The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cPanel Upgrading Kernel, why?

Discussion in 'General Discussion' started by KD0IGO, May 7, 2013.

  1. KD0IGO

    KD0IGO Member

    Joined:
    Jan 13, 2012
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    St. Charles, MO
    cPanel Access Level:
    DataCenter Provider
    We have a large number of cPanel servers that we control and we try our best to keep all of the servers configurations the same between all of these systems, including yum configuration.

    We have /etc/yum.conf chattr'd +ai to avoid any applications modifying this file; we also have the kernel package excluded from this file as we install our own custom kernels via RPM directly, not through yum.

    However, cPanel 11.36 upgrade fails because it cannot write to /etc/yum.conf. I remove the immutable bits on this file, cPanel upgrade is allowed to proceed. During this, the kernel exclusion is removed and as a result, during a yum update run, the latest kernel from the CentOS repos are installed.

    Why is upcp doing this? There should be no reason that I am aware of why this would be needed. This will cause us to add an extra step of re-installing the proper kernels on these systems.
     
  2. PenguinInternet

    PenguinInternet Well-Known Member
    PartnerNOC

    Joined:
    Jun 20, 2007
    Messages:
    149
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Cardiff, UK
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    I've just checked this on some of our servers and it's certainly not happening for us. The kernel is not in the yum exclusion list as default anyway however is definitely not upgraded by upcp. This didn't happen on any of our 11.36 upgrades either. What do your logs show for the upgrade?
     
  3. quanin

    quanin Well-Known Member

    Joined:
    Aug 18, 2011
    Messages:
    84
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I can confirm this, as a recent security update to the kernel was not installed by CPanel and needed to be applied, even using YUM, by myself manually. Conversations with CPanel staff confirm there should be no forced kernel updates during CPanel's automatic maintenance. Best I can think of is when YUM is told to install something else, that package is pulling the latest kernel in as a dependency, but without further info that's the absolute best I can offer as an explanation.
     
  4. KD0IGO

    KD0IGO Member

    Joined:
    Jan 13, 2012
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    St. Charles, MO
    cPanel Access Level:
    DataCenter Provider
    The stock CentOS kernel being installed I believe is a result of a yum update command given during the upgrade process. However, we roll our own kernels and do not use the CentOS Kernels in the repositories. cPanel should not be modifying the yum.conf and removing packages that have been excluded.
     
  5. quanin

    quanin Well-Known Member

    Joined:
    Aug 18, 2011
    Messages:
    84
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I don't have specifics, but I believe the YUM update command given during the update process is designed to exclude kernel updates. Again, this is based on my own issues with the expectation of the opposite result, so my guess is something else pulled in by a YUM update is requiring that version of the kernel as a dependency. Although you're right--CPanel shouldn't be modifying your yum.conf, but I'm wondering if the YUM update would fail on its own due to that dependency issue.
     
  6. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,460
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    cPanel & WHM modifies /etc/yum.conf to ensure any known package incompatibilities are excluded (i.e. we manipulate the exclude line). This especially happens during upcp to ensure the kernel, and related packages, are excluded. Once upcp completes we modify the exclude line to remove what was temporarily added.

    A side effect of this is we remove kernel related exclusions. To preserve them, touch the following file:

    /var/cpanel/checkyum-keepkernel
     
Loading...

Share This Page