VMs cannot be terminated if compute host is dead

What do expect to happen when:

a) nova-compute stops working, but the physical machine is up

b) the nova-compute server dies

And we can't necessarily differentiate the two.

Why this bug has "Low" priority? I think it's critical for users. Instance is hanging on Rebooting/Deleting. Openstack should remove instances from dead hosts and show proper warning to users or even run deleted instances' snapshots on other hosts. Or something like that.

At this moment, the only way I can figure out is to remove related records from Nova DB about the dead VM.
I remember there was a thread awhile back discussing this issue. The problem seems that there is no way to distinguish if the actual VM went dead or the host went dead. Also some status problems for VM, it was a long discussion. My proposal is to add a command to nova-manage to actually remove the db records, so the removal of a VM is completely up to the human who performs this command, he or she will be responsible to determine the real cause.

Couldn't we do a check using nova.utils.service_is_up(service) ? If it's not up, remove the record from DB.

service = db.service_get_by_host(instance['host']
service_is_up(service)

Sam, If a compute node goes down for a finite period of time, we want to leave the record in the DB to potentially recover the VMs when the compute node powers up.

Tong, adding a command to nova-manage to remove records sounds like a good compromise.

Hi Joe,

Thanks for replying me! I'm still a newb with Openstack and learning a lot about it, but looking at the terminate_instance functionalliy, I can see that the record of the instance is being destroyed anyway:

A self.db.instance_destroy(context, instance_uuid) is being called in ComputeManager._delete_instance after the instance gets shutdown and volumes cleaned up etc.

_delete_instance is being called from terminate_instance, so in fact the record is not left in the DB, or maybe it is. But I think we should also call the self.db.instance_destroy function if the host is not up, it just means we don't have to shut down the instance, because it wasn't functioning anyway?

My reasoning: They are terminating so why not remove the record from the database as that is what happens anyway when you terminate an instance, the only difference being we don't have to shutdown.

A flaw in this approach, if the host comes up again the resources(Volumes) should still be cleaned up I guess?

Fix proposed to branch: master
Review: https://review.openstack.org/12231

Sam, I am working on a patch to do exactly what you outlined

Hehe nice job, I also wanna get started on contributing :) Just looked at your patch.

Reviewed: https://review.openstack.org/12231
Committed: http://github.com/openstack/nova/commit/77dd6a0b37652bc163d4ad3083e29af55f2b9a5d
Submitter: Jenkins
Branch: master

commit 77dd6a0b37652bc163d4ad3083e29af55f2b9a5d
Author: Joe Gordon <email address hidden>
Date: Fri Aug 31 00:04:33 2012 +0000

    Allow for deleting VMs from down compute nodes.

    Fix bug 872899

    If compute node service_is_up returns false, just delete the VM from
    the database. If compute node recovers, setting
    running_deleted_instance_action=reap will clean up the node.

    Change-Id: Ibb5f1e22c2e482d304c59a485a04b882ead0c67d