1999-08-28 01:08:13 +00:00
|
|
|
# $FreeBSD$
|
1998-03-10 15:55:38 +00:00
|
|
|
#
|
1999-11-06 23:51:29 +00:00
|
|
|
# On the handling of kernel options
|
1999-11-22 02:45:11 +00:00
|
|
|
#
|
2001-07-08 01:02:37 +00:00
|
|
|
# All kernel options should be listed in NOTES, with suitable
|
1998-03-10 15:55:38 +00:00
|
|
|
# descriptions. Negative options (options that make some code not
|
2001-07-08 01:04:10 +00:00
|
|
|
# compile) should be commented out; LINT (generated from NOTES) should
|
|
|
|
|
# compile as much code as possible. Try to structure option-using
|
|
|
|
|
# code so that a single option only switch code on, or only switch
|
|
|
|
|
# code off, to make it possible to have a full compile-test. If
|
|
|
|
|
# necessary, you can check for COMPILING_LINT to get maximum code
|
|
|
|
|
# coverage.
|
1999-11-22 02:45:11 +00:00
|
|
|
#
|
1998-03-10 15:55:38 +00:00
|
|
|
# All new options shall also be listed in either "conf/options" or
|
2001-07-08 01:04:10 +00:00
|
|
|
# "conf/options.<machine>". Options that affect a single source-file
|
|
|
|
|
# <xxx>.[c|s] should be directed into "opt_<xxx>.h", while options
|
|
|
|
|
# that affect multiple files should either go in "opt_global.h" if
|
|
|
|
|
# this is a kernel-wide option (used just about everywhere), or in
|
2006-12-18 05:42:33 +00:00
|
|
|
# "opt_<option-name-in-lower-case>.h" if it affects only some files.
|
2001-07-08 01:04:10 +00:00
|
|
|
# Note that the effect of listing only an option without a
|
|
|
|
|
# header-file-name in conf/options (and cousins) is that the last
|
|
|
|
|
# convention is followed.
|
1999-11-22 02:45:11 +00:00
|
|
|
#
|
1998-03-10 15:55:38 +00:00
|
|
|
# This handling scheme is not yet fully implemented.
|
|
|
|
|
#
|
|
|
|
|
#
|
|
|
|
|
# Format of this file:
|
1996-03-02 18:24:13 +00:00
|
|
|
# Option name filename
|
1998-03-10 15:55:38 +00:00
|
|
|
#
|
|
|
|
|
# If filename is missing, the default is
|
|
|
|
|
# opt_<name-of-option-in-lower-case>.h
|
1996-03-29 13:51:30 +00:00
|
|
|
|
2004-03-31 08:22:09 +00:00
|
|
|
AAC_DEBUG opt_aac.h
|
2013-05-24 09:22:43 +00:00
|
|
|
AACRAID_DEBUG opt_aacraid.h
|
2004-03-31 08:22:09 +00:00
|
|
|
AHC_ALLOW_MEMIO opt_aic7xxx.h
|
|
|
|
|
AHC_TMODE_ENABLE opt_aic7xxx.h
|
|
|
|
|
AHC_DUMP_EEPROM opt_aic7xxx.h
|
|
|
|
|
AHC_DEBUG opt_aic7xxx.h
|
|
|
|
|
AHC_DEBUG_OPTS opt_aic7xxx.h
|
2009-02-06 10:30:46 +00:00
|
|
|
AHC_REG_PRETTY_PRINT opt_aic7xxx.h
|
2004-03-31 08:22:09 +00:00
|
|
|
AHD_DEBUG opt_aic79xx.h
|
|
|
|
|
AHD_DEBUG_OPTS opt_aic79xx.h
|
|
|
|
|
AHD_TMODE_ENABLE opt_aic79xx.h
|
|
|
|
|
AHD_REG_PRETTY_PRINT opt_aic79xx.h
|
1998-10-07 03:30:55 +00:00
|
|
|
|
2004-03-31 18:46:13 +00:00
|
|
|
TWA_DEBUG opt_twa.h
|
2004-03-30 18:53:18 +00:00
|
|
|
|
2004-07-11 01:44:07 +00:00
|
|
|
# Debugging options.
|
2011-08-27 14:24:27 +00:00
|
|
|
ALT_BREAK_TO_DEBUGGER opt_kdb.h
|
|
|
|
|
BREAK_TO_DEBUGGER opt_kdb.h
|
2016-10-31 23:09:52 +00:00
|
|
|
BUF_TRACKING opt_global.h
|
2004-07-11 01:44:07 +00:00
|
|
|
DDB
|
2008-08-18 16:48:09 +00:00
|
|
|
DDB_BUFR_SIZE opt_ddb.h
|
2008-01-26 22:32:23 +00:00
|
|
|
DDB_CAPTURE_DEFAULTBUFSIZE opt_ddb.h
|
|
|
|
|
DDB_CAPTURE_MAXBUFSIZE opt_ddb.h
|
2008-05-18 19:28:51 +00:00
|
|
|
DDB_CTF opt_ddb.h
|
2004-07-11 01:44:07 +00:00
|
|
|
DDB_NUMSYM opt_ddb.h
|
2020-04-12 18:04:20 +00:00
|
|
|
EARLY_PRINTF opt_global.h
|
2016-10-31 23:09:52 +00:00
|
|
|
FULL_BUF_TRACKING opt_global.h
|
2004-07-11 01:44:07 +00:00
|
|
|
GDB
|
|
|
|
|
KDB opt_global.h
|
|
|
|
|
KDB_TRACE opt_kdb.h
|
|
|
|
|
KDB_UNATTENDED opt_kdb.h
|
2011-11-06 08:10:41 +00:00
|
|
|
KLD_DEBUG opt_kld.h
|
2020-04-12 18:04:20 +00:00
|
|
|
NUM_CORE_FILES opt_global.h
|
|
|
|
|
QUEUE_MACRO_DEBUG_TRACE opt_global.h
|
|
|
|
|
QUEUE_MACRO_DEBUG_TRASH opt_global.h
|
2004-10-27 19:26:01 +00:00
|
|
|
SYSCTL_DEBUG opt_sysctl.h
|
2012-11-01 04:07:08 +00:00
|
|
|
TEXTDUMP_PREFERRED opt_ddb.h
|
|
|
|
|
TEXTDUMP_VERBOSE opt_ddb.h
|
2017-12-31 09:21:34 +00:00
|
|
|
TSLOG opt_global.h
|
|
|
|
|
TSLOGSIZE opt_global.h
|
2004-07-11 01:44:07 +00:00
|
|
|
|
1996-12-23 18:42:02 +00:00
|
|
|
# Miscellaneous options.
|
2003-04-15 19:43:52 +00:00
|
|
|
ALQ
|
2013-10-18 15:27:11 +00:00
|
|
|
ALTERA_SDCARD_FAST_SIM opt_altera_sdcard.h
|
2013-10-18 20:52:42 +00:00
|
|
|
ATSE_CFI_HACK opt_cfi.h
|
2006-02-01 21:00:16 +00:00
|
|
|
AUDIT opt_global.h
|
2013-04-03 22:24:36 +00:00
|
|
|
BOOTHOWTO opt_global.h
|
|
|
|
|
BOOTVERBOSE opt_global.h
|
- Make callout(9) tickless, relying on eventtimers(4) as backend for
precise time event generation. This greatly improves granularity of
callouts which are not anymore constrained to wait next tick to be
scheduled.
- Extend the callout KPI introducing a set of callout_reset_sbt* functions,
which take a sbintime_t as timeout argument. The new KPI also offers a
way for consumers to specify precision tolerance they allow, so that
callout can coalesce events and reduce number of interrupts as well as
potentially avoid scheduling a SWI thread.
- Introduce support for dispatching callouts directly from hardware
interrupt context, specifying an additional flag. This feature should be
used carefully, as long as interrupt context has some limitations
(e.g. no sleeping locks can be held).
- Enhance mechanisms to gather informations about callwheel, introducing
a new sysctl to obtain stats.
This change breaks the KBI. struct callout fields has been changed, in
particular 'int ticks' (4 bytes) has been replaced with 'sbintime_t'
(8 bytes) and another 'sbintime_t' field was added for precision.
Together with: mav
Reviewed by: attilio, bde, luigi, phk
Sponsored by: Google Summer of Code 2012, iXsystems inc.
Tested by: flo (amd64, sparc64), marius (sparc64), ian (arm),
markj (amd64), mav, Fabian Keil
2013-03-04 11:09:56 +00:00
|
|
|
CALLOUT_PROFILING
|
2011-07-02 15:41:22 +00:00
|
|
|
CAPABILITIES opt_capsicum.h
|
2011-06-29 13:03:05 +00:00
|
|
|
CAPABILITY_MODE opt_capsicum.h
|
2018-04-06 17:35:35 +00:00
|
|
|
COMPAT_43 opt_global.h
|
|
|
|
|
COMPAT_43TTY opt_global.h
|
|
|
|
|
COMPAT_FREEBSD4 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD5 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD6 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD7 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD9 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD10 opt_global.h
|
|
|
|
|
COMPAT_FREEBSD11 opt_global.h
|
2019-05-02 18:10:23 +00:00
|
|
|
COMPAT_FREEBSD12 opt_global.h
|
2016-08-21 16:01:30 +00:00
|
|
|
COMPAT_CLOUDABI32 opt_dontuse.h
|
2015-07-09 07:20:15 +00:00
|
|
|
COMPAT_CLOUDABI64 opt_dontuse.h
|
2018-04-06 17:35:35 +00:00
|
|
|
COMPAT_LINUXKPI opt_dontuse.h
|
2018-04-06 19:11:22 +00:00
|
|
|
_COMPAT_LINUX32 opt_compat.h # XXX: make sure opt_compat.h exists
|
2000-09-16 18:55:05 +00:00
|
|
|
COMPILING_LINT opt_global.h
|
2003-04-15 19:43:52 +00:00
|
|
|
CY_PCI_FASTINTR
|
2010-01-09 01:46:38 +00:00
|
|
|
DEADLKRES opt_watchdog.h
|
2018-10-30 15:46:30 +00:00
|
|
|
EXPERIMENTAL opt_global.h
|
2016-01-24 11:00:38 +00:00
|
|
|
EXT_RESOURCES opt_global.h
|
2005-12-12 10:15:11 +00:00
|
|
|
DIRECTIO
|
2013-07-03 20:22:12 +00:00
|
|
|
FILEMON opt_dontuse.h
|
2011-11-19 14:10:16 +00:00
|
|
|
FFCLOCK
|
2004-09-02 18:59:15 +00:00
|
|
|
FULL_PREEMPTION opt_sched.h
|
2015-03-09 03:50:53 +00:00
|
|
|
GZIO opt_gzio.h
|
2014-05-22 05:04:40 +00:00
|
|
|
IMAGACT_BINMISC opt_dontuse.h
|
2005-06-09 18:23:54 +00:00
|
|
|
IPI_PREEMPTION opt_sched.h
|
2002-10-19 17:02:17 +00:00
|
|
|
GEOM_BDE opt_geom.h
|
2006-10-06 10:43:42 +00:00
|
|
|
GEOM_CACHE opt_geom.h
|
2004-05-03 21:18:56 +00:00
|
|
|
GEOM_CONCAT opt_geom.h
|
2005-07-27 21:47:55 +00:00
|
|
|
GEOM_ELI opt_geom.h
|
2004-05-03 21:18:56 +00:00
|
|
|
GEOM_GATE opt_geom.h
|
2006-10-31 22:22:30 +00:00
|
|
|
GEOM_JOURNAL opt_geom.h
|
Introduce GEOM_LABEL class.
