Project

General

Profile

Setup

U-Boot

MVME8100 => setenv ipaddr 131.225.124.115
MVME8100 => setenv serverip 131.225.121.145
MVME8100 => setenv gatewayip 131.225.124.200
MVME8100 => setenv netmask 255.255.255.0
MVME8100 => setenv bootargs 'root=/dev/ram rw console=ttyS0,9600n8 ramdisk_size=700000 cache-sram-size=0x10000'
MVME8100 => setenv bootcmd 'tftpboot f00000 ees/bbpmt2/mvme8100_32b.GA3.dtb; tftpboot 1000000 ees/bbpmt2/uImage; tftpboot 2000000 ees/bbpmt2/rootfs.cpio.uboot; bootm 1000000 2000000 f00000'
MVME8100 => saveenv
Saving Environment to SPI Flash...
SF: Detected AT25DF641 with page size 256 Bytes, total 8 MiB
Erasing SPI flash...Writing to SPI flash...done
MVME8100 => 

Now power-cycle and make sure the node can download it's kernel and boot properly. You should eventually be presented with a login prompt. Login as root (no password):
Welcome to (none)
(none) login: root
                              NOTICE TO USERS

       This  is a Federal computer (and/or it is directly connected to a
       Fermilab local network system) that is the property of the United
       States Government.  It is for authorized use only.  Users (autho-
       rized or unauthorized) have no explicit or  implicit  expectation
       of privacy.

       Any  or  all uses of this system and all files on this system may
       be intercepted, monitored, recorded,  copied, audited, inspected,
       and  disclosed  to authorized site, Department of Energy  and law
       enforcement personnel, as  well as authorized officials of  other
       agencies,  both  domestic and foreign.  By using this system, the
       user consents to such interception, monitoring, recording,  copy-
       ing,  auditing,  inspection,  and disclosure at the discretion of
       authorized site or Department of Energy personnel.

       Unauthorized or improper use of this system may result in  admin-
       istrative  disciplinary  action and civil and criminal penalties.
       By continuing to use this system you indicate your  awareness  of
       and  consent to these terms and conditions of use.  LOG OFF IMME-
       DIATELY if you do not agree to  the  conditions  stated  in  this
       warning.

       Fermilab  policy  and  rules for computing, including appropriate
       use, may be found at http://www.fnal.gov/cd/main/cpolicy.html

[root@(none) ~]# 

On-board Flash Memory

The 8100 has two 32 MB SPI flash banks and an 8 GB MMC flash disk. We use the MMC flash for storing network configuration and krb5.keytab.

Create a ext2 partition on the MMC flash with fdisk and e2fsck -

[root@(none) ~]# fdisk /dev/mmcblk0
Device contains neither a valid DOS partition table, nor Sun, SGI, OSF or GPT disklabel
Building a new DOS disklabel. Changes will remain in memory only,
until you decide to write them. After that the previous content
won't be recoverable.

The number of cylinders for this disk is set to 238080.
There is nothing wrong with that, but this is larger than 1024,
and could in certain setups cause problems with:
1) software that runs at boot time (e.g., old versions of LILO)
2) booting and partitioning software from other OSs
   (e.g., DOS FDISK, OS/2 FDISK)

Command (m for help): p

Disk /dev/mmcblk0: 7801 MB, 7801405440 bytes
4 heads, 16 sectors/track, 238080 cylinders
Units = cylinders of 64 * 512 = 32768 bytes

        Device Boot      Start         End      Blocks  Id System

Command (m for help): n
Command action
   e   extended
   p   primary partition (1-4)
p
Partition number (1-4): 1
First cylinder (1-238080, default 1): Using default value 1
Last cylinder or +size or +sizeM or +sizeK (1-238080, default 238080): Using default value 238080

Command (m for help): p

Disk /dev/mmcblk0: 7801 MB, 7801405440 bytes
4 heads, 16 sectors/track, 238080 cylinders
Units = cylinders of 64 * 512 = 32768 bytes

        Device Boot      Start         End      Blocks  Id System
/dev/mmcblk0p1               1      238080     7618552  83 Linux

Command (m for help): w
The partition table has been altered.
Calling ioctl() to re-read partition table
 mmcblk0: p1

[root@(none) ~]# e2fsck /dev/mmcblk0p1
e2fsck 1.42.12 (29-Aug-2014)
/dev/mmcblk0p1 has gone 1730 days without being checked, check forced.
Pass 1: Checking inodes, blocks, and sizes
Pass 2: Checking directory structure
Pass 3: Checking directory connectivity
Pass 4: Checking reference counts
Pass 5: Checking group summary information
/dev/mmcblk0p1: 11/240480 files (0.0% non-contiguous), 16984/960510 blocks
[root@(none) ~]#

