realtime: respect kernel-rt rpm #600
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Thank you for contributing to the Leapp project!Please note that every PR needs to comply with the If you want to re-run tests or request review, you can use following commands as a comment:
Note: In case there are problems with tests not being triggered automatically on new PR/commit or pending for a long time, please consider rerunning the CI by commenting leapp-ci build (might require several comments). If the problem persists, contact leapp-infra. |
pirat89
force-pushed
the
realtime_support
branch
2 times, most recently
from
5fcda96
to
08f1248
Compare
pirat89
force-pushed
the
realtime_support
branch
2 times, most recently
from
c00fd40
to
3be1c2d
Compare
pirat89
requested review from
drehak and
zhukovgreen
and removed request for
drehak
pirat89
force-pushed
the
realtime_support
branch
from
3be1c2d
to
6eb17ce
Compare
|
@zhukovgreen @drehak : basically it should be done. you can run tests manually on your machine. not sure why the import fails when I see the function on centos and rhel as well. will look at it tomorrow. |
|
@oamg/developers guys, the python3-rpm is not available on RHEL/CentOS 7. So I will keep it just on Python2 and skipp all related unite-tests for Python3 in the actor. Update: So, let's skip all tests when module is not possible to load. So Mac-OS users will be happy too :) |
pirat89
force-pushed
the
realtime_support
branch
2 times, most recently
from
b2ce84d
to
1234189
Compare
pirat89
changed the title
zhukovgreen
previously approved these changes
Oct 19, 2020
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Outdated
Show resolved
Hide resolved
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Outdated
Show resolved
Hide resolved
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Show resolved
Hide resolved
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Show resolved
Hide resolved
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Show resolved
Hide resolved
...stem_upgrade/el7toel8/actors/kernel/checkinstalledkernels/libraries/checkinstalledkernels.py
Show resolved
Hide resolved
pirat89
force-pushed
the
realtime_support
branch
from
1234189
to
f17a36e
Compare
pirat89
force-pushed
the
realtime_support
branch
from
f17a36e
to
a2fff1e
Compare
|
I have realised we need to respect kernel-rt on more places... |
pirat89
force-pushed
the
realtime_support
branch
4 times, most recently
from
c4f0659
to
45a8eac
Compare
|
Currently known issues have been fixed. |
pirat89
force-pushed
the
realtime_support
branch
from
45a8eac
to
6c27af2
Compare
fernflower
pushed a commit
to fernflower/leapp-repository
that referenced
this pull request
Nov 11, 2020
## Packaging - Add dependency on python2-leapp and leapp-framework - Add python-requests as dependency (oamg#407) - Drop leapp sos plugin (it's part of the sos rpm in RHEL 7.7+) - Remove dependency on Jinja2 related packages (oamg#407) ## Fixes - Do not mount pseudo and unsupposrted FS to overlayfs (e.g. proc) - Evaluate PES events transitively to create correct data for the upgrade transaction - Fix boot order on EFI systems - Fix checking of kernel drivers (oamg#400) - Fix failures caused by local rpms added into the upgrade transaction - Fix getting mount information with mountpoints with spaces in the path - Fix handling of XFS without ftype for every such mounted FS - Fix issue with random booting into old RHEL 7 kernel after the upgrade - Fix issues on systems with statically mapped IPs in /etc/hosts - Fix issues with device mapper and udev in a container - Fix issues with failing rpm transaction calculation because of duplicate instructions for dnf - Fix various issues related to RHSM (e.g. https://bugzilla.redhat.com/show_bug.cgi?id=1702691) - Fix yum repository scan in case of repositories with invalid URL - Inhibit the upgrade if multiple kernel-devel rpms are installed - Inhibit the upgrade when links on root dir '/' are not absolute to save the world - Parse correctly kernel cmdline inside the initrd (oamg#383) (fixes various issues on s390x) - Print warnings instead of a hard failure when expected rpms cannot be found (e.g. python3-nss inside an rpm module) (oamg#405) - Remove java11-openjdk-headless during the upgrade (https://bugzilla.redhat.com/show_bug.cgi?id=1820172) - Throw a nice error when invalid locale is set (oamg#430) ## Enhancements - Add initial multipath support (it doesn't handle all cases yet) - Changed upgrade paths: RHEL-ALT 7.6 -> 8.2; RHEL 7.8 -> 8.2 - Check if the latest installed kernel is booted before the upgrade - Check that the system satisfies minimum memory requirements for the upgrade (oamg#413) - Dump `grub2-editenv list` output to help with issues related to the default kernel for the boot - Improved report