Kernel Modules deployment on custom hardware

jithcr · July 27, 2021, 1:39pm

Hi,

I understand kernel-module-control provides the ability to insert, remove and query kernel modules. This interface gives privileged access to the device.

Which component is responsible for deploying the kernel modules into the UC?

Do we need to ship kernel modules with kernel snap?
Is it possible to deploy kernel modules into the UC if I am not preparing the kernel snap?

ijohnson · July 27, 2021, 9:43pm

Today, the recommended method is to ship kernel modules with your kernel snap.

jithcr · July 28, 2021, 6:17am

Is there any experimental method available?

ogra · July 28, 2021, 9:39am

technically and theoretically you could indeed use a separate snap for your module and load it with insmod from a oneshot daemon that has access to module loading via the kernel-module-control interface …

practically you need a brand store to even get this interface granted (like snapd-control, kernel-module-control is only granted to device owners in brand stores per store policy) and use validation sets to make sure your module snap only gets updated in lockstep with your kernel snap since your binary will be linked against a certain kernel version … the maintenance effort (and risk) this brings along is likely higher than simply building your own kernel snap with the desired module included … either way you need a brand store (community kernels are also not allowed in the global store) and the use of kernel-module-control with insmod is always a hack …

jithcr · August 4, 2021, 9:49am

Do we have reference link for kernel module shipment ?

ogra · August 4, 2021, 10:29am

not really a reference, but here is a kernel snap where i add an external wifi driver to a kernel snap:

github.com

ogra1/linux-generic-allwinner/blob/master/snap/snapcraft.yaml#L248


  kernel-with-firmware: false
  kernel-initrd-modules:
    - g_serial
    - u_serial
    - usb_f_acm
    - libcomposite
  build-packages:
    - cpio
    - libssl-dev
  after: [ firmware ]
xradio-driver:
  source: https://github.com/fifteenhex/xradio.git
  source-depth: 1
  plugin: nil
  override-build: |
    if [ "$(arch)" != "armv7l" ]; then
      export ARCH=arm
      export CROSS_COMPILE=arm-linux-gnueabihf-
    fi
    # quieten massive log spam
    sed -i 's/^.*missed interrupt.*$//' bh.c

(note the override-prime: of the xradio-driver part, to update modules.dep)

jithcr · August 6, 2021, 11:54am

Hi
I have included a sample kernel module into kernel snap by referring given link.
.ko file is present in /lib/modules/5.4.85-gab1e81e16530/extra path in the device.

Able to load the kernel module using insmod .
But I am seeing below logs. Is this expected ?

[  874.961516] sample_km: loading out-of-tree module taints kernel.
[  874.961529] sample_km: module license 'unspecified' taints kernel.
[  874.961531] Disabling lock debugging due to kernel taint

ijohnson · August 6, 2021, 3:51pm

Sounds like a kernel problem where you need to set the license for the module appropriately

jithcr · November 17, 2021, 10:28am

Is there kernel modules autoload option in UC? ( without manual instruction/insmod)

ogra · November 22, 2021, 2:59pm

nope, and even the kernel-module-control interface will not save you from getting out-of sync with kernel ABI updates, it will be very tricky to keep everything in sync if you do not just use your own kernel snap with the module simply included …