Starting with 2.6.36 tuxonice has been removed from zen-sources again. A few days ago the zen-sources-2.6.38_p20110501 ebuild appeared in the gentoo portage tree. So I patched the brand new zen-sources-2.6.38_p20110501 with tuxonice. The official 2.6.38 tuxonice patch from tuxonice.net has worked out of the box, this time.

Suspend to RAM works at least on my Dell Precison M65 and my Desktop, as well as suspend to disk does. Well, I have to mention that I again tried to use BFS, the brain fuck scheduler, to increase (felt) performance. This time the brain fuck scheduler worked well with tuxonice and did not result in the crash during atomic copy, I described in zen-sources-2.6.37_p20110325 with tuxonice.  Thus  I did not have to fall back to the CFS scheduler and automatic control groups as I had to with 2.6.37. However this is also an alternative to the brain fuck scheduler.

Download the zen-sources-2.6.38_p20110501 patch here. Then apply the patch to the vanilla kernel sources avalable from kernel.org. Afterwards download the tuxonice patch from tuxonice.net and apply it. Now you can continue with the standard kernel building process.

For Gentoo users there is a more easy way: Download my modified overlay from [download#69] and extract it in /usr/local/portage. Be sure to include the following line in your /etc/make.conf:

PORTDIR_OVERLAY=”/usr/local/portage”

If you want to use tuxonice include toi in your USE-flags. Then emerge zen-sources and build the kernel as you wish.

Tuxonice is not officially supported in current zen-sources. So If you’re using the files above, don’t report any bugs to zen-sources.org. You are on your own.

For my Precision M65 I used the following kernel config: [download#70]

For more information on the zen-sources patchset see www.zen-sources.org.

best regards

Jürgen

(No Ratings Yet)

Loading...

Posted in kernel, linux | 1 Comment »

During my last kernel upgrade I recognized that the iptables mirror target I published here, here and here and here does not work anymore with kernel version 2.6.37. There were some slight changes in kernel headers. You can download the newer version for 2.6.37 and probably future kernels here:

[download#67]

To build the module, boot the kernel you want to use the module with. Afterwards unpack the archive, run the compile.sh script and the install.sh script.

Now you may use the mirror target in place of the reject or drop target in the INPUT, FORWARD and PREROUTING chains, like this in your firewall script:

$IPTABLES -A INPUT -j MIRROR

Beware: The use of the mirror target may have strange results, i.e. if you want to connect to the iptables protected machine, you may end up connecting to the local machine without recognizing it. It also may use much bandwith. Worst case: if you have two machines using this module they may end up playing pingpong. So you have been warned, use with caution and at your own risk. For more information see: MIRROR target.

Downloads for older kernel versions are below. Notice the version numbering 2.6.25 works for kernels up to 2.6.27. 2.6.28 also works for 2.6.29 and 2.6.30 kernels. The 2.6.13 version of the module should work up to kernel version 2.6.16.

[download#45] [download#12] [download#13] [download#14] [download#32] [download#39] [download#46]

regards
Jürgen

(1 votes, average: 5.00 out of 5)

Loading...

Posted in kernel, linux, networking, security | 1 Comment »

Starting with 2.6.36 tuxonice has been removed from zen-sources again. A few days ago the zen-sources-2.6.37_p20110325 ebuild appeared in the gentoo portage tree.  Since I did not want to stick to my old 2.6.35 kernel I patched the brand new zen-sources-2.6.37_p20110325 with tuxonice. The official tuxonice patch from tuxonice.net did not work, so I had to slightly modify it to apply cleanly on zen-sources.

Suspend to RAM works at least on my Dell Precison M65 and my Desktop, as well as suspend to disk does. Well, I have to mention that I wanted to use BFS, the brain fuck scheduler, to increase performance. This resulted in tuxonice freezing during  atomic copy when trying to hibernate, thus I had to use the CFS scheduler again.

Download the zen-sources 2.6.37_p20110325 patch here. Then apply the patch to the vanilla kernel sources avalable from kernel.org. Afterwards download my modified tuxonice patch from here: [download#64]. Then apply it and continue with the standard kernel building process.

For Gentoo users there is a more easy way: Download my modified zen-sources-overlay (including the patches) from [download#65] and extract it in /usr/local/portage. Be sure to include the following line in your /etc/make.conf:

PORTDIR_OVERLAY=”/usr/local/portage”

If you want to use tuxonice include toi in your USE-flags. Then emerge zen-sources and build the kernel as you wish. It would be nice if this USE-flag and the ebuild modification find their way into the portage tree.

Tuxonice is not officially supported in current zen-sources. So If you’re using the files above, don’t report any bugs to zen-sources.org. You are on your own.

For my Precision M65 I used the following kernel config: [download#66]

For more information on the zen-sources patchset see www.zen-sources.org.

best regards

Jürgen

(No Ratings Yet)

Loading...

Posted in gentoo, kernel, linux | No Comments »

During my last kernel upgrade I recognized that the iptables mirror target I published here, here and here does not work anymore with kernel version 2.6.36. You can download the newer version for 2.6.36 and probably future kernels here:

[download#46]

To build the module, boot  the kernel you want to use the module with. Afterwards unpack the archive, run the compile.sh script and the install.sh script.

Now you may use the mirror target in place of the reject or drop target  in the INPUT, FORWARD and PREROUTING chains, like this in your firewall script:

$IPTABLES -A INPUT -j MIRROR

Beware: The use of the mirror target may have strange results, i.e. if you want to connect to the iptables protected machine, you may end up connecting to the local machine without recognizing it. It also may use much bandwith. Worst case: if you have two machines using this module they may end up playing pingpong. So you have been warned, use with caution and at your own risk. For more information see: MIRROR target.

Downloads for older kernel versions are below. Notice the version numbering 2.6.25 works for kernels up to 2.6.27. 2.6.28 also works for 2.6.29 and 2.6.30 kernels. The 2.6.13 version of the module should work up to kernel version 2.6.16.

[download#45] [download#12] [download#13] [download#14] [download#32] [download#39]

regards
Jürgen

(1 votes, average: 5.00 out of 5)

Loading...

Posted in kernel, linux, networking, security | 1 Comment »

The iptables mirror target I published here and here does not work anymore with kernel version 2.6.35. You can download the newer version for 2.6.35 and probably future kernels here:

[download#39]

It should work with kernels since 2.6.31. To build the module, boot  the kernel you want to use the module with. Afterwards unpack the archive, run the compile.sh script and the install.sh script.

Now you may use the mirror target in place of the reject or drop target  in the INPUT, FORWARD and PREROUTING chains, like this in your firewall script:

$IPTABLES -A INPUT -j MIRROR

Beware: The use of the mirror target may have strange results, i.e. if you want to connect to the iptables protected machine, you may end up connecting to the local machine without recognizing it. It also may use much bandwith. Worst case: if you have two machines using this module they may end up playing pingpong. So you have been warned, use with caution and at your own risk. For more information see: MIRROR target.

Downloads for older kernel versions are below. Notice the version numbering 2.6.25 works for kernels up to 2.6.27. 2.6.28 also works for 2.6.29 and 2.6.30 kernels.

[download#12] [download#13] [download#14] [download#32] [download#45]

regards
Jürgen

(1 votes, average: 5.00 out of 5)

Loading...

Posted in kernel, linux, security | 5 Comments »

Did you ever ask yourself how to make your internet tablet more powerful?

For a Linux based device like Nokias N810 this question is quite easy to answer.  You can easily increase overall performance and responsiveness by using a “better” kernel than the stock kernel on your internet tablet. A further advantage is that you can add features that are not available in the stock kernel. Below you will find instructions on how to build your own optimized preemptive kernel or how to install my prebuilt kernel.

In both cases the following features are covered:

1. preemtive kernel
2. high-speed sd-cards
3. screen rotation
4. more granular backlight sertting
5. easy-debian image

Read the rest of this entry »

(No Ratings Yet)

Loading...

Posted in gadgets, kernel, linux | No Comments »

With linux kernel 2.6.32 module parameters for kvm-intel changed so if you cannot load the module anymore and you get errors in dmesg like

kvm_intel: Unknown parameter `enable_vpid’
kvm_intel: Unknown parameter `enable_ept’
kvm_intel: Unknown parameter `flexpriority_enabled’

you should update your module config. For gentoo users this means to edit the file

/etc/modules.d/kvm_intel

and to remove the obsolete parameters. Afterwards run

update-modules -f

Now you should be able to load the module and do kvm vitualization again.

For me this problem occured when trying the new zen-sources-2.6.32-zen1 (also in zen2). Sadly this kernel is affected by the bug which causes higher power consumption (at least on my Precision M65) when not running a suspend to ram cycle before. This also occurs with vanilla sources. For more information on this topic see bugzilla.kernel.org.

Jürgen

(No Ratings Yet)

Loading...

Posted in gentoo, kernel, linux, zen-sources | No Comments »