Date: Thu, 10 Jul 2025 14:38:47 +0000 (UTC) From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: Warner Losh <imp@bsdimp.com> Cc: Konstantin Belousov <kostikbel@gmail.com>, Zhenlei Huang <zlei@freebsd.org>, FreeBSD Current <current@freebsd.org> Subject: Re: sysctl to prevent reboot? Message-ID: <3os2rn9s-17sn-0568-6400-6po56nqnq72q@yvfgf.mnoonqbm.arg> In-Reply-To: <CANCZdfrpX1B%2BY6RNijnqL1AD7w4wiuki8viMGDE50jjm-imR%2BQ@mail.gmail.com> References: <o2o49n7o-793n-q70n-s017-5q9508r363q7@yvfgf.mnoonqbm.arg> <1B1CD603-065D-436F-97D9-DDF65AB7F115@FreeBSD.org> <o0829s6o-7365-qn4n-8s39-0ro2r6173596@yvfgf.mnoonqbm.arg> <aG_OeXOdKQ9uAt7m@kib.kiev.ua> <CANCZdfrpX1B%2BY6RNijnqL1AD7w4wiuki8viMGDE50jjm-imR%2BQ@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
On Thu, 10 Jul 2025, Warner Losh wrote: > On Thu, Jul 10, 2025, 8:30 AM Konstantin Belousov <kostikbel@gmail.com> > wrote: > >> On Thu, Jul 10, 2025 at 01:51:47PM +0000, Bjoern A. Zeeb wrote: >>> On Thu, 10 Jul 2025, Zhenlei Huang wrote: >>> >>> Hi, >>> >>>> I believe Konstantin's work [1] and [2] are precisely what you need. >>>> >>>> [1] >> https://cgit.freebsd.org/src/commit/?id=7fb88c20eccc3fd2118fda2ba58d7afe2b87f7e3 >> < >> https://cgit.freebsd.org/src/commit/?id=7fb88c20eccc3fd2118fda2ba58d7afe2b87f7e3>; >> shutdown(8): refuse to run if /var/run/noshutdown is present >>>> [2] >> https://cgit.freebsd.org/src/commit/?id=384d976725a5c29734a9227fcdb6ef0807485c91 >> < >> https://cgit.freebsd.org/src/commit/?id=384d976725a5c29734a9227fcdb6ef0807485c91>; >> rc.d: Add precious_machine rc.conf knob to create /var/run/noshutdown >>> >>> Thanks! I was looking in the wrong place. >>> >>> That doesn't catch reboot, does it? For me that's the offending command >>> as I type that at the loader prompt (if I am in the correct window). >> >> Reboot is very different from shutdown. I never use it except on >> nfs-booted >> crash boxes, so I did not considered. >> >> If you think it is useful, I can add the check there too. I don't use it either for the normal OS but it does something (extra bad) if I type it and am not at the loader prompt as I thought I was. > There have been other proposals that align reboot better with Linux's > behavior, then a special check isn't needed. There was a reason I originally thoguth it was a sysctl as that would prevent any applicant binary modifications and probably would even catch a signal to init but whatever it is or will be; catching reboot would be good as that is the bad command from the loader. "reset" thankfully doesn't do any bad ... Using alias feels too fragile to be honest. Anyway; I an help myself now at least; thanks! -- Bjoern A. Zeeb r15:7home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3os2rn9s-17sn-0568-6400-6po56nqnq72q>