[ClusterLabs] [Linux-HA] fence_ec2 agent

Dejan Muhamedagic dejanmm at fastmail.fm
Thu Oct 1 13:16:35 UTC 2015


Hi Kazuhiko-san,

On Mon, Sep 28, 2015 at 02:22:02PM +0900, 東一彦 wrote:
> Hi Dejan,
> 
> I made a patch file as unified diff by "hg export tip" command.
> 
> Would you please marge it ?

Merged. I just modified a bit the summary and patch description
beforehand. Many thanks!

Cheers,

Dejan

> 
> 
> Regards,
> Kazuhiko Higashi
> 
> On 2015/09/25 0:04, Dejan Muhamedagic wrote:
> >Hi Kazuhiko-san,
> >
> >On Wed, Mar 25, 2015 at 10:47:01AM +0900, 東一彦 wrote:
> >>Hi Markus,
> >>
> >>I implemented it for trial.
> >>
> >>[diff from http://hg.linux-ha.org/glue/rev/9da0680bc9c0 ]
> >>50d49
> >>< port_default=""
> >>60c59
> >>< ec2_tag=${tag}
> >>---
> >>>[ -n "$tag" ] && ec2_tag="$tag"
> >>63d61
> >>< : ${port=${port_default}}
> >>97c95
> >><       <parameter name="port" unique="1" required="1">
> >>---
> >>>       <parameter name="port" unique="1" required="0">
> >>105c103
> >><       <parameter name="tag" unique="0" required="1">
> >>---
> >>>       <parameter name="tag" unique="0" required="0">
> >>132c130
> >><       <parameter name="port" unique="1" required="1">
> >>---
> >>>       <parameter name="port" unique="1" required="0">
> >>142c140
> >><       <parameter name="tag" unique="0" required="1">
> >>---
> >>>       <parameter name="tag" unique="0" required="0">
> >>221a220,224
> >>>function monitor()
> >>>{
> >>>               # Is the device ok?
> >>>               aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> >>>}
> >>267a271
> >>>[ -n "$2" ] && node_to_fence=$2
> >>326a331,334
> >>>if [ -z "$port" ]; then
> >>>       port="$node_to_fence"
> >>>fi
> >>>
> >>379,380c387
> >><               # Is the device ok?
> >><               aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> >>---
> >>>               monitor
> >>391c398
> >><               instance_status $instance > /dev/null
> >>---
> >>>               monitor
> >>
> >>
> >>
> >>It works fine on my environment with 2 patterns settings below.
> >>
> >>[pattern No.1]
> >>Without "port" and "tag" parameters.
> >>And instances has "Name=<uname>" tag.
> >>
> >>----
> >>primitive prmStonith1-2 stonith:external/ec2 \
> >>          params \
> >>                  pcmk_off_timeout="120s" \
> >>          op start interval="0s" timeout="60s" \
> >>          op monitor interval="3600s" timeout="60s" \
> >>          op stop interval="0s" timeout="60s"
> >>----
> >>
> >>
> >>[pattern No.2]
> >>With only "tag" parameter.(Without "port" parameter.)
> >>And, The 1st instance(node01) has "Cluster1=node01" tag.
> >>The 2nd instance(node02) has "Cluster1=node02" tag.
> >>
> >>----
> >>primitive prmStonith1-2 stonith:external/ec2 \
> >>          params \
> >>                  pcmk_off_timeout="120s" \
> >>                  tag="Cluster1" \
> >>          op start interval="0s" timeout="60s" \
> >>          op monitor interval="3600s" timeout="60s" \
> >>          op stop interval="0s" timeout="60s"
> >>----
> >
> >Sounds good. Sorry for the delay, but would it be possible that
> >you provide a patch as unified diff or similar so that we can
> >apply it.
> >
> >Cheers,
> >
> >Dejan
> >
> >>
> >>Regards,
> >>Kazuhiko Higashi
> >>
> >>
> >>On 2015/03/24 20:48, 東一彦 wrote:
> >>>Hi Markus,
> >>>
> >>>Thank you for the comment.
> >>>
> >>>>Would it be possible, to implement this idea as an additional configuration method to the fence_ec2 agent?
> >>>I think that your idea is good.
> >>>
> >>>So, I tries to implement it.
> >>>I'm going to change the fence_ec2(ec2) the following points.
> >>>
> >>>  - the "tag" and the "port" options will be "not" required.
> >>>
> >>>  - if the "port" option is not set, the 2nd argument of ec2 will use as the "port".
> >>>    - the 2nd argument of ec2 is "node to fence".
> >>>
> >>>  - the "stat" and "status" action will be same the "monitor" action.
> >>>    (for do not use the "port" parameter in "stat" action.)
> >>>
> >>>
> >>>By the above modifications, If it is described uname in the Name tag,
> >>>the setting of the "tag" and "port" parameters are no longer necessary.
> >>>
> >>>----
> >>>primitive prmStonith1-2 stonith:external/ec2 \
> >>>         params \
> >>>                 pcmk_off_timeout="120s" \
> >>>         op start interval="0s" timeout="60s" \
> >>>         op monitor interval="3600s" timeout="60s" \
> >>>         op stop interval="0s" timeout="60s"
> >>>----
> >>>
> >>>
> >>>You can use "tag" parameter like your "Clustername" tag.
> >>>If cluster nodes(instances) have "Cluster1" tag, and uname is described in that tag,
> >>>it works just like you to expect.
> >>>
> >>>----
> >>>primitive prmStonith1-2 stonith:external/ec2 \
> >>>         params \
> >>>                 pcmk_off_timeout="120s" \
> >>>                 tag="Cluster1" \
> >>>         op start interval="0s" timeout="60s" \
> >>>         op monitor interval="3600s" timeout="60s" \
> >>>         op stop interval="0s" timeout="60s"
> >>>----
> >>>
> >>>The 1st instance have "Cluster1=node01" tag-key.
> >>>The 2nd instance have "Cluster1=node02" tag-key.
> >>>The 3rd instance have "Cluster1=node03" tag-key.
> >>>...
> >>>The prmStonith1-2 can fence node01 , node02 and node03.
> >>>
> >>>
> >>>If you like above, I will implement that.
> >>>
> >>>
> >>>Regards,
> >>>Kazuhiko Higashi
> >>>
> >>>
> >>>On 2015/03/19 1:03, Markus Guertler wrote:
> >>>>Hi Kazuhiko, Dejan,
> >>>>
> >>>>the new resource agent is very good. Since there were a couple of days between my original question and the answer from
> >>>>Kazuhiko, I also have written a stonith agent proof of concept (attached to this email) in order to continue in my
> >>>>project. However, I think that your fence_ec2 agent is better from a development perspective and it doesn't make sense
> >>>>to have two different agents for the same use case.
