Check livepatch enabled in the kernel:
$ zcat /proc/config.gz | grep LIVEPATCH$ cat /boot/config-$(uname -r) | grep LIVEPATCH
$ ls -ld /sys/kernel/livepatch
How to know if the kernel is patched properly?
Look into directory:
$ /sys/kernel/livepatch
Check tainted flag from /proc
$ cat /proc/sys/kernel/tainted
Caveats
- Make sure kernel has module load function enabled
$ cat /proc/sys/kernel/modules_disabled
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.