Scribd Logo
Upload

Welcome to Scribd!

  • Sle Live Patching Data Sheet

    Uploaded by

    Mario A. Hurtado Briones
    5 views5 pages
    sle_live_patching_data_sheet

    Original Title

    sle_live_patching_data_sheet

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    sle_live_patching_data_sheet

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    5 views5 pages

    Sle Live Patching Data Sheet

    Uploaded by

    Mario A. Hurtado Briones
    sle_live_patching_data_sheet

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    Data Sheet

    SUSE® Linux Enterprise


    Live Patching

    Downtime is expensive, even when it is planned. Live Patching virtually eliminates the need
    for downtime—and allows for easier planning of scheduled downtime—by applying critical
    Linux fixes outside of maintenance windows. Live Patching offers a proactive and dynamic
    approach to Linux kernel and Linux executable maintenance that saves your company
    valuable time and money by never needing to stop the kernel or applications.

    07.06.2022
    2022

    securely on the front end while critical


    Product overview updates are applied on the back end.
    SUSE® Linux Enterprise Live Patching is a
    • Reduce downtime—You can reduce
    simple open source solution that delivers
    downtimes whether planned or un-
    live kernel patching without the need to
    planned. In the case of unplanned
    reboot. With this subscription offering
    downtimes, you can potentially
    based on the kGraft project, you can
    eliminate them as you do not need
    perform patching without interrupting
    to reboot the system when you ap-
    your mission-critical workloads and
    ply kernel patches. You will also save
    in-memory databases, saving the cost of
    time and resources by avoiding the
    downtime and increasing service avail-
    need to plan for resources to handle
    ability. Because it builds on to the existing
    unplanned downtime. In the case of
    SUSE Linux Enterprise kernel infrastructure
    planned downtimes, you can reduce
    and uses familiar deployment methods,
    the duration of the planned downtime
    Live Patching is an easy way to make
    by saving the time in rebooting the
    operating system maintenance more
    systems since there is no need to
    efficient and secure.
    reboot the system when you apply
    Live Patching puts you in charge of your kernel patches with Live Patching.
    kernel updates and service availability. • Increase service availability—Live
    Even when urgent kernel updates are Patching technology allows you to
    needed, SUSE Linux Enterprise Server can apply critical kernel patches with zero
    run continuously—with zero execution interruption of user applications and
    interruptions, not even a millisecond— kernel execution as a result you can
    while you apply critical kernel patches in maintain continuity of service at all
    the background. times. For memory database applica-
    tions such as SAP HANA that may need
    In addition to Linux kernel maintenance,
    a long time for a complete reboot cycle
    you can live patch updates for user
    after the application of kernel patch,
    space processes and libraries, enabling
    you can save hours of time by avoiding
    you to deliver live patches to any of your
    kernel reboot with Live Patching.
    Linux executables or libraries at runtime,
    • Enhance security and compliance—
    without the need for restarting those
    You can enhance security by applying
    applications. This can be used to perform
    security patches when needed and not
    critical security updates and/or serious
    waiting for the maintenance window or
    bug fixes on the fly to avoid interruption
    planned downtime to apply a critical
    of service.
    kernel security patch with zero inter-
    ruption to your running workloads.
    Key benefits You can also help the compliance
    SUSE Linux Enterprise Live Patching keeps and auditing efforts with the ability to
    your systems running smoothly and review the source code of patch when

    2 SUSE Linux Enterprise Live Patching SUSE.com


    2022

    “SUSE Linux Enterprise Live Patching provides a stream of


    packages to update a running kernel without interruption.
    With this subscription offering from SUSE, you can perform
    patching without rebooting your system, saving the cost of
    downtime and increasing service availability.”

    applying patches. No other product latency applications such as transac-


    offers this capability. tional databases. Live Patching doesn’t
    • Increase service availability—Live stop the system during patching. The
    Patching technology allows you to patching infrastructure is built directly
    apply critical kernel patches with zero in to SUSE Linux Enterprise Server 12
    interruption of user applications and and SUSE Linux Enterprise Server 15. Live
    kernel execution as a result you can Patching uses the familiar ftrace-based
    maintain continuity of service at all approach to perform the updates. This
    times. For memory database applica- happens without ever stopping the
    tions such as SAP HANA that may need kernel, not even for a moment.
    a long time for a complete reboot cycle • Minimalist design—Live Patching is
    after the application of kernel patch, easy to add to your existing code base.
    you can save hours of time by avoiding It consists of only a small amount of
    kernel reboot with Live Patching. code because it leverages the technolo-
    • Enhance security and compliance— gies and ideas already present in the
    You can enhance security by applying upstream Linux kernel: ftrace and its
    security patches when needed and not mcount-based space allocation in func-
    waiting for the maintenance window or tion prologues, the INT3/IPI-NMI patching
    planned downtime to apply a critical also used in jump labels and read-copy-
    kernel security patch with zero inter- update (RCU)-like code updating that
    ruption to your running workloads. does not require kernel stoppage. A
    You can also help the compliance kernel live patch is a kernel module and
    and auditing efforts with the ability to relies on the in-kernel module loader to
    review the source code of patch when link the new code with the kernel.
    applying patches. No other product • Security—The Live Patching kernel
    offers this capability. module is signed by SUSE. This approach
    complies with advanced security tech-
    nologies such as UEFI secure boot, which
    require kernel modules to be signed by
    Key features an approved signing key. Via this signa-
    • Zero execution interruption—Stopping ture, you can minimize your exposure to
    the kernel is problematic for low- security risks by verifying that a kernel

    3 SUSE Linux Enterprise Live Patching SUSE.com


    2022

    live patch has been created by SUSE. For detailed product specifications and
    • Familiar deployment methods—Like system requirements, visit: https://www.
    all maintenance updates, the patches suse.com/products/live-patching/
    delivered by Live Patching are delivered
    as signed RPMs. Introducing the solu- Contact your local SUSE
    tion into your established administra- Solutions Provider, or call
    tive process is simple because you can
    reuse existing deployment methods,
    SUSE at:
    including but not limited to YaST®, zyp- 1 800 796 3700 U.S./Canada
    per, SMT and SUSE Manager. 1 801 861 4500 Worldwide

    SUSE
    System requirements 1800 S. Novell Place
    Minimum requirements: Provo, UT 84606

    • A system that runs SUSE Linux Enterprise SUSE


    Server 12 or 15 Maxfeldstrasse 5
    • Zypper must be installed and config- 90409 Nuremberg
    ured to receive updates Germany

    Supported processor platforms:


    • x86-64
    • ppc64le (IBM Power Systems)
    • IBM Z and LinuxONE

    4 SUSE Linux Enterprise Live Patching SUSE.com


    2022

    SUSE For more information, contact SUSE at:

    Maxfeldstrasse 5 +1 800 796 3700 (U.S./Canada)

    90409 Nuremberg +49 (0)911-740 53-0 (Worldwide)

    www.suse.com

    Innovate
    Everywhere
    260-002508-005 | © 2022 SUSE LLC. All Rights
    Reserved. SUSE and the SUSE logo are registered
    trademarks of SUSE LLC in the United States and
    other countries. All third-party trademarks are the
    property of their respective owners.

    You might also like