/qubes-issues

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Dom0 should not have network drivers #3799

Closed
DemiMarie opened this Issue Apr 8, 2018 · 1 comment

Comments

Assignees
No one assigned
Labels
Projects
None yet
Milestone
No milestone
3 participants
@DemiMarie @marmarek @andrewdavidwong
@DemiMarie

DemiMarie commented Apr 8, 2018
edited
Edited 1 time
  • @DemiMarie DemiMarie edited Apr 8, 2018 (most recent)

Qubes OS version:

R4.0

Affected component(s):

Dom0 kernel

Steps to reproduce the behavior:

Run find /lib/modules/4.14.18-1.pvops.qubes.x86_64/kernel/drivers/net

Expected behavior:

No output, or an error because that directory does not exist

Actual behavior:

Many lines of output.

General notes:

Dom0 should not have a network connection. Therefore, it has no need for any of those drivers, and they increase attack surface in the event of a misconfiguration.

While these drivers must be built if we are to use common Dom0 and DomU kernels, we can delete them from the Dom0 kernel package.

Can these drivers be safely deleted?

Related issues:

#2743
@marmarek

This comment has been minimized.

Show comment
Hide comment
@marmarek

marmarek Apr 8, 2018

Member

Duplicate of #3656
Member

marmarek commented Apr 8, 2018

Duplicate of #3656

@marmarek marmarek marked this as a duplicate of #3656 Apr 8, 2018

@marmarek marmarek closed this Apr 8, 2018

@andrewdavidwong andrewdavidwong added the duplicate label Apr 8, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment