Compilation results for db2141.codfw.wmnet: System changes detected

You can retrieve this result from host.json.

Catalog differences

Summary

Total Resources:	3059
Resources added:	4
Resources removed:	252
Resources modified:	265
Change percentage:	17.03%

Resources only in the new catalog

Motd::Script[insetup::data_persistence_ferm]
Motd::Message[insetup::data_persistence_ferm]
File[/etc/update-motd.d/05-insetup--data-persistence-ferm]
Class[Role::Insetup::Data_persistence_ferm]

Resources only in the old catalog

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)]
Systemd::Timer[nrpe2nodexp-mariadb_memory]
Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.service]
Profile::Mariadb::Section[s1]
Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_io_state_s1]
Concat_file[/etc/mysql/ssl/cert.pem]
File[/etc/sudoers.d/nrpe-check_mariadb_read_only_s1]
Systemd::Service[nrpe2nodexp-mariadb_replica_sql_lag_s1]
Prometheus::Alert::Rule[check_mysqld_ca81db2c9e98d408f9f65c79817da116]
Concat[/etc/mysql/ssl/cert.pem]
Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.service (wmf_auto_restart_prometheus-mysqld-exporter@s1.service)]
File[/etc/ferm/conf.d/10_s1_orchestrator]
File[/lib/systemd/system/nrpe2nodexp-mysqld.timer]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.service (nrpe2nodexp-mariadb_read_only_s1.service)]
File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg]
Exec[systemctl try-restart prometheus-mysqld-exporter@s1]
Sudo::User[nrpe-check_mariadb_replica_sql_state_s1]
File[/etc/mysql/ssl]
Nrpe::Check[check_mariadb_read_only_s1]
Nrpe::Monitor_service[mariadb_replica_sql_state_s1]
Class[Mariadb::Monitor_disk]
File[/etc/update-motd.d/05-mariadb--backup-source]
Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_lag_s1]
File[/etc/ferm/conf.d/10_s1_mariadb_dba]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service]
File[/etc/default/prometheus]
Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_state_s1]
Monitoring::Service[mariadb_replica_sql_state_s1]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service]
Ferm::Service[s1_orchestrator]
Rsyslog::Conf[nrpe2nodexp-mariadb_memory]
File[/etc/update-motd.d/06-db-section-s1]
Systemd::Unit[nrpe2nodexp-mariadb_disk_space.timer]
Systemd::Unit[nrpe2nodexp-mysqld.timer]
Package[mariadb-backup]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service]
Profile::Auto_restarts::Service[prometheus-mysqld-exporter@s1]
File[/etc/mysql/ssl/server.key]
Package[percona-toolkit]
File_line[auto_restart_file_presence_prometheus-mysqld-exporter@s1]
Systemd::Timer::Job[nrpe2nodexp-mysqld]
Systemd::Timer[nrpe2nodexp-mariadb_disk_space]
File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]
File[/etc/nagios/nrpe.d/check_mysqld.cfg]
File[/etc/mysql/ssl/client-key.pem]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.service (nrpe2nodexp-mariadb_replica_sql_lag_s1.service)]
File[/srv/sqldata.s1]
Mariadb::Monitor_readonly[s1]
File[/etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf]
Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]
File[/etc/mysql/ssl/cacert.pem]
Class[Profile::Mariadb::Mysql_role]
Group[mysql]
Class[Profile::Mariadb::Dbstore_multiinstance]
File[/var/lib/prometheus/node.d/check_mariadb_memory.prom]
File[/etc/nagios/nrpe.d/check_mariadb_memory.cfg]
Class[Profile::Mariadb::Packages_wmf]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.service (nrpe2nodexp-mariadb_memory.service)]
Monitoring::Exported_nagios_service[db2141 mariadb_disk_space]
Systemd::Unit[nrpe2nodexp-mysqld.service]
Sudo::User[nrpe-check_mariadb_disk_space]
Nrpe::Monitor_service[mariadb_disk_space]
Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)]
File[/etc/sudoers.d/nrpe-check_mariadb_disk_space]
File[/etc/mysql]
File[/etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg]
Package[wmf-mariadb1011]
Systemd::Timer[nrpe2nodexp-mysqld]
Package[grc]
File[/etc/mysql/mysqld.conf.d]
Sudo::User[nrpe-check_mariadb_replica_io_state_s1]
Systemd::Timer[wmf_auto_restart_prometheus-mysqld-exporter@s1]
Systemd::Unit[nrpe2nodexp-mariadb_memory.service]
Systemd::Service[nrpe2nodexp-mariadb_read_only_s1]
Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]
Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_state_s1]
Profile::Prometheus::Mysqld_exporter_instance[s1]
File[/etc/mysql/mysqld.conf.d/s1.cnf]
Concat_fragment[/etc/mysql_puppet_ca_chain]
File[/var/lib/prometheus/node.d/check_mysqld.prom]
Profile::Mariadb::Ferm[s1]
File[/etc/ferm/conf.d/10_s1_mariadb_internal]
Service[nrpe2nodexp-mysqld.timer]
Concat::Fragment[/etc/mysql_puppet_agent_cert]
Sudo::User[nrpe-check_mariadb_replica_sql_lag_s1]
Mariadb::Instance[s1]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)]
File[/lib/systemd/system/prometheus-mysqld-exporter@.service]
Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.service]
Class[Mariadb::Config]
Class[Mariadb::Monitor_process]
Systemd::Unit[nrpe2nodexp-mariadb_memory.timer]
File[/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1]
Monitoring::Service[mariadb_disk_space]
Rsyslog::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]
Nrpe::Check[check_mariadb_disk_space]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf]
File[/etc/sudoers.d/nrpe-check_mysqld]
File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.service (nrpe2nodexp-mariadb_replica_io_state_s1.service)]
File[/usr/local/bin/mbstream]
File[/etc/systemd/system/mariadb.service.d]
Mariadb::Monitor_replication[s1]
Systemd::Timer::Job[nrpe2nodexp-mariadb_read_only_s1]
Service[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]
File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer]
Monitoring::Service[mariadb_read_only_s1]
File[/etc/systemd/system/mariadb.service.d/override.conf]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)]
File[/usr/lib/nagios/plugins/check_mariadb.pl]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer]
Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_state_s1]
Nrpe::Plugin[check_mariadb]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.service (nrpe2nodexp-mariadb_replica_sql_state_s1.service)]
Class[Wmfmariadbpy]
File[/etc/default/prometheus-mysqld-exporter@s1]
File[/etc/mysql/ssl/client-cert.pem]
Prometheus::Alert::Rule[check_mariadb_replica_sql_lag_s1_8ec9d6c1155ae60699aaf9dfd1fa339b]
File[/etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf]
File[/var/lib/prometheus/node.d/check_mariadb_read_only_s1.prom]
Rsyslog::Conf[nrpe2nodexp-mariadb_read_only_s1]
Puppet::Expose_agent_certs[/etc/mysql]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf]
File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_lag_s1.prom]
File[/var/lib/prometheus/node.d/check_mariadb_replica_io_state_s1.prom]
Package[monitoring-plugins-contrib]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf]
Exec[systemctl-daemon-reload]
File[/etc/my.cnf]
Monitoring::Service[mysqld]
Systemd::Timer::Job[nrpe2nodexp-mariadb_memory]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)]
Systemd::Timer::Job[nrpe2nodexp-mariadb_disk_space]
Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.service]
File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer]
File[/lib/systemd/system/nrpe2nodexp-mysqld.service]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]
Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.service]
Monitoring::Service[mariadb_memory]
Systemd::Timer[nrpe2nodexp-mariadb_read_only_s1]
Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.timer]
File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_state_s1]
Monitoring::Exported_nagios_service[db2141 mariadb_memory]
File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.timer]
File[/etc/nagios/nrpe.d/check_mariadb_disk_space.cfg]
Prometheus::Alert::Rule[check_mariadb_replica_sql_state_s1_3f927914a18db09399b7fff42858d634]
Rsyslog::Conf[nrpe2nodexp-mariadb_replica_io_state_s1]
Concat_fragment[/etc/mysql_puppet_agent_cert]
Systemd::Unit[prometheus-mysqld-exporter@]
File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service]
Nrpe::Monitor_service[mariadb_replica_sql_lag_s1]
Systemd::Timer::Job[wmf_auto_restart_prometheus-mysqld-exporter@s1]
Monitoring::Exported_nagios_service[db2141 mariadb_replica_io_state_s1]
User[mysql]
Class[Prometheus::Mysqld_exporter::Common]
File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service]
File[/etc/wmfmariadbpy]
Nrpe::Monitor_service[mysqld]
Class[Role::Mariadb::Backup_source]
Rsyslog::Conf[nrpe2nodexp-mysqld]
Class[Mariadb::Monitor_memory]
Systemd::Service[nrpe2nodexp-mariadb_disk_space]
Nrpe::Check[check_mariadb_replica_io_state_s1]
Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]
File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg]
File[/var/lib/prometheus/node.d/check_mariadb_disk_space.prom]
Ferm::Service[s1_mariadb_internal]
File[/etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1]
Service[nrpe2nodexp-mariadb_replica_io_state_s1.timer]
File[/opt/wmf-mariadb1011/my.cnf]
File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.service]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.service (nrpe2nodexp-mariadb_disk_space.service)]
Prometheus::Alert::Rule[check_mariadb_read_only_s1_42baf529e0f3bfca391aca0a24c880e9]
Service[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]
Firewall::Service[s1_orchestrator]
Prometheus::Alert::Rule[check_mariadb_disk_space_d2aae7bfec5549be1a8b9413215bd86c]
Class[Passwords::Nagios::Mysql]
File[/var/lib/prometheus/.my.s1.cnf]
File[/etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg]
Package[python3-wmfmariadbpy]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf]
Class[Mariadb::Service]
Monitoring::Exported_nagios_service[db2141 mariadb_read_only_s1]
Service[nrpe2nodexp-mariadb_read_only_s1.timer]
File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_lag_s1]
Rsyslog::Conf[nrpe2nodexp-mariadb_disk_space]
File[/usr/local/lib/nagios/plugins/check_mariadb]
Prometheus::Alert::Rule[check_mariadb_replica_io_state_s1_0d5979f7abbb49256cfedd70a646784e]
Nrpe::Check[check_mariadb_memory]
Prometheus::Mysqld_exporter::Instance[s1]
Systemd::Service[nrpe2nodexp-mariadb_replica_sql_state_s1]
Nrpe::Monitor_service[mariadb_read_only_s1]
Service[nrpe2nodexp-mariadb_memory.timer]
Motd::Script[mariadb::backup_source]
File[/usr/local/bin/mysql.s1]
Concat::Fragment[/etc/mysql_puppet_ca_chain]
Sslcert::X509_to_pkcs12[puppet::expose_agent_cert: /etc/mysql]
Systemd::Syslog[wmf_auto_restart_prometheus-mysqld-exporter_s1]
Monitoring::Service[mariadb_replica_io_state_s1]
File[/etc/mysql/ssl/server-keypair.pem]
Systemd::Timer[nrpe2nodexp-mariadb_replica_io_state_s1]
File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_state_s1.prom]
File[/etc/mysql/grcat.config]
Nrpe::Check[check_mariadb_replica_sql_state_s1]
Nrpe::Check[check_mariadb_replica_sql_lag_s1]
Prometheus::Alert::Rule[check_mariadb_memory_b5a92c72542d5f0c031014e7a8db014e]
Motd::Message[mariadb::backup_source]
Nrpe::Check[check_mysqld]
File[/usr/local/etc/my.cnf]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf]
Sudo::User[nrpe-check_mariadb_read_only_s1]
Service[nrpe2nodexp-mariadb_disk_space.timer]
Service[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]
Nrpe::Monitor_service[mariadb_memory]
Systemd::Service[nrpe2nodexp-mariadb_memory]
Motd::Script[db-section-s1]
Systemd::Service[wmf_auto_restart_prometheus-mysqld-exporter@s1]
Sudo::User[nrpe-check_mysqld]
File[/etc/sudoers.d/nrpe-check_mariadb_replica_io_state_s1]
File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer]
Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.timer]
Systemd::Service[nrpe2nodexp-mariadb_replica_io_state_s1]
Ferm::Service[s1_mariadb_dba]
File[/etc/mysql/ssl/server.p12]
Systemd::Unit[nrpe2nodexp-mariadb_disk_space.service]
Exec[systemd daemon-reload for nrpe2nodexp-mysqld.service (nrpe2nodexp-mysqld.service)]
File[/etc/wmfmariadbpy/section_ports.csv]
Class[Mariadb::Packages_wmf]
Class[Profile::Mariadb::Wmfmariadbpy]
File[/etc/sudoers.d/nrpe-check_mariadb_memory]
Package[wmfmariadbpy-common]
File[/etc/mysql/my.cnf]
Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_lag_s1]
File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf]
Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_lag_s1]
Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_lag_s1]
Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_state_s1]
Systemd::Service[nrpe2nodexp-mysqld]
Nrpe::Monitor_service[mariadb_replica_io_state_s1]
Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.service]
File[/etc/mysql/ssl/server-cert.pem]
File[/srv/tmp.s1]
Monitoring::Exported_nagios_service[db2141 mysqld]
File[/etc/mysql/ssl/server-key.pem]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)]
Logrotate::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]
Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.timer (wmf_auto_restart_prometheus-mysqld-exporter@s1.timer)]
Package[prometheus-mysqld-exporter]
Monitoring::Service[mariadb_replica_sql_lag_s1]
Exec[systemd daemon-reload for prometheus-mysqld-exporter@.service (prometheus-mysqld-exporter@)]
Sudo::User[nrpe-check_mariadb_memory]
Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)]

Resources modified

Systemd::Timer[nrpe2nodexp-mariadb_memory]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_memory].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_memory]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_memory.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Class[Adduser]

Parameters differences:

--- Class[Adduser].orig
+++ Class[Adduser]