Now you can mount the MMC flash:

[root@(none) ~]# mount /rfs

Certain files in /etc are actually symlinks to the MMC flash mounted at /rfs. Create an /rfs/etc directory for these files:

[root@(none) ~]# mkdir /rfs/etc

Network

Create /rfs/etc/hostname:

[root@(none) ~]# nano /rfs/etc/hostname
[root@(none) ~]# cat /rfs/etc/hostname
bbpl12

[root@(none) ~]#

Create /rfs/etc/hosts:

[root@(none) ~]# nano /rfs/etc/hosts
[root@(none) ~]# cat /rfs/etc/hosts
127.0.0.1 localhost
131.225.124.207 bbpl12.fnal.gov

[root@(none) ~]#

Create /rfs/etc/network/interfaces:

[root@(none) ~]# mkdir /rfs/etc/network
[root@(none) ~]# nano /rfs/etc/network/interfaces
[root@(none) ~]# cat /rfs/etc/network/interfaces
# Configure Loopback
auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 131.225.124.207
netmask 255.255.255.0
network 131.225.124.0
gateway 131.225.124.200

[root@(none) ~]#

Sync and reboot:

[root@(none) ~]# sync
[root@(none) ~]# reboot

System Date & Time

Display the hardware RTC:

[root@bbpmt2 ]# hwclock
Sun Mar  5 16:02:56 2017  0.000000 seconds

Set the hardware RTC according to the system clock:

[root@bbpmt2 ]# export TZ=CST6CDT
[root@bbpmt2 ]# hwclock -w
[root@bbpmt2 ]# hwclock
Tue Sep  4 13:07:46 2018  0.000000 seconds

Kerberos

Get a copy of krb5.keytab and copy it to the MMC flash disk:

[root@bbpl12 etc]# cp /fecode-bd/bbpmt2/krb5.keytab /rfs/etc/

Verify that Kerberos is configured properly:

[root@bbpl12 etc]# kinit jdiamond@FNAL.GOV
Password for jdiamond@FNAL.GOV:
[root@bbpl12 etc]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: jdiamond@FNAL.GOV

Valid starting     Expires            Service principal
09/05/18 10:15:58  09/06/18 12:15:52  krbtgt/FNAL.GOV@FNAL.GOV
        renew until 09/12/18 10:15:52

You will need to register for Kerberos host principals via the help desk. They will issue you a one-time use password for adding your node, which you will need to copmlete this step:

[root@bbpl12 etc]# kadmin -p host/bbpl12.fnal.gov -q "ktadd host/bbpl12.fnal.gov" 
Authenticating as principal host/bbpl12.fnal.gov with password.
Password for host/bbpl12.fnal.gov@FNAL.GOV:
Entry for principal host/bbpl12.fnal.gov with kvno 2, encryption type aes256-cts-hmac-sha1-96 added to keytab FILE:/etc/krb5.keytab.
Entry for principal host/bbpl12.fnal.gov with kvno 2, encryption type aes128-cts-hmac-sha1-96 added to keytab FILE:/etc/krb5.keytab.
Entry for principal host/bbpl12.fnal.gov with kvno 2, encryption type des3-cbc-sha1 added to keytab FILE:/etc/krb5.keytab.
Entry for principal host/bbpl12.fnal.gov with kvno 2, encryption type des-cbc-crc added to keytab FILE:/etc/krb5.keytab.
[root@bbpl12 etc]# kadmin -p ftp/bbpl12.fnal.gov -q "ktadd ftp/bbpl12.fnal.gov" 
Authenticating as principal ftp/bbpl12.fnal.gov with password.
Password for ftp/bbpl12.fnal.gov@FNAL.GOV:
Entry for principal ftp/bbpl12.fnal.gov with kvno 2, encryption type aes256-cts-hmac-sha1-96 added to keytab FILE:/etc/krb5.keytab.
Entry for principal ftp/bbpl12.fnal.gov with kvno 2, encryption type aes128-cts-hmac-sha1-96 added to keytab FILE:/etc/krb5.keytab.
Entry for principal ftp/bbpl12.fnal.gov with kvno 2, encryption type des3-cbc-sha1 added to keytab FILE:/etc/krb5.keytab.
Entry for principal ftp/bbpl12.fnal.gov with kvno 2, encryption type des-cbc-crc added to keytab FILE:/etc/krb5.keytab.

Sync and reboot.

[root@(none) ~]# sync
[root@(none) ~]# reboot

Wait a few minutes for the Kerberos servers to sync up, then test by SSH'ing in from outland.

Links