titanz/Kernel-Module-Blacklist
1
0
Fork 0
mirror of https://github.com/TommyTran732/Kernel-Module-Blacklist.git synced 2025-02-23 21:11:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

New approach

Browse Source 
Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2024-06-02 20:06:59 -07:00
parent 142f49c022
commit 0888d50f30
No known key found for this signature in database
GPG Key ID: 555C902A34EC968F
10 changed files with 14887 additions and 8403 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14019
etc/modprobe.d/vps-blacklist.conf
View File

File diff suppressed because it is too large Load Diff

15
kmod-blacklist/filter.sh Normal file
View File

@ -0,0 +1,15 @@
#!/bin/bash
# Copyright (C) 2024 Thien Tran
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may not
# use this file except in compliance with the License. You may obtain a copy of
# the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations under
# the License.

47
kmod-blacklist/generate-kmod-blacklist-aggregate.sh Executable file
View File

@ -0,0 +1,47 @@
#!/bin/bash
# Copyright (C) 2024 Thien Tran
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may not
# use this file except in compliance with the License. You may obtain a copy of
# the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations under
# the License.
# Combine all sample data for available
sort -u sample-data/vps/available/* > blacklist.txt
# Combine all sample data for necessary
sort -u sample-data/vps/necessary/* > necessary.txt
# Create the list to blacklist
while read -r KMOD; do
sed -i "s/^${KMOD}$//g" blacklist.txt
done < necessary.txt
# Delete empty lines
sed -i '/^$/d' blacklist.txt
# Module filtering
while read -r KMOD; do
sed -i "s/^${KMOD}.*//g" blacklist.txt
done < kmod-filter-start
while read -r KMOD; do
sed -i "s/.*${KMOD}.*//g" blacklist.txt
done < kmod-filter-all
# Create final blacklist config
while read -r KMOD; do
echo "install ${KMOD} /bin/false" >> blacklist.conf
done < blacklist.txt
# Cleanup
rm necessary.txt blacklist.txt

2
generate-kmod-blacklist.sh → kmod-blacklist/generate-kmod-blacklist.sh
View File

@ -1,6 +1,6 @@
#!/bin/bash #!/bin/bash
# Copyright (C) 2021-2024 Thien Tran # Copyright (C) 2024 Thien Tran
# #
# Licensed under the Apache License, Version 2.0 (the "License"); you may not # Licensed under the Apache License, Version 2.0 (the "License"); you may not
# use this file except in compliance with the License. You may obtain a copy of # use this file except in compliance with the License. You may obtain a copy of

3
kmod-blacklist/kmod-filter-all Normal file
View File

@ -0,0 +1,3 @@
hyperv
virtio
vmw

9
kmod-blacklist/kmod-filter-start Normal file
View File

@ -0,0 +1,9 @@
iptable_
ip6t_
nft_
nf_
nvme
pvpanic
hv_
vbox
xt_

4197
kmod-blacklist/sample-data/vps/available/fcos-proxmox-x86_64-prod-1-06-02-2024.txt Normal file
View File

File diff suppressed because it is too large Load Diff

4891
kmod-blacklist/sample-data/vps/available/fcos-utm-arm-06-02-2024.txt Normal file
View File

File diff suppressed because it is too large Load Diff

95
kmod-blacklist/sample-data/vps/necessary/fcos-proxmox-x86_64-prod-1-06-02-2024.txt Normal file
View File

@ -0,0 +1,95 @@
Module
xt_nat
veth
xt_conntrack
nft_chain_nat
xt_MASQUERADE
nf_nat
nf_conntrack_netlink
nf_conntrack
nf_defrag_ipv6
nf_defrag_ipv4
xt_addrtype
nft_compat
nf_tables
br_netfilter
bridge
stp
llc
overlay
rfkill
sunrpc
intel_rapl_msr
intel_rapl_common
intel_uncore_frequency_common
nfit
libnvdimm
kvm_intel
snd_hda_intel
snd_intel_dspcfg
snd_intel_sdw_acpi
snd_hda_codec
kvm
snd_hda_core
irqbypass
snd_hwdep
rapl
snd_pcm
iTCO_wdt
snd_timer
intel_pmc_bxt
iTCO_vendor_support
snd
i2c_i801
virtio_gpu
lpc_ich
i2c_smbus
virtio_balloon
soundcore
virtio_dma_buf
joydev
nfnetlink
zstd
zram
xfs
dm_multipath
crct10dif_pclmul
crc32_pclmul
crc32c_intel
polyval_clmulni
polyval_generic
ghash_clmulni_intel
virtio_console
sha512_ssse3
sha256_ssse3
sha1_ssse3
virtio_net
virtio_scsi
net_failover
failover
serio_raw
be2iscsi
bnx2i
cnic
uio
cxgb4i
cxgb4
tls
cxgb3i
cxgb3
mdio
libcxgbi
libcxgb
qla4xxx
iscsi_boot_sysfs
iscsi_tcp
libiscsi_tcp
libiscsi
scsi_transport_iscsi
scsi_dh_rdac
scsi_dh_emc
scsi_dh_alua
ip6_tables
ip_tables
fuse
qemu_fw_cfg

64
kmod-blacklist/sample-data/vps/necessary/fcos-utm-arm-06-02-2024.txt Normal file
View File

@ -0,0 +1,64 @@
Module
nft_fib_inet
nft_fib_ipv4
nft_fib_ipv6
nft_fib
nft_reject_inet
nf_reject_ipv4
nf_reject_ipv6
nft_reject
nft_ct
nft_chain_nat
nf_nat
nf_conntrack
nf_defrag_ipv6
nf_defrag_ipv4
rfkill
ip_set
nf_tables
sunrpc
binfmt_misc
virtio_balloon
nfnetlink
zstd
zram
xfs
crct10dif_ce
polyval_ce
polyval_generic
virtio_net
ghash_ce
sha3_ce
sha512_ce
net_failover
sha512_arm64
virtio_blk
failover
virtio_mmio
dm_multipath
be2iscsi
bnx2i
cnic
uio
cxgb4i
cxgb4
tls
cxgb3i
cxgb3
mdio
libcxgbi
libcxgb
qla4xxx
iscsi_boot_sysfs
iscsi_tcp
libiscsi_tcp
libiscsi
scsi_transport_iscsi
scsi_dh_rdac
scsi_dh_emc
scsi_dh_alua
ip6_tables
ip_tables
fuse
qemu_fw_cfg
virtio_console