-
由 Tianjia Zhang 提交于
to #26581627 Enable a set of config related to kernel trust, including vptm, IMA, EVM, smack LSM, and SM3, SM4, in which SM algorithm is compiled into module. These configs also support the x64 arm platform. The following are some performance data. The output of `systemd-analyze` on the startup time of an ECS (executed three times): before: 725ms (kernel) + 471ms (initrd) + 3.375s (userspace) = 4.572s 794ms (kernel) + 426ms (initrd) + 3.281s (userspace) = 4.501s 797ms (kernel) + 464ms (initrd) + 3.275s (userspace) = 4.538s after: 777ms (kernel) + 439ms (initrd) + 3.456s (userspace) = 4.672s 785ms (kernel) + 450ms (initrd) + 3.313s (userspace) = 4.549s 741ms (kernel) + 481ms (initrd) + 3.274s (userspace) = 4.497s Signed-off-by: NTianjia Zhang <tianjia.zhang@linux.alibaba.com> Reviewed-by:
Jia Zhang <zhang.jia@linux.alibaba.com> Reviewed-by: NShile Zhang <shile.zhang@linux.alibaba.com>
34e80779