I Need a Reboot

Problem

#

I was running Kubernetes upgrades with my script (kubify) but they were hanging on random machines. Not always the same one.

Running

2023-06-22 00:37:07,984 kubify.py:628 DEBUG running ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -t -t ubuntu@10.10.2.140 sudo apt-mark unhold kubeadm && sudo apt update && sudo apt install -y kubeadm=1.25.11-00 && sudo apt-mark hold kubeadm

Always to a hang. Never on the same machine.

Looking the machine in question, I found this output in ps

ubuntu   2663021  0.0  0.0   7892  3520 pts/0    Ss+  Jun21   0:00         bash -c sudo apt-mark unhold kubeadm && sudo apt update && sudo apt install -y kubeadm=1.25.11-00 && sudo apt-mark hold kubeadm
root     2663603  0.0  0.1  11896  4548 pts/0    S+   Jun21   0:00           sudo apt install -y kubeadm=1.25.11-00
root     2663604  0.0  0.0  11896   892 pts/1    Ss   Jun21   0:00             sudo apt install -y kubeadm=1.25.11-00
root     2663605  0.0  1.7  78816 69156 pts/1    S+   Jun21   0:03               apt install -y kubeadm=1.25.11-00
root     2663817  0.0  0.4  78816 19672 pts/1    S+   Jun21   0:00                 apt install -y kubeadm=1.25.11-00
root     2663826  0.0  0.0   2888   996 pts/1    S+   Jun21   0:00                   sh -c test -x /usr/lib/needrestart/apt-pinvoke && /usr/lib/needrestart/apt-pinvoke || true
root     2663827  0.0  0.4  25332 19228 pts/1    S+   Jun21   0:01                     /usr/bin/perl -w /usr/share/debconf/frontend /usr/sbin/needrestart
root     2663877  0.0  0.6  31288 24940 pts/1    S+   Jun21   0:00                       /usr/bin/perl /usr/sbin/needrestart
root     2663941  0.0  0.1  10820  4296 pts/1    S+   Jun21   0:00                       whiptail --backtitle Package configuration --title Pending kernel upgrade --output-fd 11 --msgbox Newer kernel available  The currently running kernel version is 5.15.0-73-generic which is not the expected kernel version 5.15.0-75-generic.  Restarting the system to load the new kernel will not be handled automatically, so you should consider rebooting. 11 122

So the machine needed to be rebooted to continue?

Solution

#

First, detecting if a reboot was needed.

Enter /var/run/reboot-required. A file one can check for existance.

If you were curious why, /var/run/reboot-required.pkgs has you covered.

$ cat /var/run/reboot-required.pkgs
linux-image-5.15.0-75-generic
linux-base

So, reboot before installing the packages? Reboot periodically to always be on the newest kernel?

Given I use Ansible as much as I can, enter the reboot module.

I wrote up a simple little playbook to reboot a set of hosts

# Reboot host(s) but only if necessary
---
- hosts: all
  become: yes
  gather_facts: no
  # Only do one host at a time.
  serial: 1

  tasks:
  - name: check if reboot required
    stat:
      path: /var/run/reboot-required
    register: reboot_required_path

  - name: reboot required found
    debug:
      msg: "Reboot-required file found on host."
    when: reboot_required_path.stat.exists

  - name: reboot host
    ansible.builtin.reboot:
      # How long to wait until retrying connection
      # after host is back up.
      post_reboot_delay: 300 # 5 min
      # How long to wait for machine to reboot
      # and respond to test command.
      reboot_timeout: 600 # 10 min
    when: reboot_required_path.stat.exists

  - name: pause for 2 minutes after rebooting a host
    pause:
      minutes: 2
    when: reboot_required_path.stat.exists

Docs

#

• https://docs.ansible.com/ansible/latest/collections/ansible/builtin/reboot_module.html
• https://docs.ansible.com/ansible/2.8/modules/pause_module.html
• https://docs.ansible.com/ansible/latest/collections/ansible/builtin/wait_for_module.html