-
Type:
Bug
-
Status: Resolved
-
Priority:
Normal
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: PDB 6.9.0, PDB 5.2.13
-
Component/s: None
-
Labels:
-
Template:customfield_10700 320599
-
Acceptance Criteria:
- Does not sync node deactivation commands that have a deactivated timestamp older than node-purge-ttl
- Does not sync node data (agentless nodes 6.3.x+) that have a deactivated/expired timestamp older than node-purge-ttl
-
Epic Link:
-
Team:HA
-
Story Points:2
-
Sprint:HA Team 2020-01-15, HA Team 2020-01-29, HA Team 2020-02-12
-
Method Found:Needs Assessment
-
Release Notes:Bug Fix
-
Release Notes Summary:Fixed an issue affecting PE installations where PuppetDB would fail to purge a deactivated node.
-
QA Risk Assessment:Needs Assessment
This is a bug in pe-puppetdb's HA sync because we only check the value of producer_timestamp and not the timestamps named deactivate and expired in the certnames table in the would_be_expired_locally? function of .../sync/core.clj
On the local PuppetDB, when a node is purged after a deactivate node command and then a garbage collection run after node-purge-ttl time has passed, the node is deleted.
The remote PuppetDB also has that deactivated node present, but has not run garbage collection, when the local PuppetDB (that has just garbage collection the node) attempts to sync from the remote it will sync back the node it just garbage collected.
This will result in a ping-pong effect and the node will never be purged from PuppetDB