Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

9.6K
active users

hachyderm.io: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.5

Yvan ー イボん 🗺️ :ferris: :go:

Does anyone know if offers anything like kernel live patching ?

Mar 23, 2025, 10:59 AM·Public
4boosts·1favorite
Public
Björn Gohla

@YvanDaSilva can the Linux kernel even do that? I guess you can replace kernel modules and reload them. No idea if Nixos has support for that.

Public
Yvan ー イボん 🗺️ :ferris: :go:

@6d03 yes, you can live patch the kernel for security updates :)

There is multiple ways to do so and new ones being added recently.

But I didn't find a single way to do it on NixOS with nix rebuild.
I found open issues in github that haven't had much activity.

Quiet public
Raito Bezarius

@YvanDaSilva nope but you can build your own patches

Quiet public
Yvan ー イボん 🗺️ :ferris: :go:

@raito I see thanks.

AFAIU, there is closed loops that share p0's of which are not yet disclosed so this handling this myself seems not amazing :/

Quiet public
darix

@YvanDaSilva @johanneskastl the value of live patching and being in the loop for security updates are orthogonal from each other. yes having to start the work on generating the patch after it is officially disclosed puts you a bit behind the loop. but the real reason for doing that is not having to restart no?

also in doubt you can sign up with any of the companies who offer life patching and run their kernel with nixos userland?

ExploreLive feeds
About