
595
                           'relation-id': relid,
2994
596
                           'unit': unit,
2995
597
                           }
2996
598
            relation_data.append(remote_pgdb)
2997
599
2998
600
    # More replication connections, this time from external services.
2999
601
    # Somewhat different than before, as we do not share credentials
3000
602
    # and services using 9.4's logical replication feature will want
3001
603
    # to specify the database name.
3002
604
    relids = hookenv.relation_ids('master')
3003
605
    for relid in relids:
3004
606
        for unit in hookenv.related_units(relid):
3005
607
            remote_rel = hookenv.relation_get(unit=unit, rid=relid)
3006
608
            local_rel = hookenv.relation_get(unit=hookenv.local_unit(),
3007
609
                                             rid=relid)
3008
610
            remote_addr = munge_address(remote_rel['private-address'])
3009
611
            remote_replication = {'database': 'replication',
3010
612
                                  'user': local_rel['user'],
3011
613
                                  'private-address': remote_addr,
3012
614
                                  'relation-id': relid,
3013
615
                                  'unit': unit,
3014
616
                                  }
3015
617
            relation_data.append(remote_replication)
3016
618
            if 'database' in local_rel:
3017
619
                remote_pgdb = {'database': local_rel['database'],
3018
620
                            'user': local_rel['user'],
3019
621
                            'private-address': remote_addr,
3020
622
                            'relation-id': relid,
3021
623
                            'unit': unit,
3022
624
                            }
3023
625
                relation_data.append(remote_pgdb)
3024
626
3025
627
    # Local hooks also need permissions to setup replication.
3026
628
    for relid in hookenv.relation_ids('replication'):
3027
629
        local_replication = {'database': 'postgres',
3028
630
                             'user': 'juju_replication',
3029
631
                             'private-address': munge_address(
3030
632
                                 hookenv.unit_private_ip()),
3031
633
                             'relation-id': relid,
3032
634
                             'unit': hookenv.local_unit(),
3033
635
                             }
3034
636
        relation_data.append(local_replication)
3035
637
3036
638
    # Admin IP addresses for people using tools like pgAdminIII in a local JuJu
3037
639
    # We accept a single IP or a comma separated list of IPs, these are added
3038
640
    # to the list of relations that end up in pg_hba.conf thus granting
3039
641
    # the IP addresses socket access to the postgres server.
3040
642
    if config_data["admin_addresses"] != '':
3041
643
        if "," in config_data["admin_addresses"]:
3042
644
            admin_ip_list = config_data["admin_addresses"].split(",")
3043
645
        else:
3044
646
            admin_ip_list = [config_data["admin_addresses"]]
3045
647
3046
648
        for admin_ip in admin_ip_list:
3047
649
            admin_host = {
3048
650
                'database': 'all',
3049
651
                'user': 'all',
3050
652
                'private-address': munge_address(admin_ip)}
3051
653
            relation_data.append(admin_host)
3052
654
3053
655
    extra_pg_auth = [pg_auth.strip() for pg_auth in
3054
656
                     config_data["extra_pg_auth"].split(',') if pg_auth]
3055
657
3056
658
    template_file = "{}/templates/pg_hba.conf.tmpl".format(hookenv.charm_dir())
3057
659
    pg_hba_template = Template(open(template_file).read())
3058
660
    pg_hba_rendered = pg_hba_template.render(extra_pg_auth=extra_pg_auth,
3059
661
                                             access_list=relation_data)
3060
662
    host.write_file(
3061
663
        output_file, pg_hba_rendered,
3062
664
        owner="postgres", group="postgres", perms=0600)
3063
665
    postgresql_reload()
3064
666
3065
667
    # Loop through all db relations, making sure each knows what are the list
3066
668
    # of allowed hosts that were just added. lp:#1187508
3067
669
    # We sort the list to ensure stability, probably unnecessarily.
3068
670
    for relid in hookenv.relation_ids('db') + hookenv.relation_ids('db-admin'):
3069
671
        hookenv.relation_set(
3070
672
            relid, {"allowed-units": " ".join(unit_sorted(allowed_units))})
3071
673
3072
674
3073
675
def install_postgresql_crontab(output_file):
3074
676
    '''Create the postgres user's crontab'''
3075
677
    config_data = hookenv.config()
3076
678
    config_data['scripts_dir'] = postgresql_scripts_dir
3077
679
    config_data['swiftwal_backup_command'] = swiftwal_backup_command()
3078
680
    config_data['swiftwal_prune_command'] = swiftwal_prune_command()
3079
681
    config_data['wal_e_backup_command'] = wal_e_backup_command()
3080
682
    config_data['wal_e_prune_command'] = wal_e_prune_command()
3081
683
3082
684
    charm_dir = hookenv.charm_dir()
3083
685
    template_file = "{}/templates/postgres.cron.tmpl".format(charm_dir)
3084
686
    crontab_template = Template(
3085
687
        open(template_file).read()).render(config_data)
3086
688
    host.write_file(output_file, crontab_template, perms=0600)
3087
689
3088
690
3089
691
def create_recovery_conf(master_host, master_port, restart_on_change=False):
3090
692
    if hookenv.config('manual_replication'):
3091
693
        log('manual_replication; should not be here', CRITICAL)
3092
694
        raise RuntimeError('manual_replication; should not be here')
3093
695
3094
696
    version = pg_version()
3095
697
    cluster_name = hookenv.config('cluster_name')
3096
698
    postgresql_cluster_dir = os.path.join(
3097
699
        postgresql_data_dir, version, cluster_name)
3098
700
3099
701
    recovery_conf_path = os.path.join(postgresql_cluster_dir, 'recovery.conf')
3100
702
    if os.path.exists(recovery_conf_path):
3101
703
        old_recovery_conf = open(recovery_conf_path, 'r').read()
3102
704
    else:
3103
705
        old_recovery_conf = None
3104
706
3105
707
    charm_dir = hookenv.charm_dir()
3106
708
    streaming_replication = hookenv.config('streaming_replication')
3107
709
    template_file = "{}/templates/recovery.conf.tmpl".format(charm_dir)
3108
710
    params = dict(
3109
711
        host=master_host, port=master_port,
3110
712
        password=local_state['replication_password'],
3111
713
        streaming_replication=streaming_replication)
3112
714
    if hookenv.config('wal_e_storage_uri'):
3113
715
        params['restore_command'] = wal_e_restore_command()
3114
716
    elif hookenv.config('swiftwal_log_shipping'):
3115
717
        params['restore_command'] = swiftwal_restore_command()
3116
718
    recovery_conf = Template(open(template_file).read()).render(params)
3117
719
    log(recovery_conf, DEBUG)
3118
720
    host.write_file(
3119
721
        os.path.join(postgresql_cluster_dir, 'recovery.conf'),
3120
722
        recovery_conf, owner="postgres", group="postgres", perms=0o600)
3121
723
3122
724
    if restart_on_change and old_recovery_conf != recovery_conf:
3123
725
        log("recovery.conf updated. Restarting to take effect.")
3124
726
        postgresql_restart()
3125
727
3126
728
3127
729
def ensure_swift_container(container):
3128
730
    from swiftclient import client as swiftclient
3129
731
    config = hookenv.config()
3130
732
    con = swiftclient.Connection(
3131
733
        authurl=config.get('os_auth_url', ''),
3132
734
        user=config.get('os_username', ''),
3133
735
        key=config.get('os_password', ''),
3134
736
        tenant_name=config.get('os_tenant_name', ''),
3135
737
        auth_version='2.0',
3136
738
        retries=0)
3137
739
    try:
3138
740
        con.head_container(container)
3139
741
    except swiftclient.ClientException:
3140
742
        con.put_container(container)
3141
743
3142
744
3143
745
def wal_e_envdir():
3144
746
    '''The envdir(1) environment location used to drive WAL-E.'''
3145
747
    return os.path.join(_get_postgresql_config_dir(), 'wal-e.env')
3146
748
3147
749
3148
750
def create_wal_e_envdir():
3149
751
    '''Regenerate the envdir(1) environment used to drive WAL-E.'''
3150
752
    config = hookenv.config()
3151
753
    env = dict(
3152
754
        SWIFT_AUTHURL=config.get('os_auth_url', ''),
3153
755
        SWIFT_TENANT=config.get('os_tenant_name', ''),
3154
756
        SWIFT_USER=config.get('os_username', ''),
3155
757
        SWIFT_PASSWORD=config.get('os_password', ''),
3156
758
        AWS_ACCESS_KEY_ID=config.get('aws_access_key_id', ''),
3157
759
        AWS_SECRET_ACCESS_KEY=config.get('aws_secret_access_key', ''),
3158
760
        WABS_ACCOUNT_NAME=config.get('wabs_account_name', ''),
3159
761
        WABS_ACCESS_KEY=config.get('wabs_access_key', ''),
3160
762
        WALE_SWIFT_PREFIX='',
3161
763
        WALE_S3_PREFIX='',
3162
764
        WALE_WABS_PREFIX='')
3163
765
3164
766
    uri = config.get('wal_e_storage_uri', None)
3165
767
3166
768
    if uri:
3167
769
        # Until juju provides us with proper leader election, we have a
3168
770
        # state where units do not know if they are alone or part of a
3169
771
        # cluster. To avoid units stomping on each others WAL and backups,
3170
772
        # we use a unique container for each unit when they are not
3171
773
        # part of the peer relation. Once they are part of the peer
3172
774
        # relation, they share a container.
3173
775
        if local_state.get('state', 'standalone') == 'standalone':
3174
776
            if not uri.endswith('/'):
3175
777
                uri += '/'
3176
778
            uri += hookenv.local_unit().split('/')[-1]
3177
779
3178
780
        parsed_uri = urlparse.urlparse(uri)
3179
781
3180
782
        required_env = []
3181
783
        if parsed_uri.scheme == 'swift':
3182
784
            env['WALE_SWIFT_PREFIX'] = uri
3183
785
            required_env = ['SWIFT_AUTHURL', 'SWIFT_TENANT',
3184
786
                            'SWIFT_USER', 'SWIFT_PASSWORD']
3185
787
            ensure_swift_container(parsed_uri.netloc)
3186
788
        elif parsed_uri.scheme == 's3':
3187
789
            env['WALE_S3_PREFIX'] = uri
3188
790
            required_env = ['AWS_ACCESS_KEY_ID', 'AWS_SECRET_ACCESS_KEY']
3189
791
        elif parsed_uri.scheme == 'wabs':
3190
792
            env['WALE_WABS_PREFIX'] = uri
3191
793
            required_env = ['WABS_ACCOUNT_NAME', 'WABS_ACCESS_KEY']
3192
794
        else:
3193
795
            log('Invalid wal_e_storage_uri {}'.format(uri), ERROR)
3194
796
3195
797
        for env_key in required_env:
3196
798
            if not env[env_key].strip():
3197
799
                log('Missing {}'.format(env_key), ERROR)
3198
800
3199
801
    # Regenerate the envdir(1) environment recommended by WAL-E.
3200
802
    # All possible keys are rewritten to ensure we remove old secrets.
3201
803
    host.mkdir(wal_e_envdir(), 'postgres', 'postgres', 0o750)
3202
804
    for k, v in env.items():
3203
805
        host.write_file(
3204
806
            os.path.join(wal_e_envdir(), k), v.strip(),
3205
807
            'postgres', 'postgres', 0o640)
3206
808
3207
809
3208
810
def wal_e_archive_command():
3209
811
    '''Return the archive_command needed in postgresql.conf.'''
