[CFT] modular kernel config
lukasz at wasikowski.net
Mon Feb 27 15:53:49 UTC 2012
W dniu 2012-02-22 23:31, Bjoern A. Zeeb pisze:
> You cannot ship that on by default for non-tecnical reasons in a kernel. Please do not commit a kernel config that can be booted (no LINT cannot be booted) with these on without consulting appropriate hats upfront.
>> - ALTQ
>> - SW_WATCHDOG
>> - QUOTA
>> - IPSTEALTH (disabled in loader.conf)
>> - IPFIREWALL_FORWARD (touches every packet, power users which need
>> a bigger PPS but not this feature can recompile the kernel,
>> discussed with julian@)
>> - FLOWTABLE (disabled in loader.conf)
> Which is not the same as it's not 100% disabled and will still allocate memory.
FLOWTABLE on 8.x crashed BGP routers (kern/144917). I don't know if it
is fixed by now, but this kind of potential problematic features should
not be enabled by default.
More information about the freebsd-stable