> >>>>
> >>>>Nevertheless, I've implemented an idea, that is very useful in EC2 environments with clusters that have more than two
> >>>>nodes: All EC2 instances that belong to a cluster get a unique cluster name via an EC2 instance tag. The agent uses this
> >>>>tag to determine all cluster nodes that belong to his own cluster
> >>>>
> >>>>--- SNIP ---
> >>>>     gethosts)
> >>>>         # List of hostnames of this cluster
> >>>>         init_agent
> >>>>         ec2-describe-instances --filter "tag-key=Clustername" --filter "tag-value=$clustername" | grep "^TAG" |grep
> >>>>"Hostname" | awk '{ print $5 }' | sort -u
> >>>>--- SNIP ---
> >>>>
> >>>>The advantage of this method is, that you just need one configuration snippet for all nodes. This allows to dynamically
> >>>>add or remove EC2 instances / cluster nodes to/from a cluster without having to need to touch the cluster configuration.
> >>>>Dynamically adding or removing nodes (compute instances) is a very common scenario in a cloud.
> >>>>
> >>>>Would it be possible, to implement this idea as an additional configuration method to the fence_ec2 agent?
> >>>>
> >>>>Cheers,
> >>>>Markus
> >>>>
> >>>>>>>東一彦 <higashi.kazuhiko at lab.ntt.co.jp> 3/12/2015 10:44 AM >>>
> >>>>Hi Dejan
> >>>>
> >>>>Thank you for add it and the fix some issues !
> >>>>
> >>>>
> >>>>  > I was not able to test it, hope it works :)
> >>>>I confirmed that it works fine in my AWS environment :)
> >>>>
> >>>>
> >>>>Regards,
> >>>>Kazuhiko Higashi
> >>>>
> >>>>On 2015/03/11 21:27, Dejan Muhamedagic wrote:
> >>>>>Hi Kazuhiko-san,
> >>>>>
> >>>>>On Wed, Mar 11, 2015 at 02:36:43PM +0900, 東一彦 wrote:
> >>>>>>Hi, Dejan
> >>>>>>
> >>>>>>Thank you for the comment.
> >>>>>>
> >>>>>>I'd like to contribute it as glue stonith agents.
> >>>>>>
> >>>>>>So, I rename it to just "ec2".
> >>>>>>
> >>>>>>Would you please add it to glue repository (http://hg.linux-ha.org/glue/) ?
> >>>>>
> >>>>>I just added your stonith agent. There were this change in the
> >>>>>initial changeset:
> >>>>>
> >>>>>- replaced '-' which is not allowed in identifiers with '_' in
> >>>>>    function getinfo_xml().
> >>>>>
> >>>>>There were other smaller changes. You can find them in the
> >>>>>repository.
> >>>>>
> >>>>>I was not able to test it, hope it works :)
> >>>>>
> >>>>>Many thanks for the contribution.
> >>>>>
> >>>>>Cheers,
> >>>>>
> >>>>>Dejan
> >>>>>
> >>>>>>Regards,
> >>>>>>Kazuhiko Higashi
> >>>>>>
> >>>>>>On 2015/03/06 2:38, Dejan Muhamedagic wrote:
> >>>>>>>Hi,
> >>>>>>>
> >>>>>>>On Tue, Mar 03, 2015 at 05:13:49PM +0900, 東一彦 wrote:
> >>>>>>>>Dear Markus,
> >>>>>>>>
> >>>>>>>>I was also thinking the same thing.
> >>>>>>>>So, Already I've created a new one.
> >>>>>>>
> >>>>>>>Perhaps you'd like to then contribute it upstream? Either to
> >>>>>>>glue stonith agents or RHT fencing agents. It appears that the
> >>>>>>>agent is using the stonith interface, but the name reflects the
> >>>>>>>fencing agents naming scheme.
> >>>>>>>
> >>>>>>>Cheers,
> >>>>>>>
> >>>>>>>Dejan
> >>>>>>>
> >>>>>>>>[ChangeSet]
> >>>>>>>>- An API to be used was changed from "Amazon EC2 CLI" to "AWS CLI".
> >>>>>>>>    -- "AWS CLI" is based Python. So, CPU load might be reduced.
> >>>>>>>>
> >>>>>>>>- The "--private-key" and "--cert" options are deprecated in AWS CLI.
> >>>>>>>>    So, I add a new option "--profile". Use a specific profile from that credential file.
> >>>>>>>>    default is ""
> >>>>>>>>
> >>>>>>>>
> >>>>>>>>[How to use]
> >>>>>>>>- Plaese install the "AWS CLI".
> >>>>>>>>    http://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html
> >>>>>>>>
> >>>>>>>>- Please copy the fence_ec2 in /usr/lib64/stonith/plugins/external/.
> >>>>>>>>    And , Please set the permissions to 755.
> >>>>>>>>
> >>>>>>>>- Please set crm settings as in this example.
> >>>>>>>>    - The instance that have been set as "node01" in the "Name" tag are fence.
> >>>>>>>>    ------
> >>>>>>>>    primitive prmStonith1-2 stonith:external/fence_ec2 \
> >>>>>>>>    params \
> >>>>>>>>        pcmk_off_timeout="300s" \
> >>>>>>>>        port="node01" \
> >>>>>>>>        tag="Name"
> >>>>\
> >>>>>>>>    op start interval="0s" timeout="60s" \
> >>>>>>>>    op monitor interval="3600s" timeout="60s" \
> >>>>>>>>    op stop interval="0s" timeout="60s"
> >>>>>>>>    ------
> >>>>>>>>
> >>>>>>>>
> >>>>>>>>Regards,
> >>>>>>>>Kazuhiko Higashi
> >>>>>>>>
> >>>>>>>>On 2015/02/25 7:22, Markus Guertler wrote:
> >>>>>>>>>Dear list,
> >>>>>>>>>I was just trying to configure the fence_ec2 stonith agent from 2012, written by Andrew Beekhof. It looks like,
> >>>>that this one not working anymore with newer stonith / cluster versions. Is there any other EC2 agent, that is still
> >>>>maintained?
> >>>>>>>>>
> >>>>>>>>>If not, I'll write one myself. However, I'd like to check all options first.
> >>>>>>>>>
> >>>>>>>>>Cheers,
> >>>>>>>>>Markus
> >>>>>>>>>
> >>>>>>>>>_______________________________________________
> >>>>>>>>>Linux-HA mailing list
> >>>>>>>>>Linux-HA at lists.linux-ha.org
> >>>>>>>>>http://lists.linux-ha.org/mailman/listinfo/linux-ha
> >>>>>>>>>See also: http://linux-ha.org/ReportingProblems
> >>>>>>>>>
> >>>>>>>>
> >>>>>>>>
> >>>>>
> >>>>>>#!/bin/bash
> >>>>>>
> >>>>>>description="
> >>>>>>fence_ec2 is an I/O Fencing agent which can be used with Amazon EC2 instances.