3210
812
    return 'envdir {} wal-e wal-push %p'.format(wal_e_envdir())
3211
813
3212
814
3213
815
def wal_e_restore_command():
3214
816
    return 'envdir {} wal-e wal-fetch "%f" "%p"'.format(wal_e_envdir())
3215
817
3216
818
3217
819
def wal_e_backup_command():
3218
820
    postgresql_cluster_dir = os.path.join(
3219
821
        postgresql_data_dir, pg_version(), hookenv.config('cluster_name'))
3220
822
    return 'envdir {} wal-e backup-push {}'.format(
3221
823
        wal_e_envdir(), postgresql_cluster_dir)
3222
824
3223
825
3224
826
def wal_e_prune_command():
3225
827
    return 'envdir {} wal-e delete --confirm retain {}'.format(
3226
828
        wal_e_envdir(), hookenv.config('wal_e_backup_retention'))
3227
829
3228
830
3229
831
def swiftwal_config():
3230
832
    postgresql_config_dir = _get_postgresql_config_dir()
3231
833
    return os.path.join(postgresql_config_dir, "swiftwal.conf")
3232
834
3233
835
3234
836
def create_swiftwal_config():
3235
837
    if not hookenv.config('swiftwal_container_prefix'):
3236
838
        return
3237
839
3238
840
    # Until juju provides us with proper leader election, we have a
3239
841
    # state where units do not know if they are alone or part of a
3240
842
    # cluster. To avoid units stomping on each others WAL and backups,
3241
843
    # we use a unique Swift container for each unit when they are not
3242
844
    # part of the peer relation. Once they are part of the peer
3243
845
    # relation, they share a container.
3244
846
    if local_state.get('state', 'standalone') == 'standalone':
3245
847
        container = '{}_{}'.format(hookenv.config('swiftwal_container_prefix'),
3246
848
                                   hookenv.local_unit().split('/')[-1])
3247
849
    else:
3248
850
        container = hookenv.config('swiftwal_container_prefix')
3249
851
3250
852
    template_file = os.path.join(hookenv.charm_dir(),
3251
853
                                 'templates', 'swiftwal.conf.tmpl')
3252
854
    params = dict(hookenv.config())
3253
855
    params['swiftwal_container'] = container
3254
856
    content = Template(open(template_file).read()).render(params)
3255
857
    host.write_file(swiftwal_config(), content, "postgres", "postgres", 0o600)
3256
858
3257
859
3258
860
def swiftwal_archive_command():
3259
861
    '''Return the archive_command needed in postgresql.conf'''
3260
862
    return 'swiftwal --config={} archive-wal %p'.format(swiftwal_config())
3261
863
3262
864
3263
865
def swiftwal_restore_command():
3264
866
    '''Return the restore_command needed in recovery.conf'''
3265
867
    return 'swiftwal --config={} restore-wal %f %p'.format(swiftwal_config())
3266
868
3267
869
3268
870
def swiftwal_backup_command():
3269
871
    '''Return the backup command needed in postgres' crontab'''
3270
872
    cmd = 'swiftwal --config={} backup --port={}'.format(swiftwal_config(),
3271
873
                                                         get_service_port())
3272
874
    if not hookenv.config('swiftwal_log_shipping'):
3273
875
        cmd += ' --xlog'
3274
876
    return cmd
3275
877
3276
878
3277
879
def swiftwal_prune_command():
3278
880
    '''Return the backup & wal pruning command needed in postgres' crontab'''
3279
881
    config = hookenv.config()
3280
882
    args = '--keep-backups={} --keep-wals={}'.format(
3281
883
        config.get('swiftwal_backup_retention', 0),
3282
884
        max(config['wal_keep_segments'],
3283
885
            config['replicated_wal_keep_segments']))
3284
886
    return 'swiftwal --config={} prune {}'.format(swiftwal_config(), args)
3285
887
3286
888
3287
889
def update_service_port():
3288
890
    old_port = local_state.get('listen_port', None)
3289
891
    new_port = get_service_port()
3290
892
    if old_port != new_port:
3291
893
        if new_port:
3292
894
            hookenv.open_port(new_port)
3293
895
        if old_port:
3294
896
            hookenv.close_port(old_port)
3295
897
        local_state['listen_port'] = new_port
3296
898
        local_state.save()
3297
899
3298
900
3299
901
def create_ssl_cert(cluster_dir):
3300
902
    # PostgreSQL expects SSL certificates in the datadir.
3301
903
    server_crt = os.path.join(cluster_dir, 'server.crt')
3302
904
    server_key = os.path.join(cluster_dir, 'server.key')
3303
905
    if not os.path.exists(server_crt):
3304
906
        os.symlink('/etc/ssl/certs/ssl-cert-snakeoil.pem',
3305
907
                   server_crt)
3306
908
    if not os.path.exists(server_key):
3307
909
        os.symlink('/etc/ssl/private/ssl-cert-snakeoil.key',
3308
910
                   server_key)
3309
911
3310
912
3311
913
def set_password(user, password):
3312
914
    if not os.path.isdir("passwords"):
3313
915
        os.makedirs("passwords")
3314
916
    old_umask = os.umask(0o077)
3315
917
    try:
3316
918
        with open("passwords/%s" % user, "w") as pwfile:
3317
919
            pwfile.write(password)
3318
920
    finally:
3319
921
        os.umask(old_umask)
3320
922
3321
923
3322
924
def get_password(user):
3323
925
    try:
3324
926
        with open("passwords/%s" % user) as pwfile:
3325
927
            return pwfile.read()
3326
928
    except IOError:
3327
929
        return None
3328
930
3329
931
3330
932
def db_cursor(autocommit=False, db='postgres', user='postgres',
3331
933
              host=None, port=None, timeout=30):
3332
934
    if port is None:
3333
935
        port = get_service_port()
3334
936
    if host:
3335
937
        conn_str = "dbname={} host={} port={} user={}".format(
3336
938
            db, host, port, user)
3337
939
    else:
3338
940
        conn_str = "dbname={} port={} user={}".format(db, port, user)
3339
941
    # There are often race conditions in opening database connections,
3340
942
    # such as a reload having just happened to change pg_hba.conf
3341
943
    # settings or a hot standby being restarted and needing to catch up
3342
944
    # with its master. To protect our automation against these sorts of
3343
945
    # race conditions, by default we always retry failed connections
3344
946
    # until a timeout is reached.
3345
947
    start = time.time()
3346
948
    while True:
3347
949
        try:
3348
950
            with pgpass():
3349
951
                conn = psycopg2.connect(conn_str)
3350
952
            break
3351
953
        except psycopg2.Error, x:
3352
954
            if time.time() > start + timeout:
3353
955
                log("Database connection {!r} failed".format(
3354
956
                    conn_str), CRITICAL)
3355
957
                raise
3356
958
            log("Unable to open connection ({}), retrying.".format(x))
3357
959
            time.sleep(1)
3358
960
    conn.autocommit = autocommit
3359
961
    return conn.cursor()
3360
962
3361
963
3362
964
def run_sql_as_postgres(sql, *parameters):
3363
965
    cur = db_cursor(autocommit=True)
3364
966
    try:
3365
967
        cur.execute(sql, parameters)
3366
968
        return cur.statusmessage
3367
969
    except psycopg2.ProgrammingError:
3368
970
        log(sql, CRITICAL)
3369
971
        raise
3370
972
3371
973
3372
974
def run_select_as_postgres(sql, *parameters):
3373
975
    cur = db_cursor()
3374
976
    cur.execute(sql, parameters)
3375
977
    # NB. Need to suck in the results before the rowcount is valid.
3376
978
    results = cur.fetchall()
3377
979
    return (cur.rowcount, results)
3378
980
3379
981
3380
982
def validate_config():
3381
983
    """
3382
984
    Sanity check charm configuration, aborting the script if
3383
985
    we have bogus config values or config changes the charm does not yet
3384
986
    (or cannot) support.
3385
987
    """
3386
988
    valid = True
3387
989
    config_data = hookenv.config()
3388
990
3389
991
    version = config_data.get('version', None)
3390
992
    if version:
3391
993
        if version not in ('9.1', '9.2', '9.3', '9.4'):
3392
994
            valid = False
3393
995
            log("Invalid or unsupported version {!r} requested".format(
3394
996
                version), CRITICAL)
3395
997
3396
998
    if config_data['cluster_name'] != 'main':
3397
999
        valid = False
3398
1000
        log("Cluster names other than 'main' do not work per LP:1271835",
3399
1001
            CRITICAL)
3400
1002
3401
1003
    if config_data['listen_ip'] != '*':
3402
1004
        valid = False
3403
1005
        log("listen_ip values other than '*' do not work per LP:1271837",
3404
1006
            CRITICAL)
3405
1007
3406
1008
    valid_workloads = [
3407
1009
        'dw', 'oltp', 'web', 'mixed', 'desktop', 'manual', 'auto']
3408
1010
    requested_workload = config_data['performance_tuning'].lower()
3409
1011
    if requested_workload not in valid_workloads:
3410
1012
        valid = False
3411
1013
        log('Invalid performance_tuning setting {}'.format(requested_workload),
3412
1014
            CRITICAL)
3413
1015
    if requested_workload == 'auto':
3414
1016
        log("'auto' performance_tuning deprecated. Using 'mixed' tuning",
3415
1017
            WARNING)
3416
1018
3417
1019
    unchangeable_config = [
3418
1020
        'locale', 'encoding', 'version', 'cluster_name', 'pgdg']
3419
1021
3420
1022
    for name in unchangeable_config:
3421
1023
        if config_data._prev_dict is not None and config_data.changed(name):
3422
1024
            valid = False
3423
1025
            log("Cannot change {!r} setting after install.".format(name))
3424
1026
        local_state[name] = config_data.get(name, None)
3425
1027
    local_state.save()
3426
1028
3427
1029
    package_status = config_data['package_status']
3428
1030
    if package_status not in ['install', 'hold']:
3429
1031
        valid = False
3430
1032
        log("package_status must be 'install' or 'hold' not '{}'"
3431
1033
            "".format(package_status), CRITICAL)
3432
1034
3433
1035
    if not valid:
3434
1036
        sys.exit(99)
3435
1037
3436
1038
3437
1039
def ensure_package_status(package, status):
3438
1040
    selections = ''.join(['{} {}\n'.format(package, status)])
3439
1041
    dpkg = subprocess.Popen(
3440
1042
        ['dpkg', '--set-selections'], stdin=subprocess.PIPE)
3441
1043
    dpkg.communicate(input=selections)
3442
1044
3443
1045
3444
1046
# -----------------------------------------------------------------------------
3445
1047
# Core logic for permanent storage changes:
3446
1048
# NOTE the only 2 "True" return points:
3447
1049
#   1) symlink already pointing to existing storage (no-op)
3448
1050
#   2) new storage properly initialized:
3449
1051
#     - if fresh new storage dir: rsync existing data
3450
1052
#     - manipulate /var/lib/postgresql/VERSION/CLUSTER symlink
3451
1053
# -----------------------------------------------------------------------------
3452
1054
def config_changed_volume_apply(mount_point):
3453
1055
    version = pg_version()
3454
1056
    cluster_name = hookenv.config('cluster_name')
3455
1057
    data_directory_path = os.path.join(
3456
1058
        postgresql_data_dir, version, cluster_name)
3457
1059
3458
1060
    assert(data_directory_path)
3459
1061
3460
1062
    if not os.path.exists(data_directory_path):
3461
1063
        log(
3462
1064
            "postgresql data dir {} not found, "
3463
1065
            "not applying changes.".format(data_directory_path),
3464
1066
            CRITICAL)
3465
1067
        return False
3466
1068
3467
1069
    new_pg_dir = os.path.join(mount_point, "postgresql")
3468
1070
    new_pg_version_cluster_dir = os.path.join(
3469
1071
        new_pg_dir, version, cluster_name)
3470
1072
    if not mount_point:
3471
1073
        log(
3472
1074
            "invalid mount point = {}, "
3473
1075
            "not applying changes.".format(mount_point), ERROR)
3474
1076
        return False
3475
1077
3476
1078
    if ((os.path.islink(data_directory_path) and
3477
1079
         os.readlink(data_directory_path) == new_pg_version_cluster_dir and
3478
1080
         os.path.isdir(new_pg_version_cluster_dir))):
3479
1081
        log(
3480
1082
            "postgresql data dir '{}' already points "
3481
1083
            "to {}, skipping storage changes.".format(
3482
1084
                data_directory_path, new_pg_version_cluster_dir))
3483
1085
        log(
3484
1086
            "existing-symlink: to fix/avoid UID changes from "
3485
1087
            "previous units, doing: "
3486
1088
            "chown -R postgres:postgres {}".format(new_pg_dir))
3487
1089
        run("chown -R postgres:postgres %s" % new_pg_dir)
3488
1090
        return True
3489
1091
3490
1092
    # Create a directory structure below "new" mount_point as
3491
1093
    #   external_volume_mount/postgresql/9.1/main
3492
1094
    for new_dir in [new_pg_dir,
3493
1095
                    os.path.join(new_pg_dir, version),
3494
1096
                    new_pg_version_cluster_dir]:
3495
1097
        if not os.path.isdir(new_dir):
3496
1098
            log("mkdir %s".format(new_dir))
3497
1099
            host.mkdir(new_dir, owner="postgres", perms=0o700)
3498
1100
    # Carefully build this symlink, e.g.:
3499
1101
    # /var/lib/postgresql/9.1/main ->
3500
1102
    # external_volume_mount/postgresql/9.1/main
3501
1103
    # but keep previous "main/"  directory, by renaming it to
3502
1104
    # main-$TIMESTAMP
3503
1105
    if not postgresql_stop() and postgresql_is_running():
3504
1106
        log("postgresql_stop() failed - can't migrate data.", ERROR)
3505
1107
        return False
3506
1108
    if not os.path.exists(os.path.join(
3507
1109
            new_pg_version_cluster_dir, "PG_VERSION")):
3508
1110
        log("migrating PG data {}/ -> {}/".format(
3509
1111
            data_directory_path, new_pg_version_cluster_dir), WARNING)
