all messages for Guix-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed
* Why ext4 encryption is disabled in our linux-libre-4.8 config
@ 2016-10-04  2:47 Mark H Weaver
  2016-10-04  8:40 ` Ludovic Courtès
  0 siblings, 1 reply; 2+ messages in thread
From: Mark H Weaver @ 2016-10-04  2:47 UTC (permalink / raw)
  To: guix-devel

When updating our x86 kernel configs for linux-libre-4.8, I wanted to
enable CONFIG_EXT4_ENCRYPTION.  Unfortunately, enabling that option
seems to require CONFIG_CRYPTO_XTS=y instead of =m as in our existing
kernel configs.  I guess it's because CONFIG_EXT4_ENCRYPTION cannot be
modularized, which forces its dependencies to be built-in.  This in turn
causes 'base-initrd' to fail, due to the absense of xts.ko.

We could remove 'xts' from the list of hardcoded modules in our initrd,
but it seems to me this would be a fragile workaround, not a
satisfactory solution to the problem.

One possible solution would be to enhance 'flat-linux-module-directory'
to silently ignore missing modules when the needed functionality is
built-in to the kernel, as indicated by the presence of
"CONFIG_CRYPTO_XTS=y" in #$linux/.config.

One caveat with this approach is that I don't know how to map module
names to Kconfig flags.  Does anyone know how?  If needed, I suppose we
could lazily accumulate our own subset of this mapping, starting with
only the modules used by our initrd by default.  Alternatively, we could
change our lists of module names into lists of (module-name config-flag)
pairs.

   Thoughts?
      Mark

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: Why ext4 encryption is disabled in our linux-libre-4.8 config
  2016-10-04  2:47 Why ext4 encryption is disabled in our linux-libre-4.8 config Mark H Weaver
@ 2016-10-04  8:40 ` Ludovic Courtès
  0 siblings, 0 replies; 2+ messages in thread
From: Ludovic Courtès @ 2016-10-04  8:40 UTC (permalink / raw)
  To: Mark H Weaver; +Cc: guix-devel

Hi Mark!

Mark H Weaver <mhw@netris.org> skribis:

> One possible solution would be to enhance 'flat-linux-module-directory'
> to silently ignore missing modules when the needed functionality is
> built-in to the kernel, as indicated by the presence of
> "CONFIG_CRYPTO_XTS=y" in #$linux/.config.

That sounds like a good idea.  David hit a similar problem with commit
50dbc03647170fded9e0bca0cc4b7e1614aa38db.

> One caveat with this approach is that I don't know how to map module
> names to Kconfig flags.  Does anyone know how?  If needed, I suppose we
> could lazily accumulate our own subset of this mapping, starting with
> only the modules used by our initrd by default.  Alternatively, we could
> change our lists of module names into lists of (module-name config-flag)
> pairs.

I suspect there’s no systematic way to map option names to module names.
We may have to maintain our own list of option/module pairs, but that
doesn’t sound unreasonable.

Cheers,
Ludo’.

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2016-10-04  8:41 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-10-04  2:47 Why ext4 encryption is disabled in our linux-libre-4.8 config Mark H Weaver
2016-10-04  8:40 ` Ludovic Courtès

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/guix.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.