> >>>>>>
> >>>>>>API functions used by this agent:
> >>>>>>- aws ec2 describe-tags
> >>>>>>- aws ec2 describe-instances
> >>>>>>- aws ec2 stop-instances
> >>>>>>- aws ec2 start-instances
> >>>>>>- aws ec2 reboot-instances
> >>>>>>
> >>>>>>If the uname used by the cluster node is any of:
> >>>>>>   - Public DNS name (or part there of),
> >>>>>>   - Private DNS name (or part there of),
> >>>>>>   - Instance ID (eg. i-4f15a839)
> >>>>>>   - Contents of tag associated with the instance
> >>>>>>then the agent should be able to automatically discover the instances it can control.
> >>>>>>
> >>>>>>If the tag containing the uname is not [Name], then it will need to be specified using the [tag] option.
> >>>>>>"
> >>>>>>
> >>>>>>#
> >>>>>># Copyright (c) 2011-2013 Andrew Beekhof
> >>>>>># Copyright (c) 2014 NIPPON TELEGRAPH AND TELEPHONE CORPORATION
> >>>>>>#                    All Rights Reserved.
> >>>>>>#
> >>>>>># This program is free software; you can redistribute it and/or modify
> >>>>>># it under the terms of version 2 of the GNU General Public License as
> >>>>>># published by the Free Software Foundation.
> >>>>>>#
> >>>>>># This program is distributed in the hope that it would be useful, but
> >>>>>># WITHOUT ANY WARRANTY; without even the implied warranty of
> >>>>>># MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
> >>>>>>#
> >>>>>># Further, this software is distributed without any warranty that it is
> >>>>>># free of the rightful claim of any third person regarding infringement
> >>>>>># or the like.  Any license provided herein, whether implied or
> >>>>>># otherwise, applies only to this software file.  Patent licenses, if
> >>>>>># any, provided herein do not apply to combinations of this program with
> >>>>>># other software, or any other product whatsoever.
> >>>>>>#
> >>>>>># You should have received a copy of the GNU General Public License
> >>>>>># along with this program; if not, write the Free Software Foundation,
> >>>>>># Inc., 59 Temple Place - Suite 330, Boston MA 02111-1307, USA.
> >>>>>>#
> >>>>>>#######################################################################
> >>>>>>
> >>>>>>quiet=0
> >>>>>>port_default=""
> >>>>>>
> >>>>>>instance_not_found=0
> >>>>>>unknown_are_stopped=0
> >>>>>>
> >>>>>>action_default="reset"         # Default fence action
> >>>>>>ec2_tag_default="Name"           # EC2 Tag containing the instance's uname
> >>>>>>
> >>>>>>sleep_time="1"
> >>>>>>
> >>>>>>ec2_tag=${tag}
> >>>>>>
> >>>>>>: ${ec2_tag=${ec2_tag_default}}
> >>>>>>: ${port=${port_default}}
> >>>>>>
> >>>>>>function usage()
> >>>>>>{
> >>>>>>cat <<EOF
> >>>>>>`basename $0` - A fencing agent for Amazon EC2 instances
> >>>>>>
> >>>>>>$description
> >>>>>>
> >>>>>>Usage: `basename $0` -o|--action [-n|--port] [options]
> >>>>>>Options:
> >>>>>>   -h, --help         This text
> >>>>>>   -V, --version        Version information
> >>>>>>   -q, --quiet         Reduced output mode
> >>>>>>
> >>>>>>Commands:
> >>>>>>   -o, --action        Action to perform: on|off|reboot|status|monitor
> >>>>>>   -n, --port         The name of a machine/instance to control/check
> >>>>>>
> >>>>>>Additional Options:
> >>>>>>   -p, --profile        Use a specific profile from your credential file.
> >>>>>>   -t, --tag         Name of the tag containing the instance's uname
> >>>>>>
> >>>>>>Dangerous options:
> >>>>>>   -U, --unknown-are-stopped     Assume any unknown instance is safely stopped
> >>>>>>
> >>>>>>EOF
> >>>>>>
> >>>>    exit 0;
> >>>>>>}
> >>>>>>
> >>>>>>function getinfo-xml()
> >>>>>>{
> >>>>>>    cat <<EOF
> >>>>>><parameters>
> >>>>>>    <parameter name="port" unique="1" required="1">
> >>>>>>        <content type="string" />
> >>>>>>        <shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="profile" unique="0" required="0">
> >>>>>>        <content type="string" default="default" />
> >>>>>>        <shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="tag" unique="0" required="1">
> >>>>>>        <content type="string" default="Name" />
> >>>>>>        <shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="unknown_are_stopped" unique="0" required="0">
> >>>>>>        <content type="string" default="false" />
> >>>>>>        <shortdesc lang="en">DANGER: Assume any unknown instance is safely stopped</shortdesc>
> >>>>>>    </parameter>
> >>>>>></parameters>
> >>>>>>EOF
> >>>>>>    exit 0;
> >>>>>>}
> >>>>>>
> >>>>>>function metadata()
> >>>>>>{
> >>>>>>    cat <<EOF
> >>>>>><?xml version="1.0" ?>
> >>>>>><resource-agent name="fence_ec2" shortdesc="Fencing agent for Amazon EC2 instances" >
> >>>>>>    <longdesc>
> >>>>>>$description
> >>>>>>    </longdesc>
> >>>>>>    <parameters>
> >>>>>>    <parameter name="action" unique="0" required="1">
> >>>>>>        <getopt mixed="-o, --action=[action]" />
> >>>>>>        <content type="string" default="reboot" />
> >>>>>>        <shortdesc lang="en">Fencing Action</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="port" unique="1" required="1">
> >>>>>>        <getopt mixed="-n, --port=[port]" />
> >>>>>>        <content type="string" />
> >>>>>>        <shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="profile" unique="0" required="0">
> >>>>>>        <getopt mixed="-p, --profile=[profile]" />
> >>>>>>        <content type="string" default="default" />
> >>>>>>        <shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="tag" unique="0" required="1">
> >>>>>>        <getopt mixed="-t, --tag=[tag]" />
> >>>>>>        <content type="string" default="Name" />