related to KDE/GNOME - Inhibit the upgrade for ipa-server (oamg#481) - Inhibit the upgrade on EFI systems when efibootmgr is not installed - Inhibit the upgrade on FIPS systems - Inhibit the upgrade when the raised dialogs are missing answers (oamg#589) - Introduce new ways of using custom repositories during the transaction - Make report messages more explicit about Dialogs (oamg#600) - Migrate SpamAssassin - Migrate cups-filters - Migrate sane-backend - Modify vim configuration to keep the original behaviour - Report changes in wireshark - Support the upgrade without the use of subscription-manager - The name and baseurl field in the CustomTargetRepository message are optional now - Use the new framework mechanism to inhibit the upgrade without reporting errors - Various texts are improved based on the feedback ## Additional changes interesting for devels - Add new functions in the config library to get envars related to leapp - Add support for testing with Beta and HTB systems - LEAPP_SKIP_CHECK_OS_RELEASE has been renamed to LEAPP_DEVEL_SKIP_CHECK_OS_RELEASE - Provide info about kernel cmdline via KernelCmdline message - The IPUConfig message contains information about booted kernel - The code is mostly Py2/Py3 compatible now and all PRs are tested on Py2 and Py3 compatibility (linters, unit-tests) - The config.version library contains is_rhel_alt() for detection of RHEL-ALT
|
e2e tests |
pirat89
force-pushed
the
realtime_support
branch
from
6c27af2
to
8c96037
Compare
|
@mkluson rebasing against the master to ensure you will not hit recent issues. @oamg/developers re-review pls |
|
@oamg/developers btw, it's possible I will have to rebase the branch again after the SAP-HANA PR is merged to fix possible conflicts. |
The is_rhel_realtime function returns True only if the original system was booted using preemptive kernel (kernel-rt) and when the system is RHEL. The function is currently naive a little bit. The realtime kernel detection is based on the '.rt' substring in the release of kernel - which we know it will be there always only in case of the kernel-rt rpm. However, in future the test should be based rather on properties of kernel (preemptive-rt).
changed)
RHEL Real Time (RT) systems boot using kernel-rt rpm. But still,
even a kernel rpm can be installed. So now, detect whether we are
booted via kernel-rt or not and do a comparison only in regarding
the expected package name.
Unfortunately, this make comparisons between releases more difficult
as we need to check the whole release, including alphanumeric
characters in release, e.g.:
kernel-rt-3.10.0-1160.2.1.rt56.1133.el7.x86_64
Previously we worked just with numbers. To make the check valid and
more robust, let's use rpm.labelCompare(). We are sure this library
is on every RHEL 7 system as dnf requires it (and probably yum too).
Let's use it as it resolves all our current troubles right now and
makes whole comparison more reliable.
In this implementation I am skipping comparison with epoch as
there is no (and will not be) kernel with bumped epoch.
Important:
Regarding the use of the rpm module, someone could expect added
dependency on rpm in python or spefile. Currently, nothing like
that. In case case of python (pip) dependencies, there is not
python module presented via pip as the module is written
in CPython. Only way to install it is via packages. However,
on RHEL 7 you can find just rpm module for Python2 and newer
systems contain just rpm module for Python3. So there is no way
to prepare virtual pyenv with specific rpm modules and the system
one has to be used.
Changes in the specfile are not needed as the related rpm is
always installed and cannot be removed from systems based on RHEL
and Fedora.
Previously just the kernel rpm has been detected. However, in case of real time systems, we need to detect the kernel-rt rpm. In case of real time kernels, the kernel rpm doesn't have to be installed at all. Currently it's not clear whether we should handle stuff realted to both kernels (kernel and kernel-rt) when both present. Right now, detect whether the original system was booted with preemptive kernel or not and based on that prefer the expected kernel. In case the target kernel-rt rpm is not present and it is expected, fallback to the kernel rpm to make possible finish of the upgrade, but log warning msg. TODO: raise report in such a case
pirat89
force-pushed
the
realtime_support
branch
from
8c96037
to
5fe6750
Compare
Rezney
reviewed
Feb 3, 2021
| api.current_logger().info('The Real Time kernel boot detected.') | ||
| kernel_name = 'kernel-rt' | ||
|
|
||
| pkgs = get_pkgs(kernel_name) | ||
| if not pkgs: | ||
| # Hypothatical, user is not allowed to install any kernel that is not signed by RH |
There was a problem hiding this comment.