This class is used for detecting volume labels on file systems:
UFS, MSDOSFS (FAT12, FAT16, FAT32) and ISO9660.
It also provide native labelization (there is no need for file system).
g_label_ufs.c is based on geom_vol_ffs from Gordon Tetlow.
g_label_msdos.c and g_label_iso9660.c are probably hacks, I just found
where volume labels are stored and I use those offsets here,
but with this class it should be easy to do it as it should be done by
someone who know how.
Implementing volume labels detection for other file systems also should
be trivial.
New providers are created in those directories:
/dev/ufs/ (UFS1, UFS2)
/dev/msdosfs/ (FAT12, FAT16, FAT32)
/dev/iso9660/ (ISO9660)
/dev/label/ (native labels, configured with glabel(8))
Manual page cleanups and some comments inside were submitted by
Simon L. Nielsen, who was, as always, very helpful. Thanks!
2004-07-02 19:40:36 +00:00
|
|
|
GEOM_LABEL opt_geom.h
|
2014-04-06 02:44:37 +00:00
|
|
|
GEOM_LABEL_GPT opt_geom.h
|
2008-02-20 07:50:13 +00:00
|
|
|
GEOM_LINUX_LVM opt_geom.h
|
2015-06-08 13:23:56 +00:00
|
|
|
GEOM_MAP opt_geom.h
|
2004-07-30 23:18:53 +00:00
|
|
|
GEOM_MIRROR opt_geom.h
|
2015-12-14 13:51:14 +00:00
|
|
|
GEOM_MOUNTVER opt_geom.h
|
2007-02-27 12:05:25 +00:00
|
|
|
GEOM_MULTIPATH opt_geom.h
|
2004-05-20 10:37:13 +00:00
|
|
|
GEOM_NOP opt_geom.h
|
2007-02-07 18:55:31 +00:00
|
|
|
GEOM_PART_APM opt_geom.h
|
2007-12-06 02:32:42 +00:00
|
|
|
GEOM_PART_BSD opt_geom.h
|
2014-06-11 10:48:11 +00:00
|
|
|
GEOM_PART_BSD64 opt_geom.h
|
2009-02-10 00:08:39 +00:00
|
|
|
GEOM_PART_EBR opt_geom.h
|
2007-02-07 18:55:31 +00:00
|
|
|
GEOM_PART_GPT opt_geom.h
|
2012-03-19 13:16:46 +00:00
|
|
|
GEOM_PART_LDM opt_geom.h
|
2007-06-13 04:27:36 +00:00
|
|
|
GEOM_PART_MBR opt_geom.h
|
2008-03-02 00:52:49 +00:00
|
|
|
GEOM_PART_VTOC8 opt_geom.h
|
MFgraid/head:
Add new RAID GEOM class, that is going to replace ataraid(4) in supporting
various BIOS-based software RAIDs. Unlike ataraid(4) this implementation
does not depend on legacy ata(4) subsystem and can be used with any disk
drivers, including new CAM-based ones (ahci(4), siis(4), mvs(4), ata(4)
with `options ATA_CAM`). To make code more readable and extensible, this
implementation follows modular design, including core part and two sets
of modules, implementing support for different metadata formats and RAID
levels.
Support for such popular metadata formats is now implemented:
Intel, JMicron, NVIDIA, Promise (also used by AMD/ATI) and SiliconImage.
Such RAID levels are now supported:
RAID0, RAID1, RAID1E, RAID10, SINGLE, CONCAT.
For any all of these RAID levels and metadata formats this class supports
full cycle of volume operations: reading, writing, creation, deletion,
disk removal and insertion, rebuilding, dirty shutdown detection
and resynchronization, bad sector recovery, faulty disks tracking,
hot-spare disks. For Intel and Promise formats there is support multiple
volumes per disk set.
Look graid(8) manual page for additional details.
Co-authored by: imp
Sponsored by: Cisco Systems, Inc. and iXsystems, Inc.
2011-03-24 21:31:32 +00:00
|
|
|
GEOM_RAID opt_geom.h
|
2004-08-16 06:36:21 +00:00
|
|
|
GEOM_RAID3 opt_geom.h
|
2005-01-11 18:18:40 +00:00
|
|
|
GEOM_SHSEC opt_geom.h
|
2004-05-20 10:37:13 +00:00
|
|
|
GEOM_STRIPE opt_geom.h
|
2004-08-13 09:40:58 +00:00
|
|
|
GEOM_UZIP opt_geom.h
|
2016-02-24 05:17:52 +00:00
|
|
|
GEOM_UZIP_DEBUG opt_geom.h
|
2014-05-02 23:23:18 +00:00
|
|
|
GEOM_VINUM opt_geom.h
|
2007-09-23 07:34:23 +00:00
|
|
|
GEOM_VIRSTOR opt_geom.h
|
2005-07-25 10:49:05 +00:00
|
|
|
GEOM_ZERO opt_geom.h
|
2016-05-18 04:35:58 +00:00
|
|
|
IFLIB opt_iflib.h
|
2013-11-25 07:38:45 +00:00
|
|
|
KDTRACE_HOOKS opt_global.h
|
2013-11-29 07:28:59 +00:00
|
|
|
KDTRACE_FRAME opt_kdtrace.h
|
2014-01-07 01:17:27 +00:00
|
|
|
KN_HASHSIZE opt_kqueue.h
|
2002-10-02 07:44:29 +00:00
|
|
|
KSTACK_MAX_PAGES
|
2004-02-25 09:35:35 +00:00
|
|
|
KSTACK_PAGES
|
2014-10-04 18:38:14 +00:00
|
|
|
KSTACK_USAGE_PROF
|
1996-03-02 18:24:13 +00:00
|
|
|
KTRACE
|
2002-06-07 14:33:23 +00:00
|
|
|
KTRACE_REQUEST_POOL opt_ktrace.h
|
2001-04-09 09:39:29 +00:00
|
|
|
LIBICONV
|
2009-06-05 14:55:22 +00:00
|
|
|
MAC opt_global.h
|
2003-04-15 19:43:52 +00:00
|
|
|
MAC_BIBA opt_dontuse.h
|
|
|
|
|
MAC_BSDEXTENDED opt_dontuse.h
|
|
|
|
|
MAC_IFOFF opt_dontuse.h
|
|
|
|
|
MAC_LOMAC opt_dontuse.h
|
|
|
|
|
MAC_MLS opt_dontuse.h
|
|
|
|
|
MAC_NONE opt_dontuse.h
|
Make it possible to run ntpd as a non-root user, add ntpd uid and gid.
Code analysis and runtime analysis using truss(8) indicate that the only
privileged operations performed by ntpd are adjusting system time, and
(re-)binding to privileged UDP port 123. These changes add a new mac(4)
policy module, mac_ntpd(4), which grants just those privileges to any
process running with uid 123.
This also adds a new user and group, ntpd:ntpd, (uid:gid 123:123), and makes
them the owner of the /var/db/ntp directory, so that it can be used as a
location where the non-privileged daemon can write files such as the
driftfile, and any optional logfile or stats files.
Because there are so many ways to configure ntpd, the question of how to
configure it to run without root privs can be a bit complex, so that will be
addressed in a separate commit. These changes are just what's required to
grant the limited subset of privs to ntpd, and the small change to ntpd to
prevent it from exiting with an error if running as non-root.
Differential Revision: https://reviews.freebsd.org/D16281
2018-07-19 23:55:29 +00:00
|
|
|
MAC_NTPD opt_dontuse.h
|
2003-04-15 19:43:52 +00:00
|
|
|
MAC_PARTITION opt_dontuse.h
|
|
|
|
|
MAC_PORTACL opt_dontuse.h
|
|
|
|
|
MAC_SEEOTHERUIDS opt_dontuse.h
|
2004-05-03 20:53:05 +00:00
|
|
|
MAC_STATIC opt_mac.h
|
2003-08-21 16:48:39 +00:00
|
|
|
MAC_STUB opt_dontuse.h
|
2003-04-15 19:43:52 +00:00
|
|
|
MAC_TEST opt_dontuse.h
|
2018-07-14 17:18:17 +00:00
|
|
|
MAC_VERIEXEC opt_dontuse.h
|
|
|
|
|
MAC_VERIEXEC_SHA1 opt_dontuse.h
|
|
|
|
|
MAC_VERIEXEC_SHA256 opt_dontuse.h
|
|
|
|
|
MAC_VERIEXEC_SHA384 opt_dontuse.h
|
|
|
|
|
MAC_VERIEXEC_SHA512 opt_dontuse.h
|
1999-11-26 20:08:44 +00:00
|
|
|
MD_ROOT opt_md.h
|
2012-11-03 21:20:55 +00:00
|
|
|
MD_ROOT_FSTYPE opt_md.h
|
2017-12-20 18:23:22 +00:00
|
|
|
MD_ROOT_READONLY opt_md.h
|
1999-11-26 20:08:44 +00:00
|
|
|
MD_ROOT_SIZE opt_md.h
|
2018-06-07 13:57:34 +00:00
|
|
|
MD_ROOT_MEM opt_md.h
|
2006-03-29 09:57:22 +00:00
|
|
|
MFI_DEBUG opt_mfi.h
|
2006-05-18 23:30:48 +00:00
|
|
|
MFI_DECODE_LOG opt_mfi.h
|
2004-08-19 06:38:26 +00:00
|
|
|
MPROF_BUFFERS opt_mprof.h
|
|
|
|
|
MPROF_HASH_SIZE opt_mprof.h
|
2011-05-03 17:37:24 +00:00
|
|
|
NEW_PCIB opt_global.h
|
2007-03-27 19:32:40 +00:00
|
|
|
NO_ADAPTIVE_MUTEXES opt_adaptive_mutexes.h
|
2007-03-22 16:09:23 +00:00
|
|
|
NO_ADAPTIVE_RWLOCKS
|
2009-05-29 01:49:27 +00:00
|
|
|
NO_ADAPTIVE_SX
|
Create deprecation management functions.
gone_in(majar, msg); If we're running in FreeBSD major, tell
the user this code may be deleted soon.
If we're running in FreeBSD major - 1,
the the user is deprecated and will
be gone in major.
Otherwise say nothing.
gone_in_dev(dev, major, msg) Just like gone_in, except use device_printf.
New tunable / sysctl debug.oboslete_panic: 0 - don't panic,
1 - panic in major or newer , 2 - panic in major - 1 or newer
default: 0
if NO_OBSOLETE_CODE is defined, then both of these turn into compile
time errors when building for major. Add options NO_OBSOLETE_CODE to
kernel build system.
This lets us tag code that's going away so users know it will be gone,
as well as automatically manage things.
Differential Review: https://reviews.freebsd.org/D13818
2018-01-29 00:14:39 +00:00
|
|
|
NO_OBSOLETE_CODE opt_global.h
|
2008-08-27 01:31:42 +00:00
|
|
|
NO_SYSCTL_DESCR opt_global.h
|
Allocate pager bufs from UMA instead of 80-ish mutex protected linked list.
o In vm_pager_bufferinit() create pbuf_zone and start accounting on how many
pbufs are we going to have set.
In various subsystems that are going to utilize pbufs create private zones
via call to pbuf_zsecond_create(). The latter calls uma_zsecond_create(),
and sets a limit on created zone. After startup preallocate pbufs according
to requirements of all pbuf zones.
Subsystems that used to have a private limit with old allocator now have
private pbuf zones: md(4), fusefs, NFS client, smbfs, VFS cluster, FFS,
swap, vnode pager.
The following subsystems use shared pbuf zone: cam(4), nvme(4), physio(9),
aio(4). They should have their private limits, but changing that is out of
scope of this commit.
o Fetch tunable value of kern.nswbuf from init_param2() and while here move
NSWBUF_MIN to opt_param.h and eliminate opt_swap.h, that was holding only
this option.
Default values aren't touched by this commit, but they probably should be
reviewed wrt to modern hardware.
This change removes a tight bottleneck from sendfile(2) operation, that
uses pbufs in vnode pager. Other pagers also would benefit from faster
allocation.
Together with: gallatin
Tested by: pho
2019-01-15 01:02:16 +00:00
|
|
|
NSWBUF_MIN opt_param.h
|
2007-04-14 20:16:03 +00:00
|
|
|
MBUF_PACKET_ZONE_DISABLE opt_global.h
|
2002-11-18 06:17:07 +00:00
|
|
|
PANIC_REBOOT_WAIT_TIME opt_panic.h
|
Native PCI-express HotPlug support.
PCI-express HotPlug support is implemented via bits in the slot
registers of the PCI-express capability of the downstream port along
with an interrupt that triggers when bits in the slot status register
change.
This is implemented for FreeBSD by adding HotPlug support to the
PCI-PCI bridge driver which attaches to the virtual PCI-PCI bridges
representing downstream ports on HotPlug slots. The PCI-PCI bridge
driver registers an interrupt handler to receive HotPlug events. It
also uses the slot registers to determine the current HotPlug state
and drive an internal HotPlug state machine. For simplicty of
implementation, the PCI-PCI bridge device detaches and deletes the
child PCI device when a card is removed from a slot and creates and
attaches a PCI child device when a card is inserted into the slot.
The PCI-PCI bridge driver provides a bus_child_present which claims
that child devices are present on HotPlug-capable slots only when a
card is inserted. Rather than requiring a timeout in the RC for
config accesses to not-present children, the pcib_read/write_config
methods fail all requests when a card is not present (or not yet
ready).
These changes include support for various optional HotPlug
capabilities such as a power controller, mechanical latch,
electro-mechanical interlock, indicators, and an attention button.
It also includes support for devices which require waiting for
command completion events before initiating a subsequent HotPlug
command. However, it has only been tested on ExpressCard systems
which support surprise removal and have none of these optional
capabilities.
PCI-express HotPlug support is conditional on the PCI_HP option
which is enabled by default on arm64, x86, and powerpc.
Reviewed by: adrian, imp, vangyzen (older versions)
Relnotes: yes
Differential Revision: https://reviews.freebsd.org/D6136
2016-05-05 22:26:23 +00:00
|
|
|
PCI_HP opt_pci.h
|
2015-03-01 00:40:09 +00:00
|
|
|
PCI_IOV opt_global.h
|
2006-04-24 23:31:51 +00:00
|
|
|
PPC_DEBUG opt_ppc.h
|
2009-02-06 10:30:46 +00:00
|
|
|
PPC_PROBE_CHIPSET opt_ppc.h
|
1998-01-31 05:00:21 +00:00
|
|
|
PPS_SYNC opt_ntp.h
|
2005-11-23 18:11:24 +00:00
|
|
|
PREEMPTION opt_sched.h
|
1996-12-23 18:42:02 +00:00
|
|
|
QUOTA
|
2003-01-26 05:29:12 +00:00
|
|
|
SCHED_4BSD opt_sched.h
|
2008-03-20 01:30:49 +00:00
|
|
|
SCHED_STATS opt_sched.h
|
2003-01-26 05:29:12 +00:00
|
|
|
SCHED_ULE opt_sched.h
|
2004-06-29 02:30:12 +00:00
|
|
|
SLEEPQUEUE_PROFILING
|
2005-07-15 05:12:49 +00:00
|
|
|
SLHCI_DEBUG opt_slhci.h
|
Break out stack(9) from ddb(4):
- Introduce per-architecture stack_machdep.c to hold stack_save(9).
- Introduce per-architecture machine/stack.h to capture any common
definitions required between db_trace.c and stack_machdep.c.
- Add new kernel option "options STACK"; we will build in stack(9) if it is
defined, or also if "options DDB" is defined to provide compatibility
with existing users of stack(9).
Add new stack_save_td(9) function, which allows the capture of a stacktrace
of another thread rather than the current thread, which the existing
stack_save(9) was limited to. It requires that the thread be neither
swapped out nor running, which is the responsibility of the consumer to
enforce.
Update stack(9) man page.
Build tested: amd64, arm, i386, ia64, powerpc, sparc64, sun4v
Runtime tested: amd64 (rwatson), arm (cognet), i386 (rwatson)
2007-12-02 20:40:35 +00:00
|
|
|
STACK opt_stack.h
|
2005-12-12 10:15:11 +00:00
|
|
|
SUIDDIR
|
2002-07-15 15:28:16 +00:00
|
|
|
MSGMNB opt_sysvipc.h
|
|
|
|
|
MSGMNI opt_sysvipc.h
|
|
|
|
|
MSGSEG opt_sysvipc.h
|
|
|
|
|
MSGSSZ opt_sysvipc.h
|
|
|
|
|
MSGTQL opt_sysvipc.h
|
2000-05-01 13:33:56 +00:00
|
|
|
SEMMNI opt_sysvipc.h
|
|
|
|
|
SEMMNS opt_sysvipc.h
|
|
|
|
|
SEMMNU opt_sysvipc.h
|
|
|
|
|
SEMMSL opt_sysvipc.h
|
|
|
|
|
SEMOPM opt_sysvipc.h
|
|
|
|
|
SEMUME opt_sysvipc.h
|
2002-07-15 15:28:16 +00:00
|
|
|
SHMALL opt_sysvipc.h
|
|
|
|
|
SHMMAX opt_sysvipc.h
|
|
|
|
|
SHMMAXPGS opt_sysvipc.h
|
|
|
|
|
SHMMIN opt_sysvipc.h
|
|
|
|
|
SHMMNI opt_sysvipc.h
|
|
|
|
|
SHMSEG opt_sysvipc.h
|
|
|
|
|
SYSVMSG opt_sysvipc.h
|
|
|
|
|
SYSVSEM opt_sysvipc.h
|
|
|
|
|
SYSVSHM opt_sysvipc.h
|
2004-02-28 20:56:35 +00:00
|
|
|
SW_WATCHDOG opt_watchdog.h
|
2018-04-19 13:37:59 +00:00
|
|
|
TCPHPTS opt_inet.h
|
2004-06-29 02:30:12 +00:00
|
|
|
TURNSTILE_PROFILING
|
2012-03-16 20:32:11 +00:00
|
|
|
UMTX_PROFILING
|
2016-11-15 01:34:38 +00:00
|
|
|
UMTX_CHAINS opt_global.h
|
2015-02-05 07:51:38 +00:00
|
|
|
VERBOSE_SYSINIT
|
2018-02-13 19:28:02 +00:00
|
|
|
ZSTDIO opt_zstdio.h
|
1996-05-11 04:39:53 +00:00
|
|
|
|
2018-11-06 17:32:07 +00:00
|
|
|
# Sanitizers
|
2019-01-29 11:04:17 +00:00
|
|
|
COVERAGE opt_global.h
|
2021-04-13 20:29:47 +00:00
|
|
|
KASAN opt_global.h
|
2019-01-29 11:04:17 +00:00
|
|
|
KCOV
|
2019-11-21 11:22:08 +00:00
|
|
|
KCSAN opt_global.h
|
2018-11-06 17:32:07 +00:00
|
|
|
KUBSAN opt_global.h
|
|
|
|
|
|
1998-03-28 11:51:01 +00:00
|
|
|
# POSIX kernel options
|
2005-12-03 01:40:38 +00:00
|
|
|
P1003_1B_MQUEUE opt_posix.h
|
2002-09-19 00:48:57 +00:00
|
|
|
P1003_1B_SEMAPHORES opt_posix.h
|
2004-02-25 09:35:35 +00:00
|
|
|
_KPOSIX_PRIORITY_SCHEDULING opt_posix.h
|
1998-03-04 10:27:00 +00:00
|
|
|
|
1996-12-26 23:38:17 +00:00
|
|
|
# Do we want the config file compiled into the kernel?
|
|
|
|
|
INCLUDE_CONFIG_FILE opt_config.h
|
|
|
|
|
|
2002-05-16 21:28:32 +00:00
|
|
|
# Options for static filesystems. These should only be used at config
|
1996-05-11 04:39:53 +00:00
|
|
|
# time, since the corresponding lkms cannot work if there are any static
|
|
|
|
|
# dependencies. Unusability is enforced by hiding the defines for the
|
|
|
|
|
# options in a never-included header.
|
2014-08-17 09:44:42 +00:00
|
|
|
AUTOFS opt_dontuse.h
|
2001-02-04 15:35:10 +00:00
|
|
|
CD9660 opt_dontuse.h
|
1997-12-16 23:59:37 +00:00
|
|
|
EXT2FS opt_dontuse.h
|
2001-05-23 09:42:29 +00:00
|
|
|
FDESCFS opt_dontuse.h
|
2011-03-20 21:05:09 +00:00
|
|
|
FFS opt_dontuse.h
|
2019-03-20 21:48:43 +00:00
|
|
|
FUSEFS opt_dontuse.h
|
1997-12-16 23:59:37 +00:00
|
|
|
MSDOSFS opt_dontuse.h
|
1996-05-11 04:39:53 +00:00
|
|
|
NULLFS opt_dontuse.h
|
|
|
|
|
PROCFS opt_dontuse.h
|
2001-06-11 10:58:07 +00:00
|
|
|
PSEUDOFS opt_dontuse.h
|
2013-06-28 21:00:08 +00:00
|
|
|
SMBFS opt_dontuse.h
|
2007-06-16 01:56:05 +00:00
|
|
|
TMPFS opt_dontuse.h
|
2002-04-14 16:36:49 +00:00
|
|
|
UDF opt_dontuse.h
|
2003-04-15 19:43:52 +00:00
|
|
|
UNIONFS opt_dontuse.h
|
2013-07-03 20:21:39 +00:00
|
|
|
ZFS opt_dontuse.h
|
1996-05-11 04:39:53 +00:00
|
|
|
|
2005-03-14 16:04:27 +00:00
|
|
|
# Pseudofs debugging
|
|
|
|
|
PSEUDOFS_TRACE opt_pseudofs.h
|
|
|
|
|
|
Implement support for RPCSEC_GSS authentication to both the NFS client
and server. This replaces the RPC implementation of the NFS client and
server with the newer RPC implementation originally developed
(actually ported from the userland sunrpc code) to support the NFS
Lock Manager. I have tested this code extensively and I believe it is
stable and that performance is at least equal to the legacy RPC
implementation.
