* Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) [not found] ` <Pine.SOC.4.61.0605261008090.14762@math.ut.ee> @ 2006-05-26 12:29 ` Ingo Oeser 2006-05-26 12:34 ` Meelis Roos ` (2 more replies) 0 siblings, 3 replies; 6+ messages in thread From: Ingo Oeser @ 2006-05-26 12:29 UTC (permalink / raw) To: Meelis Roos; +Cc: kernel list, netdev Hi Meelis, > Unfortunatlety, 2.6.15 does not boot on this machine so I'm locked out > remotely at the moment. Here it my paranoid boot setup: 1. Use "lilo -R new-kernel", to boot a kernel only once and reboot the default kernel next time. 2. Force reboot on any panic after 10 seconds: append="panic=10" in /etc/lilo.conf 3. Schedule automatic reboot in case of impossible login echo "/bin/sync; /sbin/reboot -f "|at now + 15min 4. Put "sysctl -w kernel.panic_on_oops=1" as early as possible in your boot scripts[1]. And now reboot into the new kernel, try to login and delete the reboot cronjob. If this doesn't work, just wait 15min and have the last stable kernel booted automatically. This method saved me and our customers a lot of time already :-) Regards Ingo Oeser [1] This should be the default and should be disabled by the init scripts as soon as we reach the desired runlevel (S99oops_not_fatal). ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) 2006-05-26 12:29 ` Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) Ingo Oeser @ 2006-05-26 12:34 ` Meelis Roos 2006-05-31 20:25 ` Bill Davidsen 2006-05-26 12:42 ` Michael Tokarev 2006-05-26 12:42 ` Andi Kleen 2 siblings, 1 reply; 6+ messages in thread From: Meelis Roos @ 2006-05-26 12:34 UTC (permalink / raw) To: Ingo Oeser; +Cc: kernel list, netdev >> Unfortunatlety, 2.6.15 does not boot on this machine so I'm locked out >> remotely at the moment. > > Here it my paranoid boot setup: Thanks, but it's not much use here, since the machine is a PReP powerpc machine that can boot one kernel from disk (directly loaded from boot partition, no fancy bootloader) or netboot via serial console for test kernels. However, if the test kernel hangs, it hangs and I would need remote power cycling device that I do not have. -- Meelis Roos (mroos@linux.ee) ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) 2006-05-26 12:34 ` Meelis Roos @ 2006-05-31 20:25 ` Bill Davidsen 0 siblings, 0 replies; 6+ messages in thread From: Bill Davidsen @ 2006-05-31 20:25 UTC (permalink / raw) To: Meelis Roos; +Cc: kernel list, netdev Meelis Roos wrote: >>> Unfortunatlety, 2.6.15 does not boot on this machine so I'm locked out >>> remotely at the moment. >> >> Here it my paranoid boot setup: > > Thanks, but it's not much use here, since the machine is a PReP powerpc > machine that can boot one kernel from disk (directly loaded from boot > partition, no fancy bootloader) or netboot via serial console for test > kernels. However, if the test kernel hangs, it hangs and I would need > remote power cycling device that I do not have. > I did a lot of this at one time, and used lilo in just the way described. I did have a remote reboot device, however, an operator (1st shift), janitor (2nd shift), or security guard (3rd/wkend shift) who had been instructed to push the clearly marked reset button on demand "when the weird guy in New York tells you." IBM rack units, like x345 and such, can have an "RSA" card which allows remote hardware monitor and reboot with a separate IP address for control. Worth its weight in gold! The latest will let you do remote console as well. -- Bill Davidsen <davidsen@tmr.com> Obscure bug of 2004: BASH BUFFER OVERFLOW - if bash is being run by a normal user and is setuid root, with the "vi" line edit mode selected, and the character set is "big5," an off-by-one errors occurs during wildcard (glob) expansion. ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) 2006-05-26 12:29 ` Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) Ingo Oeser 2006-05-26 12:34 ` Meelis Roos @ 2006-05-26 12:42 ` Michael Tokarev 2006-05-26 12:42 ` Andi Kleen 2 siblings, 0 replies; 6+ messages in thread From: Michael Tokarev @ 2006-05-26 12:42 UTC (permalink / raw) To: Ingo Oeser; +Cc: Meelis Roos, kernel list, netdev Ingo Oeser wrote: > Hi Meelis, > >> Unfortunatlety, 2.6.15 does not boot on this machine so I'm locked out >> remotely at the moment. > > Here it my paranoid boot setup: > > 1. Use "lilo -R new-kernel", to boot a kernel only > once and reboot the default kernel next time. > > 2. Force reboot on any panic after 10 seconds: > append="panic=10" in /etc/lilo.conf > > 3. Schedule automatic reboot in case of impossible login > echo "/bin/sync; /sbin/reboot -f "|at now + 15min Instead of this, I usually use a system startup script like this: case "$(cat /proc/cmdline)" in *linux-test*) (sleep 300; [ -f /var/run/noreboot ] || reboot) & ;; esac which means that if the kernel image is named 'linux-test', it will be rebooted in 15 minutes after booting if no /var/run/noreboot file exist. So if I'm able to log in, i just touch /var/run/noreboot and be done with it. And oh, yes, for this to work, in lilo.conf the new entry should be labeled linux-test -- ie, install new kernel, add new entry into lilo.conf with label=linux-test, run `lilo && lilo -R linux-test && init 6' and.. wait ;) After successeful reboot (and touching /var/run/noreboot), edit lilo.conf, restore the proper label, set proper order of entries if needed and re-run lilo. /mjt ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) 2006-05-26 12:29 ` Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) Ingo Oeser 2006-05-26 12:34 ` Meelis Roos 2006-05-26 12:42 ` Michael Tokarev @ 2006-05-26 12:42 ` Andi Kleen 2006-05-26 13:21 ` Ingo Oeser 2 siblings, 1 reply; 6+ messages in thread From: Andi Kleen @ 2006-05-26 12:42 UTC (permalink / raw) To: Ingo Oeser; +Cc: Meelis Roos, kernel list, netdev > 4. Put "sysctl -w kernel.panic_on_oops=1" as early as possible > in your boot scripts[1]. You can as well boot with oops=panic -Andi ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) 2006-05-26 12:42 ` Andi Kleen @ 2006-05-26 13:21 ` Ingo Oeser 0 siblings, 0 replies; 6+ messages in thread From: Ingo Oeser @ 2006-05-26 13:21 UTC (permalink / raw) To: Andi Kleen; +Cc: Meelis Roos, kernel list, netdev Hi Andi, Andi Kleen wrote: > > 4. Put "sysctl -w kernel.panic_on_oops=1" as early as possible > > in your boot scripts[1]. > > You can as well boot with oops=panic Only on x86_64 as of Linux 2.6.16. But maybe this could be put into kernel/panic.c instead :-) Regards Ingo Oeser ^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2006-05-31 20:23 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <200605251004.k4PA4Lek007751@fire-2.osdl.org>
[not found] ` <4475FCFC.5000701@trash.net>
[not found] ` <Pine.SOC.4.61.0605261008090.14762@math.ut.ee>
2006-05-26 12:29 ` Safe remote kernel install howto (Re: [Bugme-new] [Bug 6613] New: iptables broken on 32-bit PReP (ARCH=ppc)) Ingo Oeser
2006-05-26 12:34 ` Meelis Roos
2006-05-31 20:25 ` Bill Davidsen
2006-05-26 12:42 ` Michael Tokarev
2006-05-26 12:42 ` Andi Kleen
2006-05-26 13:21 ` Ingo Oeser
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox