Canonical Livepatch rollback

Hi team,

I would like to understand how canonical-livepatch rollback works. I could see using ubuntu-advantage pro token, we have enable livepatch. It fetches patches and applied it on the machine. We are verifying using the canonical-livepatch status command. Other than canonical-livepatch status command, do we have any logs file i can visit to check the information and about the CVE's it fixed. From your website, "On the high level the livepatch will provide new kernel code replacing the vulnerable one, and will update the rest of the kernel to use the new code. ", So it means it is applying on the memory ? Where can I find this information in the server ?

And also I would like to know how do rollback it? After applying the specific patches, I could see the module along with the kernel version lkp_Ubuntu_4_15_0_213_224_generic_97. After I disable canonical-livepatch also, the module is stil loaded, So I reboot the host and the module is removed, Does it mean the patches applied before ( the kernel code modification ) is removed from my server?

Also I don't see any scanner scans the CVE's installed via canonical-livepatch, do you have any specific scanner to test it ?

Please clarify on this?