3510
1112
        # void copying PID file to perm storage (shouldn't be any...)
3511
1113
        command = "rsync -a --exclude postmaster.pid {}/ {}/".format(
3512
1114
            data_directory_path, new_pg_version_cluster_dir)
3513
1115
        log("run: {}".format(command))
3514
1116
        run(command)
3515
1117
    try:
3516
1118
        os.rename(data_directory_path, "{}-{}".format(
3517
1119
            data_directory_path, int(time.time())))
3518
1120
        log("NOTICE: symlinking {} -> {}".format(
3519
1121
            new_pg_version_cluster_dir, data_directory_path))
3520
1122
        os.symlink(new_pg_version_cluster_dir, data_directory_path)
3521
1123
        run("chown -h postgres:postgres {}".format(data_directory_path))
3522
1124
        log(
3523
1125
            "after-symlink: to fix/avoid UID changes from "
3524
1126
            "previous units, doing: "
3525
1127
            "chown -R postgres:postgres {}".format(new_pg_dir))
3526
1128
        run("chown -R postgres:postgres {}".format(new_pg_dir))
3527
1129
        return True
3528
1130
    except OSError:
3529
1131
        log("failed to symlink {} -> {}".format(
3530
1132
            data_directory_path, mount_point), CRITICAL)
3531
1133
        return False
3532
1134
3533
1135
3534
1136
def reset_manual_replication_state():
3535
1137
    '''In manual replication mode, the state of the local database cluster
3536
1138
    is outside of Juju's control. We need to detect and update the charm
3537
1139
    state to match reality.
3538
1140
    '''
3539
1141
    if hookenv.config('manual_replication'):
3540
1142
        if os.path.exists('recovery.conf'):
3541
1143
            local_state['state'] = 'hot standby'
3542
1144
        elif slave_count():
3543
1145
            local_state['state'] = 'master'
3544
1146
        else:
3545
1147
            local_state['state'] = 'standalone'
3546
1148
        local_state.publish()
3547
1149
3548
1150
3549
1151
@hooks.hook()
3550
1152
def config_changed(force_restart=False, mount_point=None):
3551
1153
    validate_config()
3552
1154
    config_data = hookenv.config()
3553
1155
    update_repos_and_packages()
3554
1156
3555
1157
    if mount_point is not None:
3556
1158
        # config_changed_volume_apply will stop the service if it finds
3557
1159
        # it necessary, ie: new volume setup
3558
1160
        if config_changed_volume_apply(mount_point=mount_point):
3559
1161
            postgresql_autostart(True)
3560
1162
        else:
3561
1163
            postgresql_autostart(False)
3562
1164
            postgresql_stop()
3563
1165
            mounts = volume_get_all_mounted()
3564
1166
            if mounts:
3565
1167
                log("current mounted volumes: {}".format(mounts))
3566
1168
            log(
3567
1169
                "Disabled and stopped postgresql service "
3568
1170
                "(config_changed_volume_apply failure)", ERROR)
3569
1171
            sys.exit(1)
3570
1172
3571
1173
    reset_manual_replication_state()
3572
1174
3573
1175
    postgresql_config_dir = _get_postgresql_config_dir(config_data)
3574
1176
    postgresql_config = os.path.join(postgresql_config_dir, "postgresql.conf")
3575
1177
    postgresql_hba = os.path.join(postgresql_config_dir, "pg_hba.conf")
3576
1178
    postgresql_ident = os.path.join(postgresql_config_dir, "pg_ident.conf")
3577
1179
3578
1180
    create_postgresql_config(postgresql_config)
3579
1181
    create_postgresql_ident(postgresql_ident)  # Do this before pg_hba.conf.
3580
1182
    generate_postgresql_hba(postgresql_hba)
3581
1183
    create_ssl_cert(os.path.join(
3582
1184
        postgresql_data_dir, pg_version(), config_data['cluster_name']))
3583
1185
    create_swiftwal_config()
3584
1186
    create_wal_e_envdir()
3585
1187
    update_service_port()
3586
1188
    update_nrpe_checks()
3587
1189
    write_metrics_cronjob('/usr/local/bin/postgres_to_statsd.py',
3588
1190
                          '/etc/cron.d/postgres_metrics')
3589
1191
3590
1192
    # If an external mountpoint has caused an old, existing DB to be
3591
1193
    # mounted, we need to ensure that all the users, databases, roles
3592
1194
    # etc. exist with known passwords.
3593
1195
    if local_state['state'] in ('standalone', 'master'):
3594
1196
        client_relids = (
3595
1197
            hookenv.relation_ids('db') + hookenv.relation_ids('db-admin'))
3596
1198
        for relid in client_relids:
3597
1199
            rel = hookenv.relation_get(rid=relid, unit=hookenv.local_unit())
3598
1200
            client_rel = None
3599
1201
            for unit in hookenv.related_units(relid):
3600
1202
                client_rel = hookenv.relation_get(unit=unit, rid=relid)
3601
1203
            if not client_rel:
3602
1204
                continue  # No client units - in between departed and broken?
3603
1205
3604
1206
            database = rel.get('database')
3605
1207
            if database is None:
3606
1208
                continue  # The relation exists, but we haven't joined it yet.
3607
1209
3608
1210
            roles = filter(None, (client_rel.get('roles') or '').split(","))
3609
1211
            user = rel.get('user')
3610
1212
            if user:
3611
1213
                admin = relid.startswith('db-admin')
3612
1214
                password = create_user(user, admin=admin)
3613
1215
                reset_user_roles(user, roles)
3614
1216
                hookenv.relation_set(relid, password=password)
3615
1217
3616
1218
            schema_user = rel.get('schema_user')
3617
1219
            if schema_user:
3618
1220
                schema_password = create_user(schema_user)
3619
1221
                hookenv.relation_set(relid, schema_password=schema_password)
3620
1222
3621
1223
            if user and schema_user and not (
3622
1224
                    database is None or database == 'all'):
3623
1225
                ensure_database(user, schema_user, database)
3624
1226
3625
1227
    if force_restart:
3626
1228
        postgresql_restart()
3627
1229
    postgresql_reload_or_restart()
3628
1230
3629
1231
    # In case the log_line_prefix has changed, inform syslog consumers.
3630
1232
    for relid in hookenv.relation_ids('syslog'):
3631
1233
        hookenv.relation_set(
3632
1234
            relid, log_line_prefix=hookenv.config('log_line_prefix'))
3633
1235
3634
1236
3635
1237
@hooks.hook()
3636
1238
def install(run_pre=True, force_restart=True):
3637
1239
    if run_pre:
3638
1240
        for f in glob.glob('exec.d/*/charm-pre-install'):
3639
1241
            if os.path.isfile(f) and os.access(f, os.X_OK):
3640
1242
                subprocess.check_call(['sh', '-c', f])
3641
1243
3642
1244
    validate_config()
3643
1245
3644
1246
    config_data = hookenv.config()
3645
1247
    update_repos_and_packages()
3646
1248
    if 'state' not in local_state:
3647
1249
        log('state not in {}'.format(local_state.keys()), DEBUG)
3648
1250
        # Fresh installation. Because this function is invoked by both
3649
1251
        # the install hook and the upgrade-charm hook, we need to guard
3650
1252
        # any non-idempotent setup. We should probably fix this; it
3651
1253
        # seems rather fragile.
3652
1254
        local_state.setdefault('state', 'standalone')
3653
1255
        log(repr(local_state.keys()), DEBUG)
3654
1256
3655
1257
        # Drop the cluster created when the postgresql package was
3656
1258
        # installed, and rebuild it with the requested locale and encoding.
3657
1259
        version = pg_version()
3658
1260
        for ver, name in lsclusters(slice(2)):
3659
1261
            if version == ver and name == 'main':
3660
1262
                run("pg_dropcluster --stop {} main".format(version))
3661
1263
        listen_port = config_data.get('listen_port', None)
3662
1264
        if listen_port:
3663
1265
            port_opt = "--port={}".format(config_data['listen_port'])
3664
1266
        else:
3665
1267
            port_opt = ''
3666
1268
        createcluster()
3667
1269
        assert (
3668
1270
            not port_opt
3669
1271
            or get_service_port() == config_data['listen_port']), (
3670
1272
            'allocated port {!r} != {!r}'.format(
3671
1273
                get_service_port(), config_data['listen_port']))
3672
1274
        local_state['port'] = get_service_port()
3673
1275
        log('publishing state', DEBUG)
3674
1276
        local_state.publish()
3675
1277
3676
1278
    postgresql_backups_dir = (
3677
1279
        config_data['backup_dir'].strip() or
3678
1280
        os.path.join(postgresql_data_dir, 'backups'))
3679
1281
3680
1282
    host.mkdir(postgresql_backups_dir, owner="postgres", perms=0o755)
3681
1283
    host.mkdir(postgresql_scripts_dir, owner="postgres", perms=0o755)
3682
1284
    host.mkdir(postgresql_logs_dir, owner="postgres", perms=0o755)
3683
1285
    paths = {
3684
1286
        'base_dir': postgresql_data_dir,
3685
1287
        'backup_dir': postgresql_backups_dir,
3686
1288
        'scripts_dir': postgresql_scripts_dir,
3687
1289
        'logs_dir': postgresql_logs_dir,
3688
1290
    }
3689
1291
    charm_dir = hookenv.charm_dir()
3690
1292
    template_file = "{}/templates/pg_backup_job.tmpl".format(charm_dir)
3691
1293
    backup_job = Template(open(template_file).read()).render(paths)
3692
1294
    host.write_file(
3693
1295
        os.path.join(postgresql_scripts_dir, 'dump-pg-db'),
3694
1296
        open('scripts/pgbackup.py', 'r').read(), perms=0o755)
3695
1297
    host.write_file(
3696
1298
        os.path.join(postgresql_scripts_dir, 'pg_backup_job'),
3697
1299
        backup_job, perms=0755)
3698
1300
    install_postgresql_crontab(postgresql_crontab)
3699
1301
3700
1302
    # Create this empty log file on installation to avoid triggering
3701
1303
    # spurious monitoring system alerts, per Bug #1329816.
3702
1304
    if not os.path.exists(backup_log):
3703
1305
        host.write_file(backup_log, '', 'postgres', 'postgres', 0664)
3704
1306
3705
1307
    hookenv.open_port(get_service_port())
3706
1308
3707
1309
    # Ensure at least minimal access granted for hooks to run.
3708
1310
    # Reload because we are using the default cluster setup and started
3709
1311
    # when we installed the PostgreSQL packages.
3710
1312
    config_changed(force_restart=force_restart)
3711
1313
3712
1314
    snapshot_relations()
3713
1315
3714
1316
3715
1317
@hooks.hook()
3716
1318
def upgrade_charm():
3717
1319
    """Handle saving state during an upgrade-charm hook.
3718
1320
3719
1321
    When upgrading from an installation using volume-map, we migrate
3720
1322
    that installation to use the storage subordinate charm by remounting
3721
1323
    a mountpath that the storage subordinate maintains. We exit(1) only to
3722
1324
    raise visibility to manual procedure that we log in juju logs below for the
3723
1325
    juju admin to finish the migration by relating postgresql to the storage
3724
1326
    and block-storage-broker services. These steps are generalised in the
3725
1327
    README as well.