@@
-    before => ['Package[puppet]', 'Package[facter]', 'Package[augeas-tools]', 'Package[virt-what]', 'Package[puppet-module-puppetlabs-augeas-core]', 'Package[python3-prometheus-client]', 'Package[python3-yaml]', 'Package[ruby-net-ssh]', 'Package[openssl]', 'Package[ssl-cert]', 'Package[ca-certificates]', 'Package[wmf-certificates]', 'Package[ntp]', 'Package[systemd-timesyncd]', 'Package[exim4-config]', 'Package[exim4-daemon-light]', 'Package[logrotate]', 'Package[prometheus-node-exporter]', 'Package[bsdutils]', 'Package[smartmontools]', 'Package[rsyslog]', 'Package[rsyslog-openssl]', 'Package[cadvisor]', 'Package[prometheus-ethtool-exporter]', 'Package[acct]', 'Package[byobu]', 'Package[colordiff]', 'Package[curl]', 'Package[debian-goodies]', 'Package[ethtool]', 'Package[gdb]', 'Package[gdisk]', 'Package[git]', 'Package[htop]', 'Package[httpry]', 'Package[iotop]', 'Package[iperf]', 'Package[jq]', 'Package[libtemplate-perl]', 'Package[lldpd]', 'Package[lshw]', 'Package[molly-guard]', 'Package[moreutils]', 'Package[net-tools]', 'Package[numactl]', 'Package[ncdu]', 'Package[ngrep]', 'Package[pigz]', 'Package[psmisc]', 'Package[pv]', 'Package[python3]', 'Package[screen]', 'Package[strace]', 'Package[sysstat]', 'Package[tcpdump]', 'Package[tmux]', 'Package[tree]', 'Package[vim]', 'Package[vim-addon-manager]', 'Package[vim-scripts]', 'Package[wipe]', 'Package[xfsprogs]', 'Package[zsh]', 'Package[icdiff]', 'Package[linux-perf]', 'Package[bsd-mailx]', 'Package[ack]', 'Package[netcat-openbsd]', 'Package[tshark]', 'Package[fzf]', 'Package[ripgrep]', 'Package[fd-find]', 'Package[kitty-terminfo]', 'Package[mtr-tiny]', 'Package[bat]', 'Package[efibootmgr]', 'Package[bind9-dnsutils]', 'Package[tzdata]', 'Package[python3-wmflib]', 'Package[ruby-sorted-set]', 'Package[btop]', 'Package[dstat]', 'Package[apport]', 'Package[command-not-found]', 'Package[command-not-found-data]', 'Package[ecryptfs-utils]', 'Package[mlocate]', 'Package[os-prober]', 'Package[python3-apport]', 'Package[wpasupplicant]', 'Package[atop]', 'Package[apt-listchanges]', 'Package[isc-dhcp-client]', 'Package[rasdaemon]', 'Package[libicu67]', 'Package[libwsutil12]', 'Package[libwireshark14]', 'Package[libopencsd0]', 'Package[libwiretap11]', 'Package[ruby2.7]', 'Package[python3.9-minimal]', 'Package[python3.9]', 'Package[perl-modules-5.32]', 'Package[libpython3.9]', 'Package[libperl5.32]', 'Package[libpython3.9-minimal]', 'Package[libpython3.9-stdlib]', 'Package[libidn11]', 'Package[libldap-2.4-2]', 'Package[liburing1]', 'Package[libwebp6]', 'Package[libcbor0]', 'Package[libusb-0.1-4]', 'Package[telnet]', 'Package[libruby2.7]', 'Package[libdns-export1110]', 'Package[libisc-export1105]', 'Package[libbpf0]', 'Package[openssh-client]', 'Package[openssh-server]', 'Package[debdeploy-client]', 'Package[python3-dateutil]', 'Package[sudo]', 'Package[golang-cfssl]', 'Package[debmonitor-client]', 'Package[megacli]', 'Package[nagios-nrpe-server]', 'Package[monitoring-plugins]', 'Package[monitoring-plugins-basic]', 'Package[monitoring-plugins-standard]', 'Package[liburiparser1]', 'Package[python3-attr]', 'Package[iucode-tool]', 'Package[freeipmi-tools]', 'Package[freeipmi-ipmiseld]', 'Package[rsyslog-kafka]', 'Package[emacs-nox]', 'Package[prometheus-ipmi-exporter]', 'Package[libnet-dns-perl]', 'Package[iptables]', 'Package[ferm]', 'Package[ulogd2]', 'Package[conntrack]', 'Package[wmf-mariadb1011]', 'Package[percona-toolkit]', 'Package[grc]', 'Package[mariadb-backup]', 'Package[python3-wmfmariadbpy]', 'Package[wmfmariadbpy-common]', 'Package[monitoring-plugins-contrib]', 'Package[prometheus-rsyslog-exporter]', 'Package[initramfs-tools]', 'Package[python3-click]', 'Package[python3-box]', 'Package[confd]', 'Package[python3-toml]', 'Package[prometheus-mysqld-exporter]']
+    before => ['Package[puppet]', 'Package[facter]', 'Package[augeas-tools]', 'Package[virt-what]', 'Package[puppet-module-puppetlabs-augeas-core]', 'Package[python3-prometheus-client]', 'Package[python3-yaml]', 'Package[ruby-net-ssh]', 'Package[openssl]', 'Package[ssl-cert]', 'Package[ca-certificates]', 'Package[wmf-certificates]', 'Package[ntp]', 'Package[systemd-timesyncd]', 'Package[exim4-config]', 'Package[exim4-daemon-light]', 'Package[logrotate]', 'Package[prometheus-node-exporter]', 'Package[bsdutils]', 'Package[smartmontools]', 'Package[rsyslog]', 'Package[rsyslog-openssl]', 'Package[cadvisor]', 'Package[prometheus-ethtool-exporter]', 'Package[acct]', 'Package[byobu]', 'Package[colordiff]', 'Package[curl]', 'Package[debian-goodies]', 'Package[ethtool]', 'Package[gdb]', 'Package[gdisk]', 'Package[git]', 'Package[htop]', 'Package[httpry]', 'Package[iotop]', 'Package[iperf]', 'Package[jq]', 'Package[libtemplate-perl]', 'Package[lldpd]', 'Package[lshw]', 'Package[molly-guard]', 'Package[moreutils]', 'Package[net-tools]', 'Package[numactl]', 'Package[ncdu]', 'Package[ngrep]', 'Package[pigz]', 'Package[psmisc]', 'Package[pv]', 'Package[python3]', 'Package[screen]', 'Package[strace]', 'Package[sysstat]', 'Package[tcpdump]', 'Package[tmux]', 'Package[tree]', 'Package[vim]', 'Package[vim-addon-manager]', 'Package[vim-scripts]', 'Package[wipe]', 'Package[xfsprogs]', 'Package[zsh]', 'Package[icdiff]', 'Package[linux-perf]', 'Package[bsd-mailx]', 'Package[ack]', 'Package[netcat-openbsd]', 'Package[tshark]', 'Package[fzf]', 'Package[ripgrep]', 'Package[fd-find]', 'Package[kitty-terminfo]', 'Package[mtr-tiny]', 'Package[bat]', 'Package[efibootmgr]', 'Package[bind9-dnsutils]', 'Package[tzdata]', 'Package[python3-wmflib]', 'Package[ruby-sorted-set]', 'Package[btop]', 'Package[dstat]', 'Package[apport]', 'Package[command-not-found]', 'Package[command-not-found-data]', 'Package[ecryptfs-utils]', 'Package[mlocate]', 'Package[os-prober]', 'Package[python3-apport]', 'Package[wpasupplicant]', 'Package[atop]', 'Package[apt-listchanges]', 'Package[isc-dhcp-client]', 'Package[rasdaemon]', 'Package[libicu67]', 'Package[libwsutil12]', 'Package[libwireshark14]', 'Package[libopencsd0]', 'Package[libwiretap11]', 'Package[ruby2.7]', 'Package[python3.9-minimal]', 'Package[python3.9]', 'Package[perl-modules-5.32]', 'Package[libpython3.9]', 'Package[libperl5.32]', 'Package[libpython3.9-minimal]', 'Package[libpython3.9-stdlib]', 'Package[libidn11]', 'Package[libldap-2.4-2]', 'Package[liburing1]', 'Package[libwebp6]', 'Package[libcbor0]', 'Package[libusb-0.1-4]', 'Package[telnet]', 'Package[libruby2.7]', 'Package[libdns-export1110]', 'Package[libisc-export1105]', 'Package[libbpf0]', 'Package[openssh-client]', 'Package[openssh-server]', 'Package[debdeploy-client]', 'Package[python3-dateutil]', 'Package[sudo]', 'Package[golang-cfssl]', 'Package[debmonitor-client]', 'Package[megacli]', 'Package[nagios-nrpe-server]', 'Package[monitoring-plugins]', 'Package[monitoring-plugins-basic]', 'Package[monitoring-plugins-standard]', 'Package[liburiparser1]', 'Package[python3-attr]', 'Package[iucode-tool]', 'Package[freeipmi-tools]', 'Package[freeipmi-ipmiseld]', 'Package[rsyslog-kafka]', 'Package[emacs-nox]', 'Package[prometheus-ipmi-exporter]', 'Package[libnet-dns-perl]', 'Package[iptables]', 'Package[ferm]', 'Package[ulogd2]', 'Package[conntrack]', 'Package[prometheus-rsyslog-exporter]', 'Package[initramfs-tools]', 'Package[python3-click]', 'Package[python3-box]', 'Package[confd]', 'Package[python3-toml]']

File[/etc/sudoers.d/nrpe-check_mariadb_disk_space]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_disk_space].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_disk_space]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

File[/usr/local/bin/mbstream]

Parameters differences:

--- File[/usr/local/bin/mbstream].orig
+++ File[/usr/local/bin/mbstream]

-    owner   => root
-    group   => root
-    require => Package[wmf-mariadb1011]
-    ensure  => link
-    target  => /opt/wmf-mariadb1011/bin/mbstream

Prometheus::Alert::Rule[check_mariadb_replica_io_state_s1_0d5979f7abbb49256cfedd70a646784e]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_replica_io_state_s1_0d5979f7abbb49256cfedd70a646784e].orig
+++ Prometheus::Alert::Rule[check_mariadb_replica_io_state_s1_0d5979f7abbb49256cfedd70a646784e]

-    alert_name         => nrpe_MariaDB_Replica_IO__s1
-    description        => NRPE CHECK: MariaDB Replica IO: s1
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="0d5979f7abbb49256cfedd70a646784e",check_name="check_mariadb_replica_io_state_s1", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    for                => 3m
-    summary            => NRPE CHECK: MariaDB Replica IO: s1
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_replica_io_state_s1))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

File[/etc/sudoers.d/nrpe-check_mariadb_replica_io_state_s1]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_replica_io_state_s1].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_replica_io_state_s1]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_lag_s1]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_lag_s1].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_lag_s1]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_replica_sql_lag_s1.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Monitoring::Exported_nagios_service[db2141 ssh]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 ssh].orig
+++ Monitoring::Exported_nagios_service[db2141 ssh]

@@
-    notifications_enabled => 1
+    notifications_enabled => 0

Exec[systemctl try-restart prometheus-mysqld-exporter@s1]

Parameters differences:

--- Exec[systemctl try-restart prometheus-mysqld-exporter@s1].orig
+++ Exec[systemctl try-restart prometheus-mysqld-exporter@s1]

-    refreshonly => True
-    path        => /usr/bin

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.service (nrpe2nodexp-mariadb_replica_io_state_s1.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_replica_io_state_s1 command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_replica_io_state_s1
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "0d5979f7abbb49256cfedd70a646784e" --timeout 10 --check-command "check_mariadb_replica_io_state_s1"

Systemd::Unit[nrpe2nodexp-mysqld.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mysqld.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mysqld.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mysqld.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Class[Profile::Mariadb::Mysql_role]

Parameters differences:

--- Class[Profile::Mariadb::Mysql_role].orig
+++ Class[Profile::Mariadb::Mysql_role]

-    role => slave

Mariadb::Monitor_replication[s1]

Parameters differences:

--- Mariadb::Monitor_replication[s1].orig
+++ Mariadb::Monitor_replication[s1]

-    socket        => /run/mysqld/mysqld.s1.sock
-    warn_stopped  => True
-    multisource   => False
-    source_dc     => eqiad
-    contact_group => admins
-    lag_crit      => 300
-    is_critical   => False
-    lag_warn      => 60

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Puppet::Expose_agent_certs[/etc/mysql]

Parameters differences:

--- Puppet::Expose_agent_certs[/etc/mysql].orig
+++ Puppet::Expose_agent_certs[/etc/mysql]

-    group           => mysql
-    provide_p12     => False
-    provide_keypair => False
-    provide_pem     => True
-    user            => mysql
-    ensure          => present
-    ssldir          => /var/lib/puppet/ssl
-    provide_private => True

Prometheus::Alert::Rule[check_mariadb_replica_sql_state_s1_3f927914a18db09399b7fff42858d634]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_replica_sql_state_s1_3f927914a18db09399b7fff42858d634].orig
+++ Prometheus::Alert::Rule[check_mariadb_replica_sql_state_s1_3f927914a18db09399b7fff42858d634]

-    alert_name         => nrpe_MariaDB_Replica_SQL__s1
-    description        => NRPE CHECK: MariaDB Replica SQL: s1
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="3f927914a18db09399b7fff42858d634",check_name="check_mariadb_replica_sql_state_s1", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    for                => 3m
-    summary            => NRPE CHECK: MariaDB Replica SQL: s1
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_replica_sql_state_s1))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

Monitoring::Exported_nagios_service[db2141 mariadb_replica_io_state_s1]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_replica_io_state_s1].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_replica_io_state_s1]

-    check_command          => nrpe_check!check_mariadb_replica_io_state_s1!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB Replica IO: s1
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

Prometheus::Alert::Rule[check_mariadb_read_only_s1_42baf529e0f3bfca391aca0a24c880e9]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_read_only_s1_42baf529e0f3bfca391aca0a24c880e9].orig
+++ Prometheus::Alert::Rule[check_mariadb_read_only_s1_42baf529e0f3bfca391aca0a24c880e9]

-    alert_name         => nrpe_MariaDB_read_only_s1
-    description        => NRPE CHECK: MariaDB read only s1
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="42baf529e0f3bfca391aca0a24c880e9",check_name="check_mariadb_read_only_s1", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Master_comes_back_in_read_only
-    for                => 3m
-    summary            => NRPE CHECK: MariaDB read only s1
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_read_only_s1))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

Motd::Script[mariadb::backup_source]

Parameters differences:

--- Motd::Script[mariadb::backup_source].orig
+++ Motd::Script[mariadb::backup_source]

-    ensure   => present
-    priority => 5

File[/etc/update-motd.d/06-db-section-s1]

Parameters differences:

--- File[/etc/update-motd.d/06-db-section-s1].orig
+++ File[/etc/update-motd.d/06-db-section-s1]

-    group  => root
-    ensure => present
-    mode   => 0555
-    owner  => root

Content differences:

--- /etc/update-motd.d/06-db-section-s1.orig
+++ /etc/update-motd.d/06-db-section-s1
@@ -1,2 +0,0 @@
-#!/bin/sh
-echo 'DB section s1 (alias: mysql.s1)'

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-state-s1.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_replica_sql_state_s1" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

Class[Wmfmariadbpy]

Parameters differences:

--- Class[Wmfmariadbpy].orig
+++ Class[Wmfmariadbpy]

-    section_ports => {'s1': 3311, 's2': 3312, 's3': 3313, 's4': 3314, 's5': 3315, 's6': 3316, 's7': 3317, 's8': 3318, 'x1': 3320, 'x3': 3363, 'm1': 3321, 'm2': 3322, 'm3': 3323, 'm5': 3325, 'staging': 3350, 'matomo': 3351, 'analytics_meta': 3352, 'backup1-eqiad': 3360, 'backup1-codfw': 3361}
-    role          => db

File[/lib/systemd/system/nrpe2nodexp-mysqld.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mysqld.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mysqld.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mysqld.service (nrpe2nodexp-mysqld.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mysqld.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mysqld.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mysqld command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mysqld
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "ca81db2c9e98d408f9f65c79817da116" --timeout 10 --check-command "check_mysqld"

Package[mariadb-backup]

Parameters differences:

--- Package[mariadb-backup].orig
+++ Package[mariadb-backup]

-    ensure   => installed
-    provider => apt

File[/etc/ferm/conf.d/10_s1_mariadb_internal]

Parameters differences:

--- File[/etc/ferm/conf.d/10_s1_mariadb_internal].orig
+++ File[/etc/ferm/conf.d/10_s1_mariadb_internal]

-    notify  => Service[ferm]
-    group   => root
-    tag     => ferm
-    require => File[/etc/ferm/conf.d]
-    ensure  => present
-    mode    => 0400
-    owner   => root

Content differences:

