Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 14 Jun 2013 15:15:27 +0800
From:      Julian Elischer <julian@freebsd.org>
To:        Florent Peterschmitt <florent@peterschmitt.fr>
Cc:        current@freebsd.org
Subject:   Re: Handle kernel module crashes
Message-ID:  <51BAC30F.1090208@freebsd.org>
In-Reply-To: <51B5E040.2030709@peterschmitt.fr>
References:  <51B5E040.2030709@peterschmitt.fr>

next in thread | previous in thread | raw e-mail | index | archive | help
On 6/10/13 10:18 PM, Florent Peterschmitt wrote:
> Hello,
>
> It's not a problem but a question, and it's quite simple:
>
> How does FreeBSD handle crash from a single kernel module ?
>
> If the module internally crashes, does the entire system does too or
> FreeBSD will continue to live ?
>
> Thanks
>
a Module is by definition a part of the kernel with no barriers to 
prevent it
from damaging the kernel.
In a monolithic kernel (such as FreeBSD, or Linux) the module is 
loaded into the
protection domain of the kernel.

Much research was done in the 90s (and continues) with microkernels 
where some of the functionality of modules is instead given to 
"processes" which can be limited in the damage
they can do.

Some work is ongoing to sandbox drivers (for example) but it always 
comes at an expense of
performance.






Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?51BAC30F.1090208>