On Tue, 24 Aug 2004 04:49, Jeremy Katz <katzj(a)redhat.com> wrote:
> One option would be to use an ext2 file system on a ram disk for
udev.
> It would do all the same stuff as ramfs (at a slightly higher memory
> cost) and work perfectly with SE Linux.
It has a number of other, not really desired side effects as well.
1) Kernel people don't really like ramdisks anymore
2) Doing this requires mke2fs in the initramfs. Bleah.
3) It puts an artificial cap on the size of your /dev that then has to
be adjustable. And the cap is related to an overhead of memory usage.
This is ugly to get "right"
I agree that ext2 is not a long-term solution to this problem.
However at the moment we have a default configuration that's grossly broken
with regard to SE Linux. If you upgrade a machine which runs the "targeted"
policy to rawhide then several important daemons (including syslogd) stop
working. If you upgrade a machine which runs the "strict" policy then it
will fail to boot.
If we were unable to get ramfs working in a reasonable amount of time then
ext2 would be a good option to consider IMHO.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page