From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dave.taht@gmail.com>
Received: from mail-qk0-x234.google.com (mail-qk0-x234.google.com
 [IPv6:2607:f8b0:400d:c09::234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by lists.bufferbloat.net (Postfix) with ESMTPS id 0E38A3B2A4
 for <cerowrt-devel@lists.bufferbloat.net>;
 Thu,  4 Jan 2018 16:54:39 -0500 (EST)
Received: by mail-qk0-x234.google.com with SMTP id d202so3735484qkc.9
 for <cerowrt-devel@lists.bufferbloat.net>;
 Thu, 04 Jan 2018 13:54:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:in-reply-to:references:from:date:message-id:subject:to
 :cc:content-transfer-encoding;
 bh=Jcf5g8EGianct8B5MRgAo5Ad/LmJj1+ndJSstpIb1J4=;
 b=Oy+QqgaEwDnTNobKBvtEgBBk+rwwakoNFA5WotND9egatb8DQBTpg4IG6fXW9IVc4p
 66s3FHpBF4il/GDvcjB7PWJY264XSEsJLTOiN2d/BXNOAsCFPhKjhR6M5JSWZpWJLAns
 2lJ1J+jS64/CAQFt/k+CjAeXldU6J3b94yLWbShEWdlLWwYYsh2nzvqh9N4r6TK6evnT
 2fjOejio/cXXeUOGkHHYDF6kkQMY3LjABFyGatefGiDtsD7GdEDSEYy+bFEVQ2u+yk3P
 y5AvW5vk7eWhUuIctZA2VtjNlCMZBmHM9tIGRy1orpQ9gJR9hvYfDDHdoPvy/MupSDBU
 zObA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:in-reply-to:references:from:date
 :message-id:subject:to:cc:content-transfer-encoding;
 bh=Jcf5g8EGianct8B5MRgAo5Ad/LmJj1+ndJSstpIb1J4=;
 b=hS5blVV/52GJPqeerUpRbevIeJHPX4N5OUP+kAUtLrUBa24fAnvTj/NgIZigSJmNb+
 6zez5owVfvR6Br7ousoxaacEwRSKEK3mzzHDGVjb/vJ25SqVK4qBNatzQrBuoswRbL8p
 rauvuK5u0Gp+dGE5Xpbo6k/BwWGrDmsFp5WunjfUoYWEkLCDIot7cPZIxCeZS2prptrk
 P9e9mpemqcg18XahEFOhbxG9T44Cq0kP5IYVQODBf9soTAswqxsLtJzpq4ZrdlheDh2l
 E4zaNMRaamHxoQfTHGnyS3wjs96+Pj22gt7a/mIuiFqNVQI7iWp6pocIa/VUqMRZqB3h
 Hp0w==
X-Gm-Message-State: AKGB3mKlaRN2ENnbtm3BQeF55RbfO/G8zEfN6ATOtuG4vJ2/LufwvXZB
 KrIne1ZBcHlZOTU4XQ4Rg7d0YeLDkcmvbPZipDY=
X-Google-Smtp-Source: ACJfBouZI/KoRJ4MwW+NmKeDgTbBA+f5x2YtBe/zRx0ctXtwPptiRoo+ao1LDLGFVLUv3btWl9HqJXHk//5/kHoMUEI=
X-Received: by 10.55.102.216 with SMTP id a207mr1414818qkc.75.1515102879641;
 Thu, 04 Jan 2018 13:54:39 -0800 (PST)
MIME-Version: 1.0
Received: by 10.12.193.93 with HTTP; Thu, 4 Jan 2018 13:54:39 -0800 (PST)
In-Reply-To: <CAKiAkGSETYo8UBEwWrdD4VXA3nxY6t1uJQ7MrGdp-vJyekfpbA@mail.gmail.com>
References: <CAA93jw5e9GG_dWDitpts+-e=v8r0m=mjT6SOKKBKwGv6b5=D=g@mail.gmail.com>
 <D02628E8-9515-4914-BE44-5A6F66DD1264@gmail.com>
 <CE3AD1EC-8BE0-4FE6-ACAE-C2A205FE1581@gmail.com>
 <CAKiAkGRAwNtBGs8rs-8NWgFGZfr2zAzyf8A9Sv6sQGWoQ+j20w@mail.gmail.com>
 <CAA93jw6zfRtp7vaUm6aufTQtk7=LAFJ2C7PdKhLitmHSwAs=Kw@mail.gmail.com>
 <CAKiAkGSETYo8UBEwWrdD4VXA3nxY6t1uJQ7MrGdp-vJyekfpbA@mail.gmail.com>
From: Dave Taht <dave.taht@gmail.com>
Date: Thu, 4 Jan 2018 13:54:39 -0800
Message-ID: <CAA93jw5iQ_rMBxSfzBQcH63sXzyj6nL_b37E=YjZTS-aHt0d9g@mail.gmail.com>
To: =?UTF-8?Q?Joel_Wir=C4=81mu_Pauling?= <joel@aenertia.net>
Cc: Jonathan Morton <chromatix99@gmail.com>,
 cerowrt-devel@lists.bufferbloat.net
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Subject: Re: [Cerowrt-devel] KASLR: Do we have to worry about other arches
 than x86?
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
 <cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
 <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
 <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2018 21:54:40 -0000

On Thu, Jan 4, 2018 at 1:52 PM, Joel Wir=C4=81mu Pauling <joel@aenertia.net=
> wrote:
> Well as I've argued before Lede ideally should be using to Kernel Namespa=
ces
> (poor mans containers) for at a minimum the firewall and per-interface
> routing instances.

Enough stuff landed in the last kernel for me to finally consider that feas=
ible.

>
> The stuff I am running at home is mostly on cheap Atom board, so it's a
> matter of squeezing out unneeded cruft on the platform. Also I don't want=
 to
> be admining centos/rhel servers at home.

OK, so currently shipped gear is a big unknown then.

>
> On 5 January 2018 at 10:47, Dave Taht <dave.taht@gmail.com> wrote:
>>
>> On Thu, Jan 4, 2018 at 1:44 PM, Joel Wir=C4=81mu Pauling <joel@aenertia.=
net>
>> wrote:
>> >
>> >
>> > On 5 January 2018 at 01:09, Jonathan Morton <chromatix99@gmail.com>
>> > wrote:
>> >>
>> >>
>> >>
>> >> I don't think we need to worry about it too much in a router context.
>> >> Virtual server folks, OTOH...
>> >>
>> >>  - Jonathan Morton
>> >>
>> > Disagree - The Router is pretty much synonymous with NFV
>> >
>> > ; I run my lede instances at home on hypervisors - and this is
>> > definitely
>> > the norm in Datacentres now. We need to work through this quite
>> > carefully.
>>
>> Yes, the NFV case is serious and what I concluded we had most to worry
>> about - before starting to worry about the lower end router chips
>> themselves. But I wasn't aware that people were actually trying to run
>> lede in that, I'd kind of expected
>> a more server-like distro to be used there. Why lede in a NFV? Ease of
>> configuration? Reduced attack surface? (hah)
>>
>> The only x86 chip I use (aside from simulations) is the AMD one in the
>> apu2, which I don't know enough about as per speculation...
>>
>> --
>>
>> Dave T=C3=A4ht
>> CEO, TekLibre, LLC
>> http://www.teklibre.com
>> Tel: 1-669-226-2619
>
>



--=20

Dave T=C3=A4ht
CEO, TekLibre, LLC
http://www.teklibre.com
Tel: 1-669-226-2619