The NFS code currently contains support for both the new RPC
implementation and the older legacy implementation inherited from the
original NFS codebase. The default is to use the new implementation -
add the NFS_LEGACYRPC option to fall back to the old code. When I
merge this support back to RELENG_7, I will probably change this so
that users have to 'opt in' to get the new code.
To use RPCSEC_GSS on either client or server, you must build a kernel
which includes the KGSSAPI option and the crypto device. On the
userland side, you must build at least a new libc, mountd, mount_nfs
and gssd. You must install new versions of /etc/rc.d/gssd and
/etc/rc.d/nfsd and add 'gssd_enable=YES' to /etc/rc.conf.
As long as gssd is running, you should be able to mount an NFS
filesystem from a server that requires RPCSEC_GSS authentication. The
mount itself can happen without any kerberos credentials but all
access to the filesystem will be denied unless the accessing user has
a valid ticket file in the standard place (/tmp/krb5cc_<uid>). There
is currently no support for situations where the ticket file is in a
different place, such as when the user logged in via SSH and has
delegated credentials from that login. This restriction is also
present in Solaris and Linux. In theory, we could improve this in
future, possibly using Brooks Davis' implementation of variant
symlinks.
Supporting RPCSEC_GSS on a server is nearly as simple. You must create
service creds for the server in the form 'nfs/<fqdn>@<REALM>' and
install them in /etc/krb5.keytab. The standard heimdal utility ktutil
makes this fairly easy. After the service creds have been created, you
can add a '-sec=krb5' option to /etc/exports and restart both mountd
and nfsd.
The only other difference an administrator should notice is that nfsd
doesn't fork to create service threads any more. In normal operation,
there will be two nfsd processes, one in userland waiting for TCP
connections and one in the kernel handling requests. The latter
process will create as many kthreads as required - these should be
visible via 'top -H'. The code has some support for varying the number
of service threads according to load but initially at least, nfsd uses
a fixed number of threads according to the value supplied to its '-n'
option.
Sponsored by: Isilon Systems
MFC after: 1 month
2008-11-03 10:38:00 +00:00
|
|
|
# In-kernel GSS-API
|
|
|
|
|
KGSSAPI opt_kgssapi.h
|
|
|
|
|
KGSSAPI_DEBUG opt_kgssapi.h
|
|
|
|
|
|
2003-04-15 19:43:52 +00:00
|
|
|
# These static filesystems have one slightly bogus static dependency in
|
1998-01-24 02:54:56 +00:00
|
|
|
# sys/i386/i386/autoconf.c. If any of these filesystems are
|
|
|
|
|
# statically compiled into the kernel, code for mounting them as root
|
2001-02-04 15:35:10 +00:00
|
|
|
# filesystems will be enabled - but look below.
|
2009-05-28 19:45:11 +00:00
|
|
|
# NFSCL - client
|
|
|
|
|
# NFSD - server
|
|
|
|
|
NFSCL opt_nfs.h
|
|
|
|
|
NFSD opt_nfs.h
|
|
|
|
|
|
2003-09-26 20:26:25 +00:00
|
|
|
# filesystems and libiconv bridge
|
|
|
|
|
CD9660_ICONV opt_dontuse.h
|
|
|
|
|
MSDOSFS_ICONV opt_dontuse.h
|
2003-11-05 06:38:14 +00:00
|
|
|
UDF_ICONV opt_dontuse.h
|
2003-09-26 20:26:25 +00:00
|
|
|
|
1999-11-22 02:45:11 +00:00
|
|
|
# If you are following the conditions in the copyright,
|
|
|
|
|
# you can enable soft-updates which will speed up a lot of thigs
|
1998-03-08 09:59:44 +00:00
|
|
|
# and make the system safer from crashes at the same time.
|
|
|
|
|
# otherwise a STUB module will be compiled in.
|
|
|
|
|
SOFTUPDATES opt_ffs.h
|
|
|
|
|
|
2006-01-06 04:44:09 +00:00
|
|
|
# On small, embedded systems, it can be useful to turn off support for
|
|
|
|
|
# snapshots. It saves about 30-40k for a feature that would be lightly
|
|
|
|
|
# used, if it is used at all.
|
|
|
|
|
NO_FFS_SNAPSHOT opt_ffs.h
|
|
|
|
|
|
Introduce support for POSIX.1e ACLs on UFS-based file systems. This
implementation is still experimental, and while fairly broadly tested,
is not yet intended for production use. Support for POSIX.1e ACLs on
UFS will not be MFC'd to RELENG_4.
This implementation works by providing implementations of VOP_[GS]ETACL()
for FFS, as well as modifying the appropriate access control and file
creation routines. In this implementation, ACLs are backed into extended
attributes; the base ACL (owner, group, other) permissions remain in the
inode for performance and compatibility reasons, so only the extended and
default ACLs are placed in extended attributes. The logic for ACL
evaluation is provided by the fs-independent kern/kern_acl.c.
o Introduce UFS_ACL, a compile-time configuration option that enables
support for ACLs on FFS (and potentially other UFS-based file systems).
o Introduce ufs_getacl(), ufs_setacl(), ufs_aclcheck(), which
respectively get, set, and check the ACLs on the passed vnode.
o Introduce ufs_sync_acl_from_inode(), ufs_sync_inode_from_acl() to
maintain access control information between inode permissions and
extended attribute data.
o Modify ufs_access() to load a file access ACL and invoke
vaccess_acl_posix1e() if ACLs are available on the file system
o Modify ufs_mkdir() and ufs_makeinode() to associate ACLs with newly
created directories and files, inheriting from the parent directory's
default ACL.
o Enable these new vnode operations and conditionally compiled code
paths if UFS_ACL is defined.
A few notes:
o This implementation is fairly widely tested, but still should be
considered experimental.
o Currently, ACLs are not exported via NFS, instead, the summarizing
file mode/etc from the inode is. This results in conservative
protection behavior, similar to the behavior of ACL-nonaware programs
acting locally.
o It is possible that underlying binary data formats associated with
this implementation may change. Consumers of the implementation
should expect to find their local configuration obsoleted in the
next few months, resulting in possible loss of ACL data during an
upgrade.
o The extended attributes interface and implementation is still
undergoing modification to address portable interface concerns, as
well as performance.
o Many applications do not yet correctly handle ACLs. In general,
due to the POSIX.1e ACL model, behavior of ACL-unaware applications
will be conservative with respects to file protection; some caution
is recommended.
o Instructions for configuring and maintaining ACLs on UFS will be
committed in the near future; in the mean time it is possible to
reference the README included in the last UFS ACL distribution
placed in the TrustedBSD web site:
http://www.TrustedBSD.org/downloads/
Substantial debugging, hardware, travel, or connectivity support for this
project was provided by: BSDi, Safeport Network Services, and NAI Labs.
Significant coding contributions were made by Chris Faulhaber. Additional
support was provided by Brian Feldman, Thomas Moestl, and Ilmar Habibulin.
Reviewed by: jedgar, keichii, mckusick, trustedbsd-discuss, freebsd-fs
Obtained from: TrustedBSD Project
2001-03-26 17:53:19 +00:00
|
|
|
# Enabling this option turns on support for Access Control Lists in UFS,
|
|
|
|
|
# which can be used to support high security configurations. Depends on
|
|
|
|
|
# UFS_EXTATTR.
|
|
|
|
|
UFS_ACL opt_ufs.h
|
|
|
|
|
|
2001-03-19 04:35:40 +00:00
|
|
|
# Enabling this option turns on support for extended attributes in UFS-based
|
2002-05-16 21:28:32 +00:00
|
|
|
# filesystems, which can be used to support high security configurations
|
|
|
|
|
# as well as new filesystem features.
|
2001-03-19 04:35:40 +00:00
|
|
|
UFS_EXTATTR opt_ufs.h
|
|
|
|
|
UFS_EXTATTR_AUTOSTART opt_ufs.h
|
Introduce extended attribute support for FFS, allowing arbitrary
(name, value) pairs to be associated with inodes. This support is
used for ACLs, MAC labels, and Capabilities in the TrustedBSD
security extensions, which are currently under development.
In this implementation, attributes are backed to data vnodes in the
style of the quota support in FFS. Support for FFS extended
attributes may be enabled using the FFS_EXTATTR kernel option
(disabled by default). Userland utilities and man pages will be
committed in the next batch. VFS interfaces and man pages have
been in the repo since 4.0-RELEASE and are unchanged.
o ufs/ufs/extattr.h: UFS-specific extattr defines
o ufs/ufs/ufs_extattr.c: bulk of support routines
o ufs/{ufs,ffs,mfs}/*.[ch]: hooks and extattr.h includes
o contrib/softupdates/ffs_softdep.c: extattr.h includes
o conf/options, conf/files, i386/conf/LINT: added FFS_EXTATTR
o coda/coda_vfsops.c: XXX required extattr.h due to ufsmount.h
(This should not be the case, and will be fixed in a future commit)
Currently attributes are not supported in MFS. This will be fixed.
