You are not logged in.

#1 2018-03-08 23:23:18

lapsio
Member
From: Warsaw
Registered: 2015-09-30
Posts: 40

Arch - kernel live patching

Does Arch support any kind of live kernel patching? I'm using Arch with kernel-hardened for KVM virtualization host and It's quite troublesome to shutdown / hibernate all VMs before every kernel update. Especially that kernel updates in Arch are quite frequent. At the moment I'm just rarely updating host but it sounds like exact opposite of good solution...

Last edited by lapsio (2018-03-08 23:24:33)

Offline

#2 2018-03-09 02:29:19

V1del
Forum Moderator
Registered: 2012-10-16
Posts: 5,671

Re: Arch - kernel live patching

Offline

#3 2018-03-09 03:14:49

Trilby
Inspector Parrot
Registered: 2011-11-29
Posts: 20,420
Website

Re: Arch - kernel live patching

V1del, kexec still terminates all other processes, doesn't it.  It's basically a reboot without having to go through the hardware POST.


"UNIX is simple and coherent..." - Dennis Ritchie, "GNU's Not UNIX" -  Richard Stallman

Offline

#4 2018-03-09 08:52:23

seth
Member
Registered: 2012-09-03
Posts: 8,898

Re: Arch - kernel live patching

https://linux-audit.com/livepatch-linux … rebooting/
https://wiki.archlinux.org/index.php/Ke … e_patching

You don't need the linux-kpatch kernel, "zgrep -i patch /proc/config.gz"

Offline

#5 2018-03-09 12:20:40

V1del
Forum Moderator
Registered: 2012-10-16
Posts: 5,671

Re: Arch - kernel live patching

Ah you are right, my bad.  However I'd expect the answer to be no in that case, I'm not aware of any official implementations of that, similarly to pacman's delta package support, where the bits and pieces are theoretically availabe but not in a ready to use fashion.

Offline

Board footer

Powered by FluxBB