After resetting the machine it started to boot up fine, but after a while it stuck displaying the message "Waiting for DRBD to become consistent..." and refused to go any further. It's something we had put in the bootup process ourselves: this is where we wait for the HA nodes to become in sync after setting up HA operation for the first time or when one of them have been turned off for a longer period of time. But wait, the machine I was testing on wasn't even connected into an HA cluster! What is it waiting for then? So I started to do some serious debugging.
In our scripts, we mostly use an own deamon called "xcbdaemon" to fetch information from the HA nodes through XMLRPC calls. When we want to query information -- in this case, the DRBD status -- from the node we're currently running on, we connect to the daemon over the "lo" interface. This is where the problems started: we didn't have a "lo" interface, so the querying couldn't complete and, as a safety measure, we did not let the system to boot in an inconsistent HA state to avoid split-brain situations. I started to look throught the previous boot messages to find out what could've caused it, and I found it telling me it wouldn't bring up the "lo" interface as it's already up. What the hell?
It turns out that /etc/network/run contains the entry "lo=lo" in it at boot time and this what makes the bootscript think the interface is already set up. But /etc/network/run is supposed to be on a tmpfs so it should be emptied after a reboot...weird. What makes this directory to be on a tmpfs is the postinst script of the ifupdown package. I'm going to copy it here to let you see the, well, not too simple logic it uses to make that happen:
As you can see, it contains multiple ifs that could evaluate in the wrong way and make the setup fail, so I started to hunt down the various possibilites one-by-one.
# Create /etc/network/run
if [ "$1" = configure -a ! -d /etc/network/run ]; then
if [ -e /etc/network/run -o -L /etc/network/run ]; then
echo "Renaming non-directory /etc/network/run to run.dpkg-old..."
mv /etc/network/run /etc/network/run.dpkg-old
fi
# The best choice is to use /dev/shm/network
#
# If we can't use that, we'll just make /etc/network/run a directory,
# unless we're upgrading, in which case we'll just keep ifstate where it
# is, by making /etc/network/run a symlink to /etc/network.
WHAT_TO_USE=devshm
if [ ! -d /dev/shm -o ! -w /dev/shm -o ! -r /proc/mounts ]; then
WHAT_TO_USE=owndir
elif ! grep -qs "^tmpfs[[:space:]]\+/dev/shm[[:space:]]\+tmpfs[[:space:]]\+\([^[:space:]]\+,\)\?rw" /proc/mounts
then
WHAT_TO_USE=owndir
elif grep -qs '[[:space:]]/dev[[:space:]]devfs[[:space:]]' /proc/mounts; then
WHAT_TO_USE=owndir
fi
# Check for available space if we are using devshm
if [ "$WHAT_TO_USE" = devshm ]; then
SPACE=`df -k /dev/shm | tail -1 | awk '{if ($4 ~ /%/) { print $3 } else { print $4 } }'`
if [ "$SPACE" -le 0 ]; then
WHAT_TO_USE=owndir
fi
fi
if [ "$WHAT_TO_USE" = owndir -a -e /etc/network/ifstate ]; then
WHAT_TO_USE=etcnetwork
fi
if [ "$WHAT_TO_USE" = devshm ]
then
[ -d /dev/shm/network ] || mkdir /dev/shm/network
ln -s /dev/shm/network /etc/network/run
elif [ "$WHAT_TO_USE" = "owndir" ]; then
mkdir /etc/network/run
else
ln -s . /etc/network/run
fi
fi
The build of an SCB firmware starts by creating a chroot using debootstrap and then installing the necessary packages and our code on it. I started the build process and stopped at various phases to see when does it go wrong. It turned out that ifupdown is installed right at the beginning during the run of debootstrap and /etc/network/run is already wrong by that time. I started to check the ifs in the postinst script: we have /proc, we have /dev/shm, no /etc/network/run is there, but... oh yeah. /dev/shm is not mounted as a tmpfs on the build server, so the postinst script just says he's sorry and messes up our whole system. I gave out the single mount command needed, rebuilt the firmware and everything was working fine.
Let me summarize this once again: a temporary file system was not mounted on the build server, and, as a result, a standalone Shell Control Box froze at boot signalling an HA-related problem. Talk about ripple effects...
