From 8356638489b8918c5ef216f1539d7d3af2e2ac72 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Mon, 3 Jun 2024 23:12:29 -0700
Subject: [PATCH] Updated kernel module whitelisting

Signed-off-by: Tommy <contact@tommytran.io>
---
 Whitelist-Notes.md                        | 10 ++++++++++
 etc/modprobe.d/server-blacklist.conf      |  1 -
 etc/modprobe.d/workstation-blacklist.conf |  5 ++++-
 kmod-whitelist-all                        |  1 -
 kmod-whitelist-bare-metal-start           |  2 ++
 5 files changed, 16 insertions(+), 3 deletions(-)
 create mode 100644 Whitelist-Notes.md

diff --git a/Whitelist-Notes.md b/Whitelist-Notes.md
new file mode 100644
index 0000000..41afe0d
--- /dev/null
+++ b/Whitelist-Notes.md
@@ -0,0 +1,10 @@
+# Notes
+
+Just a quick file for me to note about some of the whitelist
+
+- All usb modules are whitelisted. This can probably be restricted further.
+- led whitelisting is probably not necessary, except for ledtrig_audio on Parallels.
+- rc-core is needed for the Vostro, but this might just be a retro laptop thing.
+- sony whitelisting is for vaio laptops, but they are not procuded by sony anymore, so...
+- All snd modules are whitelisted. This can probably be restricted further.
+- usb-storage, dm-, sparse-keymap, and rc-core have different names in /proc.
\ No newline at end of file
diff --git a/etc/modprobe.d/server-blacklist.conf b/etc/modprobe.d/server-blacklist.conf
index 7dae2be..21464fb 100644
--- a/etc/modprobe.d/server-blacklist.conf
+++ b/etc/modprobe.d/server-blacklist.conf
@@ -3277,7 +3277,6 @@ install sp8870 /bin/false
 install sp887x /bin/false
 install spaceball /bin/false
 install spaceorb /bin/false
-install sparse-keymap /bin/false
 install spcp8x5 /bin/false
 install speakup /bin/false
 install speakup_acntsa /bin/false
diff --git a/etc/modprobe.d/workstation-blacklist.conf b/etc/modprobe.d/workstation-blacklist.conf
index 8f41c5f..976e58e 100644
--- a/etc/modprobe.d/workstation-blacklist.conf
+++ b/etc/modprobe.d/workstation-blacklist.conf
@@ -2953,13 +2953,17 @@ install mediatek-cpufreq-hw /bin/false
 install mediatek-ge /bin/false
 install mediatek-ge-soc /bin/false
 install megachips-stdpxxxx-ge-b850v3-fw /bin/false
+install mei /bin/false
 install mei-gsc /bin/false
 install mei_gsc_proxy /bin/false
+install mei_hdcp /bin/false
 install mei-me /bin/false
 install mei_phy /bin/false
+install mei_pxp /bin/false
 install mei-txe /bin/false
 install mei-vsc /bin/false
 install mei-vsc-hw /bin/false
+install mei_wdt /bin/false
 install melfas_mip4 /bin/false
 install memconsole /bin/false
 install memconsole-coreboot /bin/false
@@ -4679,7 +4683,6 @@ install sp8870 /bin/false
 install sp887x /bin/false
 install spaceball /bin/false
 install spaceorb /bin/false
-install sparse-keymap /bin/false
 install sparx5-switch /bin/false
 install sparx5-temp /bin/false
 install spcp8x5 /bin/false
diff --git a/kmod-whitelist-all b/kmod-whitelist-all
index 37412b0..75907e4 100644
--- a/kmod-whitelist-all
+++ b/kmod-whitelist-all
@@ -1,6 +1,5 @@
 ahci
 drm
-hdmi
 hyperv
 mouse
 raid
diff --git a/kmod-whitelist-bare-metal-start b/kmod-whitelist-bare-metal-start
index 3e9e017..860d806 100644
--- a/kmod-whitelist-bare-metal-start
+++ b/kmod-whitelist-bare-metal-start
@@ -1,9 +1,11 @@
 dell-
 dell_
 fujitsu
+hdmi
 i2c
 lcd
 led
 ledtrig
 processor_thermal
+sparse-keymap
 spi