Reviewed by: adrian, bp, freebsd-fs, other unthanked souls
Obtained from: TrustedBSD Project
2000-04-15 03:34:27 +00:00
|
|
|
|
2001-07-10 21:21:29 +00:00
|
|
|
# Enable fast hash lookups for large directories on UFS-based filesystems.
|
|
|
|
|
UFS_DIRHASH opt_ufs.h
|
|
|
|
|
|
2006-10-31 22:22:30 +00:00
|
|
|
# Enable gjournal-based UFS journal.
|
|
|
|
|
UFS_GJOURNAL opt_ufs.h
|
|
|
|
|
|
2003-04-15 19:43:52 +00:00
|
|
|
# The below sentence is not in English, and neither is this one.
|
|
|
|
|
# We plan to remove the static dependences above, with a
|
1998-01-24 02:54:56 +00:00
|
|
|
# <filesystem>_ROOT option to control if it usable as root. This list
|
|
|
|
|
# allows these options to be present in config files already (though
|
|
|
|
|
# they won't make any difference yet).
|
1998-06-30 03:01:37 +00:00
|
|
|
NFS_ROOT opt_nfsroot.h
|
1998-01-24 02:54:56 +00:00
|
|
|
|
2013-06-28 21:00:08 +00:00
|
|
|
# SMB/CIFS requester
|
|
|
|
|
NETSMB opt_netsmb.h
|
|
|
|
|
|
2019-10-17 16:23:03 +00:00
|
|
|
# Enable debugnet(4) networking support.
|
|
|
|
|
DEBUGNET opt_global.h
|
2019-10-17 21:33:01 +00:00
|
|
|
# Enable netdump(4) client support.
|
|
|
|
|
NETDUMP opt_global.h
|
|
|
|
|
# Enable netgdb(4) support.
|
|
|
|
|
NETGDB opt_global.h
|
2018-05-06 00:38:29 +00:00
|
|
|
|
2001-07-26 23:05:35 +00:00
|
|
|
# Options used only in subr_param.c.
|
1999-01-14 03:30:48 +00:00
|
|
|
HZ opt_param.h
|
1999-04-09 16:28:11 +00:00
|
|
|
MAXFILES opt_param.h
|
1996-12-23 18:42:02 +00:00
|
|
|
NBUF opt_param.h
|
1998-11-05 14:28:26 +00:00
|
|
|
NSFBUFS opt_param.h
|
2001-08-20 00:41:12 +00:00
|
|
|
VM_BCACHE_SIZE_MAX opt_param.h
|
|
|
|
|
VM_SWZONE_SIZE_MAX opt_param.h
|
2001-07-26 23:05:35 +00:00
|
|
|
MAXUSERS
|
2001-10-10 23:06:54 +00:00
|
|
|
DFLDSIZ opt_param.h
|
|
|
|
|
MAXDSIZ opt_param.h
|
|
|
|
|
MAXSSIZ opt_param.h
|
1996-03-29 13:51:30 +00:00
|
|
|
|
|
|
|
|
# Generic SCSI options.
|
1998-09-15 09:59:15 +00:00
|
|
|
CAM_MAX_HIGHPOWER opt_cam.h
|
|
|
|
|
CAMDEBUG opt_cam.h
|
2012-06-07 10:05:51 +00:00
|
|
|
CAM_DEBUG_COMPILE opt_cam.h
|
1999-08-16 22:39:53 +00:00
|
|
|
CAM_DEBUG_DELAY opt_cam.h
|
1998-09-15 09:59:15 +00:00
|
|
|
CAM_DEBUG_BUS opt_cam.h
|
|
|
|
|
CAM_DEBUG_TARGET opt_cam.h
|
|
|
|
|
CAM_DEBUG_LUN opt_cam.h
|
|
|
|
|
CAM_DEBUG_FLAGS opt_cam.h
|
2013-04-20 00:33:37 +00:00
|
|
|
CAM_BOOT_DELAY opt_cam.h
|
2016-06-23 23:20:58 +00:00
|
|
|
CAM_IOSCHED_DYNAMIC opt_cam.h
|
2019-11-16 19:12:17 +00:00
|
|
|
CAM_IO_STATS opt_cam.h
|
2018-03-14 17:53:37 +00:00
|
|
|
CAM_TEST_FAILURE opt_cam.h
|
1996-12-23 18:42:02 +00:00
|
|
|
SCSI_DELAY opt_scsi.h
|
1998-09-15 09:59:15 +00:00
|
|
|
SCSI_NO_SENSE_STRINGS opt_scsi.h
|
|
|
|
|
SCSI_NO_OP_STRINGS opt_scsi.h
|
|
|
|
|
|
2011-04-08 14:42:29 +00:00
|
|
|
# Options used only in cam/ata/ata_da.c
|
2013-04-06 19:12:49 +00:00
|
|
|
ATA_STATIC_ID opt_ada.h
|
2011-04-08 14:42:29 +00:00
|
|
|
|
1998-09-15 09:59:15 +00:00
|
|
|
# Options used only in cam/scsi/scsi_cd.c
|
|
|
|
|
CHANGER_MIN_BUSY_SECONDS opt_cd.h
|
|
|
|
|
CHANGER_MAX_BUSY_SECONDS opt_cd.h
|
1996-03-29 13:51:30 +00:00
|
|
|
|
2018-01-25 21:38:30 +00:00
|
|
|
# Options used only in cam/scsi/scsi_da.c
|
|
|
|
|
DA_TRACK_REFS opt_da.h
|
|
|
|
|
|
1999-08-20 03:48:11 +00:00
|
|
|
# Options used only in cam/scsi/scsi_sa.c.
|
2001-07-02 17:48:59 +00:00
|
|
|
SA_IO_TIMEOUT opt_sa.h
|
1998-10-02 05:15:51 +00:00
|
|
|
SA_SPACE_TIMEOUT opt_sa.h
|
|
|
|
|
SA_REWIND_TIMEOUT opt_sa.h
|
|
|
|
|
SA_ERASE_TIMEOUT opt_sa.h
|
1999-10-02 20:23:52 +00:00
|
|
|
SA_1FM_AT_EOD opt_sa.h
|
1996-06-16 19:58:24 +00:00
|
|
|
|
1999-08-20 03:48:11 +00:00
|
|
|
# Options used only in cam/scsi/scsi_pt.c
|
|
|
|
|
SCSI_PT_DEFAULT_TIMEOUT opt_pt.h
|
|
|
|
|
|
2000-01-15 07:12:09 +00:00
|
|
|
# Options used only in cam/scsi/scsi_ses.c
|
|
|
|
|
SES_ENABLE_PASSTHROUGH opt_ses.h
|
|
|
|
|
|
1999-12-16 16:09:57 +00:00
|
|
|
# Options used in dev/sym/ (Symbios SCSI driver).
|
|
|
|
|
SYM_SETUP_SCSI_DIFF opt_sym.h #-HVD support for 825a, 875, 885
|
|
|
|
|
# disabled:0 (default), enabled:1
|
|
|
|
|
SYM_SETUP_PCI_PARITY opt_sym.h #-PCI parity checking
|
|
|
|
|
# disabled:0, enabled:1 (default)
|
|
|
|
|
SYM_SETUP_MAX_LUN opt_sym.h #-Number of LUNs supported
|
|
|
|
|
# default:8, range:[1..64]
|
|
|
|
|
|
2002-04-04 23:54:58 +00:00
|
|
|
# Options used only in dev/isp/*
|
1999-11-21 03:00:19 +00:00
|
|
|
ISP_TARGET_MODE opt_isp.h
|
2002-04-04 23:54:58 +00:00
|
|
|
ISP_FW_CRASH_DUMP opt_isp.h
|
2006-04-18 22:24:55 +00:00
|
|
|
ISP_DEFAULT_ROLES opt_isp.h
|
2010-11-27 20:38:26 +00:00
|
|
|
ISP_INTERNAL_TARGET opt_isp.h
|
2016-12-20 21:17:07 +00:00
|
|
|
ISP_FCTAPE_OFF opt_isp.h
|
1999-02-09 01:02:37 +00:00
|
|
|
|
2007-07-24 15:35:02 +00:00
|
|
|
# Options used only in dev/iscsi
|
|
|
|
|
ISCSI_INITIATOR_DEBUG opt_iscsi_initiator.h
|
|
|
|
|
|
1996-03-29 13:51:30 +00:00
|
|
|
# Net stuff.
|
2000-06-20 01:09:23 +00:00
|
|
|
ACCEPT_FILTER_DATA
|
2008-07-18 14:44:51 +00:00
|
|
|
ACCEPT_FILTER_DNS
|
2000-06-20 01:09:23 +00:00
|
|
|
ACCEPT_FILTER_HTTP
|
2004-06-13 17:29:10 +00:00
|
|
|
ALTQ opt_global.h
|
|
|
|
|
ALTQ_CBQ opt_altq.h
|
|
|
|
|
ALTQ_CDNR opt_altq.h
|
2015-08-21 22:02:22 +00:00
|
|
|
ALTQ_CODEL opt_altq.h
|
2004-06-13 17:29:10 +00:00
|
|
|
ALTQ_DEBUG opt_altq.h
|
2008-08-27 01:31:42 +00:00
|
|
|
ALTQ_HFSC opt_altq.h
|
2015-06-24 19:16:41 +00:00
|
|
|
ALTQ_FAIRQ opt_altq.h
|
2008-08-27 01:31:42 +00:00
|
|
|
ALTQ_NOPCC opt_altq.h
|
|
|
|
|
ALTQ_PRIQ opt_altq.h
|
|
|
|
|
ALTQ_RED opt_altq.h
|
|
|
|
|
ALTQ_RIO opt_altq.h
|
2004-07-08 22:35:36 +00:00
|
|
|
BOOTP opt_bootp.h
|
2008-05-16 06:27:03 +00:00
|
|
|
BOOTP_BLOCKSIZE opt_bootp.h
|
2004-07-08 22:35:36 +00:00
|
|
|
BOOTP_COMPAT opt_bootp.h
|
|
|
|
|
BOOTP_NFSROOT opt_bootp.h
|
|
|
|
|
BOOTP_NFSV3 opt_bootp.h
|
|
|
|
|
BOOTP_WIRED_TO opt_bootp.h
|
2005-10-05 10:09:17 +00:00
|
|
|
DEVICE_POLLING
|
2008-08-27 01:31:42 +00:00
|
|
|
DUMMYNET opt_ipdn.h
|
Implement kernel support for hardware rate limited sockets.
- Add RATELIMIT kernel configuration keyword which must be set to
enable the new functionality.
- Add support for hardware driven, Receive Side Scaling, RSS aware, rate
limited sendqueues and expose the functionality through the already
established SO_MAX_PACING_RATE setsockopt(). The API support rates in
the range from 1 to 4Gbytes/s which are suitable for regular TCP and
UDP streams. The setsockopt(2) manual page has been updated.
- Add rate limit function callback API to "struct ifnet" which supports
the following operations: if_snd_tag_alloc(), if_snd_tag_modify(),
if_snd_tag_query() and if_snd_tag_free().
- Add support to ifconfig to view, set and clear the IFCAP_TXRTLMT
flag, which tells if a network driver supports rate limiting or not.
- This patch also adds support for rate limiting through VLAN and LAGG
intermediate network devices.
- How rate limiting works:
1) The userspace application calls setsockopt() after accepting or
making a new connection to set the rate which is then stored in the
socket structure in the kernel. Later on when packets are transmitted
a check is made in the transmit path for rate changes. A rate change
implies a non-blocking ifp->if_snd_tag_alloc() call will be made to the
destination network interface, which then sets up a custom sendqueue
with the given rate limitation parameter. A "struct m_snd_tag" pointer is
returned which serves as a "snd_tag" hint in the m_pkthdr for the
subsequently transmitted mbufs.
2) When the network driver sees the "m->m_pkthdr.snd_tag" different
from NULL, it will move the packets into a designated rate limited sendqueue
given by the snd_tag pointer. It is up to the individual drivers how the rate
limited traffic will be rate limited.
3) Route changes are detected by the NIC drivers in the ifp->if_transmit()
routine when the ifnet pointer in the incoming snd_tag mismatches the
one of the network interface. The network adapter frees the mbuf and
returns EAGAIN which causes the ip_output() to release and clear the send
tag. Upon next ip_output() a new "snd_tag" will be tried allocated.
4) When the PCB is detached the custom sendqueue will be released by a
non-blocking ifp->if_snd_tag_free() call to the currently bound network
interface.
