Introducing kpatch: Dynamic Kernel Patching

In upstream development news, the kernel team here at Red Hat has been working on a dynamic kernel patching project called kpatch for several months.   At long last, the project has reached a point where we feel it’s ready for a wider audience and are very excited to announce that we’ve released the kpatch code under GPLv2.

kpatch allows you to patch a Linux kernel without rebooting or restarting any processes.  This enables sysadmins to apply critical security patches to the kernel immediately, without having to wait for long-running tasks to complete, users to log off, or scheduled reboot windows.  It gives more control over uptime without sacrificing security or stability.

Continue reading “Introducing kpatch: Dynamic Kernel Patching”

Managing Linux with OpenLMI

Managing Linux servers requires a degree of expertise. We need to do a better job of enabling mid-level system administrators with a background on other systems to manage Linux.

Existing management tools address a variety of needs. Red Hat Satellite Server is excellent for provisioning hardware, managing subscriptions, and handling patches and updates. Configuration management tools such as Puppet are great for putting systems into a known state, especially when you have many identical or near identical systems. The challenge is dealing with systems that need substantial customization and with fine grain control of individual systems.

Continue reading “Managing Linux with OpenLMI”