Re: A system for rebootless kernel security updates

From: Tomasz Chmielewski
Date: Thu Apr 24 2008 - 10:27:24 EST

Next message: Al Viro: "Re: [patch 00/13] vfs: add helpers to check r/o bind mounts"
Previous message: Ulrich Drepper: "Re: [PATCH] alternative to sys_indirect, part 1"
In reply to: Jeff Arnold: "Re: A system for rebootless kernel security updates"
Next in thread: Andi Kleen: "Re: A system for rebootless kernel security updates"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jeff Arnold wrote:

I've put together an automatic system for applying kernel security patches to the Linux kernel without rebooting it, and I wanted to share this system with the community in case others find it useful or interesting.

Hmm, the idea seem to be patented by Microsoft, i.e. this patent from December 2002:

http://www.google.com/patents?id=cVyWAAAAEBAJ&dq=hotpatching

(and other patents by Microsoft if you search for "hotpatching").

And those patent descriptions, by the way, remind the way kexec works ("A software module is hotpatched by loading a patch into memory and modifying an instruction in the original module to jump to the patch"), which was released much earlier... In essence, they patented kexec ;)

--
Tomasz Chmielewski
http://wpkg.org
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Al Viro: "Re: [patch 00/13] vfs: add helpers to check r/o bind mounts"
Previous message: Ulrich Drepper: "Re: [PATCH] alternative to sys_indirect, part 1"
In reply to: Jeff Arnold: "Re: A system for rebootless kernel security updates"
Next in thread: Andi Kleen: "Re: A system for rebootless kernel security updates"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]