Reviewed by: wblock (manpages), adrian, gallatin, scottl (network)
Differential Revision: https://reviews.freebsd.org/D3687
Sponsored by: Mellanox Technologies
MFC after: 3 months
2017-01-18 13:31:17 +00:00
|
|
|
RATELIMIT opt_ratelimit.h
|
2018-05-29 14:04:57 +00:00
|
|
|
RATELIMIT_DEBUG opt_ratelimit.h
|
1998-01-08 23:42:31 +00:00
|
|
|
INET opt_inet.h
|
1999-12-07 17:39:16 +00:00
|
|
|
INET6 opt_inet6.h
|
2019-10-07 19:05:05 +00:00
|
|
|
STATS opt_global.h
|
1997-11-05 20:17:23 +00:00
|
|
|
IPDIVERT
|
1999-11-23 21:44:59 +00:00
|
|
|
IPFILTER opt_ipfilter.h
|
2008-08-27 01:31:42 +00:00
|
|
|
IPFILTER_DEFAULT_BLOCK opt_ipfilter.h
|
1999-11-23 21:44:59 +00:00
|
|
|
IPFILTER_LOG opt_ipfilter.h
|
2005-04-28 16:33:15 +00:00
|
|
|
IPFILTER_LOOKUP opt_ipfilter.h
|
1996-06-12 19:34:33 +00:00
|
|
|
IPFIREWALL opt_ipfw.h
|
1997-09-10 03:07:14 +00:00
|
|
|
IPFIREWALL_DEFAULT_TO_ACCEPT opt_ipfw.h
|
2007-01-03 11:12:54 +00:00
|
|
|
IPFIREWALL_NAT opt_ipfw.h
|
2016-08-15 04:59:38 +00:00
|
|
|
IPFIREWALL_NAT64 opt_ipfw.h
|
2016-07-18 19:46:31 +00:00
|
|
|
IPFIREWALL_NPTV6 opt_ipfw.h
|
2008-08-27 01:31:42 +00:00
|
|
|
IPFIREWALL_VERBOSE opt_ipfw.h
|
|
|
|
|
IPFIREWALL_VERBOSE_LIMIT opt_ipfw.h
|
2017-04-03 03:07:48 +00:00
|
|
|
IPFIREWALL_PMOD opt_ipfw.h
|
2008-08-27 01:31:42 +00:00
|
|
|
IPSEC opt_ipsec.h
|
|
|
|
|
IPSEC_DEBUG opt_ipsec.h
|
2017-02-06 08:49:57 +00:00
|
|
|
IPSEC_SUPPORT opt_ipsec.h
|
1999-02-22 18:19:57 +00:00
|
|
|
IPSTEALTH
|
Add kernel-side support for in-kernel TLS.
KTLS adds support for in-kernel framing and encryption of Transport
Layer Security (1.0-1.2) data on TCP sockets. KTLS only supports
offload of TLS for transmitted data. Key negotation must still be
performed in userland. Once completed, transmit session keys for a
connection are provided to the kernel via a new TCP_TXTLS_ENABLE
socket option. All subsequent data transmitted on the socket is
placed into TLS frames and encrypted using the supplied keys.
Any data written to a KTLS-enabled socket via write(2), aio_write(2),
or sendfile(2) is assumed to be application data and is encoded in TLS
frames with an application data type. Individual records can be sent
with a custom type (e.g. handshake messages) via sendmsg(2) with a new
control message (TLS_SET_RECORD_TYPE) specifying the record type.
At present, rekeying is not supported though the in-kernel framework
should support rekeying.
KTLS makes use of the recently added unmapped mbufs to store TLS
frames in the socket buffer. Each TLS frame is described by a single
ext_pgs mbuf. The ext_pgs structure contains the header of the TLS
record (and trailer for encrypted records) as well as references to
the associated TLS session.
KTLS supports two primary methods of encrypting TLS frames: software
TLS and ifnet TLS.
Software TLS marks mbufs holding socket data as not ready via
M_NOTREADY similar to sendfile(2) when TLS framing information is
added to an unmapped mbuf in ktls_frame(). ktls_enqueue() is then
called to schedule TLS frames for encryption. In the case of
sendfile_iodone() calls ktls_enqueue() instead of pru_ready() leaving
the mbufs marked M_NOTREADY until encryption is completed. For other
writes (vn_sendfile when pages are available, write(2), etc.), the
PRUS_NOTREADY is set when invoking pru_send() along with invoking
ktls_enqueue().
A pool of worker threads (the "KTLS" kernel process) encrypts TLS
frames queued via ktls_enqueue(). Each TLS frame is temporarily
mapped using the direct map and passed to a software encryption
backend to perform the actual encryption.
(Note: The use of PHYS_TO_DMAP could be replaced with sf_bufs if
someone wished to make this work on architectures without a direct
map.)
KTLS supports pluggable software encryption backends. Internally,
Netflix uses proprietary pure-software backends. This commit includes
a simple backend in a new ktls_ocf.ko module that uses the kernel's
OpenCrypto framework to provide AES-GCM encryption of TLS frames. As
a result, software TLS is now a bit of a misnomer as it can make use
of hardware crypto accelerators.
Once software encryption has finished, the TLS frame mbufs are marked
ready via pru_ready(). At this point, the encrypted data appears as
regular payload to the TCP stack stored in unmapped mbufs.
ifnet TLS permits a NIC to offload the TLS encryption and TCP
segmentation. In this mode, a new send tag type (IF_SND_TAG_TYPE_TLS)
is allocated on the interface a socket is routed over and associated
with a TLS session. TLS records for a TLS session using ifnet TLS are
not marked M_NOTREADY but are passed down the stack unencrypted. The
ip_output_send() and ip6_output_send() helper functions that apply
send tags to outbound IP packets verify that the send tag of the TLS
record matches the outbound interface. If so, the packet is tagged
with the TLS send tag and sent to the interface. The NIC device
driver must recognize packets with the TLS send tag and schedule them
for TLS encryption and TCP segmentation. If the the outbound
interface does not match the interface in the TLS send tag, the packet
is dropped. In addition, a task is scheduled to refresh the TLS send
tag for the TLS session. If a new TLS send tag cannot be allocated,
the connection is dropped. If a new TLS send tag is allocated,
however, subsequent packets will be tagged with the correct TLS send
tag. (This latter case has been tested by configuring both ports of a
Chelsio T6 in a lagg and failing over from one port to another. As
the connections migrated to the new port, new TLS send tags were
allocated for the new port and connections resumed without being
dropped.)
ifnet TLS can be enabled and disabled on supported network interfaces
via new '[-]txtls[46]' options to ifconfig(8). ifnet TLS is supported
across both vlan devices and lagg interfaces using failover, lacp with
flowid enabled, or lacp with flowid enabled.
Applications may request the current KTLS mode of a connection via a
new TCP_TXTLS_MODE socket option. They can also use this socket
option to toggle between software and ifnet TLS modes.
In addition, a testing tool is available in tools/tools/switch_tls.
This is modeled on tcpdrop and uses similar syntax. However, instead
of dropping connections, -s is used to force KTLS connections to
switch to software TLS and -i is used to switch to ifnet TLS.
Various sysctls and counters are available under the kern.ipc.tls
sysctl node. The kern.ipc.tls.enable node must be set to true to
enable KTLS (it is off by default). The use of unmapped mbufs must
also be enabled via kern.ipc.mb_use_ext_pgs to enable KTLS.
KTLS is enabled via the KERN_TLS kernel option.
This patch is the culmination of years of work by several folks
including Scott Long and Randall Stewart for the original design and
implementation; Drew Gallatin for several optimizations including the
use of ext_pgs mbufs, the M_NOTREADY mechanism for TLS records
awaiting software encryption, and pluggable software crypto backends;
and John Baldwin for modifications to support hardware TLS offload.
Reviewed by: gallatin, hselasky, rrs
Obtained from: Netflix
Sponsored by: Netflix, Chelsio Communications
Differential Revision: https://reviews.freebsd.org/D21277
2019-08-27 00:01:56 +00:00
|
|
|
KERN_TLS
|
2008-08-27 01:31:42 +00:00
|
|
|
KRPC
|
|
|
|
|
LIBALIAS
|
2001-02-24 15:44:30 +00:00
|
|
|
LIBMCHAIN
|
2008-04-29 21:23:21 +00:00
|
|
|
MBUF_PROFILING
|
2008-08-27 01:31:42 +00:00
|
|
|
MBUF_STRESS_TEST
|
|
|
|
|
MROUTING opt_mrouting.h
|
|
|
|
|
NFSLOCKD
|
Implement a CPU-affine TCP and UDP connection lookup data structure,
struct inpcbgroup. pcbgroups, or "connection groups", supplement the
existing inpcbinfo connection hash table, which when pcbgroups are
enabled, might now be thought of more usefully as a per-protocol
4-tuple reservation table.
Connections are assigned to connection groups base on a hash of their
4-tuple; wildcard sockets require special handling, and are members
of all connection groups. During a connection lookup, a
per-connection group lock is employed rather than the global pcbinfo
lock. By aligning connection groups with input path processing,
connection groups take on an effective CPU affinity, especially when
aligned with RSS work placement (see a forthcoming commit for
details). This eliminates cache line migration associated with
global, protocol-layer data structures in steady state TCP and UDP
processing (with the exception of protocol-layer statistics; further
commit to follow).
Elements of this approach were inspired by Willman, Rixner, and Cox's
2006 USENIX paper, "An Evaluation of Network Stack Parallelization
Strategies in Modern Operating Systems". However, there are also
significant differences: we maintain the inpcb lock, rather than using
the connection group lock for per-connection state.
Likewise, the focus of this implementation is alignment with NIC
packet distribution strategies such as RSS, rather than pure software
strategies. Despite that focus, software distribution is supported
through the parallel netisr implementation, and works well in
configurations where the number of hardware threads is greater than
the number of NIC input queues, such as in the RMI XLR threaded MIPS
architecture.
Another important difference is the continued maintenance of existing
hash tables as "reservation tables" -- these are useful both to
distinguish the resource allocation aspect of protocol name management
and the more common-case lookup aspect. In configurations where
connection tables are aligned with hardware hashes, it is desirable to
use the traditional lookup tables for loopback or encapsulated traffic
rather than take the expense of hardware hashes that are hard to
implement efficiently in software (such as RSS Toeplitz).
Connection group support is enabled by compiling "options PCBGROUP"
into your kernel configuration; for the time being, this is an
experimental feature, and hence is not enabled by default.
Subject to the limited MFCability of change dependencies in inpcb,
and its change to the inpcbinfo init function signature, this change
in principle could be merged to FreeBSD 8.x.
Reviewed by: bz
Sponsored by: Juniper Networks, Inc.
2011-06-06 12:55:02 +00:00
|
|
|
PCBGROUP opt_pcbgroup.h
|
2012-09-18 11:07:19 +00:00
|
|
|
PF_DEFAULT_TO_DROP opt_pf.h
|
2020-10-03 10:47:17 +00:00
|
|
|
ROUTE_MPATH opt_route.h
|
2008-08-27 01:31:42 +00:00
|
|
|
ROUTETABLES opt_route.h
|
Add modular fib lookup framework.
This change introduces framework that allows to dynamically
attach or detach longest prefix match (lpm) lookup algorithms
to speed up datapath route tables lookups.