3726
1328
    """
3727
1329
    install(run_pre=False, force_restart=False)
3728
1330
    snapshot_relations()
3729
1331
    version = pg_version()
3730
1332
    cluster_name = hookenv.config('cluster_name')
3731
1333
    data_directory_path = os.path.join(
3732
1334
        postgresql_data_dir, version, cluster_name)
3733
1335
    if (os.path.islink(data_directory_path)):
3734
1336
        link_target = os.readlink(data_directory_path)
3735
1337
        if "/srv/juju" in link_target:
3736
1338
            # Then we just upgraded from an installation that was using
3737
1339
            # charm config volume_map definitions. We need to stop postgresql
3738
1340
            # and remount the device where the storage subordinate expects to
3739
1341
            # control the mount in the future if relations/units change
3740
1342
            volume_id = link_target.split("/")[3]
3741
1343
            unit_name = hookenv.local_unit()
3742
1344
            new_mount_root = external_volume_mount
3743
1345
            new_pg_version_cluster_dir = os.path.join(
3744
1346
                new_mount_root, "postgresql", version, cluster_name)
3745
1347
            if not os.exists(new_mount_root):
3746
1348
                os.mkdir(new_mount_root)
3747
1349
            log("\n"
3748
1350
                "WARNING: %s unit has external volume id %s mounted via the\n"
3749
1351
                "deprecated volume-map and volume-ephemeral-storage\n"
3750
1352
                "configuration parameters.\n"
3751
1353
                "These parameters are no longer available in the postgresql\n"
3752
1354
                "charm in favor of using the volume_map parameter in the\n"
3753
1355
                "storage subordinate charm.\n"
3754
1356
                "We are migrating the attached volume to a mount path which\n"
3755
1357
                "can be managed by the storage subordinate charm. To\n"
3756
1358
                "continue using this volume_id with the storage subordinate\n"
3757
1359
                "follow this procedure.\n-----------------------------------\n"
3758
1360
                "1. cat > storage.cfg <<EOF\nstorage:\n"
3759
1361
                "  provider: block-storage-broker\n"
3760
1362
                "  root: %s\n"
3761
1363
                "  volume_map: \"{%s: %s}\"\nEOF\n2. juju deploy "
3762
1364
                "--config storage.cfg storage\n"
3763
1365
                "3. juju deploy block-storage-broker\n4. juju add-relation "
3764
1366
                "block-storage-broker storage\n5. juju resolved --retry "
3765
1367
                "%s\n6. juju add-relation postgresql storage\n"
3766
1368
                "-----------------------------------\n" %
3767
1369
                (unit_name, volume_id, new_mount_root, unit_name, volume_id,
3768
1370
                 unit_name), WARNING)
3769
1371
            postgresql_stop()
3770
1372
            os.unlink(data_directory_path)
3771
1373
            log("Unmounting external storage due to charm upgrade: %s" %
3772
1374
                link_target)
3773
1375
            try:
3774
1376
                subprocess.check_output(
3775
1377
                    "umount /srv/juju/%s" % volume_id, shell=True)
3776
1378
                # Since e2label truncates labels to 16 characters use only the
3777
1379
                # first 16 characters of the volume_id as that's what was
3778
1380
                # set by old versions of postgresql charm
3779
1381
                subprocess.check_call(
3780
1382
                    "mount -t ext4 LABEL=%s %s" %
3781
1383
                    (volume_id[:16], new_mount_root), shell=True)
3782
1384
            except subprocess.CalledProcessError, e:
3783
1385
                log("upgrade-charm mount migration failed. %s" % str(e), ERROR)
3784
1386
                sys.exit(1)
3785
1387
3786
1388
            log("NOTICE: symlinking {} -> {}".format(
3787
1389
                new_pg_version_cluster_dir, data_directory_path))
3788
1390
            os.symlink(new_pg_version_cluster_dir, data_directory_path)
3789
1391
            run("chown -h postgres:postgres {}".format(data_directory_path))
3790
1392
            postgresql_start()  # Will exit(1) if issues
3791
1393
            log("Remount and restart success for this external volume.\n"
3792
1394
                "This current running installation will break upon\n"
3793
1395
                "add/remove postgresql units or relations if you do not\n"
3794
1396
                "follow the above procedure to ensure your external\n"
3795
1397
                "volumes are preserved by the storage subordinate charm.",
3796
1398
                WARNING)
3797
1399
            # So juju admins can see the hook fail and note the steps to fix
3798
1400
            # per our WARNINGs above
3799
1401
            sys.exit(1)
3800
1402
3801
1403
3802
1404
@hooks.hook()
3803
1405
def start():
3804
1406
    postgresql_reload_or_restart()
3805
1407
3806
1408
3807
1409
@hooks.hook()
3808
1410
def stop():
3809
1411
    if postgresql_is_running():
3810
1412
        with restart_lock(hookenv.local_unit(), True):
3811
1413
            postgresql_stop()
3812
1414
3813
1415
3814
1416
def quote_identifier(identifier):
3815
1417
    r'''Quote an identifier, such as a table or role name.
3816
1418
3817
1419
    In SQL, identifiers are quoted using " rather than ' (which is reserved
3818
1420
    for strings).
3819
1421
3820
1422
    >>> print(quote_identifier('hello'))
3821
1423
    "hello"
3822
1424
3823
1425
    Quotes and Unicode are handled if you make use of them in your
3824
1426
    identifiers.
3825
1427
3826
1428
    >>> print(quote_identifier("'"))
3827
1429
    "'"
3828
1430
    >>> print(quote_identifier('"'))
3829
1431
    """"
3830
1432
    >>> print(quote_identifier("\\"))
3831
1433
    "\"
3832
1434
    >>> print(quote_identifier('\\"'))
3833
1435
    "\"""
3834
1436
    >>> print(quote_identifier('\\ aargh \u0441\u043b\u043e\u043d'))
3835
1437
    U&"\\ aargh \0441\043b\043e\043d"
3836
1438
    '''
3837
1439
    try:
3838
1440
        return '"%s"' % identifier.encode('US-ASCII').replace('"', '""')
3839
1441
    except UnicodeEncodeError:
3840
1442
        escaped = []
3841
1443
        for c in identifier:
3842
1444
            if c == '\\':
3843
1445
                escaped.append('\\\\')
3844
1446
            elif c == '"':
3845
1447
                escaped.append('""')
3846
1448
            else:
3847
1449
                c = c.encode('US-ASCII', 'backslashreplace')
3848
1450
                # Note Python only supports 32 bit unicode, so we use
3849
1451
                # the 4 hexdigit PostgreSQL syntax (\1234) rather than
3850
1452
                # the 6 hexdigit format (\+123456).
3851
1453
                if c.startswith('\\u'):
3852
1454
                    c = '\\' + c[2:]
3853
1455
                escaped.append(c)
3854
1456
        return 'U&"%s"' % ''.join(escaped)
3855
1457
3856
1458
3857
1459
def sanitize(s):
3858
1460
    s = s.replace(':', '_')
3859
1461
    s = s.replace('-', '_')
3860
1462
    s = s.replace('/', '_')
3861
1463
    s = s.replace('"', '_')
3862
1464
    s = s.replace("'", '_')
3863
1465
    return s
3864
1466
3865
1467
3866
1468
def user_name(relid, remote_unit, admin=False, schema=False):
3867
1469
    # Per Bug #1160530, don't append the remote unit number to the user name.
3868
1470
    components = [sanitize(relid), sanitize(re.split("/", remote_unit)[0])]
3869
1471
    if admin:
3870
1472
        components.append("admin")
3871
1473
    elif schema:
3872
1474
        components.append("schema")
3873
1475
    return "_".join(components)
3874
1476
3875
1477
3876
1478
def user_exists(user):
3877
1479
    sql = "SELECT rolname FROM pg_roles WHERE rolname = %s"
3878
1480
    if run_select_as_postgres(sql, user)[0] > 0:
3879
1481
        return True
3880
1482
    else:
3881
1483
        return False
3882
1484
3883
1485
3884
1486
def create_user(user, admin=False, replication=False):
3885
1487
    password = get_password(user)
3886
1488
    if password is None:
3887
1489
        password = host.pwgen()
3888
1490
        set_password(user, password)
3889
1491
    if user_exists(user):
3890
1492
        log("Updating {} user".format(user))
3891
1493
        action = ["ALTER ROLE"]
3892
1494
    else:
3893
1495
        log("Creating {} user".format(user))
3894
1496
        action = ["CREATE ROLE"]
3895
1497
    action.append('%s WITH LOGIN')
3896
1498
    if admin:
3897
1499
        action.append('SUPERUSER')
3898
1500
    else:
3899
1501
        action.append('NOSUPERUSER')
3900
1502
    if replication:
3901
1503
        action.append('REPLICATION')
3902
1504
    else:
3903
1505
        action.append('NOREPLICATION')
3904
1506
    action.append('PASSWORD %s')
3905
1507
    sql = ' '.join(action)
3906
1508
    run_sql_as_postgres(sql, AsIs(quote_identifier(user)), password)
3907
1509
    return password
3908
1510
3909
1511
3910
1512
def reset_user_roles(user, roles):
3911
1513
    wanted_roles = set(roles)
3912
1514
3913
1515
    sql = """
3914
1516
        SELECT role.rolname
3915
1517
        FROM
3916
1518
            pg_roles AS role,
3917
1519
            pg_roles AS member,
3918
1520
            pg_auth_members
3919
1521
        WHERE
3920
1522
            member.oid = pg_auth_members.member
3921
1523
            AND role.oid = pg_auth_members.roleid
3922
1524
            AND member.rolname = %s
3923
1525
        """
3924
1526
    existing_roles = set(r[0] for r in run_select_as_postgres(sql, user)[1])
3925
1527
3926
1528
    roles_to_grant = wanted_roles.difference(existing_roles)
3927
1529
3928
1530
    for role in roles_to_grant:
3929
1531
        ensure_role(role)
3930
1532
3931
1533
    if roles_to_grant:
3932
1534
        log("Granting {} to {}".format(",".join(roles_to_grant), user), INFO)
3933
1535
3934
1536
    for role in roles_to_grant:
3935
1537
        run_sql_as_postgres(
3936
1538
            "GRANT %s TO %s",
3937
1539
            AsIs(quote_identifier(role)), AsIs(quote_identifier(user)))
3938
1540
3939
1541
    roles_to_revoke = existing_roles.difference(wanted_roles)
3940
1542
3941
1543
    if roles_to_revoke:
3942
1544
        log("Revoking {} from {}".format(",".join(roles_to_grant), user), INFO)
3943
1545
3944
1546
    for role in roles_to_revoke:
3945
1547
        run_sql_as_postgres(
3946
1548
            "REVOKE %s FROM %s",
3947
1549
            AsIs(quote_identifier(role)), AsIs(quote_identifier(user)))
3948
1550
3949
1551
3950
1552
def ensure_role(role):
3951
1553
    sql = "SELECT oid FROM pg_roles WHERE rolname = %s"
3952
1554
    if run_select_as_postgres(sql, role)[0] == 0:
3953
1555
        sql = "CREATE ROLE %s INHERIT NOLOGIN"
3954
1556
        run_sql_as_postgres(sql, AsIs(quote_identifier(role)))
3955
1557
3956
1558
3957
1559
def ensure_database(user, schema_user, database):
3958
1560
    sql = "SELECT datname FROM pg_database WHERE datname = %s"
3959
1561
    if run_select_as_postgres(sql, database)[0] != 0:
3960
1562
        # DB already exists
3961
1563
        pass
3962
1564
    else:
3963
1565
        sql = "CREATE DATABASE %s"
3964
1566
        run_sql_as_postgres(sql, AsIs(quote_identifier(database)))
3965
1567
    sql = "GRANT ALL PRIVILEGES ON DATABASE %s TO %s"
3966
1568
    run_sql_as_postgres(sql, AsIs(quote_identifier(database)),
3967
1569
                        AsIs(quote_identifier(schema_user)))
3968
1570
    sql = "GRANT CONNECT ON DATABASE %s TO %s"
3969
1571
    run_sql_as_postgres(sql, AsIs(quote_identifier(database)),
3970
1572
                        AsIs(quote_identifier(user)))
3971
1573
3972
1574
3973
1575
def ensure_extensions(extensions, database):
3974
1576
    if extensions:
3975
1577
        cur = db_cursor(db=database, autocommit=True)
3976
1578
        try:
3977
1579
            cur.execute('SELECT extname FROM pg_extension')
3978
1580
            installed_extensions = frozenset(x[0] for x in cur.fetchall())
3979
1581
            log("ensure_extensions({}), have {}"
3980
1582
                .format(extensions, installed_extensions),
3981
1583
                DEBUG)
3982
1584
            extensions_set = frozenset(extensions)
3983
1585
            extensions_to_create = \
3984
1586
                extensions_set.difference(installed_extensions)
3985
1587
            for ext in extensions_to_create:
3986
1588
                log("creating extension {}".format(ext), DEBUG)
3987
1589
                cur.execute('CREATE EXTENSION %s',
3988
1590
                            (AsIs(quote_identifier(ext)),))
3989
1591
        finally:
3990
1592
            cur.close()
3991
1593
3992
1594
3993
1595
def snapshot_relations():
3994
1596
    '''Snapshot our relation information into local state.