--- /etc/ferm/conf.d/10_s1_mariadb_internal.orig
+++ /etc/ferm/conf.d/10_s1_mariadb_internal
@@ -1,8 +0,0 @@
-# Autogenerated by puppet. DO NOT EDIT BY HAND!
-#
-# 
-&R_SERVICE(tcp, 3311, $INTERNAL);
-
-
-
-&NO_TRACK(tcp, 3311);

Rsyslog::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]

Parameters differences:

--- Rsyslog::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1].orig
+++ Rsyslog::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]

-    mode     => 0444
-    require  => File[/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1]
-    ensure   => present
-    priority => 40

File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service]

Parameters differences:

--- File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service].orig
+++ File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service]

-    notify => Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.service (wmf_auto_restart_prometheus-mysqld-exporter@s1.service)]
-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service.orig
+++ /lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.service
@@ -1,8 +0,0 @@
-[Unit]
-Description=Auto restart job: prometheus-mysqld-exporter@s1
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=root
-ExecStart=/usr/local/sbin/wmf-auto-restart -s prometheus-mysqld-exporter@s1

Service[nrpe2nodexp-mariadb_replica_io_state_s1.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_replica_io_state_s1.timer].orig
+++ Service[nrpe2nodexp-mariadb_replica_io_state_s1.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)]']

File[/etc/mysql/ssl]

Parameters differences:

--- File[/etc/mysql/ssl].orig
+++ File[/etc/mysql/ssl]

-    group  => mysql
-    ensure => directory
-    mode   => 0555
-    owner  => mysql

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.service (nrpe2nodexp-mariadb_replica_io_state_s1.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.service (nrpe2nodexp-mariadb_replica_io_state_s1.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.service (nrpe2nodexp-mariadb_replica_io_state_s1.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_read_only_s1.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_read_only_s1.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

File[/usr/lib/nagios/plugins/check_mariadb.pl]

Parameters differences:

--- File[/usr/lib/nagios/plugins/check_mariadb.pl].orig
+++ File[/usr/lib/nagios/plugins/check_mariadb.pl]

-    group  => root
-    ensure => absent
-    owner  => root

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_replica_sql_state_s1.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_replica_sql_state_s1.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

Prometheus::Alert::Rule[check_mariadb_replica_sql_lag_s1_8ec9d6c1155ae60699aaf9dfd1fa339b]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_replica_sql_lag_s1_8ec9d6c1155ae60699aaf9dfd1fa339b].orig
+++ Prometheus::Alert::Rule[check_mariadb_replica_sql_lag_s1_8ec9d6c1155ae60699aaf9dfd1fa339b]

-    alert_name         => nrpe_MariaDB_Replica_Lag__s1
-    description        => NRPE CHECK: MariaDB Replica Lag: s1
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="8ec9d6c1155ae60699aaf9dfd1fa339b",check_name="check_mariadb_replica_sql_lag_s1", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    for                => 10m
-    summary            => NRPE CHECK: MariaDB Replica Lag: s1
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_replica_sql_lag_s1))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

Class[Monitoring]

Parameters differences:

--- Class[Monitoring].orig
+++ Class[Monitoring]

@@
-    notifications_enabled => True
+    notifications_enabled => False

File[/etc/my.cnf]

Parameters differences:

--- File[/etc/my.cnf].orig
+++ File[/etc/my.cnf]

-    group => root
-    mode  => 0644
-    owner => root

Content differences:

--- /etc/my.cnf.orig
+++ /etc/my.cnf
@@ -1,128 +0,0 @@
-# replicas for backup sources and analytics
-
-# Please use separate .cnf templates for each type of server.
-
-[client]
-
-[mysqld]
-
-skip-external-locking
-skip-name-resolve
-temp-pool
-
-user               = mysql
-basedir            = /opt/wmf-mariadb1011
-server_id          = 180363307
-report_host        = db2141.codfw.wmnet
-wsrep_cluster_name = codfw # For orchestrator. T266635
-
-# gtid_domain_id flag is needed for multisource replication and GTID.
-# Strictly it is only needed on masters or servers that can potentially be
-# masters but for consistency it should be set in all of them.
-# https://mariadb.com/kb/en/mariadb/gtid/
-gtid_domain_id  = 180363307
-
-read_only       = 1
-key_buffer_size = 1048576
-
-secure_file_priv   = /dev/null
-max_connections    = 250
-max_allowed_packet = 32M
-connect_timeout    = 3
-query_cache_size   = 0
-query_cache_type   = 0
-event_scheduler    = 1
-
-table_open_cache       = 50000
-table_definition_cache = 50000
-
-# binary log and replication options
-# We are temporarily enabling the binlogs on these servers to evaluate
-# CDC functionality with paimon/flink.
-#
-# We will revert this change once the evaluation is complete.
-# See #T258511 for a discussion about the long-term aim and #T358373.
-log-bin
-log-slave-updates
-binlog-format                  = ROW
-sync-binlog                    = 1
-binlog_cache_size              = 10M
-max-binlog_size                = 1000M
-expire-logs-days               = 7
-
-# InnoDB file-per-table + TokuDB love those file descriptors
-open-files-limit = 200000
-
-character_set_server     = binary
-character_set_filesystem = binary
-collation_server         = binary
-
-innodb_file_per_table          = 1
-# this can get overiden by per-instance configuration
-innodb_buffer_pool_size        = 15G
-innodb_log_file_size           = 4G
-innodb_flush_log_at_trx_commit = 0
-innodb_flush_method            = O_DIRECT
-innodb_io_capacity             = 1000
-innodb_stats_method            = nulls_unequal
-innodb_purge_threads           = 1
-# Changed because of https://jira.mariadb.org/browse/MDEV-22373
-innodb_change_buffering        = none
-
-innodb_strict_mode             = 1
-
-# T287244
-innodb_checksum_algorithm = full_crc32
-
-# T268869
-innodb_adaptive_hash_index=OFF
-
-# In 10.6 the default is 90%, 75% worked fine for us.
-innodb_max_dirty_pages_pct = 75
-
-# don't dump and load innodb buffer at start and stop
-# these servers will have the buffer pool in a bad state due to dumps
-# so not sure if these will be useful, but we leave them here for now
-innodb_buffer_pool_load_at_startup  = 1
-innodb_buffer_pool_dump_at_shutdown = 1
-
-optimizer_switch='engine_condition_pushdown=on,optimize_join_buffer_size=on'
-join_cache_level = 8
-
-skip-slave-start
-slave_transaction_retries = 4294967295
-
-
-# ssl
-ssl-ca=/etc/ssl/certs/wmf-ca-certificates.crt
-ssl-cert=/etc/mysql/ssl/cert.pem
-ssl-key=/etc/mysql/ssl/server.key
-ssl-cipher=TLSv1.2
-
-
-# Enabling performance_schema (disabled by default in MariaDB10)
-performance_schema                                     = 1
-# downsizing performance schema memory usage: T99485
-performance_schema_digests_size                        = -1
-performance_schema_max_thread_instances                = 500
-performance_schema_max_cond_instances                  = 1000
-performance_schema_accounts_size                       = 300
-performance_schema_hosts_size                          = 300
-performance_schema_events_statements_history_size      = 10
-performance_schema_events_statements_history_long_size = 1000
-performance_schema_events_waits_history_size           = 10
-performance_schema_events_waits_history_long_size      = 1000
-performance_schema_events_stages_history_size          = 10
-performance_schema_events_stages_history_long_size     = 1000
-performance_schema_max_mutex_instances                 = 5000
-performance_schema_max_rwlock_instances                = 2000
-performance_schema_max_socket_instances                = 500
-performance_schema_max_table_instances                 = 1000
-
-
-[mysqldump]
-
-quick
-max_allowed_packet = 32M
-
-!includedir /etc/mysql/mysqld.conf.d/

File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_disk_space.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_disk_space.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_disk_space.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_memory.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_memory.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_memory.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_memory.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

Ferm::Service[s1_mariadb_internal]

Parameters differences:

--- Ferm::Service[s1_mariadb_internal].orig
+++ Ferm::Service[s1_mariadb_internal]

-    unrestricted_access => False
-    srange              => $INTERNAL
-    notrack             => True
-    proto               => tcp
-    desc                => 
-    prio                => 10
-    port                => 3311
-    ensure              => present

File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_lag_s1]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_lag_s1].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_lag_s1]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

File[/etc/mysql/ssl/server-keypair.pem]

Parameters differences:

--- File[/etc/mysql/ssl/server-keypair.pem].orig
+++ File[/etc/mysql/ssl/server-keypair.pem]

-    group  => mysql
-    ensure => absent
-    mode   => 0400
-    owner  => mysql

File[/usr/local/etc/my.cnf]

Parameters differences:

--- File[/usr/local/etc/my.cnf].orig
+++ File[/usr/local/etc/my.cnf]

-    group  => root
-    ensure => absent
-    owner  => root

Nrpe::Monitor_service[mariadb_memory]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_memory].orig
+++ Nrpe::Monitor_service[mariadb_memory]

-    description                 => MariaDB memory
-    retries                     => 3
-    migration_task              => T315866
-    enable_icinga_check         => True
-    timeout                     => 10
-    nrpe2nodexp_parse_perf_data => False
-    retry_interval              => 1
-    require                     => Package[monitoring-plugins-contrib]
-    nrpe_command                => /usr/lib/nagios/plugins/pmp-check-unix-memory -c 95 -w 90
-    critical                    => False
-    alertmanager_team           => observability
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group               => admins
-    check_interval              => 1
-    ensure                      => present

Class[Profile::Mariadb::Wmfmariadbpy]

Parameters differences:

--- Class[Profile::Mariadb::Wmfmariadbpy].orig
+++ Class[Profile::Mariadb::Wmfmariadbpy]

-    section_ports => {'s1': 3311, 's2': 3312, 's3': 3313, 's4': 3314, 's5': 3315, 's6': 3316, 's7': 3317, 's8': 3318, 'x1': 3320, 'x3': 3363, 'm1': 3321, 'm2': 3322, 'm3': 3323, 'm5': 3325, 'staging': 3350, 'matomo': 3351, 'analytics_meta': 3352, 'backup1-eqiad': 3360, 'backup1-codfw': 3361}
-    role          => db

Systemd::Service[nrpe2nodexp-mysqld]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mysqld].orig
+++ Systemd::Service[nrpe2nodexp-mysqld]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mysqld.service]
-    ensure                   => absent
-    service_params           => {}

Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

Parameters differences:

--- Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer].orig
+++ Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

-    restart           => False
-    override          => False
-    unit              => wmf_auto_restart_prometheus-mysqld-exporter@s1.timer
-    require           => ['Class[Systemd]']
-    ensure            => present
-    override_filename => puppet-override.conf

Systemd::Timer::Job[nrpe2nodexp-mariadb_read_only_s1]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_read_only_s1].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_read_only_s1]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_read_only_s1 command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_read_only_s1
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "42baf529e0f3bfca391aca0a24c880e9" --timeout 10 --check-command "check_mariadb_read_only_s1"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-disk-space.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_disk_space" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

User[mysql]

Parameters differences:

--- User[mysql].orig
+++ User[mysql]

-    shell      => /bin/false
-    home       => /nonexistent
-    gid        => mysql
-    system     => True
-    ensure     => present
-    managehome => False

File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_replica_sql_state_s1.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_replica_sql_state_s1]=/usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_state

Monitoring::Exported_nagios_service[db2141 mariadb_read_only_s1]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_read_only_s1].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_read_only_s1]

-    check_command          => nrpe_check!check_mariadb_read_only_s1!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB read only s1
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Master_comes_back_in_read_only
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

Systemd::Timer[nrpe2nodexp-mariadb_replica_io_state_s1]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_replica_io_state_s1].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_replica_io_state_s1]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_replica_io_state_s1.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Monitoring::Exported_nagios_host[db2141]

Parameters differences:

--- Monitoring::Exported_nagios_host[db2141].orig
+++ Monitoring::Exported_nagios_host[db2141]

@@
-    notifications_enabled => 1
+    notifications_enabled => 0

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.service (nrpe2nodexp-mariadb_replica_sql_lag_s1.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.service (nrpe2nodexp-mariadb_replica_sql_lag_s1.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.service (nrpe2nodexp-mariadb_replica_sql_lag_s1.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Nrpe::Plugin[check_mariadb]

Parameters differences:

--- Nrpe::Plugin[check_mariadb].orig
+++ Nrpe::Plugin[check_mariadb]

-    ensure => present
-    source => puppet:///modules/icinga/check_mariadb.pl

File[/usr/local/lib/nagios/plugins/check_mariadb]

Parameters differences:

--- File[/usr/local/lib/nagios/plugins/check_mariadb].orig
+++ File[/usr/local/lib/nagios/plugins/check_mariadb]

-    group   => root
-    tag     => nrpe::plugin
-    mode    => 0555
-    require => File[/usr/local/lib/nagios/plugins/]
-    ensure  => file
-    source  => puppet:///modules/icinga/check_mariadb.pl
-    owner   => root

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-io-state-s1.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_replica_io_state_s1" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_sql_state_s1.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.service (nrpe2nodexp-mariadb_replica_sql_state_s1.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.service (nrpe2nodexp-mariadb_replica_sql_state_s1.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.service (nrpe2nodexp-mariadb_replica_sql_state_s1.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Systemd::Timer::Job[nrpe2nodexp-mariadb_disk_space]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_disk_space].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_disk_space]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_disk_space command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_disk_space
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "d2aae7bfec5549be1a8b9413215bd86c" --timeout 10 --check-command "check_mariadb_disk_space"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

Rsyslog::Conf[nrpe2nodexp-mysqld]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mysqld].orig
+++ Rsyslog::Conf[nrpe2nodexp-mysqld]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1]

Parameters differences:

--- File[/etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1].orig
+++ File[/etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1]

-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1.orig
+++ /etc/logrotate.d/wmf_auto_restart_prometheus-mysqld-exporter_s1
@@ -1,12 +0,0 @@
-# logrotate(8) config for wmf_auto_restart_prometheus-mysqld-exporter_s1
-
-/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1/*.log {
-    daily
-    copytruncate
-    missingok
-    compress
-    delaycompress
-    notifempty
-    rotate 15
-    size 256M
-}

Prometheus::Mysqld_exporter::Instance[s1]

Parameters differences:

--- Prometheus::Mysqld_exporter::Instance[s1].orig
+++ Prometheus::Mysqld_exporter::Instance[s1]

-    client_user     => prometheus
-    client_password => This is a fake passsword, but cannot be empty due to Debian #953040
-    listen_address  => :13311
-    client_socket   => /run/mysqld/mysqld.s1.sock

Service[nrpe2nodexp-mariadb_memory.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_memory.timer].orig
+++ Service[nrpe2nodexp-mariadb_memory.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)]']

Nrpe::Monitor_service[mariadb_replica_sql_state_s1]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_replica_sql_state_s1].orig
+++ Nrpe::Monitor_service[mariadb_replica_sql_state_s1]

-    alertmanager_team           => observability
-    description                 => MariaDB Replica SQL: s1
-    retries                     => 3
-    migration_task              => T315866
-    nrpe2nodexp_parse_perf_data => False
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group               => admins
-    check_interval              => 1
-    enable_icinga_check         => True
-    nrpe_command                => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_state
-    timeout                     => 10
-    retry_interval              => 1
-    ensure                      => present
-    critical                    => False

File[/etc/default/prometheus]

