From nobody Wed Jun 12 17:47:18 2024 X-Original-To: freebsd-arch@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VztKT46t7z5N8TV for ; Wed, 12 Jun 2024 17:47:25 +0000 (UTC) (envelope-from marquis@roble.com) Received: from mx5.roble.com (mx5.roble.com [209.237.23.5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mx5.roble.com", Issuer "mx5.roble.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VztKT20vpz4vS5; Wed, 12 Jun 2024 17:47:25 +0000 (UTC) (envelope-from marquis@roble.com) Authentication-Results: mx1.freebsd.org; none Received: from roble.com (roble.com [209.237.23.50]) by mx5.roble.com (Postfix) with ESMTP id 6C8FA2A020A; Wed, 12 Jun 2024 10:47:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=roble.com; s=rs060402; t=1718214438; bh=JdnmKEwXsJD6cwZ6cxZXAmPNUbei4dBRv+L8uM89FSI=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=ARnPENwBY7wIQ3bEzxwmZf+RWQqqrCHaC5MyFFxsbyqCvBngrD6lK3ndXMFX03gJ7 +SRTZHVrqJZw5fLqkHFkxAqPwOCSOlWm0UxHCCBTL3/Afsgt9X4V0Xe2gv5UG7GozI F90sl5EgePqO1MmbbhAKyQJDWNCyi5M2z81YP7UI= Date: Wed, 12 Jun 2024 10:47:18 -0700 (PDT) From: Roger Marquis To: "Bjoern A. Zeeb" cc: freebsd-arch@freebsd.org Subject: Re: Kernel device for iwlwifi in 13.3? In-Reply-To: Message-ID: <74po168o-p064-p78q-qn7o-5209o5q53q60@mx.roble.com> References: <09q5s28q-np09-73r0-9352-9p6333r830o9@mx.roble.com> List-Id: Discussion related to FreeBSD architecture List-Archive: https://lists.freebsd.org/archives/freebsd-arch List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-arch@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:17403, ipnet:209.237.0.0/18, country:US] X-Rspamd-Queue-Id: 4VztKT20vpz4vS5 >> Also wondering why there is no iwl* in /usr/src/sys/amd64/conf/* and >> what, if anything, > > Because it is a non-essential driver to boot and so we only build it as > a module which is a continuation of that people once started in order to > get GENERIC size down. The module will be loaded at run-time > automatically (in a default setup) if such a card is found in the system > and the driver will then automatically load its firmware (which will > hopefully eventually also not be in base anymore). That's the threat vector I'd like to avoid i.e, someone plugging-in a usb (or other) wifi device. I suppose it's not necessarily different than plugging-in an ethernet device but as a general rule all vectors that can be avoided should be. This, and kernel compilation in general, is one of the areas FreeBSD has an advantage over other OS. Not being able to prevent these and other kernel modules is just unnecessary risk. Roger