3995
1597
3996
1598
    We need this information to be available in -broken
3997
1599
    hooks letting us actually clean up properly. Bug #1190996.
3998
1600
    '''
3999
1601
    log("Snapshotting relations", DEBUG)
4000
1602
    local_state['relations'] = hookenv.relations()
4001
1603
    local_state.save()
4002
1604
4003
1605
4004
1606
# Each database unit needs to publish connection details to the
4005
1607
# client. This is problematic, because 1) the user and database are
4006
1608
# only created on the master unit and this is replicated to the
4007
1609
# slave units outside of juju and 2) we have no control over the
4008
1610
# order that units join the relation.
4009
1611
#
4010
1612
# The simplest approach of generating usernames and passwords in
4011
1613
# the master units db-relation-joined hook fails because slave
4012
1614
# units may well have already run their hooks and found no
4013
1615
# connection details to republish. When the master unit publishes
4014
1616
# the connection details it only triggers relation-changed hooks
4015
1617
# on the client units, not the relation-changed hook on other peer
4016
1618
# units.
4017
1619
#
4018
1620
# A more complex approach is for the first database unit that joins
4019
1621
# the relation to generate the usernames and passwords and publish
4020
1622
# this to the relation. Subsequent units can retrieve this
4021
1623
# information and republish it. Of course, the master unit also
4022
1624
# creates the database and users when it joins the relation.
4023
1625
# This approach should work reliably on the server side. However,
4024
1626
# there is a window from when a slave unit joins a client relation
4025
1627
# until the master unit has joined that relation when the
4026
1628
# credentials published by the slave unit are invalid. These
4027
1629
# credentials will only become valid after the master unit has
4028
1630
# actually created the user and database.
4029
1631
#
4030
1632
# The implemented approach is for the master unit's
4031
1633
# db-relation-joined hook to create the user and database and
4032
1634
# publish the connection details, and in addition update a list
4033
1635
# of active relations to the service's peer 'replication' relation.
4034
1636
# After the master unit has updated the peer relationship, the
4035
1637
# slave unit's peer replication-relation-changed hook will
4036
1638
# be triggered and it will have an opportunity to republish the
4037
1639
# connection details. Of course, it may not be able to do so if the
4038
1640
# slave unit's db-relation-joined hook has yet been run, so we must
4039
1641
# also attempt to to republish the connection settings there.
4040
1642
# This way we are guaranteed at least one chance to republish the
4041
1643
# connection details after the database and user have actually been
4042
1644
# created and both the master and slave units have joined the
4043
1645
# relation.
4044
1646
#
4045
1647
# The order of relevant hooks firing may be:
4046
1648
#
4047
1649
# master db-relation-joined (publish)
4048
1650
# slave db-relation-joined (republish)
4049
1651
# slave replication-relation-changed (noop)
4050
1652
#
4051
1653
# slave db-relation-joined (noop)
4052
1654
# master db-relation-joined (publish)
4053
1655
# slave replication-relation-changed (republish)
4054
1656
#
4055
1657
# master db-relation-joined (publish)
4056
1658
# slave replication-relation-changed (noop; slave not yet joined db rel)
4057
1659
# slave db-relation-joined (republish)
4058
1660
4059
1661
4060
1662
@hooks.hook('db-relation-joined', 'db-relation-changed')
4061
1663
def db_relation_joined_changed():
4062
1664
    reset_manual_replication_state()
4063
1665
    if local_state['state'] == 'hot standby':
4064
1666
        publish_hot_standby_credentials()
4065
1667
        return
4066
1668
4067
1669
    # By default, we create a database named after the remote
4068
1670
    # servicename. The remote service can override this by setting
4069
1671
    # the database property on the relation.
4070
1672
    database = hookenv.relation_get('database')
4071
1673
    if not database:
4072
1674
        database = hookenv.remote_unit().split('/')[0]
4073
1675
4074
1676
    # Generate a unique username for this relation to use.
4075
1677
    user = user_name(hookenv.relation_id(), hookenv.remote_unit())
4076
1678
4077
1679
    roles = filter(None, (hookenv.relation_get('roles') or '').split(","))
4078
1680
4079
1681
    extensions = filter(None,
4080
1682
                        (hookenv.relation_get('extensions') or '').split(","))
4081
1683
4082
1684
    log('{} unit publishing credentials'.format(local_state['state']))
4083
1685
4084
1686
    password = create_user(user)
4085
1687
    reset_user_roles(user, roles)
4086
1688
    schema_user = "{}_schema".format(user)
4087
1689
    schema_password = create_user(schema_user)
4088
1690
    ensure_database(user, schema_user, database)
4089
1691
    ensure_extensions(extensions, database)
4090
1692
    host = hookenv.unit_private_ip()
4091
1693
    port = get_service_port()
4092
1694
    state = local_state['state']  # master, hot standby, standalone
4093
1695
4094
1696
    # Publish connection details.
4095
1697
    connection_settings = dict(
4096
1698
        user=user, password=password,
4097
1699
        schema_user=schema_user, schema_password=schema_password,
4098
1700
        host=host, database=database, port=port, state=state)
4099
1701
    log("Connection settings {!r}".format(connection_settings), DEBUG)
4100
1702
    hookenv.relation_set(relation_settings=connection_settings)
4101
1703
4102
1704
    # Update the peer relation, notifying any hot standby units
4103
1705
    # to republish connection details to the client relation.
4104
1706
    local_state['client_relations'] = ' '.join(sorted(
4105
1707
        hookenv.relation_ids('db') + hookenv.relation_ids('db-admin')))
4106
1708
    log("Client relations {}".format(local_state['client_relations']))
4107
1709
    local_state.publish()
4108
1710
4109
1711
    postgresql_hba = os.path.join(_get_postgresql_config_dir(), "pg_hba.conf")
4110
1712
    generate_postgresql_hba(postgresql_hba, user=user,
4111
1713
                            schema_user=schema_user,
4112
1714
                            database=database)
4113
1715
4114
1716
    snapshot_relations()
4115
1717
4116
1718
4117
1719
@hooks.hook('db-admin-relation-joined', 'db-admin-relation-changed')
4118
1720
def db_admin_relation_joined_changed():
4119
1721
    reset_manual_replication_state()
4120
1722
    if local_state['state'] == 'hot standby':
4121
1723
        publish_hot_standby_credentials()
4122
1724
        return
4123
1725
4124
1726
    user = user_name(
4125
1727
        hookenv.relation_id(), hookenv.remote_unit(), admin=True)
4126
1728
4127
1729
    log('{} unit publishing credentials'.format(local_state['state']))
4128
1730
4129
1731
    password = create_user(user, admin=True)
4130
1732
    host = hookenv.unit_private_ip()
4131
1733
    port = get_service_port()
4132
1734
    state = local_state['state']  # master, hot standby, standalone
4133
1735
4134
1736
    # Publish connection details.
4135
1737
    connection_settings = dict(
4136
1738
        user=user, password=password,
4137
1739
        host=host, database='all', port=port, state=state)
4138
1740
    log("Connection settings {!r}".format(connection_settings), DEBUG)
4139
1741
    hookenv.relation_set(relation_settings=connection_settings)
4140
1742
4141
1743
    # Update the peer relation, notifying any hot standby units
4142
1744
    # to republish connection details to the client relation.
4143
1745
    local_state['client_relations'] = ' '.join(
4144
1746
        hookenv.relation_ids('db') + hookenv.relation_ids('db-admin'))
4145
1747
    log("Client relations {}".format(local_state['client_relations']))
4146
1748
    local_state.publish()
4147
1749
4148
1750
    postgresql_hba = os.path.join(_get_postgresql_config_dir(), "pg_hba.conf")
4149
1751
    generate_postgresql_hba(postgresql_hba)
4150
1752
4151
1753
    snapshot_relations()
4152
1754
4153
1755
4154
1756
@hooks.hook()
4155
1757
def db_relation_broken():
4156
1758
    relid = hookenv.relation_id()
4157
1759
    if relid not in local_state['relations']['db']:
4158
1760
        # This was to be a hot standby, but it had not yet got as far as
4159
1761
        # receiving and handling credentials from the master.
4160
1762
        log("db-relation-broken called before relation finished setup", DEBUG)
4161
1763
        return
4162
1764
4163
1765
    # The relation no longer exists, so we can't pull the database name
4164
1766
    # we used from there. Instead, we have to persist this information
4165
1767
    # ourselves.
4166
1768
    relation = local_state['relations']['db'][relid]
4167
1769
    unit_relation_data = relation[hookenv.local_unit()]
4168
1770
4169
1771
    if local_state['state'] in ('master', 'standalone'):
4170
1772
        user = unit_relation_data.get('user', None)
4171
1773
        database = unit_relation_data['database']
4172
1774
4173
1775
        # We need to check that the database still exists before
4174
1776
        # attempting to revoke privileges because the local PostgreSQL
4175
1777
        # cluster may have been rebuilt by another hook.
4176
1778
        sql = "SELECT datname FROM pg_database WHERE datname = %s"
4177
1779
        if run_select_as_postgres(sql, database)[0] != 0:
4178
1780
            sql = "REVOKE ALL PRIVILEGES ON DATABASE %s FROM %s"
4179
1781
            run_sql_as_postgres(sql, AsIs(quote_identifier(database)),
4180
1782
                                AsIs(quote_identifier(user)))
4181
1783
            run_sql_as_postgres(sql, AsIs(quote_identifier(database)),
4182
1784
                                AsIs(quote_identifier(user + "_schema")))
4183
1785
4184
1786
    postgresql_hba = os.path.join(_get_postgresql_config_dir(), "pg_hba.conf")
4185
1787
    generate_postgresql_hba(postgresql_hba)
4186
1788
4187
1789
    # Cleanup our local state.
4188
1790
    snapshot_relations()
4189
1791
4190
1792
4191
1793
@hooks.hook()
4192
1794
def db_admin_relation_broken():
4193
1795
    if local_state['state'] in ('master', 'standalone'):
4194
1796
        user = hookenv.relation_get('user', unit=hookenv.local_unit())
4195
1797
        if user:
4196
1798
            # We need to check that the user still exists before
4197
1799
            # attempting to revoke privileges because the local PostgreSQL
4198
1800
            # cluster may have been rebuilt by another hook.
4199
1801
            sql = "SELECT usename FROM pg_user WHERE usename = %s"
4200
1802
            if run_select_as_postgres(sql, user)[0] != 0:
4201
1803
                sql = "ALTER USER %s NOSUPERUSER"
4202
1804
                run_sql_as_postgres(sql, AsIs(quote_identifier(user)))
4203
1805
4204
1806
    postgresql_hba = os.path.join(_get_postgresql_config_dir(), "pg_hba.conf")
4205
1807
    generate_postgresql_hba(postgresql_hba)
4206
1808
4207
1809
    # Cleanup our local state.
4208
1810
    snapshot_relations()
4209
1811
4210
1812
4211
1813
def update_repos_and_packages():
4212
1814
    need_upgrade = False
4213
1815
4214
1816
    version = pg_version()
4215
1817
4216
1818
    # Add the PGDG APT repository if it is enabled. Setting this boolean
4217
1819
    # is simpler than requiring the magic URL and key be added to
4218
1820
    # install_sources and install_keys. In addition, per Bug #1271148,
4219
1821
    # install_keys is likely a security hole for this sort of remote
4220
1822
    # archive. Instead, we keep a copy of the signing key in the charm
4221
1823
    # and can add it securely.
4222
1824
    pgdg_list = '/etc/apt/sources.list.d/pgdg_{}.list'.format(
4223
1825
        sanitize(hookenv.local_unit()))
4224
1826
    pgdg_key = 'ACCC4CF8'
4225
1827
4226
1828
    if hookenv.config('pgdg'):
4227
1829
        if not os.path.exists(pgdg_list):
