maintenance:general:rhel_updates
LDAP: couldn't connect to LDAP server
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
maintenance:general:rhel_updates [2022/05/25 09:28] – created yspeerte | maintenance:general:rhel_updates [2022/05/25 12:34] (current) – [Maria DB updates] yspeerte | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== Linux updates ====== | ||
+ | |||
+ | As with any Linux distribution, | ||
+ | |||
+ | This article will clarify what the options are to update the Linux system while still maintaining a reliable and supported NetYCE system. | ||
+ | |||
+ | For the regular Linux maintenance of bringing the installed packages up-to-date, two options are available for NetYCE systems: \\ | ||
+ | * The ' | ||
+ | * A from NetYCE downloaded ' | ||
+ | |||
+ | |||
+ | ===== RHEL ' | ||
+ | |||
+ | NetYCE can be installed on CentOS 7.x and RedHat 7.x Linux distributions (RHEL = ' | ||
+ | |||
+ | Any NetYCE (VM) system downloaded from NetYCE (the ' | ||
+ | |||
+ | To update any system ' | ||
+ | |||
+ | To perform a yum update, execute as '' | ||
+ | |||
+ | To use a ' | ||
+ | |||
+ | After the update an activation is required. As some packages updated libraries that are in use by running NetYCE processes, it is recommended to restart those. \\ | ||
+ | If a new Linux kernel was installed it can only be activated by restarting the server ('' | ||
+ | If only the NetYCE processes need to be restarted, it is sufficient to re-create the setup using '' | ||
+ | |||
+ | |||
+ | ===== NetYCE ' | ||
+ | |||
+ | As an option to customers that cannot update their system directly from a ' | ||
+ | |||
+ | When made available to a customer, NetYCE creates periodically a downloadable ' | ||
+ | |||
+ | The NetYCE script '' | ||
+ | |||
+ | < | ||
+ | $ install_repo.pl | ||
+ | usage: install_repo.pl -d < | ||
+ | -d dir the path to the directory containing the rpm files (from the unpacked repo-image) | ||
+ | | ||
+ | | ||
+ | -v lvl verbosity level to screen (0, 1, or 2) - logfile is fully verbose | ||
+ | |||
+ | | ||
+ | When combined, the update will be executed before the install. | ||
+ | | ||
+ | </ | ||
+ | |||
+ | As the volume of this rpm-repository is significant (600+ MB) and needs to be unpacked before use, the minimal free-disk-space requirement is about 1.5 GB. | ||
+ | |||
+ | |||
+ | ===== Package upgrades ===== | ||
+ | |||
+ | The '' | ||
+ | |||
+ | These changes cannot be supported by NetYCE as their impact cannot be predicted. | ||
+ | |||
+ | |||
+ | ===== Additional packages ===== | ||
+ | |||
+ | A customer may desire to install additional packages. If those packages are part of the CentOS or RedHat distribution there is only a minimal risk it can cause an issue with NetYCE operations. If NetYCE support is needed and the issue cannot be reproduced, we will request to remove a customer installed package to verify its impact on the issue. | ||
+ | |||
+ | Custom packages or packages from third parties could pose a higher risk as these might not have been tested on this CentOS or RedHat environment. NetYCE will not support issues related to their installation. | ||
+ | |||
+ | |||
+ | ===== Maria DB updates ===== | ||
+ | |||
+ | NetYCE uses the MySQL derived **Maria DB** as its database. The MariaDB version that came pre-installed on the downloaded ' | ||
+ | |||
+ | There is an important difference here between " | ||
+ | |||