> >>>>>>        <shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    <parameter name="unknown-are-stopped" unique="0" required="0">
> >>>>>>        <getopt mixed="-U, --unknown-are-stopped" />
> >>>>>>        <content type="string" default="false" />
> >>>>>>        <shortdesc lang="en">DANGER: Assume any unknown instance is safely stopped</shortdesc>
> >>>>>>    </parameter>
> >>>>>>    </parameters>
> >>>>>>    <actions>
> >>>>>>    <action name="on" />
> >>>>>>    <action name="off" />
> >>>>>>    <action name="reboot" />
> >>>>>>    <action name="status" />
> >>>>>>    <action name="list" />
> >>>>>>    <action name="monitor" />
> >>>>>>    <action name="metadata" />
> >>>>>>    </actions>
> >>>>>></resource-agent>
> >>>>>>EOF
> >>>>>>    exit 0;
> >>>>>>}
> >>>>>>
> >>>>>>function instance_for_port()
> >>>>>>{
> >>>>>>    local port=$1
> >>>>>>    local instance=""
> >>>>>>
> >>>>>>    # Look for port name -n in the INSTANCE data
> >>>>>>    instance=`aws ec2 describe-instances $options | grep "^INSTANCES[[:space:]].*[[:space:]]$port[[:space:]]" | awk
> >>>>'{print $8}'`
> >>>>>>    if [ -z $instance ]; then
> >>>>>>        # Look for port name -n in the Name TAG
> >>>>>>        instance=`aws ec2 describe-tags $options | grep
> >>>>"^TAGS[[:space:]]$ec2_tag[[:space:]].*[[:space:]]instance[[:space:]]$port$" | awk '{print $3}'`
> >>>>>>    fi
> >>>>>>
> >>>>>>    if [ -z $instance ]; then
> >>>>>>        instance_not_found=1
> >>>>>>        instance=$port
> >>>>>>    fi
> >>>>>>
> >>>>>>    echo $instance
> >>>>>>}
> >>>>>>
> >>>>>>function instance_on()
> >>>>>>{
> >>>>>>    aws ec2 start-instances $options --instance-ids $instance
> >>>>>>}
> >>>>>>
> >>>>>>function instance_off()
> >>>>>>{
> >>>>>>    if [ $unknown_are_stopped = 1 -a $instance_not_found ]; then
> >>>>>>        : nothing to do
> >>>>>>        ha_log.sh info "Assuming unknown instance $instance is already off"
> >>>>>>    else
> >>>>>>        aws ec2 stop-instances $options --instance-ids $instance --force
> >>>>>>    fi
> >>>>>>}
> >>>>>>
> >>>>>>function instance_status()
> >>>>>>{
> >>>>>>    local instance=$1
> >>>>>>    local status="unknown"
> >>>>>>    local rc=1
> >>>>>>
> >>>>>>    # List of instances and their current status
> >>>>>>    if [ $unknown_are_stopped = 1 -a $instance_not_found ]; then
> >>>>>>        ha_log.sh info "$instance stopped (unknown)"
> >>>>>>    else
> >>>>>>        status=`aws ec2 describe-instance
> >>>>s $options --instance-ids $instance | awk '{
> >>>>>>            if (/^STATE¥t/) { printf "%s", $3 }
> >>>>>>            }'`
> >>>>>>        rc=$?
> >>>>>>    fi
> >>>>>>    ha_log.sh info "status check for $instance is $status"
> >>>>>>    echo $status
> >>>>>>    return $rc
> >>>>>>}
> >>>>>>
> >>>>>>
> >>>>>>TEMP=`getopt -o qVho:e:p:n:t:U --long version,help,action:,port:,option:,profile:,tag:,quiet,unknown-are-stopped ¥
> >>>>>>       -n 'fence_ec2' -- "$@"`
> >>>>>>
> >>>>>>if [ $? != 0 ];then
> >>>>>>      usage
> >>>>>>      exit 1
> >>>>>>fi
> >>>>>>
> >>>>>># Note the quotes around `$TEMP': they are essential!
> >>>>>>eval set -- "$TEMP"
> >>>>>>
> >>>>>>if [ -z $1 ]; then
> >>>>>>    # If there are no command line args, look for options from stdin
> >>>>>>    while read line; do
> >>>>>>        case $line in
> >>>>>>            option=*|action=*) action=`echo $line | sed s/.*=//`;;
> >>>>>>            port=*)        port=`echo $line | sed s/.*=//`;;
> >>>>>>            profile=*)     ec2_profile=`echo $line | sed s/.*=//`;;
> >>>>>>            tag=*)         ec2_tag=`echo $line | sed s/.*=//`;;
> >>>>>>            quiet*)        quiet=1;;
> >>>>>>            unknown-are-stopped*) unknown_are_stopped=1;;
> >>>>>>            --);;
> >>>>>>            *) ha_log.sh err "Invalid command: $line";;
> >>>>>>        esac
> >>>>>>    done
> >>>>>>fi
> >>>>>>
> >>>>>>while true ; do
> >>>>>>    case "$1" in
> >>>>>>        -o|--action|--option) action=$2;   shift; shift;;
> >>>>>>        -n|--port)            port=$2;     shift; shift;;
> >>>>>>        -p|--profile)         ec2_profile=$2; shift; shift;;
> >>>>>>        -t|--tag)          ec2_tag=$2; shift; shift;;
> >>>>>>        -U|--unknown-are-stopped) unknown_are_stopped=1; shift;;
> >>>>>>        -q|--quiet) quiet=1; shift;;
> >>>>>>        -V|--version) echo "1.0.0"; exit 0;;
> >>>>>>        --help|-h)
> >>>>>>            usage;
> >>>>>>            exit 0;;
> >>>>>>        --) shift ; break ;;
> >>>>>>        *) ha_log.sh err "Unknown option: $1. See --help for details."; exit 1;;
> >>>>>>    esac
> >>>>>>done
> >>>>>>
> >>>>>>[ -n "$1" ] && action=$1
> >>>>>>
> >>>>>>if [ -z "$ec2_profile"]; then
> >>>>>>    options="--output text --profile default"
> >>>>>>else
> >>>>>>    options="--output text --profile $ec2_profile "
> >>>>>>fi
> >>>>>>
> >>>>>>action=`echo $action | tr 'A-Z' 'a-z'`
> >>>>>>
> >>>>>>case $action in
> >>>>>>    metadata)
> >>>>>>        metadata
> >>>>>>    ;;
> >>>>>>    getinfo-xml)
> >>>>>>        getinfo-xml
> >>>>>>    ;;
> >>>>>>    getconfignames)
> >>>>>>        for i in profile port tag
> >>>>>>        do
> >>>>>>            echo $i
> >>>>>>        done
> >>>>>>        exit 0
> >>>>>>    ;;
> >>>>>>    getinfo-devid)
> >>>>>>        echo "EC2 STONITH device"
> >>>>>>        exit 0
> >>>>>>    ;;
> >>>>>>    getinfo-devname)
> >>>>>>        echo "EC2 STONITH external device"
> >>>>>>        exit 0
> >>>>>>    ;;
> >>>>>>    getinfo-devdescr)
> >>>>>>        echo "fence_ec2 is an I/O Fencing agent which can be used with Amazon EC2 instances."