4228
1830
            # We need to upgrade, as if we have Ubuntu main packages
4229
1831
            # installed they may be incompatible with the PGDG ones.
4230
1832
            # This is unlikely to ever happen outside of the test suite,
4231
1833
            # and never if you don't reuse machines.
4232
1834
            need_upgrade = True
4233
1835
            run("apt-key add lib/{}.asc".format(pgdg_key))
4234
1836
            open(pgdg_list, 'w').write('deb {} {}-pgdg main'.format(
4235
1837
                'http://apt.postgresql.org/pub/repos/apt/', distro_codename()))
4236
1838
        if version == '9.4':
4237
1839
            pgdg_94_list = '/etc/apt/sources.list.d/pgdg_94_{}.list'.format(
4238
1840
                sanitize(hookenv.local_unit()))
4239
1841
            if not os.path.exists(pgdg_94_list):
4240
1842
                need_upgrade = True
4241
1843
                open(pgdg_94_list, 'w').write(
4242
1844
                    'deb {} {}-pgdg main 9.4'.format(
4243
1845
                        'http://apt.postgresql.org/pub/repos/apt/',
4244
1846
                        distro_codename()))
4245
1847
4246
1848
    elif os.path.exists(pgdg_list):
4247
1849
        log(
4248
1850
            "PGDG apt source not requested, but already in place in this "
4249
1851
            "container", WARNING)
4250
1852
        # We can't just remove a source, as we may have packages
4251
1853
        # installed that conflict with ones from the other configured
4252
1854
        # sources. In particular, if we have postgresql-common installed
4253
1855
        # from the PGDG Apt source, PostgreSQL packages from Ubuntu main
4254
1856
        # will fail to install.
4255
1857
        # os.unlink(pgdg_list)
4256
1858
4257
1859
    # Try to optimize our calls to fetch.configure_sources(), as it
4258
1860
    # cannot do this itself due to lack of state.
4259
1861
    if (need_upgrade
4260
1862
        or local_state.get('install_sources', None)
4261
1863
            != hookenv.config('install_sources')
4262
1864
        or local_state.get('install_keys', None)
4263
1865
            != hookenv.config('install_keys')):
4264
1866
        # Support the standard mechanism implemented by charm-helpers. Pulls
4265
1867
        # from the default 'install_sources' and 'install_keys' config
4266
1868
        # options. This also does 'apt-get update', pulling in the PGDG data
4267
1869
        # if we just configured it.
4268
1870
        fetch.configure_sources(True)
4269
1871
        local_state['install_sources'] = hookenv.config('install_sources')
4270
1872
        local_state['install_keys'] = hookenv.config('install_keys')
4271
1873
        local_state.save()
4272
1874
4273
1875
    # Ensure that the desired database locale is possible.
4274
1876
    if hookenv.config('locale') != 'C':
4275
1877
        run(["locale-gen", "{}.{}".format(
4276
1878
            hookenv.config('locale'), hookenv.config('encoding'))])
4277
1879
4278
1880
    if need_upgrade:
4279
1881
        run("apt-get -y upgrade")
4280
1882
4281
1883
    # It might have been better for debversion and plpython to only get
4282
1884
    # installed if they were listed in the extra-packages config item,
4283
1885
    # but they predate this feature.
4284
1886
    packages = ["python-psutil",  # to obtain system RAM from python
4285
1887
                "libc-bin",       # for getconf
4286
1888
                "postgresql-{}".format(version),
4287
1889
                "postgresql-contrib-{}".format(version),
4288
1890
                "postgresql-plpython-{}".format(version),
4289
1891
                "python-jinja2", "python-psycopg2"]
4290
1892
4291
1893
    # PGDG currently doesn't have debversion for 9.3 & 9.4. Put this back
4292
1894
    # when it does.
4293
1895
    if not (hookenv.config('pgdg') and version in ('9.3', '9.4')):
4294
1896
        packages.append("postgresql-{}-debversion".format(version))
4295
1897
4296
1898
    if hookenv.config('performance_tuning').lower() != 'manual':
4297
1899
        packages.append('pgtune')
4298
1900
4299
1901
    if hookenv.config('swiftwal_container_prefix'):
4300
1902
        packages.append('swiftwal')
4301
1903
4302
1904
    if hookenv.config('wal_e_storage_uri'):
4303
1905
        packages.extend(['wal-e', 'daemontools'])
4304
1906
4305
1907
    packages.extend((hookenv.config('extra-packages') or '').split())
4306
1908
    packages = fetch.filter_installed_packages(packages)
4307
1909
    # Set package state for main postgresql package if installed
4308
1910
    if 'postgresql-{}'.format(version) not in packages:
4309
1911
        ensure_package_status('postgresql-{}'.format(version),
4310
1912
                              hookenv.config('package_status'))
4311
1913
    fetch.apt_update(fatal=True)
4312
1914
    fetch.apt_install(packages, fatal=True)
4313
1915
4314
1916
4315
1917
@contextmanager
4316
1918
def pgpass():
4317
1919
    passwords = {}
4318
1920
4319
1921
    # Replication.
4320
1922
    # pg_basebackup only works with the password in .pgpass, or entered
4321
1923
    # at the command prompt.
4322
1924
    if 'replication_password' in local_state:
4323
1925
        passwords['juju_replication'] = local_state['replication_password']
4324
1926
4325
1927
    pgpass_contents = '\n'.join(
4326
1928
        "*:*:*:{}:{}".format(username, password)
4327
1929
        for username, password in passwords.items())
4328
1930
    pgpass_file = NamedTemporaryFile()
4329
1931
    pgpass_file.write(pgpass_contents)
4330
1932
    pgpass_file.flush()
4331
1933
    os.chown(pgpass_file.name, getpwnam('postgres').pw_uid, -1)
4332
1934
    os.chmod(pgpass_file.name, 0o400)
4333
1935
    org_pgpassfile = os.environ.get('PGPASSFILE', None)
4334
1936
    os.environ['PGPASSFILE'] = pgpass_file.name
4335
1937
    try:
4336
1938
        yield pgpass_file.name
4337
1939
    finally:
4338
1940
        if org_pgpassfile is None:
4339
1941
            del os.environ['PGPASSFILE']
4340
1942
        else:
4341
1943
            os.environ['PGPASSFILE'] = org_pgpassfile
4342
1944
4343
1945
4344
1946
def authorized_by(unit):
4345
1947
    '''Return True if the peer has authorized our database connections.'''
4346
1948
    for relid in hookenv.relation_ids('replication'):
4347
1949
        relation = hookenv.relation_get(unit=unit, rid=relid)
4348
1950
        authorized = relation.get('authorized', '').split()
4349
1951
        return hookenv.local_unit() in authorized
4350
1952
4351
1953
4352
1954
def promote_database():
4353
1955
    '''Take the database out of recovery mode.'''
4354
1956
    config_data = hookenv.config()
4355
1957
    version = pg_version()
4356
1958
    cluster_name = config_data['cluster_name']
4357
1959
    postgresql_cluster_dir = os.path.join(
4358
1960
        postgresql_data_dir, version, cluster_name)
4359
1961
    recovery_conf = os.path.join(postgresql_cluster_dir, 'recovery.conf')
4360
1962
    if os.path.exists(recovery_conf):
4361
1963
        # Rather than using 'pg_ctl promote', we do the promotion
4362
1964
        # this way to avoid creating a timeline change. Switch this
4363
1965
        # to using 'pg_ctl promote' once PostgreSQL propagates
4364
1966
        # timeline changes via streaming replication.
4365
1967
        os.unlink(recovery_conf)
4366
1968
        postgresql_restart()
4367
1969
4368
1970
4369
1971
def follow_database(master):
4370
1972
    '''Connect the database as a streaming replica of the master.'''
4371
1973
    master_relation = hookenv.relation_get(unit=master)
4372
1974
    create_recovery_conf(
4373
1975
        master_relation['private-address'],
4374
1976
        master_relation['port'], restart_on_change=True)
4375
1977
4376
1978
4377
1979
def elected_master():
4378
1980
    """Return the unit that should be master, or None if we don't yet know."""
4379
1981
    if local_state['state'] == 'master':
4380
1982
        log("I am already the master", DEBUG)
4381
1983
        return hookenv.local_unit()
4382
1984
4383
1985
    if local_state['state'] == 'hot standby':
4384
1986
        log("I am already following {}".format(
4385
1987
            local_state['following']), DEBUG)
4386
1988
        return local_state['following']
4387
1989
4388
1990
    replication_relid = hookenv.relation_ids('replication')[0]
4389
1991
    replication_units = hookenv.related_units(replication_relid)
4390
1992
4391
1993
    if local_state['state'] == 'standalone':
4392
1994
        log("I'm a standalone unit wanting to participate in replication")
4393
1995
        existing_replication = False
4394
1996
        for unit in replication_units:
4395
1997
            # If another peer thinks it is the master, believe it.
4396
1998
            remote_state = hookenv.relation_get(
4397
1999
                'state', unit, replication_relid)
4398
2000
            if remote_state == 'master':
4399
2001
                log("{} thinks it is the master, believing it".format(
4400
2002
                    unit), DEBUG)
4401
2003
                return unit
4402
2004
4403
2005
            # If we find a peer that isn't standalone, we know
4404
2006
            # replication has already been setup at some point.
4405
2007
            if remote_state != 'standalone':
4406
2008
                existing_replication = True
4407
2009
4408
2010
        # If we are joining a peer relation where replication has
4409
2011
        # already been setup, but there is currently no master, wait
4410
2012
        # until one of the remaining participating units has been
4411
2013
        # promoted to master. Only they have the data we need to
4412
2014
        # preserve.
4413
2015
        if existing_replication:
4414
2016
            log("Peers participating in replication need to elect a master",
4415
2017
                DEBUG)
4416
2018
            return None
4417
2019
4418
2020
        # There are no peers claiming to be master, and there is no
4419
2021
        # election in progress, so lowest numbered unit wins.
4420
2022
        units = replication_units + [hookenv.local_unit()]
4421
2023
        master = unit_sorted(units)[0]
4422
2024
        if master == hookenv.local_unit():
4423
2025
            log("I'm Master - lowest numbered unit in new peer group")
4424
2026
            return master
4425
2027
        else:
4426
2028
            log("Waiting on {} to declare itself Master".format(master), DEBUG)
4427
2029
            return None
4428
2030
4429
2031
    if local_state['state'] == 'failover':
4430
2032
        former_master = local_state['following']
4431
2033
        log("Failover from {}".format(former_master))
4432
2034
4433
2035
        units_not_in_failover = set()
4434
2036
        candidates = set()
4435
2037
        for unit in replication_units:
4436
2038
            if unit == former_master:
4437
2039
                log("Found dying master {}".format(unit), DEBUG)
4438
2040
                continue
4439
2041
4440
2042
            relation = hookenv.relation_get(unit=unit, rid=replication_relid)
4441
2043
4442
2044
            if relation['state'] == 'master':
4443
2045
                log("{} says it already won the election".format(unit),
4444
2046
                    INFO)
4445
2047
                return unit
4446
2048
4447
2049
            if relation['state'] == 'failover':
4448
2050
                candidates.add(unit)
4449
2051
4450
2052
            elif relation['state'] != 'standalone':
4451
2053
                units_not_in_failover.add(unit)
4452
2054
4453
2055
        if units_not_in_failover:
4454
2056
            log("{} unaware of impending election. Deferring result.".format(
4455
2057
                " ".join(unit_sorted(units_not_in_failover))))
4456
2058
            return None
4457
2059
4458
2060
        log("Election in progress")
4459
2061
        winner = None
4460
2062
        winning_offset = -1
4461
2063
        candidates.add(hookenv.local_unit())
4462
2064
        # Sort the unit lists so we get consistent results in a tie
4463
2065
        # and lowest unit number wins.
4464
2066
        for unit in unit_sorted(candidates):
4465
2067
            relation = hookenv.relation_get(unit=unit, rid=replication_relid)
4466
2068
            if int(relation['wal_received_offset']) > winning_offset:
4467
2069
                winner = unit
4468
2070
                winning_offset = int(relation['wal_received_offset'])
4469
2071
4470
2072
        # All remaining hot standbys are in failover mode and have
4471
2073
        # reported their wal_received_offset. We can declare victory.
4472
2074
        if winner == hookenv.local_unit():
4473
2075
            log("I won the election, announcing myself winner")
4474
2076
            return winner
4475
2077
        else:
4476
2078
            log("Waiting for {} to announce its victory".format(winner),
4477
2079
                DEBUG)
4478
2080
            return None
4479
2081
4480
2082
4481
2083
@hooks.hook('replication-relation-joined', 'replication-relation-changed')
4482
2084
def replication_relation_joined_changed():
4483
2085
    config_changed()  # Ensure minimal replication settings.
