An Ansible role that installs, configures and manages Percona XtraDB cluster 8 for EL 8. This is for either for a single node, or when using 2 nodes or more. The functionality to add an arbiter is included as well.
Please read this file carefully before deploying this Ansible role
This role is tested for Ansible v2.9 and higher.
- Percona XtraDB Cluster 8
- Secured connection by encrypting mysql traffic
- Bootstrapping a cluster, includes end2end testing
- Scaling: add or remove hosts from the cluster with ease!
- Arbiter possibility
- Adding a beautiful backup script
- Automatically calculates the recommended mysql configuration settings, based on resources
- Logrotation configuration
- Adding user defined users
- Adding user defined databases
- Brain
- At least 2G of RAM is recommended, 512MB for the arbiter is sufficient
- When clustering, the nodes are able to connect to each other via ports 4444, 4567, 4568, see info
- Plenty of disk space, keep the backup in mind as well. The use of an SSD is preferred for performance
- Internet connection to download installation files
Copy the variables from default/main.yml and adjust them for each node in it's variable folder.
The arbiter requires less configuration, see below.
See defaults/main.yml for the variables which can be set.
First, the mysql user and group are set on the system. Then, the dependencies are installed. Since Percona is installed via the official Percona XtraDB repository, the GPG Keys are added.
The pip package pymysql is required for certain mysql modules, so this is installed.
The mysql service file is edited to include the maximum of open files.
Mysql binds by default to 0.0.0.0.
These values can be set in the group_vars/all.yml:
percona_root_password: 'something'
percona_system_password: 'something'
percona_sst_password: 'something'Note that a config test is executed before starting mysql.
When there are at least 2 nodes in the play, a multi-master cluster is possible. A 2 node galera cluster is a fundamentally broken design, as it cannot maintain uptime without a quorum and the ability of a node to go down to aid recovery. Take this into account when designing the cluster.
By default, the communication is encrypted. As a best practice, the certificates are placed in /etc/mysql/certs with proper permissions. The certs in /var/lib/mysql are symlinked to /etc/mysql/certs.
You should make a choice whether to use encrypted traffic or not before deploying this role. This role is not capable of switching from a 'disabled' certificate state to an enabled state.
On creation, the keys/certificates will be fetched from a single host to the controller node. Then, they the files are copied to each host and removed from the controller node.
percona_ssl: true
percona_certs_tmp_dir: /tmpThere must only be one bootstrapper, as this is important, I've created assertions for this matter. An arbiter can also be added, see below.
Ensure the following variables are set for the nodes:
# vars for node1, the bootstrapper
percona_cluster:
name: 'test-cluster'
enabled: true
role: master
bootstrapper: true
server_id: '1'
ip_address: '10.0.0.111'
# vars for node2
percona_cluster:
name: 'test-cluster'
enabled: true
role: master
bootstrapper: false
server_id: '2'
ip_address: '10.0.0.112'An arbiter can be included in the cluster, these are the required values for the arbiter, change accordingly:
# all vars for node3, the arbiter
percona_cluster:
name: 'test-cluster'
enabled: true
role: arbiter
bootstrapper: false
server_id: '3'
ip_address: '10.0.0.113'- The config file is placed in
/etc/sysconfig/garb - The process runs as user
root - Log file at
/var/log/garbd.log
The arbiter also has encrypted traffic, since it makes use of the same certs.
When a host is added to the play, and the vars are added to the new host, the cluster auto scales automagicly. This can be done from a single host to a cluster.
Or from a cluster, to a cluster + 1. "Do not join several nodes at the same time to avoid overhead due to large amounts of traffic when a new node joins."
The role will, by default, also restart all mysql instances, with a 10s delay between the restarts. See section systemctl restart mysql below.
If no restart is desired, set this in the group_vars/all.yml
percona_cluster_scale_restart_all: falseBy default, the user debian-sys-maint is created, with root privileges.
The credentials are set in /etc/mysql/root.cnf and is symlinked to /root/.my.cnf
The backup script is by default placed in /etc/mysql/backup.sh. It uses cron to perform a backup, so crontabs is installed, which is most likely installed by default.
When enabling the backup, ensure there is enough disk space.
To enable the backup functionality, set the required variables:
percona_backup:
enabled: true
dir: /var/mysql_dump/
keepdays: '1'
hour: '05'
minute: '15'
minfree: 5 # minimum free disk space in GB to create a backup
skip:
databases:
- skip_this_database_to_backup
tables:
- skip_this_table_for_backupThe defaults for the mysqldump are:
[mysqldump]
quick
max_allowed_packet = 64MThese databases are skipped when creating a backup:
- information_schema
- performance_schema
The backups are stored with a timestamp of that day. A symlink is created to latest.
The role is setup in an idempotent fashion.
Besides the first run, when the role is executed for another run, and a config file has changed, the role will by default restart mysql.
In this case, the mysql service is restarted per host, with a 10s pause in between. This is to prevent all the nodes shutting down at the same time, and losing the cluster.
If mysql fails to start on one node, the role aborts, to maintain the cluster!
If restarting mysql after a config change is undesired, set:
percona_ansible_managed: falseThere are 2 mysql logs files, placed in /var/log/mysql.
- Error log, named error.log
- Slow log, named mysql-slow.log, by default logs queries longer than 3s
There is a logratation config placed in /etc/logrotate.d/, which is run once a day.
See templates/logrotate.j2 for the config file.
Append your own databases and users, set in group_vars/all.yml:
percona_databases:
- name: my_first_db
- name: another_db
percona_users:
- name: erik
password: letmein
privs: '*.*:ALL,GRANT'
state: present
encrypted: no
host: localhostSee defaults/main.yml. As stated before, copy all values to a host_vars file, and edit values where applicable.
To include custom keys/values in mysqld.cnf;
percona_custom_cnf:
mysqld:
general-log-file: queries.log
general-log:
log-output: fileThis results in:
[mysqld]
general-log-file = queries.log
general-log
log-output = fileAs stated earlier, ensure to set the required variables in the host_vars of each host.
Single host:
---
- hosts:
- host1
become: True
roles:
- percona_xtradb_clusterA cluster, or scaling from a single node to a cluster:
---
- hosts:
- host1 # master and bootstrapper
- host2 # master, not bootstrapper
- host3 # arbiter
any_errors_fatal: true
become: True
roles:
- percona_xtradb_clusterA cluster, scaling to more hosts:
---
- hosts:
- host1 # master and bootstrapper
- host2 # master, not bootstrapper
- host3 # arbiter
- host4 # master, not bootstrapper
any_errors_fatal: true
become: True
roles:
- percona_xtradb_clusterIt's possible to install the PMM2 client. It will monitor the slow-query, as this is recommended.
Ensure the pmm server is up and running, and accepting connections.
percona_pmm:
enabled: false
pkg: pmm2-client
local_ip: 10.0.0.1
server_ip: 10.0.0.110
server_pass: admin
db_user: pmm
db_pass: pmmThe (db_pass|db_user) are created on the mysql database.
There are 2 tests configured with Molecule:
-
Test 1.0 test a single node
-
Test 2.1 setup a multi-master environment, with an arbiter
-
Test 2.2 expand the cluster with another node
Test with:
molecule test -s default
molecule test -s cluster