Suggested change
| # Hypothatical, user is not allowed to install any kernel that is not signed by RH | |
| # Hypothetically, user is not allowed to install any kernel that is not signed by RH |
| api.current_logger().info('The Real Time kernel boot detected.') | ||
| kernel_name = 'kernel-rt' | ||
|
|
||
| pkgs = get_pkgs(kernel_name) | ||
| if not pkgs: | ||
| # Hypothatical, user is not allowed to install any kernel that is not signed by RH | ||
| # In case we would like to be cautious, we could check whether there are no other |
There was a problem hiding this comment.
I vote to remove this comment or let's be cautious...
| # pylint: disable=no-else-return - false positive | ||
| # TODO: should we take care about stuff of kernel-rt and kernel in the same | ||
| # time when both are present? or just one? currently, handle only one | ||
| # of these during the upgrade. kernel-rt has higher prio when original sys |
There was a problem hiding this comment.
Suggested change
| # of these during the upgrade. kernel-rt has higher prio when original sys | |
| # of these during the upgrade. kernel-rt has higher prio when original system |
| # will crash without the created message. I am keeping kind of original | ||
| # behaviour in this case, but at least the let me log the error msg | ||
| # | ||
| api.current_logger().error('Cannot detect any kernel RPM') |
There was a problem hiding this comment.
Please be more specific and add "RHEL 8" string also here.
| # behaviour in this case, but at least the let me log the error msg | ||
| # | ||
| api.current_logger().error('Cannot detect any kernel RPM') | ||
| # StopActorExecutionError('Cannot detect any RHEL 8 kernel RPM.') |
There was a problem hiding this comment.
Please use this or remove but I guess it is too late here anyway...
| """ | ||
| Check whether the original system is RHEL Real Time. | ||
|
|
||
| Currently the check is based on the release of the original booted kernel. |
There was a problem hiding this comment.
Suggested change
| Currently the check is based on the release of the original booted kernel. | |
| Currently, the check is based on the release of the originally booted kernel. |
| Currently the check is based on the release of the original booted kernel. | ||
| In case of RHEL, we are sure the release contains the ".rt" string and | ||
| non-realtime kernels don't. Let's use this minimalistic check for now. | ||
| In future, we could detect whether the system is preemptive or not based |
There was a problem hiding this comment.
Suggested change
| In future, we could detect whether the system is preemptive or not based | |
| In future, we could detect whether the system is preemptive or not, based |
|
|
||
|
|
||
| def get_kernel_rpm_release(rpm): | ||
| def get_EVR(pkg): |
There was a problem hiding this comment.
Let's be consistent with uppercase and lowercase with the EVR in function names...
Merged
|
discussed with @Rezney, skipping now the review comments :) |
drehak
added a commit
to drehak/leapp-repository
that referenced
this pull request
Feb 4, 2021
## Packaging - Bump required leapp-framework capability to 1.4 (oamg#642) ## Upgrade handling ### Fixes - Fix comparison of the newest installed and booted kernel (oamg#600) - Fix remediation command for ipa-server removal (oamg#617) - Fix crash due to missing network interfaces during upgrade phases (oamg#625) - Fix error with /boot/efi existing on non-EFI systems (oamg#627) - Fix false positive detection of issue in /etc/default/grub that led into GRUB prompt (oamg#587) - Fix syntax error in upgrade script (oamg#619) - Inhibit upgrade with mount options in fstab that break mounting on RHEL 8 (oamg#639) - Inhibit upgrade on s390x machines with /boot on a separate partition (oamg#641) - Inhibit upgrade if multiple kernel-debug pkgs are installed (oamg#599) - Remove the initial-setup package to avoid it asking for EULA acceptance during upgrade (oamg#626) - Remove the *leapp-resume* service after the *FirstBoot* phase to prevent kill of the leapp process on `systemctl daemon-reload` (oamg#611) ### Enhancements - Add upgrade support for SAP HANA (own upgrade path) (oamg#503) - Allow upgrade with SCA enabled manifest (oamg#615) - Add actors to migrate Quagga to FRR (oamg#467) - Add stable uniq Key id for every dialog (oamg#618) - Respect the *kernel-rt* package (oamg#600) ## Additional changes interesting for devels - Add a possibility to overwrite virtualenv name using `$VENVNAME` (oamg#613) - Update product certificates for RHEL 8.3 GA and 8.4 Beta/HTB (oamg#624) Related leapp release: https://github.com/oamg/leapp/releases/tag/v0.12.0
drehak
added a commit
to drehak/leapp-repository