> >>>>>>        exit 0
> >>>>>>    ;;
> >>>>>>    getinfo-devurl)
> >>>>>>        echo ""
> >>>>>>        exit 0
> >>>>>>    ;;
> >>>>>>esac
> >>>>>>
> >>>>>># get my instance id
> >>>>>>myinstance=`curl http://169.254.169.254/latest/meta-data/instance-id`
> >>>>>>
> >>>>>># check my status.
> >>>>>># When the EC2 instance be stopped by the "aws ec2 stop-instances" , the stop processing of the OS is executed.
> >>>>>># While the OS stop processing, Pacemaker can execute the STONITH processing.
> >>>>>># So, If my status is not "running", it determined that I was already fenced. And to prevent fencing each other
> >>>>>># in split-brain, I don't fence other node.
> >>>>>>if [ -z "$myinstance" ]; then
> >>>>>>    ha_log.sh err "Failed to get My Instance ID. so can not check my status."
> >>>>>>    exit 1
> >>>>>>fi
> >>>>>>mystatus=`instance_status $myinstance`
> >>>>>>if [ "$mystatus" != "running" ]; then #do not fence
> >>>>>>    ha_log.sh warn "I was already fenced (My instance status=$mystatus). I don't fence other node."
> >>>>>>    exit 1
> >>>>>>fi
> >>>>>>
> >>>>>># get target's instance id
> >>>>>>instance=""
> >>>>>>if [ ! -z "$port" ]; then
> >>>>>>    instance=`instance_for_port $port $options`
> >>>>>>fi
> >>>>>>
> >>>>>>case $action in
> >>>>>>    reboot|reset)
> >>>>>>        status=`instance_status $instance`
> >>>>>>        if [ "$status" != "stopped" ]; then
> >>>>>>            instance_off
> >>>>>>        fi
> >>>>>>        while true;
> >>>>>>        do
> >>>>>>            status=`instance_status $instance`
> >>>>>>            if [ "$status" = "stopped" ]; then
> >>>>>>                break
> >>>>>>            fi
> >>>>>>            sleep $sleep_time
> >>>>>>        done
> >>>>>>        instance_on
> >>>>>>        while true;
> >>>>>>        do
> >>>>>>            status=`instance_status $instance`
> >>>>>>            if [ "$status" = "running" ]; then
> >>>>>>                break
> >>>>>>            fi
> >>>>>>            sleep $sleep_time
> >>>>>>        done
> >>>>>>    ;;
> >>>>>>    poweron|on)
> >>>>>>        instance_on
> >>>>>>        while true;
> >>>>>>        do
> >>>>>>            status=`instance_status $instance`
> >>>>>>            if [ "$
> >>>>status" = "running" ]; then
> >>>>>>                break
> >>>>>>            fi
> >>>>>>        done
> >>>>>>    ;;
> >>>>>>    poweroff|off)
> >>>>>>        instance_off
> >>>>>>        while true;
> >>>>>>        do
> >>>>>>            status=`instance_status $instance`
> >>>>>>            if [ "$status" = "stopped" ]; then
> >>>>>>                break
> >>>>>>            fi
> >>>>>>            sleep $sleep_time
> >>>>>>        done
> >>>>>>    ;;
> >>>>>>    monitor)
> >>>>>>        # Is the device ok?
> >>>>>>        aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> >>>>>>    ;;
> >>>>>>    gethosts|hostlist|list)
> >>>>>>        # List of names we know about
> >>>>>>        a=`aws ec2 describe-instances $options | awk -v tag_pat="^TAGS¥t$ec2_tag¥t" -F '¥t' '{
> >>>>>>            if (/^INSTANCES/) { printf "%s¥n", $8 }
> >>>>>>            else if ( $1"¥t"$2"¥t" ‾ tag_pat ) { printf "%s¥n", $3 }
> >>>>>>            }' | sort -u`
> >>>>>>        echo $a
> >>>>>>    ;;
> >>>>>>    stat|status)
> >>>>>>        instance_status $instance > /dev/null
> >>>>>>    ;;
> >>>>>>    *) ha_log.sh err "Unknown action: $action"; exit 1;;
> >>>>>>esac
> >>>>>>
> >>>>>>status=$?
> >>>>>>
> >>>>>>if [ $quiet -eq 1 ]; then
> >>>>>>    : nothing
> >>>>>>elif [ $status -eq 0 ]; then
> >>>>>>    ha_log.sh info "Operation $action passed"
> >>>>>>else
> >>>>>>    ha_log.sh err "Operation $action failed: $status"
> >>>>>>fi
> >>>>>>exit $status
> >>>>>
> >>>>>>_______________________________________________
> >>>>>>Linux-HA mailing list
> >>>>>>Linux-HA at lists.linux-ha.org
> >>>>>>http://lists.linux-ha.org/mailman/listinfo/linux-ha
> >>>>>>See also: http://linux-ha.org/ReportingProblems
> >>>>>
> >>>>>_______________________________________________
> >>>>>Linux-HA mailing list
> >>>>>Linux-HA at lists.linux-ha.org
> >>>>>http://lists.linux-ha.org/mailman/listinfo/linux-ha
> >>>>>See also: http://linux-ha.org/ReportingProblems
> >>>>>
> >>>>>
> >>>>
> >>>>
> >>>>
> >>>>
> >>>>_______________________________________________
> >>>>Users mailing list: Users at clusterlabs.org
> >>>>http://clusterlabs.org/mailman/listinfo/users
> >>>>
> >>>>Project Home: http://www.clusterlabs.org
> >>>>Getting started: http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
> >>>>Bugs: http://bugs.clusterlabs.org
> >>>>
> >>>
> >>>
> >>
> >>
> >
> >>#!/bin/bash
> >>
> >>description="
> >>fence_ec2 is an I/O Fencing agent which can be used with Amazon EC2 instances.
> >>
> >>API functions used by this agent:
> >>- aws ec2 describe-tags
> >>- aws ec2 describe-instances
> >>- aws ec2 stop-instances
> >>- aws ec2 start-instances
> >>- aws ec2 reboot-instances
> >>
> >>If the uname used by the cluster node is any of:
> >>  - Public DNS name (or part there of),
> >>  - Private DNS name (or part there of),
> >>  - Instance ID (eg. i-4f15a839)
> >>  - Contents of tag associated with the instance
> >>then the agent should be able to automatically discover the instances it can control.