Framework takes care of handling initial synchronisation,
route subscription, nhop/nhop groups reference and indexing,
dataplane attachments and fib instance algorithm setup/teardown.
Framework features automatic algorithm selection, allowing for
picking the best matching algorithm on-the-fly based on the
amount of routes in the routing table.
Currently framework code is guarded under FIB_ALGO config option.
An idea is to enable it by default in the next couple of weeks.
The following algorithms are provided by default:
IPv4:
* bsearch4 (lockless binary search in a special IP array), tailored for
small-fib (<16 routes)
* radix4_lockless (lockless immutable radix, re-created on every rtable change),
tailored for small-fib (<1000 routes)
* radix4 (base system radix backend)
* dpdk_lpm4 (DPDK DIR24-8-based lookups), lockless datastrucure, optimized
for large-fib (D27412)
IPv6:
* radix6_lockless (lockless immutable radix, re-created on every rtable change),
tailed for small-fib (<1000 routes)
* radix6 (base system radix backend)
* dpdk_lpm6 (DPDK DIR24-8-based lookups), lockless datastrucure, optimized
for large-fib (D27412)
Performance changes:
Micro benchmarks (I7-7660U, single-core lookups, 2048k dst, code in D27604):
IPv4:
8 routes:
radix4: ~20mpps
radix4_lockless: ~24.8mpps
bsearch4: ~69mpps
dpdk_lpm4: ~67 mpps
700k routes:
radix4_lockless: 3.3mpps
dpdk_lpm4: 46mpps
IPv6:
8 routes:
radix6_lockless: ~20mpps
dpdk_lpm6: ~70mpps
100k routes:
radix6_lockless: 13.9mpps
dpdk_lpm6: 57mpps
Forwarding benchmarks:
+ 10-15% IPv4 forwarding performance (small-fib, bsearch4)
+ 25% IPv4 forwarding performance (full-view, dpdk_lpm4)
+ 20% IPv6 forwarding performance (full-view, dpdk_lpm6)
Control:
Framwork adds the following runtime sysctls:
List algos
* net.route.algo.inet.algo_list: bsearch4, radix4_lockless, radix4
* net.route.algo.inet6.algo_list: radix6_lockless, radix6, dpdk_lpm6
Debug level (7=LOG_DEBUG, per-route)
net.route.algo.debug_level: 5
Algo selection (currently only for fib 0):
net.route.algo.inet.algo: bsearch4
net.route.algo.inet6.algo: radix6_lockless
Support for manually changing algos in non-default fib will be added
soon. Some sysctl names will be changed in the near future.
Differential Revision: https://reviews.freebsd.org/D27401
2020-12-25 10:39:52 +00:00
|
|
|
FIB_ALGO opt_route.h
|
Several years after initial development, merge prototype support for
linking NIC Receive Side Scaling (RSS) to the network stack's
connection-group implementation. This prototype (and derived patches)
are in use at Juniper and several other FreeBSD-using companies, so
despite some reservations about its maturity, merge the patch to the
base tree so that it can be iteratively refined in collaboration rather
than maintained as a set of gradually diverging patch sets.
(1) Merge a software implementation of the Toeplitz hash specified in
RSS implemented by David Malone. This is used to allow suitable
pcbgroup placement of connections before the first packet is
received from the NIC. Software hashing is generally avoided,
however, due to high cost of the hash on general-purpose CPUs.
(2) In in_rss.c, maintain authoritative versions of RSS state intended
to be pushed to each NIC, including keying material, hash
algorithm/ configuration, and buckets. Provide software-facing
interfaces to hash 2- and 4-tuples for IPv4 and IPv6 using both
the RSS standardised Toeplitz and a 'naive' variation with a hash
efficient in software but with poor distribution properties.
Implement rss_m2cpuid()to be used by netisr and other load
balancing code to look up the CPU on which an mbuf should be
processed.
(3) In the Ethernet link layer, allow netisr distribution using RSS as
a source of policy as an alternative to source ordering; continue
to default to direct dispatch (i.e., don't try and requeue packets
for processing on the 'right' CPU if they arrive in a directly
dispatchable context).
(4) Allow RSS to control tuning of connection groups in order to align
groups with RSS buckets. If a packet arrives on a protocol using
connection groups, and contains a suitable hardware-generated
hash, use that hash value to select the connection group for pcb
lookup for both IPv4 and IPv6. If no hardware-generated Toeplitz
hash is available, we fall back on regular PCB lookup risking
contention rather than pay the cost of Toeplitz in software --
this is a less scalable but, at my last measurement, faster
approach. As core counts go up, we may want to revise this
strategy despite CPU overhead.
Where device drivers suitably configure NICs, and connection groups /
RSS are enabled, this should avoid both lock and line contention during
connection lookup for TCP. This commit does not modify any device
drivers to tune device RSS configuration to the global RSS
configuration; patches are in circulation to do this for at least
Chelsio T3 and Intel 1G/10G drivers. Currently, the KPI for device
drivers is not particularly robust, nor aware of more advanced features
such as runtime reconfiguration/rebalancing. This will hopefully prove
a useful starting point for refinement.
No MFC is scheduled as we will first want to nail down a more mature
and maintainable KPI/KBI for device drivers.
Sponsored by: Juniper Networks (original work)
Sponsored by: EMC/Isilon (patch update and merge)
2014-03-15 00:57:50 +00:00
|
|
|
RSS opt_rss.h
|
1999-08-10 09:42:32 +00:00
|
|
|
SLIP_IFF_OPTS opt_slip.h
|
1997-09-16 18:36:06 +00:00
|
|
|
TCPDEBUG
|
There are times when it would be really nice to have a record of the last few
packets and/or state transitions from each TCP socket. That would help with
narrowing down certain problems we see in the field that are hard to reproduce
without understanding the history of how we got into a certain state. This
change provides just that.
It saves copies of the last N packets in a list in the tcpcb. When the tcpcb is
destroyed, the list is freed. I thought this was likely to be more
performance-friendly than saving copies of the tcpcb. Plus, with the packets,
you should be able to reverse-engineer what happened to the tcpcb.
To enable the feature, you will need to compile a kernel with the TCPPCAP
option. Even then, the feature defaults to being deactivated. You can activate
it by setting a positive value for the number of captured packets. You can do
that on either a global basis or on a per-socket basis (via a setsockopt call).
There is no way to get the packets out of the kernel other than using kmem or
getting a coredump. I thought that would help some of the legal/privacy concerns
regarding such a feature. However, it should be possible to add a future effort
to export them in PCAP format.
I tested this at low scale, and found that there were no mbuf leaks and the peak
mbuf usage appeared to be unchanged with and without the feature.
The main performance concern I can envision is the number of mbufs that would be
used on systems with a large number of sockets. If you save five packets per
direction per socket and have 3,000 sockets, that will consume at least 30,000
mbufs just to keep these packets. I tried to reduce the concerns associated with
this by limiting the number of clusters (not mbufs) that could be used for this
feature. Again, in my testing, that appears to work correctly.
Differential Revision: D3100
Submitted by: Jonathan Looney <jlooney at juniper dot net>
Reviewed by: gnn, hiren
2015-10-14 00:35:37 +00:00
|
|
|
TCPPCAP opt_global.h
|
2015-04-29 12:37:45 +00:00
|
|
|
SIFTR
|
2018-03-24 12:48:10 +00:00
|
|
|
TCP_BLACKBOX opt_global.h
|
In the TCP stack, the hhook(9) framework provides hooks for kernel modules
to add actions that run when a TCP frame is sent or received on a TCP
session in the ESTABLISHED state. In the base tree, this functionality is
only used for the h_ertt module, which is used by the cc_cdg, cc_chd, cc_hd,
and cc_vegas congestion control modules.
Presently, we incur overhead to check for hooks each time a TCP frame is
sent or received on an ESTABLISHED TCP session.
This change adds a new compile-time option (TCP_HHOOK) to determine whether
to include the hhook(9) framework for TCP. To retain backwards
compatibility, I added the TCP_HHOOK option to every configuration file that
already defined "options INET". (Therefore, this patch introduces no
functional change. In order to see a functional difference, you need to
compile a custom kernel without the TCP_HHOOK option.) This change will
allow users to easily exclude this functionality from their kernel, should
they wish to do so.
Note that any users who use a custom kernel configuration and use one of the
congestion control modules listed above will need to add the TCP_HHOOK
option to their kernel configuration.
Reviewed by: rrs, lstewart, hiren (previous version), sjg (makefiles only)
Sponsored by: Netflix
Differential Revision: https://reviews.freebsd.org/D8185
2016-10-12 02:16:42 +00:00
|
|
|
TCP_HHOOK opt_inet.h
|
2012-06-19 07:34:13 +00:00
|
|
|
TCP_OFFLOAD opt_inet.h # Enable code to dispatch TCP offloading
|
2015-12-24 19:09:48 +00:00
|
|
|
TCP_RFC7413 opt_inet.h
|
|
|
|
|
TCP_RFC7413_MAX_KEYS opt_inet.h
|
2018-02-26 02:53:22 +00:00
|
|
|
TCP_RFC7413_MAX_PSKS opt_inet.h
|
2017-02-06 08:49:57 +00:00
|
|
|
TCP_SIGNATURE opt_ipsec.h
|
Merge the //depot/user/yar/vlan branch into CVS. It contains some collective
work by yar, thompsa and myself. The checksum offloading part also involves
work done by Mihail Balikov.
The most important changes:
o Instead of global linked list of all vlan softc use a per-trunk
hash. The size of hash is dynamically adjusted, depending on
number of entries. This changes struct ifnet, replacing counter
of vlans with a pointer to trunk structure. This change is an
improvement for setups with big number of VLANs, several interfaces
and several CPUs. It is a small regression for a setup with a single
VLAN interface.
An alternative to dynamic hash is a per-trunk static array with
4096 entries, which is a compile time option - VLAN_ARRAY. In my
experiments the array is not an improvement, probably because such
a big trunk structure doesn't fit into CPU cache.
o Introduce an UMA zone for VLAN tags. Since drivers depend on it,
the zone is declared in kern_mbuf.c, not in optional vlan(4) driver.
This change is a big improvement for any setup utilizing vlan(4).
o Use rwlock(9) instead of mutex(9) for locking. We are the first
ones to do this! :)
o Some drivers can do hardware VLAN tagging + hardware checksum
offloading. Add an infrastructure for this. Whenever vlan(4) is
attached to a parent or parent configuration is changed, the flags
on vlan(4) interface are updated.
