Feature #7575: Decide whether to remove or blocklist kernel modules

Feature #7575

Decide whether to remove or blocklist kernel modules

Added by Dr_Whax 2014-07-11 15:23:44 . Updated 2018-08-23 06:33:18 .

Status:

Resolved

Priority:

Normal

Assignee:

Dr_Whax

Category:

Target version:

Start date:

2014-07-11

Due date:

% Done:

100%

Feature Branch:

Type of work:

Research

Blueprint:

https://tails.boum.org/blueprint/blacklist_modules/

Starter:

Affected tool:

Deliverable for:

Description

As being discussed on tails-dev: https://mailman.boum.org/pipermail/tails-dev/2014-July/006334.html

Subtasks

History

#1 Updated by Dr_Whax 2014-07-11 15:59:51

Target version deleted (~~Hardening_M1~~)

#2 Updated by Dr_Whax 2014-07-11 16:00:52

To clarify, currently, we ship a Debian kernel not a custom kernel, this would mean we have to integrate a custom kernel into Tails, which actually is a lot of work.

#3 Updated by intrigeri 2014-07-21 18:03:15

Subject changed from Remove or blacklist kernel modules to Decide whether to remove or blacklist kernel modules
Status changed from New to Confirmed
Assignee set to Dr_Whax
Parent task set to Feature #6457

Assigned to DrWhax, who started the discussion, and is now, by default, responsible to lead it to a conclusion :)

#4 Updated by intrigeri 2014-07-21 19:29:23

Status changed from Confirmed to In Progress

#5 Updated by intrigeri 2014-07-21 21:23:40

Parent task changed from Feature #6457 to Feature #7639

#6 Updated by Dr_Whax 2014-07-27 17:28:40

I’m in the process of formulating my thoughts, preparing a proof-of-concept and updating the blueprint for it.

#7 Updated by intrigeri 2014-07-27 17:47:53

> I’m in the process of formulating my thoughts, preparing a proof-of-concept and updating the blueprint for it.

\o/

#8 Updated by BitingBird 2014-07-27 19:53:29

Blueprint set to https://tails.boum.org/blueprint/blacklist_modules/

#9 Updated by intrigeri 2014-12-16 22:02:29

Type of work changed from Discuss to Research

Calling this a research task for now, then.

#10 Updated by intrigeri 2015-01-07 15:10:20

I’ve argued that we should “blacklist modules as an initial step, and once we’re happy with the blacklist, and haven’t seen serious complains about it for a few releases, then we can remove modules for real”. Is there any objection to do it this way?

#11 Updated by Dr_Whax 2015-01-07 15:29:54

I think that’s a fine idea, I started working on a page to blacklist certain modules, more then are listed as of now. I’m also happy to provide a patch accordingly to my list.

#12 Updated by intrigeri 2015-01-07 15:36:33

Status changed from In Progress to Resolved
% Done changed from 0 to 100

Dr_Whax wrote:
> I think that’s a fine idea,

OK, closing this ticket as resolved, and summed up the decision on the parent ticket.

> I started working on a page to blacklist certain modules, more then are listed as of now. I’m also happy to provide a patch accordingly to my list.

That’s for Feature #6457 and https://tails.boum.org/blueprint/blacklist_modules/.

#13 Updated by mercedes508 2018-08-23 06:33:18

Subject changed from Decide whether to remove or blacklist kernel modules to Decide whether to remove or blocklist kernel modules