> >>
> >>If the tag containing the uname is not [Name], then it will need to be specified using the [tag] option.
> >>"
> >>
> >>#
> >># Copyright (c) 2011-2013 Andrew Beekhof
> >># Copyright (c) 2014 NIPPON TELEGRAPH AND TELEPHONE CORPORATION
> >>#                    All Rights Reserved.
> >>#
> >># This program is free software; you can redistribute it and/or modify
> >># it under the terms of version 2 of the GNU General Public License as
> >># published by the Free Software Foundation.
> >>#
> >># This program is distributed in the hope that it would be useful, but
> >># WITHOUT ANY WARRANTY; without even the implied warranty of
> >># MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
> >>#
> >># Further, this software is distributed without any warranty that it is
> >># free of the rightful claim of any third person regarding infringement
> >># or the like.  Any license provided herein, whether implied or
> >># otherwise, applies only to this software file.  Patent licenses, if
> >># any, provided herein do not apply to combinations of this program with
> >># other software, or any other product whatsoever.
> >>#
> >># You should have received a copy of the GNU General Public License
> >># along with this program; if not, write the Free Software Foundation,
> >># Inc., 59 Temple Place - Suite 330, Boston MA 02111-1307, USA.
> >>#
> >>#######################################################################
> >>
> >>quiet=0
> >>
> >>instance_not_found=0
> >>unknown_are_stopped=0
> >>
> >>action_default="reset"         # Default fence action
> >>ec2_tag_default="Name"	       # EC2 Tag containing the instance's uname
> >>
> >>sleep_time="1"
> >>
> >>[ -n "$tag" ] && ec2_tag="$tag"
> >>
> >>: ${ec2_tag=${ec2_tag_default}}
> >>
> >>function usage()
> >>{
> >>cat <<EOF
> >>`basename $0` - A fencing agent for Amazon EC2 instances
> >>
> >>$description
> >>
> >>Usage: `basename $0` -o|--action [-n|--port] [options]
> >>Options:
> >>  -h, --help 		This text
> >>  -V, --version		Version information
> >>  -q, --quiet 		Reduced output mode
> >>
> >>Commands:
> >>  -o, --action		Action to perform: on|off|reboot|status|monitor
> >>  -n, --port 		The name of a machine/instance to control/check
> >>
> >>Additional Options:
> >>  -p, --profile		Use a specific profile from your credential file.
> >>  -t, --tag 		Name of the tag containing the instance's uname
> >>
> >>Dangerous options:
> >>  -U, --unknown-are-stopped 	Assume any unknown instance is safely stopped
> >>
> >>EOF
> >>     exit 0;
> >>}
> >>
> >>function getinfo_xml()
> >>{
> >>	cat <<EOF
> >><parameters>
> >>	<parameter name="port" unique="1" required="0">
> >>		<content type="string" />
> >>		<shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
> >>	</parameter>
> >>	<parameter name="profile" unique="0" required="0">
> >>		<content type="string" default="default" />
> >>		<shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
> >>	</parameter>
> >>	<parameter name="tag" unique="0" required="0">
> >>		<content type="string" default="Name" />
> >>		<shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
> >>	</parameter>
> >>	<parameter name="unknown_are_stopped" unique="0" required="0">
> >>		<content type="string" default="false" />
> >>		<shortdesc lang="en">DANGER: Assume any unknown instance is safely stopped</shortdesc>
> >>	</parameter>
> >></parameters>
> >>EOF
> >>	exit 0;
> >>}
> >>
> >>function metadata()
> >>{
> >>	cat <<EOF
> >><?xml version="1.0" ?>
> >><resource-agent name="fence_ec2" shortdesc="Fencing agent for Amazon EC2 instances" >
> >>	<longdesc>
> >>$description
> >>	</longdesc>
> >>	<parameters>
> >>	<parameter name="action" unique="0" required="1">
> >>		<getopt mixed="-o, --action=[action]" />
> >>		<content type="string" default="reboot" />
> >>		<shortdesc lang="en">Fencing Action</shortdesc>
> >>	</parameter>
> >>	<parameter name="port" unique="1" required="0">
> >>		<getopt mixed="-n, --port=[port]" />
> >>		<content type="string" />
> >>		<shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
> >>	</parameter>
> >>	<parameter name="profile" unique="0" required="0">
> >>		<getopt mixed="-p, --profile=[profile]" />
> >>		<content type="string" default="default" />
> >>		<shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
> >>	</parameter>
> >>	<parameter name="tag" unique="0" required="0">
> >>		<getopt mixed="-t, --tag=[tag]" />
> >>		<content type="string" default="Name" />
> >>		<shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
> >>	</parameter>
> >>	<parameter name="unknown-are-stopped" unique="0" required="0">
> >>		<getopt mixed="-U, --unknown-are-stopped" />
> >>		<content type="string" default="false" />
> >>		<shortdesc lang="en">DANGER: Assume any unknown instance is safely stopped</shortdesc>
> >>	</parameter>
> >>	</parameters>
> >>	<actions>
> >>	<action name="on" />
> >>	<action name="off" />
> >>	<action name="reboot" />
> >>	<action name="status" />
> >>	<action name="list" />
> >>	<action name="monitor" />
> >>	<action name="metadata" />
> >>	</actions>
> >></resource-agent>
> >>EOF
> >>	exit 0;
> >>}
> >>
> >>function instance_for_port()
> >>{
> >>	local port=$1
> >>	local instance=""
> >>
> >>	# Look for port name -n in the INSTANCE data
> >>	instance=`aws ec2 describe-instances $options | grep "^INSTANCES[[:space:]].*[[:space:]]$port[[:space:]]" | awk '{print $8}'`
> >>	if [ -z $instance ]; then
> >>		# Look for port name -n in the Name TAG
> >>		instance=`aws ec2 describe-tags $options | grep "^TAGS[[:space:]]$ec2_tag[[:space:]].*[[:space:]]instance[[:space:]]$port$" | awk '{print $3}'`
> >>	fi
> >>
> >>	if [ -z $instance ]; then
> >>		instance_not_found=1
> >>		instance=$port
> >>	fi
> >>
> >>	echo $instance
> >>}
> >>
> >>function instance_on()
> >>{
> >>	aws ec2 start-instances $options --instance-ids $instance
> >>}
> >>
> >>function instance_off()
> >>{
> >>	if [ "$unknown_are_stopped" = 1 -a $instance_not_found ]; then
> >>		: nothing to do
> >>		ha_log.sh info "Assuming unknown instance $instance is already off"
> >>	else
> >>		aws ec2 stop-instances $options --instance-ids $instance --force
> >>	fi
> >>}
> >>
> >>function instance_status()
> >>{
> >>	local instance=$1
> >>	local status="unknown"
> >>	local rc=1
> >>
> >>	# List of instances and their current status
> >>	if [ "$unknown_are_stopped" = 1 -a $instance_not_found ]; then
> >>		ha_log.sh info "$instance stopped (unknown)"
> >>	else
> >>		status=`aws ec2 describe-instances $options --instance-ids $instance | awk '{
> >>			if (/^STATE¥t/) { printf "%s", $3 }
> >>			}'`
> >>		rc=$?