+ | Updates will not add new features but will introduce bug-fixes, performance gains and security vulnerability fixes. Especially because of the latter, MariaDB will continue to release updates for ALL of its versions. After updating any MariaDB version will be up-to-date security wise. | ||
+ | |||
+ | A customer should NOT upgrade a NetYCE MariaDB version as it potentially will introduce incompatible functions and dependencies with the NetYCE application. | ||
+ | |||
+ | The MariaDB version used with **NetYCE release 8.0.0** on CentOS7 or RedHat7 is **MariaDB 10.3.x**. A forthcoming release will upgrade to MariaDB 10.6.x, but is currently unsupported (and untested). The introduction of a newer MariaDB version will initially only be available to new installations and new ' | ||
+ | |||
+ | Every NetYCE update installation will verify if the database matches the requirements of the Linux and NetYCE versions. Failure will prevent installation. | ||
+ | |||
+ | These checks can be manually performed by executing the '' | ||
+ | < | ||
+ | $ ck_setup.pl | ||
+ | -- OK. Have a ' | ||
+ | -- OK. Have a supported EL7 distribution: | ||
+ | -- OK. Have YCEperl version ' | ||
+ | -- OK. Found current ' | ||
+ | -- OK. Found link to previous ' | ||
+ | -- OK. Mariadb version ' | ||
+ | -- OK. Found required mysql library ' | ||
+ | </ | ||
+ | |||
+ | Supported versions: | ||
+ | ^ RHEL version ^ NetYCE version ^ MariaDB version ^ Support status ^ | ||
+ | | EL6 | 7.x | 10.0 | ok | | ||
+ | | EL6 | 7.x | 10.1 | ok | | ||
+ | | EL6 | 7.x | 10.2 | ok | | ||
+ | | |||| | ||
+ | | EL7 | 7.x | 10.2 | ok | | ||
+ | | EL7 | 7.x | 10.3 | ok | | ||
+ | | EL7 | 7.x | 10.4 | ok | | ||
+ | | |||| | ||
+ | | EL7 | 8.0 | 10.2 | ok | | ||
+ | | EL7 | 8.0 | 10.3 | ok | | ||
+ | | EL7 | 8.0 | 10.4 | ok | | ||
+ | | EL7 | 8.0 | 10.5 | no | | ||
+ | | EL7 | 8.0 | 10.6 | no, under test | | ||
+ | |||
+ | MariaDb version 10.6.x is not the latest version. Since its general availability in July 2021 there have been introduced versions 10.7 (feb 2022) and 10.8 (may 2022). As we strongly favour the most stable version, we will not (yet) support these. | ||
+ | |||
+ | > Note that RHEL8 is not included. It was prematurely made end-of-life and is not supported by NetYCE. | ||
+ | |||
+ | |||
+ | ===== Perl / Python dependencies ===== | ||
+ | |||
+ | NetYCE scripts use mostly Perl and to a lesser degree Python3. NetYCE created its own Perl environment totally separate from the Linux environment that also uses perl for its maintenance tasks. Updates to this YcePerl are related to the NetYCE version requirements and can be downloaded if needed from [[maintenance: | ||
+ | |||
+ | Like the MariaDB validation, new NetYCE updates also test for required YcePerl updates. | ||
+ | |||
+ | The Python3 environment is not separate from the Linux version. Its basic support is ingrained in the ' | ||
+ | |||
+ | ===== Sample ' | ||
+ | |||
+ | As '' | ||
+ | |||
+ | < | ||
+ | $ sudo yum update | ||
+ | Loaded plugins: fastestmirror | ||
+ | Determining fastest mirrors | ||
+ | epel/ | ||
+ | * base: nl.mirrors.clouvider.net | ||
+ | * epel: mirror.hostnet.nl | ||
+ | * extras: mirror.widexs.nl | ||
+ | * updates: mirror.nforce.com | ||
+ | base | 3.6 kB 00:00:00 | ||
+ | epel | 4.7 kB 00:00:00 | ||
+ | extras | ||
+ | mariadb | ||
+ | mysecureshell | ||
+ | updates | ||
+ | (1/6): epel/ | ||
+ | (2/6): extras/ | ||
+ | (3/6): mariadb/ | ||
+ | (4/6): epel/ | ||
+ | (5/6): mariadb/ | ||
+ | (6/6): updates/ | ||
+ | Resolving Dependencies | ||
+ | --> Running transaction check | ||
