Aloadable kernel module (LKM) is anexecutablelibrary thatextends the capabilities of a runningkernel, or so-calledbase kernel, of anoperating system. LKMs are typically used to add support for newhardware (asdevice drivers) and/orfilesystems, or for addingsystem calls. When the functionality provided by an LKM is no longer required, it can be unloaded in order to freememory and other resources.

Most currentUnix-like systems andWindows support loadable kernel modules but with different names, such askernel loadable module (kld) inFreeBSD,kernel extension (kext) inmacOS (although support for third-party modules is being dropped^[1]),^[2]kernel extension module inAIX,dynamically loadable kernel module inHP-UX,^[3]kernel-mode driver inWindows NT^[4] anddownloadable kernel module (DKM) inVxWorks. They are also known askernel loadable module (KLM), or simply askernel module (KMOD).

Without loadable kernel modules, an operating system would have to include all possible anticipated functionality compiled directly into the base kernel. Much of that functionality would reside in memory without being used, wasting memory^{[citation needed]}, and would require that users rebuild and reboot the base kernel every time they require new functionality.

One minor criticism of preferring a modular kernel over a static kernel is the so-calledfragmentation penalty. The base kernel is always unpacked into real contiguousmemory by its setup routines; thus, the base kernel code is never fragmented. Once the system is in a state in which modules may be inserted, for example once thefilesystems have beenmounted that contain the modules, it is likely that any new kernel code insertion will cause the kernel to become fragmented, thereby introducing a minor performance penalty by using moreTLB entries, causing more TLB misses.^{[citation needed]}

Loadable kernel modules in Linux are loaded (and unloaded) by themodprobe command. They are located in/lib/modules or/usr/lib/modules and have had the extension.ko ("kernel object") since version 2.6 (previous versions used the.o extension).^[5] Thelsmod command lists the loaded kernel modules. In emergency cases, when the system fails to boot due to e.g. broken modules, specific modules can be enabled or disabled by modifying the kernel boot parameters list (for example, if usingGRUB, by pressing 'e' in the GRUB start menu, then editing the kernel parameter line).

In the opinion of Linux maintainers, LKM arederived works of the kernel^{[citation needed]}. The Linux maintainers tolerate the distribution ofproprietary modules (such asNVIDIA GPU drivers),^{[citation needed]} but allow onlyGNU General Public License (GPL) modules to merge to kernel tree of mainline Linux kernel.

Loading a proprietary or non-GPL-compatible module will set a 'taint' flag^[6][7] in the running kernel—meaning that any problems or bugs experienced will be less likely to be investigated by the maintainers.^[8][9] LKMs effectively become part of the running kernel, so can corrupt kernel data structures and produce bugs that may not be able to be investigated if the module is indeed proprietary.

In 2004, Linuxant, a consulting company that releases proprietarydevice drivers as loadable kernel modules, attempted to abuse anull terminator in theirMODULE_LICENSE, as visible in the following code excerpt:

MODULE_LICENSE("GPL\0for files in the\"GPL\" directory; for others, only LICENSE file applies");

The string comparison code used by the kernel at the time tried to determine whether the module was GPLed stopped when it reached a null character (\0), so it was fooled into thinking that the module was declaring its license to be just "GPL".^[10]

Kernel modules forFreeBSD are stored within/boot/kernel/ for modules distributed with theoperating system, or usually/boot/modules/ for modules installed fromFreeBSD ports orFreeBSD packages, or for proprietary or otherwise binary-only modules. FreeBSD kernel modules usually have the extension.ko. Once the machine has booted, they may be loaded with thekldload command, unloaded withkldunload, and listed withkldstat. Modules can also be loaded from the loader before the kernel starts, either automatically (through/boot/loader.conf) or by hand.

Some loadable kernel modules in macOS can be loaded automatically. Loadable kernel modules can also be loaded by thekextload command. They can be listed by thekextstat command. Loadable kernel modules are located inbundles with the extension.kext. Modules supplied with the operating system are stored in the/System/Library/Extensions directory; modules supplied by third parties are in various other directories.

