by April 1, 2014 0 comments

SUSE has released kGraft to the public, the technology it developed to deliver live, run-time patching of the Linux kernel. Compared with other technologies, kGraft doesn’t require stopping the kernel even for short periods, making it easier for IT staff to install critical security and other patches without system downtime.

Providing quick and reliable response to unscheduled patching needs without requiring the shutting down or rebooting of any number of servers will increase the stability, cost efficiency and security of enterprise customers’ environments. This technology will enhance uptime in mission-critical environments

kGraft is based on modern Linux technologies, including INT3/IPI-NMI self-modifying code, an RCU-like update mechanism, mcount-based NOP space allocation and standard kernel module loading/linking mechanisms. By leveraging other Linux technologies, kGraft requires only a small amount of code to run.

SUSE will submit kGraft upstream while working with the Linux community to create a common, standard kernel live patching solution. 

No Comments so far

Jump into a conversation

No Comments Yet!

You can be the one to start a conversation.

Your data will be safe!Your e-mail address will not be published. Also other data will not be shared with third person.