On Sat, Sep 13, 2014 at 3:32 AM, Chris Murphy <lists@xxxxxxxxxxxxxxxxx> wrote:
On Sep 12, 2014, at 9:47 AM, Richard Hughes <hughsient@xxxxxxxxx> wrote:
> The *only* way to do this
> securely and safely in the system we have now is in a clean pre-boot
> environment,
Mostly clean post-boot environment, with the system we have now?
> What we could do is do updates on shutdown by basically killing
> everything except PID 1, and then restart everything, but even then
> that relies on no systemd or kernel updates being present.
Even if the system is fully rebooted once, after the update is done in a post-boot environment, it's half the reboots needed now.
One step up from this would be a way for packages to contain metadata indicating they need a reboot after an update; if none require it, then isolate graphical.target rather than a reboot.
One step up from this would be something like a kpatch process in rpm combined with packaged metadata that replaces in-memory modules so that reboots wouldn't be necessary. Yeh, probably impossible.
Fred
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
