[Users] I've noticed a new 'readykernel' package

[Andre Moruga]

> Thanks for your instructions to get the latest patched vzkernel. Generally I
> don't want to run nightly kernel builds in production. Will the Dirty COW and
> future security patches make their way into stable OpenVZ 7 kernels soon after
> testing in nightly builds? (Same as with OpenVZ 6 stable kernel series?)

Hi Frank,
I understand your concern; not yet sure if we can offer an immediate solution though.

Virtuozzo team uploads stable kernels for OpenVZ version 7, tested for our commercial customers, approximately once a quarter. In between, we do not test or release any kernels - all the intermediate updates are delivered to our commercial customers in rebootless (kpatch) format without building full kernel updates. Again, this is a part of our commercial offering.

As for the contributions to the community product, we still build these kernels for the "factory" repository. However, we are not equipped to test them on regular basis, between these quarterly updates
We do however invite anyone from the OpenVZ community to contribute resources into testing of these intermediate kernel updates - we will be more than happy to cooperate and publish these kernels appropriately tagged as stable/community tested.

This time, due to the severity of the Dirty COW issue, we'll try to allocate our own QA resources to test a kernel with that vulnerability fixed specifically for OpenVZ. However, moving forward we definitely need a better solution.

So please consider it as open invitation and volunteering opportunity to contribute into the project

Thanks
Andre Moruga @ Virtuozzo Team