>>Number: 13721
>>Category: kern
>>Synopsis: There is no way to force system panic from console
[...]
>>Release: FreeBSD 3.3-RC
>>Organization:
>Server
>>Environment:
>>Description:
>Under some rare circumstances there is a real need to reboot system via kernel
>'s panic from the system console. For example: if any process has ran out of m
>emory nobody can login and even Ctrl-Alt-Del does not work and there is no way
> to find out source of the problem after cold boot.
>And if reboot is not disabled the panic will not decrease the system's securit
>y especially; where enabling kernel debugger is not acceptable.
I tend to agree with the PR originator that this feature won't
particularly jeopardize security in the kernel for which reboot key
sequence is not disabled.
As the originator suggested in his subsequent posting to the PR
database, we can defined "panic" key and handle it in syscons
as follows:
case _PANIC_KEY_
#if !defined(SC_DISABLE_REBOOT) && !defined(SC_DISABLE_PANIC)
panic();
#endif
break;
We can restrict this feature, by checking `securelevel' too.
case _PANIC_KEY_
#if !defined(SC_DISABLE_REBOOT) && !defined(SC_DISABLE_PANIC)
if (securelevel <= 0)
panic();
#endif
break;
Any opinions?
Kazu
>On Sun it is the only way to reboot the working system: OpenBoot prom on boot
>and reset commands at first checks whether Solaris is running and if it is run
>ning - calls its panic routine.
>>How-To-Repeat:
To Unsubscribe: send mail to majord...@freebsd.org
with "unsubscribe freebsd-hackers" in the body of the message