+ | ---> Package MariaDB-client.x86_64 0: | ||
+ | ---> Package MariaDB-client.x86_64 0: | ||
+ | ---> Package MariaDB-common.x86_64 0: | ||
+ | ::: | ||
+ | ::: | ||
+ | ---> Package kernel.x86_64 0: | ||
+ | --> Finished Dependency Resolution | ||
+ | |||
+ | Dependencies Resolved | ||
+ | |||
+ | ============================================================================================================== | ||
+ | | ||
+ | ============================================================================================================== | ||
+ | Installing: | ||
+ | | ||
+ | Updating: | ||
+ | | ||
+ | | ||
+ | | ||
+ | ::: | ||
+ | ::: | ||
+ | |||
+ | Transaction Summary | ||
+ | ============================================================================================================== | ||
+ | Install | ||
+ | Upgrade | ||
+ | Remove | ||
+ | |||
+ | Total download size: 210 M | ||
+ | Is this ok [y/d/N]: y | ||
+ | |||
+ | </ | ||
+ | |||
+ | At this point a confirmation is required. Enter ' | ||
+ | |||
+ | < | ||
+ | Downloading packages: | ||
+ | Delta RPMs disabled because / | ||
+ | (1/66): MariaDB-common-10.2.44-1.el7.centos.x86_64.rpm | ||
+ | (2/66): MariaDB-compat-10.2.44-1.el7.centos.x86_64.rpm | ||
+ | (3/66): MariaDB-client-10.2.44-1.el7.centos.x86_64.rpm | ||
+ | (4/66): MariaDB-devel-10.2.44-1.el7.centos.x86_64.rpm | ||
+ | (5/66): at-3.1.13-25.el7_9.x86_64.rpm | ||
+ | ::: | ||
+ | ::: | ||
+ | Total 12 MB/s | 210 MB 00:00:17 | ||
+ | Running transaction check | ||
+ | Running transaction test | ||
+ | Transaction test succeeded | ||
+ | Running transaction | ||
+ | Updating | ||
+ | Updating | ||
+ | Updating | ||
+ | Updating | ||
+ | ::: | ||
+ | ::: | ||
+ | systemd-sysv.x86_64 0: | ||
+ | tzdata.noarch 0: | ||
+ | unzip.x86_64 0: | ||
+ | zlib.x86_64 0: | ||
+ | zlib-devel.x86_64 0: | ||
+ | |||
+ | Complete! | ||
+ | </ | ||
+ | |||
+ | This concludes the Linux update. As some packages updated libraries what are in use by running NetYCE processes, it is recommended to restart these. | ||
+ | If a new Linux kernel was installed it can only be activated by restarting the server ('' | ||
+ | |||
+ | If only the NetYCE processes need to be restarted, it is sufficient to re-create the setup using '' | ||
+ | |||
+ | < | ||
+ | $ yce_setup.pl -r | ||
+ | -- ---------------------------------------- | ||
+ | -- Starting ' | ||
+ | -- System release | ||
+ | -- OK. Have a ' | ||
+ | -- OK. Have a supported EL7 distribution: | ||
+ | -- OK. Have YCEperl version ' | ||
+ | -- OK. Found current ' | ||
+ | -- OK. Found link to previous ' | ||
+ | -- OK. Mariadb version ' | ||
+ | -- OK. Found required mysql library ' | ||
+ | -- Connected to database at ' | ||
+ | |||
+ | Current setup: | ||
+ | devel7a.left.netyce.org (*) | ||
+ | | IP-address | ||
+ | | users | 172.17.0.24 | ||
+ | | Database | ||
+ | | id=1 | ||
+ | devel7b.right.netyce.org | ||
+ | | IP-address | ||
+ | | users | 172.17.0.25 | ||
+ | | Database | ||
+ | | id=2 | ||
+ | local server is marked with (*) | ||
+ | -- Create configs for server ' | ||
+ | -- Yce: / | ||
+ | -- Retrieving file-transfer configurations... | ||
+ | ::: | ||
+ | ::: | ||
+ | -- Relaunching NetYCE daemons... | ||
+ | ::: | ||
+ | ::: | ||
+ | -- mojo: 12547 12588 12589 12590 12591 12592 12593 | ||
+ | mojo hot-deploy on pid 12547 | ||
+ | | ||
+ | -- yce_xch: 12627 | ||
+ | stop: / | ||
+ | wait stop ' | ||
+ | | ||
+ | wait start ' | ||
+ | -- Completed | ||
+ | </ | ||
+ | |||