A NetWare kernel module is referred to as aNetWare Loadable Module (NLM). NLMs are inserted into the NetWare kernel by means of the LOAD command, and removed by means of the UNLOAD command; themodules command lists currently loaded kernel modules. NLMs may reside in any valid search path assigned on the NetWare server, and they have.NLM as the file name extension.

A downloadable kernel module (DKM) type project can be created to generate a ".out" file which can then be loaded to kernel space using "ld" command. This downloadable kernel module can be unloaded using "unld" command.

Solaris has a configurable kernel module load path, which defaults to/platform/platform-name/kernel /kernel /usr/kernel. Most kernel modules live in subdirectories under/kernel; those not considered necessary to boot the system to the point that init can start are often (but not always) found in/usr/kernel. When running a DEBUG kernel build the system actively attempts to unload modules.

Linux does not provide a stableAPI orABI for kernel modules. This means that there are differences in internal structure and function between different kernel versions, which can cause compatibility problems. In an attempt to combat those problems, symbol versioning data is placed within the.modinfo section of loadableELF modules. This versioning information can be compared with that of the running kernel before loading a module; if the versions are incompatible, the module will not be loaded.

Other operating systems, such asSolaris,FreeBSD,macOS, andWindows keep the kernelAPI andABI relatively stable, thus avoiding this problem. For example,FreeBSD kernel modules compiled against kernel version 6.0 will work without recompilation on any other FreeBSD 6.x version, e.g. 6.4. However, they are not compatible with other major versions and must be recompiled for use with FreeBSD 7.x, as API and ABI compatibility is maintained only within a branch.

While loadable kernel modules are a convenient method of modifying the running kernel, this can be abused by attackers on a compromised system to prevent detection of theirprocesses orfiles, allowing them to maintain control over the system. Manyrootkits make use of LKMs in this way. Note that, on most operating systems, modules do not helpprivilege elevation in any way, as elevated privilege is required to load a LKM; they merely make it easier for the attacker to hide the break-in.^[11]

Linux allows disabling module loading viasysctl option/proc/sys/kernel/modules_disabled.^[12][13] Aninitramfs system may load specific modules needed for a machine at boot and then disable module loading. This makes the security very similar to a monolithic kernel. If an attacker can change the initramfs, they can change the kernel binary.

InOS X Yosemite and later releases, a kernel extension has to becode-signed with a developer certificate that holds a particular "entitlement." Such a developer certificate is only provided by Apple on request and not automatically given toApple Developer members. This feature, called "kext signing", is enabled by default and it instructs the kernel to stop booting if unsigned kernel extensions are present.^[14] InOS X El Capitan and later releases, it is part ofSystem Integrity Protection.

In older versions of macOS, or if kext signing is disabled, a loadable kernel module in a kernel extension bundle can be loaded by non-root users if the OSBundleAllowUserLoad property is set to True in the bundle's property list.^[15] However, if any of the files in the bundle, including the executable code file, are not owned by root and group wheel, or are writable by the group or "other", the attempt to load the kernel loadable module will fail.^[16]

Kernel modules can optionally have a cryptographic signature ELF section which is verified on load depending on the Verified Boot policy settings. The kernel can enforce that modules are cryptographically signed by a set of trusted certificates; the list of trusted certificates is held outside of the OS in the ILOM on some SPARC based platforms. Userspace initiated kernel module loading is only possible from the Trusted Path when the system is running with the Immutable Global Zone feature enabled.

• Dynamic link library – Sharable executable library in Windows and OS/2Pages displaying short descriptions of redirect targets
• NetWare Loadable Module – Novell-compatible computer-readable software
• Shared library – Software library designed for use in multiple programs

• FreeBSD
• Linux kernel
• Operating system kernels
• Device drivers

• Webarchive template wayback links
• Articles with short description
• Short description matches Wikidata
• All articles with unsourced statements
• Articles with unsourced statements from February 2024
• Articles with unsourced statements from September 2007
• Articles with unsourced statements from September 2015
• Articles with unsourced statements from April 2012
• Pages displaying short descriptions of redirect targets via Module:Annotated link