Tweet
Originally posted by uid313
View Post
-
you have the change log the last one ubuntu kernel 4.8.0-25-xx is based in linux 4.8.1 -
There is something I'm doing wrong...Code::~$ sudo canonical-livepatch enable ___2016/10/19 11:09:41 Error executing enable?auth-token=___. Connection to the daemon failed: Put http://127.0.0.1/enable?auth-token=___: dial unix /var/snap/canonical-livepatch/15/livepatchd-priv.sock: connect: no such file or directory :~$ canonical-livepatch status Connection to the daemon failed: Get http://127.0.0.1/status?verbose=false: dial unix /var/snap/canonical-livepatch/15/livepatchd.sock: connect: no such file or directory
Comment
-
I understand why some people are afraid to reset their servers. But to be frank, if you don't have a redundant solution for customer facing applications, perhaps you are doing something wrong. And perhaps if you are paying someone money so you don't have to 'reset' the computer perhaps there is also something wrong happening. I understand the real world, but it seems like the per node pricing is a tad on the appeal to lazy deep pockets.Comment
-
So as a Ubuntu desktop user, what kind of functionality I could patch without rebooting? I guess it won't work for something like kernel 4.8 -> 4.9 display drivers?Comment
-
Excuse my ignorance in this area, but wouldn't it be possible to accomplish the same thing with kexec and hibernate?Comment
-
This service makes a lot of sense here since you would buy the service only for those machines that you can't reboot regularly.Originally posted by pcxmac View PostComment
-
kexec isn't the best tool as it is basically a soft reboot.Originally posted by peppercats View Post- Memory of the currently running kernel is overwritten by the new kernel, while the old one is still executing.
- The new kernel will usually expect all hardware devices to be in a well defined state, in which they are after a system reboot because the system firmware resets them to a "sane" state. Bypassing a real reboot may leave devices in an unknown state, and the new kernel will have to recover from that.
Also, these implementations are supposed to patch the kernel without blowing up applications that are still using the features being patched, with a kexec you would risk blowing them up.Comment
-
Although I'm just another ordinary desktop user, I signed up anyway for the piece-of-mind.Comment
-
If I am not mistaking canonical livepatch require a key of some sort, These kinds of things should be totally transparent.Originally posted by F.Ultra View Post
http://www.dirtcellar.netComment
Comment