Bug 270017

Comment 1 Brooks Davis 2023-03-08 16:38:54 UTC

Here's what I've got locally:

+Enable building
+.Xr loader 8
+with support effiently verify modules with vectx.
+.Pp
+Depends on
+.Va WITH_LOADER_VERIEXEC .

Comment 2 Simon J. Gerraty 2023-03-08 17:54:00 UTC

Sorry about that.  The purpose of WITH_LOADER_VERIEXEC_VECTX is to enable
hashing (thus verifying) kernel and modules as a side effect of loading.
This avoids the double I/O of the simple method used for non-modules which tend to be much smaller.

Comment 3 Brooks Davis 2023-03-09 19:21:44 UTC

https://reviews.freebsd.org/D39002

Comment 4 commit-hook 2023-03-09 21:40:07 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/src/commit/?id=3ac71149badeb1d3a0eeaa83739f7b385c8c941e

commit 3ac71149badeb1d3a0eeaa83739f7b385c8c941e
Author:     Brooks Davis <brooks@FreeBSD.org>
AuthorDate: 2023-03-09 21:39:41 +0000
Commit:     Brooks Davis <brooks@FreeBSD.org>
CommitDate: 2023-03-09 21:39:41 +0000

    Add WITH_LOADER_VERIEXEC_VECTX description

    PR:             270017
    Reviewed by:    emaste
    Sponsored by:   DARPA
    Differential Revision:  https://reviews.freebsd.org/D39002

 share/man/man5/src.conf.5                            | 8 ++++++++
 tools/build/options/WITH_LOADER_VERIEXEC_VECTX (new) | 7 +++++++
 2 files changed, 15 insertions(+)

Comment 5 Mark Linimon 2024-11-25 04:31:54 UTC

^Triage: committed back in 2023.