> >>	fi
> >>	ha_log.sh info "status check for $instance is $status"
> >>	echo $status
> >>	return $rc
> >>}
> >>
> >>function monitor()
> >>{
> >>		# Is the device ok?
> >>		aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> >>}
> >>
> >>TEMP=`getopt -o qVho:e:p:n:t:U --long version,help,action:,port:,option:,profile:,tag:,quiet,unknown-are-stopped ¥
> >>      -n 'fence_ec2' -- "$@"`
> >>
> >>if [ $? != 0 ];then
> >>     usage
> >>     exit 1
> >>fi
> >>
> >># Note the quotes around `$TEMP': they are essential!
> >>eval set -- "$TEMP"
> >>
> >>if [ -z $1 ]; then
> >>	# If there are no command line args, look for options from stdin
> >>	while read line; do
> >>		case $line in
> >>			option=*|action=*) action=`echo $line | sed s/.*=//`;;
> >>			port=*)        port=`echo $line | sed s/.*=//`;;
> >>			profile=*)     ec2_profile=`echo $line | sed s/.*=//`;;
> >>			tag=*)         ec2_tag=`echo $line | sed s/.*=//`;;
> >>			quiet*)        quiet=1;;
> >>			unknown-are-stopped*) unknown_are_stopped=1;;
> >>			--);;
> >>			*) ha_log.sh err "Invalid command: $line";;
> >>		esac
> >>	done
> >>fi
> >>
> >>while true ; do
> >>	case "$1" in
> >>		-o|--action|--option) action=$2;   shift; shift;;
> >>		-n|--port)            port=$2;     shift; shift;;
> >>		-p|--profile)         ec2_profile=$2; shift; shift;;
> >>		-t|--tag)	      ec2_tag=$2; shift; shift;;
> >>		-U|--unknown-are-stopped) unknown_are_stopped=1; shift;;
> >>		-q|--quiet) quiet=1; shift;;
> >>		-V|--version) echo "1.0.0"; exit 0;;
> >>		--help|-h)
> >>			usage;
> >>			exit 0;;
> >>		--) shift ; break ;;
> >>		*) ha_log.sh err "Unknown option: $1. See --help for details."; exit 1;;
> >>	esac
> >>done
> >>
> >>[ -n "$1" ] && action=$1
> >>[ -n "$2" ] && node_to_fence=$2
> >>
> >>if [ -z "$ec2_profile"]; then
> >>	options="--output text --profile default"
> >>else
> >>	options="--output text --profile $ec2_profile "
> >>fi
> >>
> >>action=`echo $action | tr 'A-Z' 'a-z'`
> >>
> >>case $action in
> >>	metadata)
> >>		metadata
> >>	;;
> >>	getinfo-xml)
> >>		getinfo_xml
> >>	;;
> >>	getconfignames)
> >>		for i in profile port tag unknown_are_stopped
> >>		do
> >>			echo $i
> >>		done
> >>		exit 0
> >>	;;
> >>	getinfo-devid)
> >>		echo "EC2 STONITH device"
> >>		exit 0
> >>	;;
> >>	getinfo-devname)
> >>		echo "EC2 STONITH external device"
> >>		exit 0
> >>	;;
> >>	getinfo-devdescr)
> >>		echo "ec2 is an I/O Fencing agent which can be used with Amazon EC2 instances."
> >>		exit 0
> >>	;;
> >>	getinfo-devurl)
> >>		echo ""
> >>		exit 0
> >>	;;
> >>esac
> >>
> >># get my instance id
> >>myinstance=`curl http://169.254.169.254/latest/meta-data/instance-id`
> >>
> >># check my status.
> >># When the EC2 instance be stopped by the "aws ec2 stop-instances" , the stop processing of the OS is executed.
> >># While the OS stop processing, Pacemaker can execute the STONITH processing.
> >># So, If my status is not "running", it determined that I was already fenced. And to prevent fencing each other
> >># in split-brain, I don't fence other node.
> >>if [ -z "$myinstance" ]; then
> >>	ha_log.sh err "Failed to get My Instance ID. so can not check my status."
> >>	exit 1
> >>fi
> >>mystatus=`instance_status $myinstance`
> >>if [ "$mystatus" != "running" ]; then #do not fence
> >>	ha_log.sh warn "I was already fenced (My instance status=$mystatus). I don't fence other node."
> >>	exit 1
> >>fi
> >>
> >>if [ -z "$port" ]; then
> >>	port="$node_to_fence"
> >>fi
> >>
> >># get target's instance id
> >>instance=""
> >>if [ ! -z "$port" ]; then
> >>	instance=`instance_for_port $port $options`
> >>fi
> >>
> >>case $action in
> >>	reboot|reset)
> >>		status=`instance_status $instance`
> >>		if [ "$status" != "stopped" ]; then
> >>			instance_off
> >>		fi
> >>		while true;
> >>		do
> >>			status=`instance_status $instance`
> >>			if [ "$status" = "stopped" ]; then
> >>				break
> >>			fi
> >>			sleep $sleep_time
> >>		done
> >>		instance_on
> >>		while true;
> >>		do
> >>			status=`instance_status $instance`
> >>			if [ "$status" = "running" ]; then
> >>				break
> >>			fi
> >>			sleep $sleep_time
> >>		done
> >>	;;
> >>	poweron|on)
> >>		instance_on
> >>		while true;
> >>		do
> >>			status=`instance_status $instance`
> >>			if [ "$status" = "running" ]; then
> >>				break
> >>			fi
> >>		done
> >>	;;
> >>	poweroff|off)
> >>		instance_off
> >>		while true;
> >>		do
> >>			status=`instance_status $instance`
> >>			if [ "$status" = "stopped" ]; then
> >>				break
> >>			fi
> >>			sleep $sleep_time
> >>		done
> >>	;;
> >>	monitor)
> >>		monitor
> >>	;;
> >>	gethosts|hostlist|list)
> >>		# List of names we know about
> >>		a=`aws ec2 describe-instances $options | awk -v tag_pat="^TAGS¥t$ec2_tag¥t" -F '¥t' '{
> >>			if (/^INSTANCES/) { printf "%s¥n", $8 }
> >>			else if ( $1"¥t"$2"¥t" ‾ tag_pat ) { printf "%s¥n", $3 }
> >>			}' | sort -u`
> >>		echo $a
> >>	;;
> >>	stat|status)
> >>		monitor
> >>	;;
> >>	*) ha_log.sh err "Unknown action: $action"; exit 1;;
> >>esac
> >>
> >>status=$?