4484
2086
4485
2087
    # Now that pg_hba.conf has been regenerated and loaded, inform related
4486
2088
    # units that they have been granted replication access.
4487
2089
    authorized_units = set()
4488
2090
    for unit in hookenv.related_units():
4489
2091
        authorized_units.add(unit)
4490
2092
    local_state['authorized'] = authorized_units
4491
2093
4492
2094
    if hookenv.config('manual_replication'):
4493
2095
        log('manual_replication, nothing to do')
4494
2096
        return
4495
2097
4496
2098
    master = elected_master()
4497
2099
4498
2100
    # Handle state changes:
4499
2101
    #  - Fresh install becoming the master
4500
2102
    #  - Fresh install becoming a hot standby
4501
2103
    #  - Hot standby being promoted to master
4502
2104
4503
2105
    if master is None:
4504
2106
        log("Master is not yet elected. Deferring.")
4505
2107
4506
2108
    elif master == hookenv.local_unit():
4507
2109
        if local_state['state'] != 'master':
4508
2110
            log("I have elected myself master")
4509
2111
            promote_database()
4510
2112
            if 'following' in local_state:
4511
2113
                del local_state['following']
4512
2114
            if 'wal_received_offset' in local_state:
4513
2115
                del local_state['wal_received_offset']
4514
2116
            if 'paused_at_failover' in local_state:
4515
2117
                del local_state['paused_at_failover']
4516
2118
            local_state['state'] = 'master'
4517
2119
4518
2120
            # Publish credentials to hot standbys so they can connect.
4519
2121
            replication_password = create_user(
4520
2122
                'juju_replication', replication=True)
4521
2123
            local_state['replication_password'] = replication_password
4522
2124
            local_state['client_relations'] = ' '.join(
4523
2125
                hookenv.relation_ids('db') + hookenv.relation_ids('db-admin'))
4524
2126
            local_state.publish()
4525
2127
4526
2128
        else:
4527
2129
            log("I am master and remain master")
4528
2130
4529
2131
    elif not authorized_by(master):
4530
2132
        log("I need to follow {} but am not yet authorized".format(master))
4531
2133
4532
2134
    else:
4533
2135
        log("Syncing replication_password from {}".format(master), DEBUG)
4534
2136
        local_state['replication_password'] = hookenv.relation_get(
4535
2137
            'replication_password', master)
4536
2138
4537
2139
        if 'following' not in local_state:
4538
2140
            log("Fresh unit. I will clone {} and become a hot standby".format(
4539
2141
                master))
4540
2142
4541
2143
            master_ip = hookenv.relation_get('private-address', master)
4542
2144
            master_port = hookenv.relation_get('port', master)
4543
2145
            assert master_port is not None, 'No master port set'
4544
2146
4545
2147
            clone_database(master, master_ip, master_port)
4546
2148
4547
2149
            local_state['state'] = 'hot standby'
4548
2150
            local_state['following'] = master
4549
2151
            if 'wal_received_offset' in local_state:
4550
2152
                del local_state['wal_received_offset']
4551
2153
4552
2154
        elif local_state['following'] == master:
4553
2155
            log("I am a hot standby already following {}".format(master))
4554
2156
4555
2157
            # Replication connection details may have changed, so
4556
2158
            # ensure we are still following.
4557
2159
            follow_database(master)
4558
2160
4559
2161
        else:
4560
2162
            log("I am a hot standby following new master {}".format(master))
4561
2163
            follow_database(master)
4562
2164
            if not local_state.get("paused_at_failover", None):
4563
2165
                run_sql_as_postgres("SELECT pg_xlog_replay_resume()")
4564
2166
            local_state['state'] = 'hot standby'
4565
2167
            local_state['following'] = master
4566
2168
            del local_state['wal_received_offset']
4567
2169
            del local_state['paused_at_failover']
4568
2170
4569
2171
        publish_hot_standby_credentials()
4570
2172
        postgresql_hba = os.path.join(
4571
2173
            _get_postgresql_config_dir(), "pg_hba.conf")
4572
2174
        generate_postgresql_hba(postgresql_hba)
4573
2175
4574
2176
    # Swift container name make have changed, so regenerate the SwiftWAL
4575
2177
    # config. This can go away when we have real leader election and can
4576
2178
    # safely share a single container.
4577
2179
    create_swiftwal_config()
4578
2180
    create_wal_e_envdir()
4579
2181
4580
2182
    local_state.publish()
4581
2183
4582
2184
4583
2185
def publish_hot_standby_credentials():
4584
2186
    '''
4585
2187
    If a hot standby joins a client relation before the master
4586
2188
    unit, it is unable to publish connection details. However,
4587
2189
    when the master does join it updates the client_relations
4588
2190
    value in the peer relation causing the replication-relation-changed
4589
2191
    hook to be invoked. This gives us a second opertunity to publish
4590
2192
    connection details.
4591
2193
4592
2194
    This function is invoked from both the client and peer
4593
2195
    relation-changed hook. One of these will work depending on the order
4594
2196
    the master and hot standby joined the client relation.
4595
2197
    '''
4596
2198
    master = local_state['following']
4597
2199
    if not master:
4598
2200
        log("I will be a hot standby, but no master yet")
4599
2201
        return
4600
2202
4601
2203
    if not authorized_by(master):
4602
2204
        log("Master {} has not yet authorized us".format(master))
4603
2205
        return
4604
2206
4605
2207
    client_relations = hookenv.relation_get(
4606
2208
        'client_relations', master, hookenv.relation_ids('replication')[0])
4607
2209
4608
2210
    if client_relations is None:
4609
2211
        log("Master {} has not yet joined any client relations".format(
4610
2212
            master), DEBUG)
4611
2213
        return
4612
2214
4613
2215
    # Build the set of client relations that both the master and this
4614
2216
    # unit have joined.
4615
2217
    possible_client_relations = set(hookenv.relation_ids('db') +
4616
2218
                                    hookenv.relation_ids('db-admin') +
4617
2219
                                    hookenv.relation_ids('master'))
4618
2220
    active_client_relations = possible_client_relations.intersection(
4619
2221
        set(client_relations.split()))
4620
2222
4621
2223
    for client_relation in active_client_relations:
4622
2224
        # We need to pull the credentials from the master unit's
4623
2225
        # end of the client relation.
4624
2226
        log('Hot standby republishing credentials from {} to {}'.format(
4625
2227
            master, client_relation))
4626
2228
4627
2229
        connection_settings = hookenv.relation_get(
4628
2230
            unit=master, rid=client_relation)
4629
2231
4630
2232
        # Override unit specific connection details
4631
2233
        connection_settings['host'] = hookenv.unit_private_ip()
4632
2234
        connection_settings['port'] = get_service_port()
4633
2235
        connection_settings['state'] = local_state['state']
4634
2236
        requested_db = hookenv.relation_get('database')
4635
2237
        # A hot standby might have seen a database name change before
4636
2238
        # the master, so override. This is no problem because we block
4637
2239
        # until this database has been created on the master and
4638
2240
        # replicated through to this unit.
4639
2241
        if requested_db:
4640
2242
            connection_settings['database'] = requested_db
4641
2243
4642
2244
        # Block until users and database has replicated, so we know the
4643
2245
        # connection details we publish are actually valid. This will
4644
2246
        # normally be pretty much instantaneous. Do not block if we are
4645
2247
        # running in manual replication mode, as it is outside of juju's
4646
2248
        # control when replication is actually setup and running.
4647
2249
        if not hookenv.config('manual_replication'):
4648
2250
            timeout = 60
4649
2251
            start = time.time()
4650
2252
            while time.time() < start + timeout:
4651
2253
                cur = db_cursor(autocommit=True)
4652
2254
                cur.execute('select datname from pg_database')
4653
2255
                if cur.fetchone() is not None:
4654
2256
                    break
4655
2257
                del cur
4656
2258
                log('Waiting for database {} to be replicated'.format(
4657
2259
                    connection_settings['database']))
4658
2260
                time.sleep(10)
4659
2261
4660
2262
        log("Relation {} connection settings {!r}".format(
4661
2263
            client_relation, connection_settings), DEBUG)
4662
2264
        hookenv.relation_set(
4663
2265
            client_relation, relation_settings=connection_settings)
4664
2266
4665
2267
4666
2268
@hooks.hook()
4667
2269
def replication_relation_departed():
4668
2270
    '''A unit has left the replication peer group.'''
4669
2271
    remote_unit = hookenv.remote_unit()
4670
2272
4671
2273
    assert remote_unit is not None
4672
2274
4673
2275
    log("{} has left the peer group".format(remote_unit))
4674
2276
4675
2277
    # If we are the last unit standing, we become standalone
4676
2278
    remaining_peers = set(hookenv.related_units(hookenv.relation_id()))
4677
2279
    remaining_peers.discard(remote_unit)  # Bug #1192433
4678
2280
4679
2281
    # True if we were following the departed unit.
4680
2282
    following_departed = (local_state.get('following', None) == remote_unit)
4681
2283
4682
2284
    if remaining_peers and not following_departed:
4683
2285
        log("Remaining {}".format(local_state['state']))
4684
2286
4685
2287
    elif remaining_peers and following_departed:
4686
2288
        # If the unit being removed was our master, prepare for failover.
4687
2289
        # We need to suspend replication to ensure that the replay point
4688
2290
        # remains consistent throughout the election, and publish that
4689
2291
        # replay point. Once all units have entered this steady state,
4690
2292
        # we can identify the most up to date hot standby and promote it
4691
2293
        # to be the new master.
4692
2294
        log("Entering failover state")
4693
2295
        cur = db_cursor(autocommit=True)
4694
2296
        cur.execute("SELECT pg_is_xlog_replay_paused()")
4695
2297
        already_paused = cur.fetchone()[0]
4696
2298
        local_state["paused_at_failover"] = already_paused
4697
2299
        if not already_paused:
4698
2300
            cur.execute("SELECT pg_xlog_replay_pause()")
4699
2301
        # Switch to failover state. Don't cleanup the 'following'
4700
2302
        # setting because having access to the former master is still
4701
2303
        # useful.
4702
2304
        local_state['state'] = 'failover'
4703
2305
        local_state['wal_received_offset'] = postgresql_wal_received_offset()
4704
2306
4705
2307
    else:
4706
2308
        log("Last unit standing. Switching from {} to standalone.".format(
4707
2309
            local_state['state']))
4708
2310
        promote_database()
4709
2311
        local_state['state'] = 'standalone'
4710
2312
        if 'following' in local_state:
4711
2313
            del local_state['following']
4712
2314
        if 'wal_received_offset' in local_state:
4713
2315
            del local_state['wal_received_offset']
4714
2316
        if 'paused_at_failover' in local_state:
4715
2317
            del local_state['paused_at_failover']
4716
2318
4717
2319
    config_changed()
4718
2320
    local_state.publish()
4719
2321
4720
2322
4721
2323
@hooks.hook()
4722
2324
def replication_relation_broken():
4723
2325
    # This unit has been removed from the service.
4724
2326
    promote_database()
4725
2327
    config_changed()
4726
2328
4727
2329
4728
2330
@contextmanager
4729
2331
def switch_cwd(new_working_directory):
4730
2332
    org_dir = os.getcwd()
4731
2333
    os.chdir(new_working_directory)
4732
2334
    try:
4733
2335
        yield new_working_directory
4734
2336
    finally:
4735
2337
        os.chdir(org_dir)
4736
2338
4737
2339
4738
2340
@contextmanager
4739
2341
def restart_lock(unit, exclusive):
4740
2342
    '''Aquire the database restart lock on the given unit.
4741
2343
4742
2344
    A database needing a restart should grab an exclusive lock before
4743
2345
    doing so. To block a remote database from doing a restart, grab a shared
4744
2346
    lock.
