kexec

kexec, abbreviated from kernel execution and derived from the Unix/Linux kernel call exec, is a mechanism of the Linux kernel that allows "live" booting of a new kernel "over" the currently running one. Essentially, kexec skips the bootloader stage and hardware initialization phase performed by the system firmware (BIOS or UEFI), and directly loads the new kernel into main memory and starts executing it immediately. This avoids the long times associated with a full reboot, and can help systems to meet high-availability requirements by minimizing downtime.^[1]^[2]

While feasible, implementing a mechanism such as kexec raises two major challenges:

Memory of the currently running kernel is overwritten by the new kernel, while the old one is still executing.
The new kernel will usually expect all hardware devices to be in a well defined state, in which they are after a system reboot because the system firmware resets them to a "sane" state. Bypassing a real reboot may leave devices in an unknown state, and the new kernel will have to recover from that.

Support for allowing only signed kernels to be booted through kexec was merged into version 3.17 of the Linux kernel mainline, which was released on October 5, 2014.^[3] This disallows a root user to load arbitrary code via kexec and execute it, complementing the UEFI secure boot and in-kernel security mechanisms for ensuring that only signed Linux kernel modules can be inserted into the running kernel.^[4]^[5]^[6]

References

↑ Hariprasad Nellitheertha (May 4, 2004). "Reboot Linux faster using kexec". IBM. Archived from the original on January 21, 2013. Retrieved December 5, 2013.
↑ David Pendell (August 16, 2008). "Reboot like a racecar with kexec". linux.com. Retrieved December 5, 2013.
↑ "Linux kernel 3.17, Section 1.10. Signed kexec kernels". kernelnewbies.org. October 5, 2014. Retrieved November 3, 2014.
↑ Jake Edge (June 25, 2014). "Reworking kexec for signatures". LWN.net. Retrieved August 9, 2014.
↑ Matthew Garrett (December 3, 2013). "Subverting security with kexec". dreamwidth.org. Retrieved December 5, 2013.
↑ Kees Cook (December 10, 2013). "Live patching the kernel". outflux.net. Retrieved December 12, 2013.

External links

Using kexec and kdump to get core files on Fedora and CentOS hosts

Linux

Linux kernel	History Kernel Linus's Law Linux-libre Linux startup process Linux kernel oops Tux more…

Controversies	Criticism of Linux Criticism of desktop Linux GNU/Linux naming controversy Tanenbaum–Torvalds debate SCO and Linux

Distributions	General comparison Distributions list Netbook-specific comparison Distributions that run from RAM Lightweight Proprietary software for Linux Package manager Package format List of software package managers

Organizations	Linux Foundation Linux Mark Institute Linux User Group (LUG) Linux Documentation Project LinuxChix Linux Counter

Adoption	Desktop Embedded Gaming Linux range of use List of Linux adopters

Media	Free Software Magazine Linux.com Linux Format Open Source For You Linux Gazette Linux Journal Linux Magazine LinuxUser Ubuntu User Linux Outlaws Linux Voice LugRadio LWN.net Phoronix Revolution OS The Code

People	Alan Cox Allison Randal Andrew Morton Benjamin Mako Hill Bradley Kuhn Bruce Perens Daniel Robbins David S. Miller Greg Kroah-Hartman Ian Murdock Jon "maddog" Hall Jono Bacon Karen Sandler Linus Torvalds Eric S. Raymond Mark Shuttleworth Pamela Jones Patrick Volkerding Richard Stallman Theodore Ts'o William John Sullivan

Linux Linux kernel features Portal:Linux WikiProject Linux

Linux kernel

Organization

Kernel	Linux Foundation Linux Mark Institute Linus's Law Tanenbaum–Torvalds debate Linux-libre Tux SCO issues Linaro GNU GPL v2 menuconfig Supported computer architectures Kernel names Criticism

Support	Developers The Linux Programming Interface kernel.org LKML Linux conferences Users Linux User Group (LUG)

Technical

Debugging

Startup

ABIs

APIs

Of
userspace

FS, daemons	devfs devpts debugfs procfs sysfs systemd udev Kmscon

Wrapper libraries	C standard library glibc uClibc Bionic libhybris dietlibc EGLIBC klibc musl Newlib libcgroup libdrm libalsa libevdev

Of
kernel

System Call Interface	POSIX ioctl select open read close sync … Linux-only futex epoll splice dnotify inotify readahead …

In-kernel	ALSA Crypto API DRM kernfs New API Video4Linux

Components

Variants

Virtualization	Hypervisor KVM Xen OS-level virtualization Linux-VServer Lguest LXC OpenVZ Other L4Linux ELinOS User-mode Linux MkLinux coLinux

Adoption

Range of use	Desktop Embedded Gaming Thin client: LTSP Thinstation Server: LAMP LYME-LYCE Devices

Adopters	List of Linux adopters GENIVI Alliance Proprietary software for Linux

People

Category
Commons
Book
Wikiversity
Portal

This article is issued from Wikipedia - version of the 8/25/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.

kexec

See also

References

External links