Parameters differences:

--- File[/etc/default/prometheus].orig
+++ File[/etc/default/prometheus]

-    group  => prometheus
-    ensure => directory
-    mode   => 0550
-    owner  => prometheus

Class[Profile::Mariadb::Dbstore_multiinstance]

Parameters differences:

--- Class[Profile::Mariadb::Dbstore_multiinstance].orig
+++ Class[Profile::Mariadb::Dbstore_multiinstance]

-    instances     => {'s1': '192G'}
-    section_ports => {'s1': 3311, 's2': 3312, 's3': 3313, 's4': 3314, 's5': 3315, 's6': 3316, 's7': 3317, 's8': 3318, 'x1': 3320, 'x3': 3363, 'm1': 3321, 'm2': 3322, 'm3': 3323, 'm5': 3325, 'staging': 3350, 'matomo': 3351, 'analytics_meta': 3352, 'backup1-eqiad': 3360, 'backup1-codfw': 3361}
-    require       => ['Class[Profile::Mariadb::Packages_wmf]']

Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_state_s1]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_state_s1].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_state_s1]

-    check_command          => nrpe_check!check_mariadb_replica_sql_state_s1!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB Replica SQL: s1
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

File[/etc/default/prometheus-mysqld-exporter@s1]

Parameters differences:

--- File[/etc/default/prometheus-mysqld-exporter@s1].orig
+++ File[/etc/default/prometheus-mysqld-exporter@s1]

-    notify => Exec[systemctl try-restart prometheus-mysqld-exporter@s1]
-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/default/prometheus-mysqld-exporter@s1.orig
+++ /etc/default/prometheus-mysqld-exporter@s1
@@ -1 +0,0 @@
-ARGS='--web.listen-address ":13311" --config.my-cnf "/var/lib/prometheus/.my.s1.cnf" --collect.global_status --collect.global_variables --collect.info_schema.processlist --collect.slave_status --collect.heartbeat --collect.heartbeat.utc --no-collect.info_schema.tables'

Nrpe::Monitor_service[mariadb_replica_sql_lag_s1]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_replica_sql_lag_s1].orig
+++ Nrpe::Monitor_service[mariadb_replica_sql_lag_s1]

-    alertmanager_team           => observability
-    description                 => MariaDB Replica Lag: s1
-    retries                     => 10
-    migration_task              => T315866
-    nrpe2nodexp_parse_perf_data => False
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group               => admins
-    check_interval              => 1
-    enable_icinga_check         => True
-    nrpe_command                => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_lag                            --shard=s1 --datacenter=eqiad                            --sql-lag-warn=60                            --sql-lag-crit=300
-    timeout                     => 10
-    retry_interval              => 1
-    ensure                      => present
-    critical                    => False

Systemd::Service[nrpe2nodexp-mariadb_replica_sql_state_s1]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_replica_sql_state_s1].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_replica_sql_state_s1]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.service]
-    ensure                   => absent
-    service_params           => {}

Nrpe::Check[check_mariadb_replica_sql_lag_s1]

Parameters differences:

--- Nrpe::Check[check_mariadb_replica_sql_lag_s1].orig
+++ Nrpe::Check[check_mariadb_replica_sql_lag_s1]

-    command => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_lag                            --shard=s1 --datacenter=eqiad                            --sql-lag-warn=60                            --sql-lag-crit=300
-    before  => Monitoring::Service[mariadb_replica_sql_lag_s1]
-    ensure  => present

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Class[Mariadb::Monitor_disk]

Parameters differences:

--- Class[Mariadb::Monitor_disk].orig
+++ Class[Mariadb::Monitor_disk]

-    contact_group => admins
-    is_critical   => False
-    pct_critical  => 5
-    pct_warning   => 10

File_line[auto_restart_file_presence_prometheus-mysqld-exporter@s1]

Parameters differences:

--- File_line[auto_restart_file_presence_prometheus-mysqld-exporter@s1].orig
+++ File_line[auto_restart_file_presence_prometheus-mysqld-exporter@s1]

-    path    => /etc/debdeploy-client/autorestarts.conf
-    ensure  => present
-    line    => prometheus-mysqld-exporter@s1
-    require => File[/etc/debdeploy-client/autorestarts.conf]

Mariadb::Monitor_readonly[s1]

Parameters differences:

--- Mariadb::Monitor_readonly[s1].orig
+++ Mariadb::Monitor_readonly[s1]

-    contact_group => admins
-    is_critical   => False
-    read_only     => 1
-    port          => 3311

File[/etc/mysql/ssl/cacert.pem]

Parameters differences:

--- File[/etc/mysql/ssl/cacert.pem].orig
+++ File[/etc/mysql/ssl/cacert.pem]

-    backup    => False
-    show_diff => False
-    group     => mysql
-    ensure    => file
-    mode      => 0440
-    owner     => root

Motd::Message[insetup::data_persistence_ferm]

Parameters differences:

--- Motd::Message[insetup::data_persistence_ferm].orig
+++ Motd::Message[insetup::data_persistence_ferm]

+    priority => 5
+    ensure   => present
+    message  => db2141 is a Host being setup by Data Persistence SREs (insetup::data_persistence_ferm)

File[/etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf]

Parameters differences:

--- File[/etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf].orig
+++ File[/etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf.orig
+++ /etc/rsyslog.d/40-wmf-auto-restart-prometheus-mysqld-exporter-s1.conf
@@ -1,10 +0,0 @@
-# rsyslog.conf(5) configuration file for services.
-# This file is managed by Puppet.
-if $programname startswith "wmf_auto_restart_prometheus-mysqld-exporter_s1" then {
-    action(
-        type="omfile" file="/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1/syslog.log"
-        fileOwner="root" fileGroup="root"
-        fileCreateMode="0644"
-    )
-    & stop
-}

Systemd::Unit[prometheus-mysqld-exporter@]

Parameters differences:

--- Systemd::Unit[prometheus-mysqld-exporter@].orig
+++ Systemd::Unit[prometheus-mysqld-exporter@]

-    restart           => False
-    override          => False
-    unit              => prometheus-mysqld-exporter@
-    require           => ['Package[prometheus-mysqld-exporter]', 'Class[Systemd]']
-    ensure            => present
-    override_filename => puppet-override.conf

Prometheus::Alert::Rule[check_mariadb_disk_space_d2aae7bfec5549be1a8b9413215bd86c]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_disk_space_d2aae7bfec5549be1a8b9413215bd86c].orig
+++ Prometheus::Alert::Rule[check_mariadb_disk_space_d2aae7bfec5549be1a8b9413215bd86c]

-    alert_name         => nrpe_MariaDB_disk_space
-    description        => NRPE CHECK: MariaDB disk space
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="d2aae7bfec5549be1a8b9413215bd86c",check_name="check_mariadb_disk_space", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    for                => 3m
-    summary            => NRPE CHECK: MariaDB disk space
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_disk_space))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

File[/usr/local/bin/mysql.s1]

Parameters differences:

--- File[/usr/local/bin/mysql.s1].orig
+++ File[/usr/local/bin/mysql.s1]

-    group  => root
-    ensure => present
-    mode   => 0555
-    owner  => root

Content differences:

--- /usr/local/bin/mysql.s1.orig
+++ /usr/local/bin/mysql.s1
@@ -1,3 +0,0 @@
-#!/bin/bash
-
-exec sudo mysql -S /run/mysqld/mysqld.s1.sock --prompt="\\u@$(hostname):s1[\\d]> "

Systemd::Syslog[wmf_auto_restart_prometheus-mysqld-exporter_s1]

Parameters differences:

--- Systemd::Syslog[wmf_auto_restart_prometheus-mysqld-exporter_s1].orig
+++ Systemd::Syslog[wmf_auto_restart_prometheus-mysqld-exporter_s1]

-    force_stop             => True
-    group                  => root
-    base_dir               => /var/log
-    readable_by            => all
-    log_filename           => syslog.log
-    programname_comparison => startswith
-    ensure                 => present
-    owner                  => root

Nrpe::Check[check_mysqld]

Parameters differences:

--- Nrpe::Check[check_mysqld].orig
+++ Nrpe::Check[check_mysqld]

-    command => /usr/lib/nagios/plugins/check_procs -c 1:1 -C mysqld
-    before  => Monitoring::Service[mysqld]
-    ensure  => present

Motd::Script[insetup::data_persistence_ferm]

Parameters differences:

--- Motd::Script[insetup::data_persistence_ferm].orig
+++ Motd::Script[insetup::data_persistence_ferm]

+    ensure   => present
+    priority => 5

Concat_file[/etc/mysql/ssl/cert.pem]

Parameters differences:

--- Concat_file[/etc/mysql/ssl/cert.pem].orig
+++ Concat_file[/etc/mysql/ssl/cert.pem]

-    force          => False
-    order          => alpha
-    format         => plain
-    ensure_newline => False
-    backup         => puppet
-    show_diff      => True
-    tag            => _etc_mysql_ssl_cert.pem
-    replace        => True
-    mode           => 0644

Concat_fragment[main contacts]

Content differences:

--- main contacts.orig
+++ main contacts
@@ -1,3 +1,3 @@
 ---
-role::mariadb::backup_source:
+role::insetup::data_persistence_ferm:
 - Data Persistence

Sudo::User[nrpe-check_mariadb_read_only_s1]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_read_only_s1].orig
+++ Sudo::User[nrpe-check_mariadb_read_only_s1]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_lag_s1]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_lag_s1].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_replica_sql_lag_s1]

-    check_command          => nrpe_check!check_mariadb_replica_sql_lag_s1!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB Replica Lag: s1
-    host_name              => db2141
-    max_check_attempts     => 10
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

Package[percona-toolkit]

Parameters differences:

--- Package[percona-toolkit].orig
+++ Package[percona-toolkit]

-    ensure   => installed
-    provider => apt

Systemd::Timer::Job[nrpe2nodexp-mysqld]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mysqld].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mysqld]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mysqld command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mysqld
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "ca81db2c9e98d408f9f65c79817da116" --timeout 10 --check-command "check_mysqld"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

Systemd::Service[nrpe2nodexp-mariadb_read_only_s1]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_read_only_s1].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_read_only_s1]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.service]
-    ensure                   => absent
-    service_params           => {}

Systemd::Unit[nrpe2nodexp-mariadb_memory.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_memory.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_memory.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_memory.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/etc/systemd/system/mariadb.service.d]

Parameters differences:

--- File[/etc/systemd/system/mariadb.service.d].orig
+++ File[/etc/systemd/system/mariadb.service.d]

-    group  => root
-    ensure => directory
-    mode   => 0755
-    owner  => root

Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_state_s1]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_state_s1].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_state_s1]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_replica_sql_state_s1 command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_replica_sql_state_s1
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "3f927914a18db09399b7fff42858d634" --timeout 10 --check-command "check_mariadb_replica_sql_state_s1"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

Class[Mariadb::Monitor_memory]

Parameters differences:

--- Class[Mariadb::Monitor_memory].orig
+++ Class[Mariadb::Monitor_memory]

-    contact_group => admins
-    is_critical   => False
-    warning       => 90
-    critical      => 95

Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_read_only_s1.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/etc/update-motd.d/05-insetup--data-persistence-ferm]

Parameters differences:

--- File[/etc/update-motd.d/05-insetup--data-persistence-ferm].orig
+++ File[/etc/update-motd.d/05-insetup--data-persistence-ferm]

+    group  => root
+    ensure => present
+    mode   => 0555
+    owner  => root

Content differences:

--- /etc/update-motd.d/05-insetup--data-persistence-ferm.orig
+++ /etc/update-motd.d/05-insetup--data-persistence-ferm
@@ -0,0 +1,2 @@
+#!/bin/sh
+printf "%s\n" "db2141 is a Host being setup by Data Persistence SREs (insetup::data_persistence_ferm)"

Class[Mariadb::Packages_wmf]

Parameters differences:

--- Class[Mariadb::Packages_wmf].orig
+++ Class[Mariadb::Packages_wmf]

-    package => wmf-mariadb1011

File[/etc/mysql/my.cnf]

Parameters differences:

--- File[/etc/mysql/my.cnf].orig
+++ File[/etc/mysql/my.cnf]

-    group  => root
-    ensure => absent
-    owner  => root

Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.timer (wmf_auto_restart_prometheus-mysqld-exporter@s1.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.timer (wmf_auto_restart_prometheus-mysqld-exporter@s1.timer)].orig
+++ Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.timer (wmf_auto_restart_prometheus-mysqld-exporter@s1.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True
-    before      => ['Service[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]']

Sudo::User[nrpe-check_mariadb_memory]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_memory].orig
+++ Sudo::User[nrpe-check_mariadb_memory]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

Systemd::Service[nrpe2nodexp-mariadb_replica_sql_lag_s1]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_replica_sql_lag_s1].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_replica_sql_lag_s1]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.service]
-    ensure                   => absent
-    service_params           => {}

Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.service (wmf_auto_restart_prometheus-mysqld-exporter@s1.service)]

Parameters differences:

--- Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.service (wmf_auto_restart_prometheus-mysqld-exporter@s1.service)].orig
+++ Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.service (wmf_auto_restart_prometheus-mysqld-exporter@s1.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.service (nrpe2nodexp-mariadb_read_only_s1.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.service (nrpe2nodexp-mariadb_read_only_s1.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.service (nrpe2nodexp-mariadb_read_only_s1.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_lag_s1]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_lag_s1].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_lag_s1]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/etc/nagios/nrpe.d/check_mariadb_memory.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_memory.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_memory.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_memory.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_memory.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_memory]=/usr/lib/nagios/plugins/pmp-check-unix-memory -c 95 -w 90

File[/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1]

Parameters differences:

--- File[/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1].orig
+++ File[/var/log/wmf_auto_restart_prometheus-mysqld-exporter_s1]

-    force  => True
-    backup => False
-    group  => root
-    ensure => directory
-    mode   => 0755
-    owner  => root

Monitoring::Service[mariadb_memory]

Parameters differences:

--- Monitoring::Service[mariadb_memory].orig
+++ Monitoring::Service[mariadb_memory]

-    description    => MariaDB memory
-    check_command  => nrpe_check!check_mariadb_memory!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_state_s1]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_state_s1].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_replica_sql_state_s1]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

File[/var/lib/prometheus/node.d/check_mariadb_disk_space.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_disk_space.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_disk_space.prom]

-    group  => root
-    ensure => absent
-    owner  => root

Exec[systemd daemon-reload for nrpe2nodexp-mysqld.service (nrpe2nodexp-mysqld.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mysqld.service (nrpe2nodexp-mysqld.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mysqld.service (nrpe2nodexp-mysqld.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_lag_s1]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_lag_s1].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_sql_lag_s1]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_replica_sql_lag_s1 command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_replica_sql_lag_s1
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "8ec9d6c1155ae60699aaf9dfd1fa339b" --timeout 10 --check-command "check_mariadb_replica_sql_lag_s1"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

Monitoring::Service[mariadb_replica_sql_lag_s1]

Parameters differences:

--- Monitoring::Service[mariadb_replica_sql_lag_s1].orig
+++ Monitoring::Service[mariadb_replica_sql_lag_s1]

-    description    => MariaDB Replica Lag: s1
-    check_command  => nrpe_check!check_mariadb_replica_sql_lag_s1!10
-    retries        => 10
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mysqld.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mysqld" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

Sudo::User[nrpe-check_mariadb_disk_space]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_disk_space].orig
+++ Sudo::User[nrpe-check_mariadb_disk_space]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