4745
2347
    '''
4746
2348
    key = long(hookenv.config('advisory_lock_restart_key'))
4747
2349
    if exclusive:
4748
2350
        lock_function = 'pg_advisory_lock'
4749
2351
    else:
4750
2352
        lock_function = 'pg_advisory_lock_shared'
4751
2353
    q = 'SELECT {}({})'.format(lock_function, key)
4752
2354
4753
2355
    # We will get an exception if the database is rebooted while waiting
4754
2356
    # for a shared lock. If the connection is killed, we retry a few
4755
2357
    # times to cope.
4756
2358
    num_retries = 3
4757
2359
4758
2360
    for count in range(0, num_retries):
4759
2361
        try:
4760
2362
            if unit == hookenv.local_unit():
4761
2363
                cur = db_cursor(autocommit=True)
4762
2364
            else:
4763
2365
                host = hookenv.relation_get('private-address', unit)
4764
2366
                port = hookenv.relation_get('port', unit)
4765
2367
                cur = db_cursor(
4766
2368
                    autocommit=True, db='postgres', user='juju_replication',
4767
2369
                    host=host, port=port)
4768
2370
            cur.execute(q)
4769
2371
            break
4770
2372
        except psycopg2.Error:
4771
2373
            if count == num_retries - 1:
4772
2374
                raise
4773
2375
4774
2376
    try:
4775
2377
        yield
4776
2378
    finally:
4777
2379
        # Close our connection, swallowing any exceptions as the database
4778
2380
        # may be being rebooted now we have released our lock.
4779
2381
        try:
4780
2382
            del cur
4781
2383
        except psycopg2.Error:
4782
2384
            pass
4783
2385
4784
2386
4785
2387
def clone_database(master_unit, master_host, master_port):
4786
2388
    with restart_lock(master_unit, False):
4787
2389
        postgresql_stop()
4788
2390
        log("Cloning master {}".format(master_unit))
4789
2391
4790
2392
        config_data = hookenv.config()
4791
2393
        version = pg_version()
4792
2394
        cluster_name = config_data['cluster_name']
4793
2395
        postgresql_cluster_dir = os.path.join(
4794
2396
            postgresql_data_dir, version, cluster_name)
4795
2397
        postgresql_config_dir = _get_postgresql_config_dir(config_data)
4796
2398
        cmd = [
4797
2399
            'sudo', '-E',  # -E needed to locate pgpass file.
4798
2400
            '-u', 'postgres', 'pg_basebackup', '-D', postgresql_cluster_dir,
4799
2401
            '--xlog', '--checkpoint=fast', '--no-password',
4800
2402
            '-h', master_host, '-p', master_port,
4801
2403
            '--username=juju_replication']
4802
2404
        log(' '.join(cmd), DEBUG)
4803
2405
4804
2406
        if os.path.isdir(postgresql_cluster_dir):
4805
2407
            shutil.rmtree(postgresql_cluster_dir)
4806
2408
4807
2409
        try:
4808
2410
            # Change directory the postgres user can read, and need
4809
2411
            # .pgpass too.
4810
2412
            with switch_cwd('/tmp'), pgpass():
4811
2413
                # Clone the master with pg_basebackup.
4812
2414
                output = subprocess.check_output(cmd, stderr=subprocess.STDOUT)
4813
2415
            log(output, DEBUG)
4814
2416
            # SSL certificates need to exist in the datadir.
4815
2417
            create_ssl_cert(postgresql_cluster_dir)
4816
2418
            create_recovery_conf(master_host, master_port)
4817
2419
        except subprocess.CalledProcessError as x:
4818
2420
            # We failed, and this cluster is broken. Rebuild a
4819
2421
            # working cluster so start/stop etc. works and we
4820
2422
            # can retry hooks again. Even assuming the charm is
4821
2423
            # functioning correctly, the clone may still fail
4822
2424
            # due to eg. lack of disk space.
4823
2425
            log(x.output, ERROR)
4824
2426
            log("Clone failed, local db destroyed", ERROR)
4825
2427
            if os.path.exists(postgresql_cluster_dir):
4826
2428
                shutil.rmtree(postgresql_cluster_dir)
4827
2429
            if os.path.exists(postgresql_config_dir):
4828
2430
                shutil.rmtree(postgresql_config_dir)
4829
2431
            createcluster()
4830
2432
            config_changed()
4831
2433
            raise
4832
2434
        finally:
4833
2435
            postgresql_start()
4834
2436
            wait_for_db()
4835
2437
4836
2438
4837
2439
def slave_count():
4838
2440
    num_slaves = 0
4839
2441
    for relid in hookenv.relation_ids('replication'):
4840
2442
        num_slaves += len(hookenv.related_units(relid))
4841
2443
    for relid in hookenv.relation_ids('master'):
4842
2444
        num_slaves += len(hookenv.related_units(relid))
4843
2445
    return num_slaves
4844
2446
4845
2447
4846
2448
def postgresql_is_in_backup_mode():
4847
2449
    version = pg_version()
4848
2450
    cluster_name = hookenv.config('cluster_name')
4849
2451
    postgresql_cluster_dir = os.path.join(
4850
2452
        postgresql_data_dir, version, cluster_name)
4851
2453
4852
2454
    return os.path.exists(
4853
2455
        os.path.join(postgresql_cluster_dir, 'backup_label'))
4854
2456
4855
2457
4856
2458
def pg_basebackup_is_running():
4857
2459
    cur = db_cursor(autocommit=True)
4858
2460
    cur.execute("""
4859
2461
        SELECT count(*) FROM pg_stat_activity
4860
2462
        WHERE usename='juju_replication' AND application_name='pg_basebackup'
4861
2463
        """)
4862
2464
    return cur.fetchone()[0] > 0
4863
2465
4864
2466
4865
2467
def postgresql_wal_received_offset():
4866
2468
    """How much WAL we have.
4867
2469
4868
2470
    WAL is replicated asynchronously from the master to hot standbys.
4869
2471
    The more WAL a hot standby has received, the better a candidate it
4870
2472
    makes for master during failover.
4871
2473
4872
2474
    Note that this is not quite the same as how in sync the hot standby is.
4873
2475
    That depends on how much WAL has been replayed. WAL is replayed after
4874
2476
    it is received.
4875
2477
    """
4876
2478
    cur = db_cursor(autocommit=True)
4877
2479
    cur.execute('SELECT pg_is_in_recovery(), pg_last_xlog_receive_location()')
4878
2480
    is_in_recovery, xlog_received = cur.fetchone()
4879
2481
    if is_in_recovery:
4880
2482
        return wal_location_to_bytes(xlog_received)
4881
2483
    return None
4882
2484
4883
2485
4884
2486
def wal_location_to_bytes(wal_location):
4885
2487
    """Convert WAL + offset to num bytes, so they can be compared."""
4886
2488
    logid, offset = wal_location.split('/')
4887
2489
    return int(logid, 16) * 16 * 1024 * 1024 * 255 + int(offset, 16)
4888
2490
4889
2491
4890
2492
def wait_for_db(
4891
2493
        timeout=120, db='postgres', user='postgres', host=None, port=None):
4892
2494
    '''Wait until the db is fully up.'''
4893
2495
    db_cursor(db=db, user=user, host=host, port=port, timeout=timeout)
4894
2496
4895
2497
4896
2498
def unit_sorted(units):
4897
2499
    """Return a sorted list of unit names."""
4898
2500
    return sorted(
4899
2501
        units, lambda a, b: cmp(int(a.split('/')[-1]), int(b.split('/')[-1])))
4900
2502
4901
2503
4902
2504
def delete_metrics_cronjob(cron_path):
4903
2505
    try:
4904
2506
        os.unlink(cron_path)
4905
2507
    except OSError:
4906
2508
        pass
4907
2509
4908
2510
4909
2511
def write_metrics_cronjob(script_path, cron_path):
4910
2512
    config_data = hookenv.config()
4911
2513
4912
2514
    # need the following two configs to be valid
4913
2515
    metrics_target = config_data['metrics_target'].strip()
4914
2516
    metrics_sample_interval = config_data['metrics_sample_interval']
4915
2517
    if (not metrics_target
4916
2518
            or ':' not in metrics_target
4917
2519
            or not metrics_sample_interval):
4918
2520
        log("Required config not found or invalid "
4919
2521
            "(metrics_target, metrics_sample_interval), "
4920
2522
            "disabling statsd metrics", DEBUG)
4921
2523
        delete_metrics_cronjob(cron_path)
4922
2524
        return
4923
2525
4924
2526
    charm_dir = os.environ['CHARM_DIR']
4925
2527
    statsd_host, statsd_port = metrics_target.split(':', 1)
4926
2528
    metrics_prefix = config_data['metrics_prefix'].strip()
4927
2529
    metrics_prefix = metrics_prefix.replace(
4928
2530
        "$UNIT", hookenv.local_unit().replace('.', '-').replace('/', '-'))
4929
2531
4930
2532
    # ensure script installed
4931
2533
    charm_script = os.path.join(charm_dir, 'files', 'metrics',
4932
2534
                                'postgres_to_statsd.py')
4933
2535
    host.write_file(script_path, open(charm_script, 'rb').read(), perms=0755)
4934
2536
4935
2537
    # write the crontab
4936
2538
    with open(cron_path, 'w') as cronjob:
4937
2539
        cronjob.write(render_template("metrics_cronjob.template", {
4938
2540
            'interval': config_data['metrics_sample_interval'],
4939
2541
            'script': script_path,
4940
2542
            'metrics_prefix': metrics_prefix,
4941
2543
            'metrics_sample_interval': metrics_sample_interval,
4942
2544
            'statsd_host': statsd_host,
4943
2545
            'statsd_port': statsd_port,
4944
2546
        }))
4945
2547
4946
2548
4947
2549
@hooks.hook('nrpe-external-master-relation-changed')
4948
2550
def update_nrpe_checks():
4949
2551
    config_data = hookenv.config()
4950
2552
    try:
4951
2553
        nagios_uid = getpwnam('nagios').pw_uid
4952
2554
        nagios_gid = getgrnam('nagios').gr_gid
4953
2555
    except Exception:
4954
2556
        hookenv.log("Nagios user not set up.", hookenv.DEBUG)
4955
2557
        return
4956
2558
4957
2559
    try:
4958
2560
        nagios_password = create_user('nagios')
4959
2561
        pg_pass_entry = '*:*:*:nagios:%s' % (nagios_password)
4960
2562
        with open('/var/lib/nagios/.pgpass', 'w') as target:
4961
2563
            os.fchown(target.fileno(), nagios_uid, nagios_gid)
4962
2564
            os.fchmod(target.fileno(), 0400)
4963
2565
            target.write(pg_pass_entry)
4964
2566
    except psycopg2.InternalError:
4965
2567
        if config_data['manual_replication']:
4966
2568
            log("update_nrpe_checks(): manual_replication: "
4967
2569
                "ignoring psycopg2.InternalError caught creating 'nagios' "
4968
2570
                "postgres role; assuming we're already replicating")
4969
2571
        else:
4970
2572
            raise
4971
2573
4972
2574
    relids = hookenv.relation_ids('nrpe-external-master')
4973
2575
    relations = []
4974
2576
    for relid in relids:
4975
2577
        for unit in hookenv.related_units(relid):
4976
2578
            relations.append(hookenv.relation_get(unit=unit, rid=relid))
4977
2579
4978
2580
    if len(relations) == 1 and 'nagios_hostname' in relations[0]:
4979
2581
        nagios_hostname = relations[0]['nagios_hostname']
4980
2582
        log("update_nrpe_checks: Obtained nagios_hostname ({}) "
4981
2583
            "from nrpe-external-master relation.".format(nagios_hostname))
4982
2584
    else:
4983
2585
        unit = hookenv.local_unit()
4984
2586
        unit_name = unit.replace('/', '-')
4985
2587
        nagios_hostname = "%s-%s" % (config_data['nagios_context'], unit_name)
4986
2588
        log("update_nrpe_checks: Deduced nagios_hostname ({}) from charm "
4987
2589
            "config (nagios_hostname not found in nrpe-external-master "
4988
2590
            "relation, or wrong number of relations "
4989
2591
            "found)".format(nagios_hostname))
4990
2592
4991
2593
    nrpe_service_file = \
4992
2594
        '/var/lib/nagios/export/service__{}_check_pgsql.cfg'.format(
4993
2595
            nagios_hostname)
4994
2596
    nagios_logdir = '/var/log/nagios'
4995
2597
    if not os.path.exists(nagios_logdir):
4996
2598
        os.mkdir(nagios_logdir)
4997
2599
        os.chown(nagios_logdir, nagios_uid, nagios_gid)
4998
2600
    for f in os.listdir('/var/lib/nagios/export/'):
4999
2601
        if re.search('.*check_pgsql.cfg', f):
5000
2602
            os.remove(os.path.join('/var/lib/nagios/export/', f))
Reviewer	Review Type	Date Requested	Status
Matt Bruzek (community)		2015-08-11	Approve on 2015-11-11
Review via email: mp+267646@code.launchpad.net