Hey,
Is anyone using Livepatch in an Ubuntu Core image yet ?
Looking at the docs, and also taking it for a quick spin, I’m not seeing any obvious way to automate the required config. The functionality is shipped as a snap, called canonical-livepatch , but it doesn’t store it’s config in snap config, you have to run the canonical-livepatch enable command to actually set it up. As a strictly confined snap can’t run the command from another snap, and there doesn’t seem to be any content interfaces defined, it seems like the only option is to configure via a user shell. But, perhaps I’m missing something ?
One other thing that is slightly puzzling with the Core setup. You have to obtain a separate resource token, using the your Pro token, and then submit that via the livepatch enable command. Although easy enough to do, and we could automate that part at least in another system agent snap [ obtaining the resource token, not configuring the livepatch snap ], the process seems a bit disjointed to me.
Perhaps it’s coming in a future release, but just being able to set the Pro token as snap config and letting something in the livepatch snap get/renew the resource token and enabling livepatch would make much more sense. Without that, it just doesn’t seem that useful in a Core image at any kind of fleet scale right now.
Cheers,
Just