Re: [alpine-devel] [PATCH] testing/linux-virt-grsec
---- Natanael Copa <ncopa_at_alpinelinux.org> wrote:
> On Tue, 24 Jul 2012 0:18:15 +0000
> <deant_at_hawaii.rr.com> wrote:
> > Attached patch reduces some of the differences between
> > main/linux-grsec/kernelconfig.x86 and
> > testing/linux-virt-grsec/kernelconfig.x86, hopefully without breaking
> > anything for anyone else.
> I am not sure we want them to be similar. The idea of linux-virt-grsec
> is to have a kernel that is as small as possible and is optimized for
> virtual environments.
Ok, that makes sense. Consider the patch withdrawn; I'll work on
a replacement that fixes the Shorewall logging bug and a few other
minor bits I found;
> This means that we can assume some things of the running environment.
> That the disk is virtual (so we pick deadline io scheduler) , that most
> likely realtime applications will not be running (so we set config hz
> to 100). We are also fairly sure that there will not be any wireless in
> the virtual environment. (or am i wrong here?)
The place where it would make sense is for a virtualized desktop or
development environment, but hopefully the xen domu vs. TRANSPARENT_HUGEPAGES
problem will be fixed in a newer release and the main kernel can fill
Received on Wed Jul 25 2012 - 21:46:48 GMT