Exec[systemd daemon-reload for prometheus-mysqld-exporter@.service (prometheus-mysqld-exporter@)]

Parameters differences:

--- Exec[systemd daemon-reload for prometheus-mysqld-exporter@.service (prometheus-mysqld-exporter@)].orig
+++ Exec[systemd daemon-reload for prometheus-mysqld-exporter@.service (prometheus-mysqld-exporter@)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Ferm::Service[s1_orchestrator]

Parameters differences:

--- Ferm::Service[s1_orchestrator].orig
+++ Ferm::Service[s1_orchestrator]

-    unrestricted_access => False
-    srange              => ['dborch1001.wikimedia.org', 'dborch1002.wikimedia.org', 'dborch1003.eqiad.wmnet']
-    notrack             => True
-    proto               => tcp
-    desc                => 
-    prio                => 10
-    port                => [3311]
-    ensure              => present

File[/etc/systemd/system/mariadb.service.d/override.conf]

Parameters differences:

--- File[/etc/systemd/system/mariadb.service.d/override.conf].orig
+++ File[/etc/systemd/system/mariadb.service.d/override.conf]

-    notify => Exec[systemctl-daemon-reload]
-    group  => root
-    ensure => present
-    mode   => 0644
-    owner  => root

Content differences:

--- /etc/systemd/system/mariadb.service.d/override.conf.orig
+++ /etc/systemd/system/mariadb.service.d/override.conf
@@ -1,2 +0,0 @@
-[Service]
-ExecStartPre=/bin/sh -c "echo 'mariadb main service is disabled, use mariadb@<instance_name> instead'; exit 1"

Monitoring::Service[mysqld]

Parameters differences:

--- Monitoring::Service[mysqld].orig
+++ Monitoring::Service[mysqld]

-    description    => mysqld processes
-    check_command  => nrpe_check!check_mysqld!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/etc/ferm/conf.d/10_s1_orchestrator]

Parameters differences:

--- File[/etc/ferm/conf.d/10_s1_orchestrator].orig
+++ File[/etc/ferm/conf.d/10_s1_orchestrator]

-    notify  => Service[ferm]
-    group   => root
-    tag     => ferm
-    require => File[/etc/ferm/conf.d]
-    ensure  => present
-    mode    => 0400
-    owner   => root

Content differences:

--- /etc/ferm/conf.d/10_s1_orchestrator.orig
+++ /etc/ferm/conf.d/10_s1_orchestrator
@@ -1,8 +0,0 @@
-# Autogenerated by puppet. DO NOT EDIT BY HAND!
-#
-# 
-&R_SERVICE(tcp, 3311, (10.64.0.20 208.80.154.9 208.80.155.103 2620:0:861:4:208:80:155:103));
-
-
-
-&NO_TRACK(tcp, 3311);

File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_memory.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.service (nrpe2nodexp-mariadb_memory.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_memory.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_memory.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_memory command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_memory
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "b5a92c72542d5f0c031014e7a8db014e" --timeout 10 --check-command "check_mariadb_memory"

Monitoring::Service[mariadb_replica_io_state_s1]

Parameters differences:

--- Monitoring::Service[mariadb_replica_io_state_s1].orig
+++ Monitoring::Service[mariadb_replica_io_state_s1]

-    description    => MariaDB Replica IO: s1
-    check_command  => nrpe_check!check_mariadb_replica_io_state_s1!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/etc/mysql/grcat.config]

Parameters differences:

--- File[/etc/mysql/grcat.config].orig
+++ File[/etc/mysql/grcat.config]

-    source => puppet:///modules/mariadb/grcat.config
-    group  => root
-    ensure => present
-    mode   => 0644
-    owner  => root

Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_state_s1.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_sql_state_s1.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Rsyslog::Conf[nrpe2nodexp-mariadb_memory]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_memory].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_memory]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/var/lib/prometheus/node.d/check_mariadb_memory.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_memory.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_memory.prom]

-    group  => root
-    ensure => absent
-    owner  => root

Profile::Mariadb::Ferm[s1]

Parameters differences:

--- Profile::Mariadb::Ferm[s1].orig
+++ Profile::Mariadb::Ferm[s1]

-    port => 3311

Monitoring::Exported_nagios_service[db2141 raid_megaraid]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 raid_megaraid].orig
+++ Monitoring::Exported_nagios_service[db2141 raid_megaraid]

@@
-    notifications_enabled => 1
+    notifications_enabled => 0

Exec[systemctl-daemon-reload]

Parameters differences:

--- Exec[systemctl-daemon-reload].orig
+++ Exec[systemctl-daemon-reload]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Rsyslog::Conf[nrpe2nodexp-mariadb_replica_io_state_s1]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_replica_io_state_s1].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_replica_io_state_s1]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

Nrpe::Check[check_mariadb_replica_io_state_s1]

Parameters differences:

--- Nrpe::Check[check_mariadb_replica_io_state_s1].orig
+++ Nrpe::Check[check_mariadb_replica_io_state_s1]

-    command => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_io_state
-    before  => Monitoring::Service[mariadb_replica_io_state_s1]
-    ensure  => present

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.service (nrpe2nodexp-mariadb_disk_space.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.service (nrpe2nodexp-mariadb_disk_space.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.service (nrpe2nodexp-mariadb_disk_space.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Monitoring::Exported_nagios_service[db2141 ferm_active]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 ferm_active].orig
+++ Monitoring::Exported_nagios_service[db2141 ferm_active]

@@
-    notifications_enabled => 1
+    notifications_enabled => 0

Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_state_s1]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_state_s1].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_replica_sql_state_s1]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_replica_sql_state_s1.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Systemd::Unit[nrpe2nodexp-mariadb_disk_space.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_disk_space.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_disk_space.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_disk_space.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Systemd::Timer[nrpe2nodexp-mariadb_disk_space]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_disk_space].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_disk_space]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_disk_space.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Systemd::Timer[nrpe2nodexp-mysqld]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mysqld].orig
+++ Systemd::Timer[nrpe2nodexp-mysqld]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mysqld.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Concat::Fragment[main contacts]

File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.service (nrpe2nodexp-mariadb_disk_space.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_disk_space.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_disk_space command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_disk_space
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "d2aae7bfec5549be1a8b9413215bd86c" --timeout 10 --check-command "check_mariadb_disk_space"

Service[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer].orig
+++ Service[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)]']

File[/etc/wmfmariadbpy/section_ports.csv]

Parameters differences:

--- File[/etc/wmfmariadbpy/section_ports.csv].orig
+++ File[/etc/wmfmariadbpy/section_ports.csv]

-    group  => root
-    ensure => file
-    mode   => 0644
-    owner  => root

Content differences:

--- /etc/wmfmariadbpy/section_ports.csv.orig
+++ /etc/wmfmariadbpy/section_ports.csv
@@ -1,19 +0,0 @@
-s1, 3311
-s2, 3312
-s3, 3313
-s4, 3314
-s5, 3315
-s6, 3316
-s7, 3317
-s8, 3318
-x1, 3320
-x3, 3363
-m1, 3321
-m2, 3322
-m3, 3323
-m5, 3325
-staging, 3350
-matomo, 3351
-analytics_meta, 3352
-backup1-eqiad, 3360
-backup1-codfw, 3361

File[/etc/ferm/conf.d/10_s1_mariadb_dba]

Parameters differences:

--- File[/etc/ferm/conf.d/10_s1_mariadb_dba].orig
+++ File[/etc/ferm/conf.d/10_s1_mariadb_dba]

-    notify  => Service[ferm]
-    group   => root
-    tag     => ferm
-    require => File[/etc/ferm/conf.d]
-    ensure  => present
-    mode    => 0400
-    owner   => root

Content differences:

--- /etc/ferm/conf.d/10_s1_mariadb_dba.orig
+++ /etc/ferm/conf.d/10_s1_mariadb_dba
@@ -1,6 +0,0 @@
-# Autogenerated by puppet. DO NOT EDIT BY HAND!
-#
-# 
-&R_SERVICE(tcp, 3331, $MYSQL_ROOT_CLIENTS);
-
-

Monitoring::Service[mariadb_replica_sql_state_s1]

Parameters differences:

--- Monitoring::Service[mariadb_replica_sql_state_s1].orig
+++ Monitoring::Service[mariadb_replica_sql_state_s1]

-    description    => MariaDB Replica SQL: s1
-    check_command  => nrpe_check!check_mariadb_replica_sql_state_s1!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

Parameters differences:

--- File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer].orig
+++ File[/lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

-    notify => Exec[systemd daemon-reload for wmf_auto_restart_prometheus-mysqld-exporter@s1.timer (wmf_auto_restart_prometheus-mysqld-exporter@s1.timer)]
-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer.orig
+++ /lib/systemd/system/wmf_auto_restart_prometheus-mysqld-exporter@s1.timer
@@ -1,12 +0,0 @@
-[Unit]
-Description=Periodic execution of wmf_auto_restart_prometheus-mysqld-exporter@s1.service
-
-[Timer]
-Unit=wmf_auto_restart_prometheus-mysqld-exporter@s1.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnCalendar=Mon,Tue,Wed,Thu,Fri *-*-* 3:10:00
-RandomizedDelaySec=0
-
-[Install]
-WantedBy=multi-user.target

Systemd::Timer[wmf_auto_restart_prometheus-mysqld-exporter@s1]

Parameters differences:

--- Systemd::Timer[wmf_auto_restart_prometheus-mysqld-exporter@s1].orig
+++ Systemd::Timer[wmf_auto_restart_prometheus-mysqld-exporter@s1]

-    fixed_random_delay => False
-    timer_intervals    => [{'start': 'OnCalendar', 'interval': 'Mon,Tue,Wed,Thu,Fri *-*-* 3:10:00'}]
-    unit_name          => wmf_auto_restart_prometheus-mysqld-exporter@s1.service
-    ensure             => present
-    accuracy           => 15sec
-    splay              => 0

Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_read_only_s1.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_read_only_s1.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_sql_lag_s1.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-replica-sql-lag-s1.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_replica_sql_lag_s1" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

Class[Mariadb::Service]

Parameters differences:

--- Class[Mariadb::Service].orig
+++ Class[Mariadb::Service]

-    manage   => False
-    enable   => False
-    ensure   => stopped
-    override => [Service]
ExecStartPre=/bin/sh -c "echo 'mariadb main service is disabled, use mariadb@<instance_name> instead'; exit 1"

File[/etc/mysql/mysqld.conf.d]

Parameters differences:

--- File[/etc/mysql/mysqld.conf.d].orig
+++ File[/etc/mysql/mysqld.conf.d]

-    group  => root
-    ensure => directory
-    mode   => 0755
-    owner  => root

Concat_fragment[/etc/mysql_puppet_ca_chain]

Parameters differences:

--- Concat_fragment[/etc/mysql_puppet_ca_chain].orig
+++ Concat_fragment[/etc/mysql_puppet_ca_chain]

-    tag    => _etc_mysql_ssl_cert.pem
-    order  => 02
-    source => /var/lib/puppet/ssl/certs/ca.pem
-    target => /etc/mysql/ssl/cert.pem

Sudo::User[nrpe-check_mariadb_replica_sql_lag_s1]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_replica_sql_lag_s1].orig
+++ Sudo::User[nrpe-check_mariadb_replica_sql_lag_s1]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.service]

Parameters differences:

--- Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.service].orig
+++ Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.service]

-    restart           => False
-    override          => False
-    unit              => wmf_auto_restart_prometheus-mysqld-exporter@s1.service
-    require           => ['Class[Systemd]']
-    ensure            => present
-    override_filename => puppet-override.conf

File[/etc/mysql/ssl/server.p12]

Parameters differences:

--- File[/etc/mysql/ssl/server.p12].orig
+++ File[/etc/mysql/ssl/server.p12]

-    group  => mysql
-    ensure => absent
-    mode   => 0440
-    owner  => mysql

Profile::Mariadb::Section[s1]

Parameters differences:

--- Profile::Mariadb::Section[s1].orig
+++ Profile::Mariadb::Section[s1]

-    mention_alias => True
-    section       => s1

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.service (nrpe2nodexp-mariadb_replica_sql_state_s1.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_state_s1.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_replica_sql_state_s1 command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_replica_sql_state_s1
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "3f927914a18db09399b7fff42858d634" --timeout 10 --check-command "check_mariadb_replica_sql_state_s1"

Profile::Auto_restarts::Service[prometheus-mysqld-exporter@s1]

Parameters differences:

--- Profile::Auto_restarts::Service[prometheus-mysqld-exporter@s1].orig
+++ Profile::Auto_restarts::Service[prometheus-mysqld-exporter@s1]

-    ensure => present

Class[Profile::Mariadb::Packages_wmf]

Parameters differences:

--- Class[Profile::Mariadb::Packages_wmf].orig
+++ Class[Profile::Mariadb::Packages_wmf]

-    package => wmf-mariadb1011

Systemd::Unit[nrpe2nodexp-mariadb_memory.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_memory.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_memory.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_memory.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Profile::Prometheus::Mysqld_exporter_instance[s1]

Parameters differences:

--- Profile::Prometheus::Mysqld_exporter_instance[s1].orig
+++ Profile::Prometheus::Mysqld_exporter_instance[s1]

-    socket => /run/mysqld/mysqld.s1.sock
-    port   => 13311

Monitoring::Service[mariadb_read_only_s1]

Parameters differences:

--- Monitoring::Service[mariadb_read_only_s1].orig
+++ Monitoring::Service[mariadb_read_only_s1]

-    description    => MariaDB read only s1
-    check_command  => nrpe_check!check_mariadb_read_only_s1!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Master_comes_back_in_read_only
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

File[/etc/wmfmariadbpy]

Parameters differences:

--- File[/etc/wmfmariadbpy].orig
+++ File[/etc/wmfmariadbpy]

-    group  => root
-    ensure => directory
-    mode   => 0755
-    owner  => root

Nrpe::Check[check_mariadb_memory]

Parameters differences:

--- Nrpe::Check[check_mariadb_memory].orig
+++ Nrpe::Check[check_mariadb_memory]

-    command => /usr/lib/nagios/plugins/pmp-check-unix-memory -c 95 -w 90
-    before  => Monitoring::Service[mariadb_memory]
-    ensure  => present

Nrpe::Check[check_mariadb_replica_sql_state_s1]

Parameters differences:

--- Nrpe::Check[check_mariadb_replica_sql_state_s1].orig
+++ Nrpe::Check[check_mariadb_replica_sql_state_s1]

-    command => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_state
-    before  => Monitoring::Service[mariadb_replica_sql_state_s1]
-    ensure  => present

File[/etc/nagios/nrpe.d/check_mysqld.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mysqld.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mysqld.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mysqld.cfg.orig
+++ /etc/nagios/nrpe.d/check_mysqld.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mysqld]=/usr/lib/nagios/plugins/check_procs -c 1:1 -C mysqld

Package[grc]

Parameters differences:

--- Package[grc].orig
+++ Package[grc]

-    ensure   => installed
-    provider => apt

Mariadb::Instance[s1]

Parameters differences:

--- Mariadb::Instance[s1].orig
+++ Mariadb::Instance[s1]

-    mysqld_extra_configs    => {}
-    socket                  => undefined
-    read_only               => 1
-    tmpdir                  => undefined
-    is_critical             => False
-    source_dc               => eqiad
-    innodb_buffer_pool_size => 192G
-    port                    => 3311
-    event_scheduler         => 1
-    template                => mariadb/instance.cnf.erb
-    datadir                 => undefined

