> > Hmm, what do you think about this feature? > > Only available in INSECURE environment? > > I think it makes sense once we have lots of device drivers as modules. > Boot minimal kernel, autoload all needed device drivers, lock system > state. At least in configurations where you want to lock it.
When can we lock the state for pseudo devices (vnd, bpf etc) and all hot plug devices? Extra file-systems and exec formats could also be invoked after multi user. Do we have to predict all possible necessary modules as a kernel config? --- Izumi Tsutsui