that referenced
this pull request
Feb 4, 2021
## Packaging - Bump required leapp-framework capability to 1.4 (oamg#642) ## Upgrade handling ### Fixes - Fix comparison of the newest installed and booted kernel (oamg#600) - Fix remediation command for ipa-server removal (oamg#617) - Fix crash due to missing network interfaces during upgrade phases (oamg#625) - Fix error with /boot/efi existing on non-EFI systems (oamg#627) - Fix false positive detection of issue in /etc/default/grub that led into GRUB prompt (oamg#587) - Fix syntax error in upgrade script (oamg#619) - Inhibit upgrade with mount options in fstab that break mounting on RHEL 8 (oamg#639) - Inhibit upgrade on s390x machines with /boot on a separate partition (oamg#641) - Inhibit upgrade if multiple kernel-debug pkgs are installed (oamg#599) - Remove the initial-setup package to avoid it asking for EULA acceptance during upgrade (oamg#626) - Remove the *leapp-resume* service after the *FirstBoot* phase to prevent kill of the leapp process on `systemctl daemon-reload` (oamg#611) ### Enhancements - Add upgrade support for SAP HANA (own upgrade path) (oamg#503) - Allow upgrade with SCA enabled manifest (oamg#615) - Add actors to migrate Quagga to FRR (oamg#467) - Add stable uniq Key id for every dialog (oamg#618) - Respect the *kernel-rt* package (oamg#600) ## Additional changes interesting for devels - Add a possibility to overwrite virtualenv name using `$VENVNAME` (oamg#613) - Update product certificates for RHEL 8.3 GA and 8.4 Beta/HTB (oamg#624) Related leapp release: https://github.com/oamg/leapp/releases/tag/v0.12.0
pirat89
pushed a commit
that referenced
this pull request
Feb 4, 2021
## Packaging - Bump required leapp-framework capability to 1.4 (#642) ## Upgrade handling ### Fixes - Fix comparison of the newest installed and booted kernel (#600) - Fix remediation command for ipa-server removal (#617) - Fix crash due to missing network interfaces during upgrade phases (#625) - Fix error with /boot/efi existing on non-EFI systems (#627) - Fix false positive detection of issue in /etc/default/grub that led into GRUB prompt (#587) - Fix syntax error in upgrade script (#619) - Inhibit upgrade with mount options in fstab that break mounting on RHEL 8 (#639) - Inhibit upgrade on s390x machines with /boot on a separate partition (#641) - Inhibit upgrade if multiple kernel-debug pkgs are installed (#599) - Remove the initial-setup package to avoid it asking for EULA acceptance during upgrade (#626) - Remove the *leapp-resume* service after the *FirstBoot* phase to prevent kill of the leapp process on `systemctl daemon-reload` (#611) ### Enhancements - Add upgrade support for SAP HANA (own upgrade path) (#503) - Allow upgrade with SCA enabled manifest (#615) - Add actors to migrate Quagga to FRR (#467) - Add stable uniq Key id for every dialog (#618) - Respect the *kernel-rt* package (#600) ## Additional changes interesting for devels - Add a possibility to overwrite virtualenv name using `$VENVNAME` (#613) - Update product certificates for RHEL 8.3 GA and 8.4 Beta/HTB (#624) Related leapp release: https://github.com/oamg/leapp/releases/tag/v0.12.0
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
RHEL Real Time (RT) systems boot using kernel-rt rpm. But still,
even a kernel rpm can be installed. So now, detect whether we are
booted via kernel-rt or not and based on that:
TODO
Comparison of kernel versions changes
Unfortunately, this make comparisons between releases more difficult
as we need to check the whole release, including alphanumeric
characters in release, e.g.:
Previously we worked just with numbers. To make the check valid and
more robust, let's use rpm.labelCompare(). We are sure this library
is on every RHEL 7 system as dnf requires it (and probably yum too).
Let's use it as it resolves all our current troubles right now and
makes whole comparison more reliable.
In this implementation I am skipping comparison with epoch as
there is no (and will not be) kernel with bumped epoch.
How postupgrade phases are affected
Actors working with bootloader and iniramfss needs to refer to specific kernel always. Currently, we are going to set the default boot and handle the target initramfs only for one specified kernel. If the original system was Real Time, work with
kernel-rtrelated stuff. If thekernel-rtRHEL 8 rpm is not discovered (not installed), fallback to standard non-preemptive kernel. This is possible if user do not attach all expected RHEL 8 repositories (in this case, e.g.rhel-8-for-x86_64-rt-rpms).If the original system is not real time (not booted with preemptive kernel) act as before. No change is visible in that case.