Systemd::Timer[nrpe2nodexp-mariadb_read_only_s1]

Parameters differences:

--- Systemd::Timer[nrpe2nodexp-mariadb_read_only_s1].orig
+++ Systemd::Timer[nrpe2nodexp-mariadb_read_only_s1]

-    fixed_random_delay => True
-    timer_intervals    => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}, {'interval': '1s', 'start': 'OnActiveSec'}]
-    unit_name          => nrpe2nodexp-mariadb_read_only_s1.service
-    ensure             => absent
-    accuracy           => 15sec
-    splay              => 60

Systemd::Timer::Job[wmf_auto_restart_prometheus-mysqld-exporter@s1]

Parameters differences:

--- Systemd::Timer::Job[wmf_auto_restart_prometheus-mysqld-exporter@s1].orig
+++ Systemd::Timer::Job[wmf_auto_restart_prometheus-mysqld-exporter@s1]

-    fixed_random_delay        => False
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => present
-    description               => Auto restart job: prometheus-mysqld-exporter@s1
-    private_tmp               => False
-    send_mail                 => False
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    logging_enabled           => True
-    require                   => File[/usr/local/sbin/wmf-auto-restart]
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    command                   => /usr/local/sbin/wmf-auto-restart -s prometheus-mysqld-exporter@s1
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => {'start': 'OnCalendar', 'interval': 'Mon,Tue,Wed,Thu,Fri *-*-* 3:10:00'}
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => root
-    ignore_errors             => False

Monitoring::Exported_nagios_service[db2141 disk_space]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 disk_space].orig
+++ Monitoring::Exported_nagios_service[db2141 disk_space]

@@
-    notifications_enabled => 1
+    notifications_enabled => 0

Concat::Fragment[/etc/mysql_puppet_ca_chain]

Parameters differences:

--- Concat::Fragment[/etc/mysql_puppet_ca_chain].orig
+++ Concat::Fragment[/etc/mysql_puppet_ca_chain]

-    order  => 02
-    source => /var/lib/puppet/ssl/certs/ca.pem
-    target => /etc/mysql/ssl/cert.pem

Motd::Message[mariadb::backup_source]

Parameters differences:

--- Motd::Message[mariadb::backup_source].orig
+++ Motd::Message[mariadb::backup_source]

-    priority => 5
-    ensure   => present
-    message  => db2141 is a MariaDB server containing replicas of mediawiki databases used to generate backups (mariadb::backup_source)

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_io_state_s1.timer (nrpe2nodexp-mariadb_replica_io_state_s1.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_io_state_s1.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_replica_io_state_s1.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_replica_io_state_s1.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

Systemd::Service[nrpe2nodexp-mariadb_replica_io_state_s1]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_replica_io_state_s1].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_replica_io_state_s1]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.service]
-    ensure                   => absent
-    service_params           => {}

Systemd::Unit[nrpe2nodexp-mariadb_disk_space.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_disk_space.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_disk_space.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_disk_space.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/srv/tmp.s1]

Parameters differences:

--- File[/srv/tmp.s1].orig
+++ File[/srv/tmp.s1]

-    group  => mysql
-    ensure => directory
-    mode   => 0755
-    owner  => mysql

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.service (nrpe2nodexp-mariadb_memory.service)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.service (nrpe2nodexp-mariadb_memory.service)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.service (nrpe2nodexp-mariadb_memory.service)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Nrpe::Monitor_service[mariadb_disk_space]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_disk_space].orig
+++ Nrpe::Monitor_service[mariadb_disk_space]

-    alertmanager_team           => observability
-    description                 => MariaDB disk space
-    retries                     => 3
-    migration_task              => T315866
-    nrpe2nodexp_parse_perf_data => False
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group               => admins
-    check_interval              => 1
-    enable_icinga_check         => True
-    nrpe_command                => /usr/lib/nagios/plugins/check_disk -w 10% -c 5% -l -e --exclude-type=tracefs --exclude-type=tmpfs --exclude-type=ramfs --exclude-type=devtmpfs
-    timeout                     => 10
-    retry_interval              => 1
-    ensure                      => present
-    critical                    => False

File[/lib/systemd/system/prometheus-mysqld-exporter@.service]

Parameters differences:

--- File[/lib/systemd/system/prometheus-mysqld-exporter@.service].orig
+++ File[/lib/systemd/system/prometheus-mysqld-exporter@.service]

-    notify => Exec[systemd daemon-reload for prometheus-mysqld-exporter@.service (prometheus-mysqld-exporter@)]
-    group  => root
-    ensure => present
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/prometheus-mysqld-exporter@.service.orig
+++ /lib/systemd/system/prometheus-mysqld-exporter@.service
@@ -1,18 +0,0 @@
-[Unit]
-Description=Prometheus exporter for MySQL (instance %i)
-Documentation=https://prometheus.io/docs/introduction/overview/
-ConditionPathExists=/etc/default/prometheus-mysqld-exporter@%i
-#Ensure the exporter is (re-)started and stopped with the relevant
-#mariadb instance
-After=mariadb@%i.service
-Requisite=mariadb@%i.service
-
-[Service]
-Restart=always
-User=prometheus
-Group=prometheus
-EnvironmentFile=/etc/default/prometheus-mysqld-exporter@%i
-ExecStart=/usr/bin/prometheus-mysqld-exporter $ARGS
-
-[Install]
-WantedBy=multi-user.target

Service[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_replica_sql_state_s1.timer].orig
+++ Service[nrpe2nodexp-mariadb_replica_sql_state_s1.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)]']

Systemd::Timer::Job[nrpe2nodexp-mariadb_memory]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_memory].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_memory]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_memory command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_memory
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "b5a92c72542d5f0c031014e7a8db014e" --timeout 10 --check-command "check_mariadb_memory"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

Nrpe::Monitor_service[mysqld]

Parameters differences:

--- Nrpe::Monitor_service[mysqld].orig
+++ Nrpe::Monitor_service[mysqld]

-    alertmanager_team           => observability
-    description                 => mysqld processes
-    retries                     => 3
-    migration_task              => T315866
-    nrpe2nodexp_parse_perf_data => False
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group               => admins
-    check_interval              => 1
-    enable_icinga_check         => True
-    nrpe_command                => /usr/lib/nagios/plugins/check_procs -c 1:1 -C mysqld
-    timeout                     => 10
-    retry_interval              => 1
-    ensure                      => present
-    critical                    => False

Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_sql_lag_s1.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_read_only_s1.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_read_only_s1]=db-check-health --port=3311 --icinga --check_read_only=1 --process

Service[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

Parameters differences:

--- Service[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer].orig
+++ Service[wmf_auto_restart_prometheus-mysqld-exporter@s1.timer]

-    enable   => True
-    ensure   => running
-    provider => systemd

Systemd::Service[nrpe2nodexp-mariadb_memory]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_memory].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_memory]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_memory.service]
-    ensure                   => absent
-    service_params           => {}

File[/etc/mysql/ssl/client-key.pem]

Parameters differences:

--- File[/etc/mysql/ssl/client-key.pem].orig
+++ File[/etc/mysql/ssl/client-key.pem]

-    group  => root
-    ensure => absent
-    owner  => root

Monitoring::Exported_nagios_service[db2141 mariadb_disk_space]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_disk_space].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_disk_space]

-    check_command          => nrpe_check!check_mariadb_disk_space!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB disk space
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Package[wmf-mariadb1011]

Parameters differences:

--- Package[wmf-mariadb1011].orig
+++ Package[wmf-mariadb1011]

-    ensure   => installed
-    provider => apt

Sudo::User[nrpe-check_mariadb_replica_io_state_s1]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_replica_io_state_s1].orig
+++ Sudo::User[nrpe-check_mariadb_replica_io_state_s1]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.timer (nrpe2nodexp-mariadb_replica_sql_lag_s1.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mariadb_replica_sql_lag_s1.service
-
-[Timer]
-Unit=nrpe2nodexp-mariadb_replica_sql_lag_s1.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

Nrpe::Monitor_service[mariadb_replica_io_state_s1]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_replica_io_state_s1].orig
+++ Nrpe::Monitor_service[mariadb_replica_io_state_s1]

-    alertmanager_team           => observability
-    description                 => MariaDB Replica IO: s1
-    retries                     => 3
-    migration_task              => T315866
-    nrpe2nodexp_parse_perf_data => False
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Depooling_a_replica
-    contact_group               => admins
-    check_interval              => 1
-    enable_icinga_check         => True
-    nrpe_command                => /usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_io_state
-    timeout                     => 10
-    retry_interval              => 1
-    ensure                      => present
-    critical                    => False

Package[prometheus-mysqld-exporter]

Parameters differences:

--- Package[prometheus-mysqld-exporter].orig
+++ Package[prometheus-mysqld-exporter]

-    ensure   => installed
-    provider => apt

Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_io_state_s1]

Parameters differences:

--- Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_io_state_s1].orig
+++ Systemd::Timer::Job[nrpe2nodexp-mariadb_replica_io_state_s1]

-    fixed_random_delay        => True
-    monitoring_notes_url      => https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-    ensure                    => absent
-    description               => execution of nrpe2nodexp for the check_mariadb_replica_io_state_s1 command.
-    private_tmp               => False
-    send_mail                 => False
-    splay                     => 60
-    monitoring_enabled        => False
-    monitoring_contact_groups => admins
-    logfile_basedir           => /var/log
-    syslog_identifier         => nrpe2nodexp-mariadb_replica_io_state_s1
-    logging_enabled           => False
-    send_mail_only_on_error   => True
-    success_exit_status       => []
-    logfile_group             => root
-    group                     => prometheus-node-exporter
-    command                   => /usr/local/bin/nrpe2nodexp --alert-rule-hash "0d5979f7abbb49256cfedd70a646784e" --timeout 10 --check-command "check_mariadb_replica_io_state_s1"
-    logfile_name              => syslog.log
-    send_mail_to              => root@db2141.codfw.wmnet
-    syslog_match_startswith   => True
-    interval                  => [{'start': 'OnUnitInactiveSec', 'interval': '1min'}]
-    environment               => {}
-    logfile_perms             => all
-    syslog_force_stop         => True
-    user                      => nagios
-    ignore_errors             => True

File[/etc/mysql/ssl/server.key]

Parameters differences:

--- File[/etc/mysql/ssl/server.key].orig
+++ File[/etc/mysql/ssl/server.key]

-    show_diff => False
-    group     => mysql
-    mode      => 0400
-    ensure    => present
-    source    => /var/lib/puppet/ssl/private_keys/db2141.codfw.wmnet.pem
-    owner     => mysql

Group[mysql]

Parameters differences:

--- Group[mysql].orig
+++ Group[mysql]

-    system => True
-    ensure => present

Class[Mariadb::Monitor_process]

Parameters differences:

--- Class[Mariadb::Monitor_process].orig
+++ Class[Mariadb::Monitor_process]

-    process_count => 1
-    is_critical   => False
-    process_name  => mysqld
-    contact_group => admins

File[/etc/sudoers.d/nrpe-check_mysqld]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mysqld].orig
+++ File[/etc/sudoers.d/nrpe-check_mysqld]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

File[/etc/mysql/ssl/client-cert.pem]

Parameters differences:

--- File[/etc/mysql/ssl/client-cert.pem].orig
+++ File[/etc/mysql/ssl/client-cert.pem]

-    group  => root
-    ensure => absent
-    owner  => root

Monitoring::Exported_nagios_service[db2141 mariadb_memory]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mariadb_memory].orig
+++ Monitoring::Exported_nagios_service[db2141 mariadb_memory]

-    check_command          => nrpe_check!check_mariadb_memory!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => MariaDB memory
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_lag_s1.service (nrpe2nodexp-mariadb_replica_sql_lag_s1.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_replica_sql_lag_s1.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_replica_sql_lag_s1 command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_replica_sql_lag_s1
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "8ec9d6c1155ae60699aaf9dfd1fa339b" --timeout 10 --check-command "check_mariadb_replica_sql_lag_s1"

Nrpe::Check[check_mariadb_disk_space]

Parameters differences:

--- Nrpe::Check[check_mariadb_disk_space].orig
+++ Nrpe::Check[check_mariadb_disk_space]

-    command => /usr/lib/nagios/plugins/check_disk -w 10% -c 5% -l -e --exclude-type=tracefs --exclude-type=tmpfs --exclude-type=ramfs --exclude-type=devtmpfs
-    before  => Monitoring::Service[mariadb_disk_space]
-    ensure  => present

File[/opt/wmf-mariadb1011/my.cnf]

Parameters differences:

--- File[/opt/wmf-mariadb1011/my.cnf].orig
+++ File[/opt/wmf-mariadb1011/my.cnf]

-    group  => root
-    ensure => absent
-    owner  => root

File[/etc/sudoers.d/nrpe-check_mariadb_read_only_s1]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_read_only_s1].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_read_only_s1]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

File[/etc/mysql]

Parameters differences:

--- File[/etc/mysql].orig
+++ File[/etc/mysql]

-    group  => root
-    ensure => directory
-    mode   => 0755
-    owner  => root

Service[nrpe2nodexp-mysqld.timer]

Parameters differences:

--- Service[nrpe2nodexp-mysqld.timer].orig
+++ Service[nrpe2nodexp-mysqld.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)]']

Rsyslog::Conf[nrpe2nodexp-mariadb_read_only_s1]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_read_only_s1].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_read_only_s1]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/var/lib/prometheus/.my.s1.cnf]

Parameters differences:

--- File[/var/lib/prometheus/.my.s1.cnf].orig
+++ File[/var/lib/prometheus/.my.s1.cnf]

-    notify => Exec[systemctl try-restart prometheus-mysqld-exporter@s1]
-    group  => prometheus
-    ensure => present
-    mode   => 0400
-    owner  => prometheus

Content differences:

--- /var/lib/prometheus/.my.s1.cnf.orig
+++ /var/lib/prometheus/.my.s1.cnf
@@ -1,5 +0,0 @@
-[client]
-socket = /run/mysqld/mysqld.s1.sock
-user = prometheus
-password = 'This is a fake passsword, but cannot be empty due to Debian #953040'
-ssl = false

Service[nrpe2nodexp-mariadb_read_only_s1.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_read_only_s1.timer].orig
+++ Service[nrpe2nodexp-mariadb_read_only_s1.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)]']

Prometheus::Alert::Rule[check_mariadb_memory_b5a92c72542d5f0c031014e7a8db014e]

Parameters differences:

--- Prometheus::Alert::Rule[check_mariadb_memory_b5a92c72542d5f0c031014e7a8db014e].orig
+++ Prometheus::Alert::Rule[check_mariadb_memory_b5a92c72542d5f0c031014e7a8db014e]

-    alert_name         => nrpe_MariaDB_memory
-    description        => NRPE CHECK: MariaDB memory
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="b5a92c72542d5f0c031014e7a8db014e",check_name="check_mariadb_memory", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    for                => 3m
-    summary            => NRPE CHECK: MariaDB memory
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mariadb_memory))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

File[/etc/sudoers.d/nrpe-check_mariadb_memory]

Parameters differences:

--- File[/etc/sudoers.d/nrpe-check_mariadb_memory].orig
+++ File[/etc/sudoers.d/nrpe-check_mariadb_memory]