> >>
> >>if [ $quiet -eq 1 ]; then
> >>	: nothing
> >>elif [ $status -eq 0 ]; then
> >>	ha_log.sh info "Operation $action passed"
> >>else
> >>	ha_log.sh err "Operation $action failed: $status"
> >>fi
> >>exit $status
> >
> >>_______________________________________________
> >>Users mailing list: Users at clusterlabs.org
> >>http://clusterlabs.org/mailman/listinfo/users
> >>
> >>Project Home: http://www.clusterlabs.org
> >>Getting started: http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
> >>Bugs: http://bugs.clusterlabs.org
> >
> >
> >
> 
> 
> -- 
> ----------------------------------------------------
>  東 一彦
>   NTT OSSセンタ 基盤技術ユニット 高信頼担当
>   (SV総研 ソフトウェアイノベーションセンタ OSS推進PJ)
>  Mail:higashi.kazuhiko at lab.ntt.co.jp
>  Tel :03-5860-5135 (直通:5111)
>  〒108-8019 東京都港区港南1-9-1 NTT品川TWINSビル11階
> 
>  ★OSSセンタポータルサイトをぜひご覧ください★
> ・NTT東日本、NTT西日本、NTTコミュニケーションズの方
>       https://www.oss-sc.ecl.ipxp/
> ・上記以外の方
>       https://www.oss-sc.ecl.ntt.co.jp/
> ----------------------------------------------------

> # HG changeset patch
> # User Kazuhiko Higashi <kazuh at goo.jp>
> # Date 1443417289 -32400
> # Node ID 70c1608dd39535465b9f04147081436bcc59f611
> # Parent  9da0680bc9c0b99eba65b40aac9282a8dd28889a
> Dev: stonith: external/ec2: Be able to omit the "port" option.
> 
> It changed the following points.
> 
>  - the "tag" and the "port" options will be "not" required.
> 
>  - if the "port" option is not set, the 2nd argument of ec2 will use as the "port".
>    - the 2nd argument of ec2 is "node to fence".
> 
>  - the "stat" and "status" action will be same the "monitor" action.
>    (for do not use the "port" parameter in "stat" action.)
> 
> By this modifications, If it is described uname in the Name tag,
> the setting of the "tag" and "port" parameters are no longer necessary.
> 
> diff -r 9da0680bc9c0 -r 70c1608dd395 lib/plugins/stonith/external/ec2
> --- a/lib/plugins/stonith/external/ec2	Wed Mar 11 13:24:25 2015 +0100
> +++ b/lib/plugins/stonith/external/ec2	Mon Sep 28 14:14:49 2015 +0900
> @@ -47,7 +47,6 @@
>  #######################################################################
>  
>  quiet=0
> -port_default=""
>  
>  instance_not_found=0
>  unknown_are_stopped=0
> @@ -57,10 +56,9 @@
>  
>  sleep_time="1"
>  
> -ec2_tag=${tag}
> +[ -n "$tag" ] && ec2_tag="$tag"
>  
>  : ${ec2_tag=${ec2_tag_default}}
> -: ${port=${port_default}}
>  
>  function usage()
>  {
> @@ -94,7 +92,7 @@
>  {
>  	cat <<EOF
>  <parameters>
> -	<parameter name="port" unique="1" required="1">
> +	<parameter name="port" unique="1" required="0">
>  		<content type="string" />
>  		<shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
>  	</parameter>
> @@ -102,7 +100,7 @@
>  		<content type="string" default="default" />
>  		<shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
>  	</parameter>
> -	<parameter name="tag" unique="0" required="1">
> +	<parameter name="tag" unique="0" required="0">
>  		<content type="string" default="Name" />
>  		<shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
>  	</parameter>
> @@ -129,7 +127,7 @@
>  		<content type="string" default="reboot" />
>  		<shortdesc lang="en">Fencing Action</shortdesc>
>  	</parameter>
> -	<parameter name="port" unique="1" required="1">
> +	<parameter name="port" unique="1" required="0">
>  		<getopt mixed="-n, --port=[port]" />
>  		<content type="string" />
>  		<shortdesc lang="en">The name/id/tag of a instance to control/check</shortdesc>
> @@ -139,7 +137,7 @@
>  		<content type="string" default="default" />
>  		<shortdesc lang="en">Use a specific profile from your credential file.</shortdesc>
>  	</parameter>
> -	<parameter name="tag" unique="0" required="1">
> +	<parameter name="tag" unique="0" required="0">
>  		<getopt mixed="-t, --tag=[tag]" />
>  		<content type="string" default="Name" />
>  		<shortdesc lang="en">Name of the tag containing the instances uname</shortdesc>
> @@ -219,6 +217,11 @@
>  	return $rc
>  }
>  
> +function monitor()
> +{
> +		# Is the device ok?
> +		aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> +}
>  
>  TEMP=`getopt -o qVho:e:p:n:t:U --long version,help,action:,port:,option:,profile:,tag:,quiet,unknown-are-stopped ¥
>       -n 'fence_ec2' -- "$@"`
> @@ -265,6 +268,7 @@
>  done
>  
>  [ -n "$1" ] && action=$1
> +[ -n "$2" ] && node_to_fence=$2
>  
>  if [ -z "$ec2_profile"]; then
>  	options="--output text --profile default"
> @@ -324,6 +328,10 @@
>  	exit 1
>  fi
>  
> +if [ -z "$port" ]; then
> +	port="$node_to_fence"
> +fi
> +
>  # get target's instance id
>  instance=""
>  if [ ! -z "$port" ]; then
> @@ -376,8 +384,7 @@
>  		done
>  	;;
>  	monitor)
> -		# Is the device ok?
> -		aws ec2 describe-instances $options | grep INSTANCES &> /dev/null
> +		monitor
>  	;;
>  	gethosts|hostlist|list)
>  		# List of names we know about
> @@ -388,7 +395,7 @@
>  		echo $a
>  	;;
>  	stat|status)
> -		instance_status $instance > /dev/null
> +		monitor
>  	;;
>  	*) ha_log.sh err "Unknown action: $action"; exit 1;;
>  esac





More information about the Users mailing list