Re: Enabling built-in modules earlier in init

To: Paul Goyette <paul%whooppee.com@localhost>
Subject: Re: Enabling built-in modules earlier in init
From: Antti Kantee <pooka%cs.hut.fi@localhost>
Date: Wed, 16 Jun 2010 16:46:37 +0300

On Wed Jun 16 2010 at 06:31:59 -0700, Paul Goyette wrote:
> The attached diffs add a new mod_disabled member to the module_t 
> structure, and set the value to false in each place that a new entry is 
> created.  (Since all of the allocations of module_t structures are done 
> with kmem_zalloc() I could probably avoid the explicit setting of the 
> value to false.)
> 
> The value is set to true whenever a module is removed from active duty 
> and returned to the module_builtin list.  (I specifically did NOT mark a 
> module disabled if its modcmd(INIT) failed, under the assumption that it 
> might succeed in a later retry.)

Keeping the same security use case in mind, it would be better that after
full module bootstrap (i.e. MODULE_CLASS_ANY) all builtin modules would
be either initialized or disabled.  Otherwise, if we assume that init
may later succeed for whatever reason, an operator that checks a module
with a security problem is not activated may be surprised to later find
out that the same module has now been autoenabled.

Follow-Ups:
- Re: Enabling built-in modules earlier in init
  - From: Paul Goyette

References:
- Enabling built-in modules earlier in init
  - From: Paul Goyette
- Re: Enabling built-in modules earlier in init
  - From: Antti Kantee
- Re: Enabling built-in modules earlier in init
  - From: Paul Goyette

Prev by Date: Re: Enabling built-in modules earlier in init
Next by Date: Re: Removal of recursive vnode locks
Previous by Thread: Re: Enabling built-in modules earlier in init
Next by Thread: Re: Enabling built-in modules earlier in init
Indexes:

Home | Main Index | Thread Index | Old Index