-    group   => root
-    require => Package[nagios-nrpe-server]
-    ensure  => absent
-    owner   => root

Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.service].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_io_state_s1.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/srv/sqldata.s1]

Parameters differences:

--- File[/srv/sqldata.s1].orig
+++ File[/srv/sqldata.s1]

-    group  => mysql
-    ensure => directory
-    mode   => 0755
-    owner  => mysql

File[/var/lib/prometheus/node.d/role_owner.prom]

Content differences:

--- /var/lib/prometheus/node.d/role_owner.prom.orig
+++ /var/lib/prometheus/node.d/role_owner.prom
@@ -1,3 +1,3 @@
 # HELP role_owner The team owner of the server role
 # TYPE role_owner gauge
-role_owner{team="data-persistence",role="mariadb::backup_source",cluster="mysql"} 1.0
+role_owner{team="data-persistence",role="insetup::data_persistence_ferm",cluster="mysql"} 1.0

Class[Profile::Apt]

Parameters differences:

--- Class[Profile::Apt].orig
+++ Class[Profile::Apt]

@@
-    before => ['Package[puppet]', 'Package[facter]', 'Package[augeas-tools]', 'Package[virt-what]', 'Package[puppet-module-puppetlabs-augeas-core]', 'Package[python3-prometheus-client]', 'Package[python3-yaml]', 'Package[ruby-net-ssh]', 'Package[openssl]', 'Package[ssl-cert]', 'Package[ca-certificates]', 'Package[wmf-certificates]', 'Package[ntp]', 'Package[systemd-timesyncd]', 'Package[exim4-config]', 'Package[exim4-daemon-light]', 'Package[logrotate]', 'Package[prometheus-node-exporter]', 'Package[bsdutils]', 'Package[smartmontools]', 'Package[rsyslog]', 'Package[rsyslog-openssl]', 'Package[cadvisor]', 'Package[prometheus-ethtool-exporter]', 'Package[acct]', 'Package[byobu]', 'Package[colordiff]', 'Package[curl]', 'Package[debian-goodies]', 'Package[ethtool]', 'Package[gdb]', 'Package[gdisk]', 'Package[git]', 'Package[htop]', 'Package[httpry]', 'Package[iotop]', 'Package[iperf]', 'Package[jq]', 'Package[libtemplate-perl]', 'Package[lldpd]', 'Package[lshw]', 'Package[molly-guard]', 'Package[moreutils]', 'Package[net-tools]', 'Package[numactl]', 'Package[ncdu]', 'Package[ngrep]', 'Package[pigz]', 'Package[psmisc]', 'Package[pv]', 'Package[python3]', 'Package[screen]', 'Package[strace]', 'Package[sysstat]', 'Package[tcpdump]', 'Package[tmux]', 'Package[tree]', 'Package[vim]', 'Package[vim-addon-manager]', 'Package[vim-scripts]', 'Package[wipe]', 'Package[xfsprogs]', 'Package[zsh]', 'Package[icdiff]', 'Package[linux-perf]', 'Package[bsd-mailx]', 'Package[ack]', 'Package[netcat-openbsd]', 'Package[tshark]', 'Package[fzf]', 'Package[ripgrep]', 'Package[fd-find]', 'Package[kitty-terminfo]', 'Package[mtr-tiny]', 'Package[bat]', 'Package[efibootmgr]', 'Package[bind9-dnsutils]', 'Package[tzdata]', 'Package[python3-wmflib]', 'Package[ruby-sorted-set]', 'Package[btop]', 'Package[dstat]', 'Package[apport]', 'Package[command-not-found]', 'Package[command-not-found-data]', 'Package[ecryptfs-utils]', 'Package[mlocate]', 'Package[os-prober]', 'Package[python3-apport]', 'Package[wpasupplicant]', 'Package[atop]', 'Package[apt-listchanges]', 'Package[isc-dhcp-client]', 'Package[rasdaemon]', 'Package[libicu67]', 'Package[libwsutil12]', 'Package[libwireshark14]', 'Package[libopencsd0]', 'Package[libwiretap11]', 'Package[ruby2.7]', 'Package[python3.9-minimal]', 'Package[python3.9]', 'Package[perl-modules-5.32]', 'Package[libpython3.9]', 'Package[libperl5.32]', 'Package[libpython3.9-minimal]', 'Package[libpython3.9-stdlib]', 'Package[libidn11]', 'Package[libldap-2.4-2]', 'Package[liburing1]', 'Package[libwebp6]', 'Package[libcbor0]', 'Package[libusb-0.1-4]', 'Package[telnet]', 'Package[libruby2.7]', 'Package[libdns-export1110]', 'Package[libisc-export1105]', 'Package[libbpf0]', 'Package[openssh-client]', 'Package[openssh-server]', 'Package[debdeploy-client]', 'Package[python3-dateutil]', 'Package[sudo]', 'Package[golang-cfssl]', 'Package[debmonitor-client]', 'Package[megacli]', 'Package[nagios-nrpe-server]', 'Package[monitoring-plugins]', 'Package[monitoring-plugins-basic]', 'Package[monitoring-plugins-standard]', 'Package[liburiparser1]', 'Package[python3-attr]', 'Package[iucode-tool]', 'Package[freeipmi-tools]', 'Package[freeipmi-ipmiseld]', 'Package[rsyslog-kafka]', 'Package[emacs-nox]', 'Package[prometheus-ipmi-exporter]', 'Package[libnet-dns-perl]', 'Package[iptables]', 'Package[ferm]', 'Package[ulogd2]', 'Package[conntrack]', 'Package[wmf-mariadb1011]', 'Package[percona-toolkit]', 'Package[grc]', 'Package[mariadb-backup]', 'Package[python3-wmfmariadbpy]', 'Package[wmfmariadbpy-common]', 'Package[monitoring-plugins-contrib]', 'Package[prometheus-rsyslog-exporter]', 'Package[initramfs-tools]', 'Package[python3-click]', 'Package[python3-box]', 'Package[confd]', 'Package[python3-toml]', 'Package[prometheus-mysqld-exporter]']
+    before => ['Package[puppet]', 'Package[facter]', 'Package[augeas-tools]', 'Package[virt-what]', 'Package[puppet-module-puppetlabs-augeas-core]', 'Package[python3-prometheus-client]', 'Package[python3-yaml]', 'Package[ruby-net-ssh]', 'Package[openssl]', 'Package[ssl-cert]', 'Package[ca-certificates]', 'Package[wmf-certificates]', 'Package[ntp]', 'Package[systemd-timesyncd]', 'Package[exim4-config]', 'Package[exim4-daemon-light]', 'Package[logrotate]', 'Package[prometheus-node-exporter]', 'Package[bsdutils]', 'Package[smartmontools]', 'Package[rsyslog]', 'Package[rsyslog-openssl]', 'Package[cadvisor]', 'Package[prometheus-ethtool-exporter]', 'Package[acct]', 'Package[byobu]', 'Package[colordiff]', 'Package[curl]', 'Package[debian-goodies]', 'Package[ethtool]', 'Package[gdb]', 'Package[gdisk]', 'Package[git]', 'Package[htop]', 'Package[httpry]', 'Package[iotop]', 'Package[iperf]', 'Package[jq]', 'Package[libtemplate-perl]', 'Package[lldpd]', 'Package[lshw]', 'Package[molly-guard]', 'Package[moreutils]', 'Package[net-tools]', 'Package[numactl]', 'Package[ncdu]', 'Package[ngrep]', 'Package[pigz]', 'Package[psmisc]', 'Package[pv]', 'Package[python3]', 'Package[screen]', 'Package[strace]', 'Package[sysstat]', 'Package[tcpdump]', 'Package[tmux]', 'Package[tree]', 'Package[vim]', 'Package[vim-addon-manager]', 'Package[vim-scripts]', 'Package[wipe]', 'Package[xfsprogs]', 'Package[zsh]', 'Package[icdiff]', 'Package[linux-perf]', 'Package[bsd-mailx]', 'Package[ack]', 'Package[netcat-openbsd]', 'Package[tshark]', 'Package[fzf]', 'Package[ripgrep]', 'Package[fd-find]', 'Package[kitty-terminfo]', 'Package[mtr-tiny]', 'Package[bat]', 'Package[efibootmgr]', 'Package[bind9-dnsutils]', 'Package[tzdata]', 'Package[python3-wmflib]', 'Package[ruby-sorted-set]', 'Package[btop]', 'Package[dstat]', 'Package[apport]', 'Package[command-not-found]', 'Package[command-not-found-data]', 'Package[ecryptfs-utils]', 'Package[mlocate]', 'Package[os-prober]', 'Package[python3-apport]', 'Package[wpasupplicant]', 'Package[atop]', 'Package[apt-listchanges]', 'Package[isc-dhcp-client]', 'Package[rasdaemon]', 'Package[libicu67]', 'Package[libwsutil12]', 'Package[libwireshark14]', 'Package[libopencsd0]', 'Package[libwiretap11]', 'Package[ruby2.7]', 'Package[python3.9-minimal]', 'Package[python3.9]', 'Package[perl-modules-5.32]', 'Package[libpython3.9]', 'Package[libperl5.32]', 'Package[libpython3.9-minimal]', 'Package[libpython3.9-stdlib]', 'Package[libidn11]', 'Package[libldap-2.4-2]', 'Package[liburing1]', 'Package[libwebp6]', 'Package[libcbor0]', 'Package[libusb-0.1-4]', 'Package[telnet]', 'Package[libruby2.7]', 'Package[libdns-export1110]', 'Package[libisc-export1105]', 'Package[libbpf0]', 'Package[openssh-client]', 'Package[openssh-server]', 'Package[debdeploy-client]', 'Package[python3-dateutil]', 'Package[sudo]', 'Package[golang-cfssl]', 'Package[debmonitor-client]', 'Package[megacli]', 'Package[nagios-nrpe-server]', 'Package[monitoring-plugins]', 'Package[monitoring-plugins-basic]', 'Package[monitoring-plugins-standard]', 'Package[liburiparser1]', 'Package[python3-attr]', 'Package[iucode-tool]', 'Package[freeipmi-tools]', 'Package[freeipmi-ipmiseld]', 'Package[rsyslog-kafka]', 'Package[emacs-nox]', 'Package[prometheus-ipmi-exporter]', 'Package[libnet-dns-perl]', 'Package[iptables]', 'Package[ferm]', 'Package[ulogd2]', 'Package[conntrack]', 'Package[prometheus-rsyslog-exporter]', 'Package[initramfs-tools]', 'Package[python3-click]', 'Package[python3-box]', 'Package[confd]', 'Package[python3-toml]']

File[/var/lib/prometheus/node.d/check_mariadb_read_only_s1.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_read_only_s1.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_read_only_s1.prom]

-    group  => root
-    ensure => absent
-    owner  => root

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-read-only-s1.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_read_only_s1" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.timer]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.timer].orig
+++ Systemd::Unit[nrpe2nodexp-mariadb_replica_io_state_s1.timer]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mariadb_replica_io_state_s1.timer
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

Rsyslog::Conf[nrpe2nodexp-mariadb_disk_space]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_disk_space].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_disk_space]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_state_s1.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_state_s1.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_state_s1.prom]

-    group  => root
-    ensure => absent
-    owner  => root

Motd::Script[db-section-s1]

Parameters differences:

--- Motd::Script[db-section-s1].orig
+++ Motd::Script[db-section-s1]

-    ensure   => present
-    priority => 6

Class[Profile::Base::Production]

Parameters differences:

--- Class[Profile::Base::Production].orig
+++ Class[Profile::Base::Production]

@@
-    role_description => MariaDB server containing replicas of mediawiki databases used to generate backups
+    role_description => Host being setup by Data Persistence SREs

Package[wmfmariadbpy-common]

Parameters differences:

--- Package[wmfmariadbpy-common].orig
+++ Package[wmfmariadbpy-common]

-    ensure   => installed
-    provider => apt

Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_state_s1]

Parameters differences:

--- Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_state_s1].orig
+++ Rsyslog::Conf[nrpe2nodexp-mariadb_replica_sql_state_s1]

-    priority => 25
-    ensure   => absent
-    mode     => 0444

File[/etc/mysql/ssl/server-cert.pem]

Parameters differences:

--- File[/etc/mysql/ssl/server-cert.pem].orig
+++ File[/etc/mysql/ssl/server-cert.pem]

-    group  => root
-    ensure => absent
-    owner  => root

Class[Profile::Monitoring]

Parameters differences:

--- Class[Profile::Monitoring].orig
+++ Class[Profile::Monitoring]

@@
-    notifications_enabled => True
+    notifications_enabled => False

Monitoring::Exported_nagios_service[db2141 mysqld]

Parameters differences:

--- Monitoring::Exported_nagios_service[db2141 mysqld].orig
+++ Monitoring::Exported_nagios_service[db2141 mysqld]

-    check_command          => nrpe_check!check_mysqld!10
-    notifications_enabled  => 1
-    contact_groups         => admins
-    servicegroups          => mysql_codfw
-    is_volatile            => 0
-    retry_interval         => 1
-    active_checks_enabled  => 1
-    notification_period    => 24x7
-    service_description    => mysqld processes
-    host_name              => db2141
-    max_check_attempts     => 3
-    notes_url              => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    notification_options   => c,r,f
-    check_interval         => 1
-    notification_interval  => 0
-    check_freshness        => 0
-    ensure                 => present
-    check_period           => 24x7
-    passive_checks_enabled => 1

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_memory.timer (nrpe2nodexp-mariadb_memory.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

File[/lib/systemd/system/nrpe2nodexp-mysqld.timer]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mysqld.timer].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mysqld.timer]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mysqld.timer (nrpe2nodexp-mysqld.timer)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mysqld.timer.orig
+++ /lib/systemd/system/nrpe2nodexp-mysqld.timer
@@ -1,14 +0,0 @@
-[Unit]
-Description=Periodic execution of nrpe2nodexp-mysqld.service
-
-[Timer]
-Unit=nrpe2nodexp-mysqld.service
-# Accuracy sets the maximum time interval around the execution time we want to allow
-AccuracySec=15sec
-OnUnitInactiveSec=1min
-OnActiveSec=1s
-RandomizedDelaySec=60
-FixedRandomDelay=true
-
-[Install]
-WantedBy=multi-user.target

Sudo::User[nrpe-check_mariadb_replica_sql_state_s1]

Parameters differences:

--- Sudo::User[nrpe-check_mariadb_replica_sql_state_s1].orig
+++ Sudo::User[nrpe-check_mariadb_replica_sql_state_s1]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

File[/etc/update-motd.d/05-mariadb--backup-source]

Parameters differences:

--- File[/etc/update-motd.d/05-mariadb--backup-source].orig
+++ File[/etc/update-motd.d/05-mariadb--backup-source]

-    group  => root
-    ensure => present
-    mode   => 0555
-    owner  => root

Content differences:

--- /etc/update-motd.d/05-mariadb--backup-source.orig
+++ /etc/update-motd.d/05-mariadb--backup-source
@@ -1,2 +0,0 @@
-#!/bin/sh
-printf "%s\n" "db2141 is a MariaDB server containing replicas of mediawiki databases used to generate backups (mariadb::backup_source)"

Systemd::Unit[nrpe2nodexp-mysqld.service]

Parameters differences:

--- Systemd::Unit[nrpe2nodexp-mysqld.service].orig
+++ Systemd::Unit[nrpe2nodexp-mysqld.service]

-    restart           => False
-    override          => False
-    unit              => nrpe2nodexp-mysqld.service
-    require           => ['Class[Systemd]']
-    ensure            => absent
-    override_filename => puppet-override.conf

File[/var/lib/prometheus/node.d/check_mysqld.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mysqld.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mysqld.prom]

-    group  => root
-    ensure => absent
-    owner  => root

File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_lag_s1.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_lag_s1.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_replica_sql_lag_s1.prom]

-    group  => root
-    ensure => absent
-    owner  => root

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_replica_sql_state_s1.timer (nrpe2nodexp-mariadb_replica_sql_state_s1.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Package[python3-wmfmariadbpy]

Parameters differences:

--- Package[python3-wmfmariadbpy].orig
+++ Package[python3-wmfmariadbpy]

-    ensure   => installed
-    provider => apt

Nrpe::Monitor_service[mariadb_read_only_s1]

Parameters differences:

--- Nrpe::Monitor_service[mariadb_read_only_s1].orig
+++ Nrpe::Monitor_service[mariadb_read_only_s1]

-    description                 => MariaDB read only s1
-    retries                     => 3
-    migration_task              => T315866
-    enable_icinga_check         => True
-    timeout                     => 10
-    nrpe2nodexp_parse_perf_data => False
-    retry_interval              => 1
-    require                     => Package[wmfmariadbpy-common]
-    nrpe_command                => db-check-health --port=3311 --icinga --check_read_only=1 --process
-    critical                    => False
-    alertmanager_team           => observability
-    enable_nrpe2nodexp          => False
-    notes_url                   => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting#Master_comes_back_in_read_only
-    contact_group               => admins
-    check_interval              => 1
-    ensure                      => present

Logrotate::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]

Parameters differences:

--- Logrotate::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1].orig
+++ Logrotate::Conf[wmf_auto_restart_prometheus-mysqld-exporter_s1]

-    ensure => present

File[/etc/mysql/mysqld.conf.d/s1.cnf]

Parameters differences:

--- File[/etc/mysql/mysqld.conf.d/s1.cnf].orig
+++ File[/etc/mysql/mysqld.conf.d/s1.cnf]

-    group => root
-    mode  => 0644
-    owner => root

Content differences:

--- /etc/mysql/mysqld.conf.d/s1.cnf.orig
+++ /etc/mysql/mysqld.conf.d/s1.cnf
@@ -1,9 +0,0 @@
-[mysqld@s1]
-datadir = /srv/sqldata.s1
-tmpdir = /srv/tmp.s1
-socket = /run/mysqld/mysqld.s1.sock
-port = 3311
-extra-port = 3331
-innodb_buffer_pool_size = 192G
-read-only = 1
-

Class[Mariadb::Config]

Parameters differences:

--- Class[Mariadb::Config].orig
+++ Class[Mariadb::Config]

-    socket                  => /run/mysqld/mysqld.sock
-    ssl_cert                => 
-    sql_mode                => 
-    innodb_change_buffering => none
-    ssl_verify_server_cert  => True
-    binlog_format           => ROW
-    port                    => 3306
-    sync_binlog             => 1
-    basedir                 => /opt/wmf-mariadb1011
-    datadir                 => False
-    ssl_ca                  => 
-    config                  => profile/mariadb/mysqld_config/dbstore_multiinstance.my.cnf.erb
-    prompt                  => \u@\h(\d)>\_
-    password                => undefined
-    semi_sync               => off
-    max_allowed_packet      => 16M
-    tmpdir                  => /srv/tmp
-    flush_log_at_trx_commit => 1
-    event_scheduler         => 1
-    ssl_key                 => 
-    ssl                     => puppet-cert
-    p_s                     => on
-    expire_logs_days        => 30
-    read_only               => 1
-    replication_role        => standalone

File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service]

Parameters differences:

--- File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service].orig
+++ File[/lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service]

-    notify => Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.service (nrpe2nodexp-mariadb_read_only_s1.service)]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service.orig
+++ /lib/systemd/system/nrpe2nodexp-mariadb_read_only_s1.service
@@ -1,11 +0,0 @@
-[Unit]
-Description=execution of nrpe2nodexp for the check_mariadb_read_only_s1 command.
-Documentation=https://wikitech.wikimedia.org/wiki/Monitoring/systemd_unit_state
-
-[Service]
-Type=oneshot
-User=nagios
-
-Group=prometheus-node-exporter
-SyslogIdentifier=nrpe2nodexp-mariadb_read_only_s1
-ExecStart=-/usr/local/bin/nrpe2nodexp --alert-rule-hash "42baf529e0f3bfca391aca0a24c880e9" --timeout 10 --check-command "check_mariadb_read_only_s1"

File[/var/lib/prometheus/node.d/check_mariadb_replica_io_state_s1.prom]

Parameters differences:

--- File[/var/lib/prometheus/node.d/check_mariadb_replica_io_state_s1.prom].orig
+++ File[/var/lib/prometheus/node.d/check_mariadb_replica_io_state_s1.prom]

-    group  => root
-    ensure => absent
-    owner  => root

Systemd::Service[nrpe2nodexp-mariadb_disk_space]

Parameters differences:

--- Systemd::Service[nrpe2nodexp-mariadb_disk_space].orig
+++ Systemd::Service[nrpe2nodexp-mariadb_disk_space]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[nrpe2nodexp-mariadb_disk_space.service]
-    ensure                   => absent
-    service_params           => {}

Firewall::Service[s1_orchestrator]

Parameters differences:

--- Firewall::Service[s1_orchestrator].orig
+++ Firewall::Service[s1_orchestrator]

-    unrestricted_access => False
-    srange              => ['dborch1001.wikimedia.org', 'dborch1002.wikimedia.org', 'dborch1003.eqiad.wmnet']
-    notrack             => True
-    proto               => tcp
-    desc                => 
-    prio                => 10
-    port                => [3311]
-    ensure              => present

Systemd::Service[wmf_auto_restart_prometheus-mysqld-exporter@s1]

Parameters differences:

--- Systemd::Service[wmf_auto_restart_prometheus-mysqld-exporter@s1].orig
+++ Systemd::Service[wmf_auto_restart_prometheus-mysqld-exporter@s1]

-    restart                  => False
-    migration_task           => T407130
-    monitoring_contact_group => admins
-    unit_type                => timer
-    monitoring_critical      => False
-    monitoring_enabled       => False
-    override                 => False
-    require                  => Systemd::Unit[wmf_auto_restart_prometheus-mysqld-exporter@s1.service]
-    ensure                   => present
-    service_params           => {}

Prometheus::Alert::Rule[check_mysqld_ca81db2c9e98d408f9f65c79817da116]

Parameters differences:

--- Prometheus::Alert::Rule[check_mysqld_ca81db2c9e98d408f9f65c79817da116].orig
+++ Prometheus::Alert::Rule[check_mysqld_ca81db2c9e98d408f9f65c79817da116]

-    alert_name         => nrpe_mysqld_processes
-    description        => NRPE CHECK: mysqld processes
-    instance           => ops
-    group              => nrpechecks
-    site               => codfw
-    team               => observability
-    def_label_whitelst => ['team', 'severity']
-    expr               => (nagios_nrpe_check_result{alert_rule_hash="ca81db2c9e98d408f9f65c79817da116",check_name="check_mysqld", status=~"(WARNING|CRITICAL)", severity=~"(warning|critical)"} > 0) * on (instance) group_left (team) role_owner
-    runbook            => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    for                => 3m
-    summary            => NRPE CHECK: mysqld processes
-    dashboard          => TODO
-    logs               => https://logstash.wikimedia.org/app/dashboards#/view/2d343ac0-6df8-11f0-8e08-7fab0da52b33?_g=(filters:!((query:(match_phrase:(event.module:check_mysqld))),(query:(match_phrase:(host.name:{{$labels.instance|stripPort}})))))
-    ensure             => absent
-    severity           => info

Concat[/etc/mysql/ssl/cert.pem]

Parameters differences:

--- Concat[/etc/mysql/ssl/cert.pem].orig
+++ Concat[/etc/mysql/ssl/cert.pem]

-    force          => False
-    order          => alpha
-    format         => plain
-    path           => /etc/mysql/ssl/cert.pem
-    warn           => False
-    ensure_newline => False
-    backup         => puppet
-    show_diff      => True
-    replace        => True
-    ensure         => present
-    mode           => 0644

Nrpe::Check[check_mariadb_read_only_s1]

Parameters differences:

--- Nrpe::Check[check_mariadb_read_only_s1].orig
+++ Nrpe::Check[check_mariadb_read_only_s1]

-    command => db-check-health --port=3311 --icinga --check_read_only=1 --process
-    before  => Monitoring::Service[mariadb_read_only_s1]
-    ensure  => present

File[/etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_replica_io_state_s1.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_replica_io_state_s1]=/usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_io_state

Concat::Fragment[/etc/mysql_puppet_agent_cert]

Parameters differences:

--- Concat::Fragment[/etc/mysql_puppet_agent_cert].orig
+++ Concat::Fragment[/etc/mysql_puppet_agent_cert]

-    order  => 01
-    source => /var/lib/puppet/ssl/certs/db2141.codfw.wmnet.pem
-    target => /etc/mysql/ssl/cert.pem

Sslcert::X509_to_pkcs12[puppet::expose_agent_cert: /etc/mysql]

Parameters differences:

--- Sslcert::X509_to_pkcs12[puppet::expose_agent_cert: /etc/mysql].orig
+++ Sslcert::X509_to_pkcs12[puppet::expose_agent_cert: /etc/mysql]

-    outfile     => /etc/mysql/ssl/server.p12
-    certfile    => /var/lib/puppet/ssl/certs/ca.pem
-    group       => mysql
-    private_key => /var/lib/puppet/ssl/private_keys/db2141.codfw.wmnet.pem
-    ensure      => absent
-    public_key  => /var/lib/puppet/ssl/certs/db2141.codfw.wmnet.pem
-    owner       => mysql

Ferm::Service[s1_mariadb_dba]

Parameters differences:

--- Ferm::Service[s1_mariadb_dba].orig
+++ Ferm::Service[s1_mariadb_dba]

-    unrestricted_access => False
-    srange              => $MYSQL_ROOT_CLIENTS
-    notrack             => False
-    desc                => 
-    proto               => tcp
-    prio                => 10
-    port                => 3331
-    ensure              => present

File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf]

Parameters differences:

--- File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf].orig
+++ File[/etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf]

-    notify => Service[rsyslog]
-    group  => root
-    ensure => absent
-    mode   => 0444
-    owner  => root

Content differences:

--- /etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf.orig
+++ /etc/rsyslog.d/25-nrpe2nodexp-mariadb-memory.conf
@@ -1,10 +0,0 @@
-# SPDX-License-Identifier: Apache-2.0
-if $programname contains "nrpe2nodexp-mariadb_memory" then {
-    if ($msg contains "\"ecs.version\": \"1.7.0\"") then {
-        # Send logs to kafka
-        set $.log_outputs = "kafka ecs_170 local";
-    } else {
-        # Filter out non-relevant nrpe2nodexp messages
-        stop
-    }
-}

File[/etc/mysql/ssl/server-key.pem]

Parameters differences:

--- File[/etc/mysql/ssl/server-key.pem].orig
+++ File[/etc/mysql/ssl/server-key.pem]

-    backup    => False
-    show_diff => False
-    group     => mysql
-    ensure    => file
-    mode      => 0440
-    owner     => root

File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_replica_sql_lag_s1.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_replica_sql_lag_s1]=/usr/local/lib/nagios/plugins/check_mariadb --sock=/run/mysqld/mysqld.s1.sock --user=nagios --pass=  --warn-stopped --check=slave_sql_lag                            --shard=s1 --datacenter=eqiad                            --sql-lag-warn=60                            --sql-lag-crit=300

Monitoring::Service[mariadb_disk_space]

Parameters differences:

--- Monitoring::Service[mariadb_disk_space].orig
+++ Monitoring::Service[mariadb_disk_space]

-    description    => MariaDB disk space
-    check_command  => nrpe_check!check_mariadb_disk_space!10
-    retries        => 3
-    migration_task => T315866
-    passive        => False
-    freshness      => 36000
-    host           => db2141
-    notes_url      => https://wikitech.wikimedia.org/wiki/MariaDB/troubleshooting
-    contact_group  => admins
-    check_interval => 1
-    config_dir     => /etc/nagios
-    retry_interval => 1
-    ensure         => present
-    critical       => False

Sudo::User[nrpe-check_mysqld]

Parameters differences:

--- Sudo::User[nrpe-check_mysqld].orig
+++ Sudo::User[nrpe-check_mysqld]

-    tag        => nrpe::check
-    user       => nagios
-    require    => ['Class[Sudo]']
-    ensure     => absent
-    privileges => []

Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)]

Parameters differences:

--- Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)].orig
+++ Exec[systemd daemon-reload for nrpe2nodexp-mariadb_read_only_s1.timer (nrpe2nodexp-mariadb_read_only_s1.timer)]

-    command     => /bin/systemctl daemon-reload
-    refreshonly => True

Package[monitoring-plugins-contrib]

Parameters differences:

--- Package[monitoring-plugins-contrib].orig
+++ Package[monitoring-plugins-contrib]

-    ensure   => installed
-    provider => apt

File[/etc/nagios/nrpe.d/check_mariadb_disk_space.cfg]

Parameters differences:

--- File[/etc/nagios/nrpe.d/check_mariadb_disk_space.cfg].orig
+++ File[/etc/nagios/nrpe.d/check_mariadb_disk_space.cfg]

-    notify  => Service[nagios-nrpe-server]
-    group   => root
-    tag     => nrpe::check
-    require => Package[nagios-nrpe-server]
-    ensure  => present
-    mode    => 0444
-    owner   => root

Content differences:

--- /etc/nagios/nrpe.d/check_mariadb_disk_space.cfg.orig
+++ /etc/nagios/nrpe.d/check_mariadb_disk_space.cfg
@@ -1,2 +0,0 @@
-# File generated by puppet. DO NOT edit by hand
-command[check_mariadb_disk_space]=/usr/lib/nagios/plugins/check_disk -w 10% -c 5% -l -e --exclude-type=tracefs --exclude-type=tmpfs --exclude-type=ramfs --exclude-type=devtmpfs

Concat_fragment[/etc/mysql_puppet_agent_cert]

Parameters differences:

--- Concat_fragment[/etc/mysql_puppet_agent_cert].orig
+++ Concat_fragment[/etc/mysql_puppet_agent_cert]

-    tag    => _etc_mysql_ssl_cert.pem
-    order  => 01
-    source => /var/lib/puppet/ssl/certs/db2141.codfw.wmnet.pem
-    target => /etc/mysql/ssl/cert.pem

Service[nrpe2nodexp-mariadb_disk_space.timer]

Parameters differences:

--- Service[nrpe2nodexp-mariadb_disk_space.timer].orig
+++ Service[nrpe2nodexp-mariadb_disk_space.timer]

-    enable   => False
-    ensure   => stopped
-    provider => systemd
-    before   => ['Exec[systemd daemon-reload for nrpe2nodexp-mariadb_disk_space.timer (nrpe2nodexp-mariadb_disk_space.timer)]']

Compilation results for db2141.codfw.wmnet: System changes detected

Catalog differences

Summary

Resources only in the new catalog

Resources only in the old catalog

Resources modified

Relevant files