In collaboration with: yar, thompsa
In collaboration with: Mihail Balikov <mihail.balikov interbgc.com>
2006-01-30 13:45:15 +00:00
|
|
|
VLAN_ARRAY opt_vlan.h
|
2020-04-17 06:04:20 +00:00
|
|
|
XDR
|
2000-07-20 00:35:37 +00:00
|
|
|
XBONEHACK
|
1998-01-26 18:31:18 +00:00
|
|
|
|
2006-11-03 15:23:16 +00:00
|
|
|
#
|
|
|
|
|
# SCTP
|
|
|
|
|
#
|
|
|
|
|
SCTP opt_sctp.h
|
2020-06-18 19:32:34 +00:00
|
|
|
SCTP_SUPPORT opt_sctp.h
|
2007-06-14 22:59:04 +00:00
|
|
|
SCTP_DEBUG opt_sctp.h # Enable debug printfs
|
2009-02-06 10:30:46 +00:00
|
|
|
SCTP_LOCK_LOGGING opt_sctp.h # Log to KTR lock activity
|
|
|
|
|
SCTP_MBUF_LOGGING opt_sctp.h # Log to KTR general mbuf aloc/free
|
2007-06-14 22:59:04 +00:00
|
|
|
SCTP_MBCNT_LOGGING opt_sctp.h # Log to KTR mbcnt activity
|
2009-02-06 10:30:46 +00:00
|
|
|
SCTP_PACKET_LOGGING opt_sctp.h # Log to a packet buffer last N packets
|
|
|
|
|
SCTP_LTRACE_CHUNKS opt_sctp.h # Log to KTR chunks processed
|
|
|
|
|
SCTP_LTRACE_ERRORS opt_sctp.h # Log to KTR error returns.
|
2014-06-10 16:11:20 +00:00
|
|
|
SCTP_USE_PERCPU_STAT opt_sctp.h # Use per cpu stats.
|
|
|
|
|
SCTP_MCORE_INPUT opt_sctp.h # Have multiple input threads for input mbufs
|
|
|
|
|
SCTP_LOCAL_TRACE_BUF opt_sctp.h # Use tracebuffer exported via sysctl
|
2014-08-13 15:50:16 +00:00
|
|
|
SCTP_DETAILED_STR_STATS opt_sctp.h # Use per PR-SCTP policy stream stats
|
2007-06-14 22:59:04 +00:00
|
|
|
#
|
|
|
|
|
#
|
|
|
|
|
#
|
2006-11-03 15:23:16 +00:00
|
|
|
|
1999-10-21 09:06:11 +00:00
|
|
|
# Netgraph(4). Use option NETGRAPH to enable the base netgraph code.
|
|
|
|
|
# Each netgraph node type can be either be compiled into the kernel
|
|
|
|
|
# or loaded dynamically. To get the former, include the corresponding
|
2000-09-01 01:37:13 +00:00
|
|
|
# option below. Each type has its own man page, e.g. ng_async(4).
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH
|
2005-05-16 08:25:55 +00:00
|
|
|
NETGRAPH_DEBUG opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_ASYNC opt_netgraph.h
|
2004-03-08 10:54:35 +00:00
|
|
|
NETGRAPH_ATMLLC opt_netgraph.h
|
2004-04-27 16:38:15 +00:00
|
|
|
NETGRAPH_ATM_ATMPIF opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_BT3C opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_H4 opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_HCI opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_L2CAP opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_SOCKET opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_UBT opt_netgraph.h
|
|
|
|
|
NETGRAPH_BLUETOOTH_UBTBCMFW opt_netgraph.h
|
1999-12-03 21:21:49 +00:00
|
|
|
NETGRAPH_BPF opt_netgraph.h
|
2000-09-01 01:37:13 +00:00
|
|
|
NETGRAPH_BRIDGE opt_netgraph.h
|
2007-05-15 16:43:01 +00:00
|
|
|
NETGRAPH_CAR opt_netgraph.h
|
2018-12-12 20:40:01 +00:00
|
|
|
NETGRAPH_CHECKSUM opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_CISCO opt_netgraph.h
|
2006-12-29 13:16:43 +00:00
|
|
|
NETGRAPH_DEFLATE opt_netgraph.h
|
2004-07-20 12:42:54 +00:00
|
|
|
NETGRAPH_DEVICE opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_ECHO opt_netgraph.h
|
2004-06-27 02:25:38 +00:00
|
|
|
NETGRAPH_EIFACE opt_netgraph.h
|
2000-06-26 23:34:54 +00:00
|
|
|
NETGRAPH_ETHER opt_netgraph.h
|
2008-12-25 07:34:14 +00:00
|
|
|
NETGRAPH_ETHER_ECHO opt_netgraph.h
|
2004-06-27 02:36:33 +00:00
|
|
|
NETGRAPH_FEC opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_FRAME_RELAY opt_netgraph.h
|
2001-09-26 23:50:17 +00:00
|
|
|
NETGRAPH_GIF opt_netgraph.h
|
|
|
|
|
NETGRAPH_GIF_DEMUX opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_HOLE opt_netgraph.h
|
|
|
|
|
NETGRAPH_IFACE opt_netgraph.h
|
2001-09-27 21:54:27 +00:00
|
|
|
NETGRAPH_IP_INPUT opt_netgraph.h
|
2005-02-05 12:15:56 +00:00
|
|
|
NETGRAPH_IPFW opt_netgraph.h
|
1999-11-16 23:49:07 +00:00
|
|
|
NETGRAPH_KSOCKET opt_netgraph.h
|
2002-08-20 21:59:50 +00:00
|
|
|
NETGRAPH_L2TP opt_netgraph.h
|
2003-04-15 19:43:52 +00:00
|
|
|
NETGRAPH_LMI opt_netgraph.h
|
2000-04-09 21:15:23 +00:00
|
|
|
NETGRAPH_MPPC_COMPRESSION opt_netgraph.h
|
|
|
|
|
NETGRAPH_MPPC_ENCRYPTION opt_netgraph.h
|
2005-05-05 23:41:21 +00:00
|
|
|
NETGRAPH_NAT opt_netgraph.h
|
2004-09-16 20:35:28 +00:00
|
|
|
NETGRAPH_NETFLOW opt_netgraph.h
|
2000-11-16 16:59:26 +00:00
|
|
|
NETGRAPH_ONE2MANY opt_netgraph.h
|
New netgraph node ng_patch(4). It performs data modification of packets
passing through. Modifications are restricted to a subset of C language
operations on unsigned integers of 8, 16, 32 or 64 bit size.
These are: set to new value (=), addition (+=), subtraction (-=),
multiplication (*=), division (/=), negation (= -), bitwise AND (&=),
bitwise OR (|=), bitwise eXclusive OR (^=), shift left (<<=),
shift right (>>=). Several operations are all applied to a packet
sequentially in order they were specified by user.
Submitted by: Maxim Ignatenko <gelraen.ua at gmail.com>
Vadim Goncharov <vadimnuclight at tpu.ru>
Discussed with: net@
Approved by: mav (mentor)
MFC after: 1 month
2010-06-09 12:25:57 +00:00
|
|
|
NETGRAPH_PATCH opt_netgraph.h
|
2009-06-23 06:11:04 +00:00
|
|
|
NETGRAPH_PIPE opt_netgraph.h
|
1999-11-02 22:36:09 +00:00
|
|
|
NETGRAPH_PPP opt_netgraph.h
|
|
|
|
|
NETGRAPH_PPPOE opt_netgraph.h
|
1999-12-08 18:55:39 +00:00
|
|
|
NETGRAPH_PPTPGRE opt_netgraph.h
|
2006-12-29 13:16:43 +00:00
|
|
|
NETGRAPH_PRED1 opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_RFC1490 opt_netgraph.h
|
|
|
|
|
NETGRAPH_SOCKET opt_netgraph.h
|
2001-07-25 00:15:02 +00:00
|
|
|
NETGRAPH_SPLIT opt_netgraph.h
|
2004-04-24 22:03:02 +00:00
|
|
|
NETGRAPH_SPPP opt_netgraph.h
|
2006-06-27 12:45:28 +00:00
|
|
|
NETGRAPH_TAG opt_netgraph.h
|
2005-06-10 08:05:13 +00:00
|
|
|
NETGRAPH_TCPMSS opt_netgraph.h
|
1999-10-21 09:06:11 +00:00
|
|
|
NETGRAPH_TEE opt_netgraph.h
|
|
|
|
|
NETGRAPH_TTY opt_netgraph.h
|
|
|
|
|
NETGRAPH_UI opt_netgraph.h
|
1999-10-25 22:07:30 +00:00
|
|
|
NETGRAPH_VJC opt_netgraph.h
|
2009-11-11 11:07:30 +00:00
|
|
|
NETGRAPH_VLAN opt_netgraph.h
|
2004-04-23 19:48:43 +00:00
|
|
|
|
2003-06-25 13:21:04 +00:00
|
|
|
# NgATM options
|
|
|
|
|
NGATM_ATM opt_netgraph.h
|
2003-10-27 11:19:08 +00:00
|
|
|
NGATM_ATMBASE opt_netgraph.h
|
|
|
|
|
NGATM_SSCOP opt_netgraph.h
|
|
|
|
|
NGATM_SSCFU opt_netgraph.h
|
2003-11-07 09:18:53 +00:00
|
|
|
NGATM_UNI opt_netgraph.h
|
2004-08-12 15:01:59 +00:00
|
|
|
NGATM_CCATM opt_netgraph.h
|
2003-06-25 13:21:04 +00:00
|
|
|
|
2002-04-28 04:58:40 +00:00
|
|
|
# DRM options
|
|
|
|
|
DRM_DEBUG opt_drm.h
|
|
|
|
|
|
2011-11-08 18:23:02 +00:00
|
|
|
TI_SF_BUF_JUMBO opt_ti.h
|
At long last, commit the zero copy sockets code.
MAKEDEV: Add MAKEDEV glue for the ti(4) device nodes.
ti.4: Update the ti(4) man page to include information on the
TI_JUMBO_HDRSPLIT and TI_PRIVATE_JUMBOS kernel options,
and also include information about the new character
device interface and the associated ioctls.
man9/Makefile: Add jumbo.9 and zero_copy.9 man pages and associated
links.
jumbo.9: New man page describing the jumbo buffer allocator
interface and operation.
zero_copy.9: New man page describing the general characteristics of
the zero copy send and receive code, and what an
application author should do to take advantage of the
zero copy functionality.
NOTES: Add entries for ZERO_COPY_SOCKETS, TI_PRIVATE_JUMBOS,
TI_JUMBO_HDRSPLIT, MSIZE, and MCLSHIFT.
conf/files: Add uipc_jumbo.c and uipc_cow.c.
conf/options: Add the 5 options mentioned above.
kern_subr.c: Receive side zero copy implementation. This takes
"disposable" pages attached to an mbuf, gives them to
a user process, and then recycles the user's page.
This is only active when ZERO_COPY_SOCKETS is turned on
and the kern.ipc.zero_copy.receive sysctl variable is
set to 1.
uipc_cow.c: Send side zero copy functions. Takes a page written
by the user and maps it copy on write and assigns it
kernel virtual address space. Removes copy on write
mapping once the buffer has been freed by the network
stack.
uipc_jumbo.c: Jumbo disposable page allocator code. This allocates
(optionally) disposable pages for network drivers that
want to give the user the option of doing zero copy
receive.
uipc_socket.c: Add kern.ipc.zero_copy.{send,receive} sysctls that are
enabled if ZERO_COPY_SOCKETS is turned on.
Add zero copy send support to sosend() -- pages get
mapped into the kernel instead of getting copied if
they meet size and alignment restrictions.
uipc_syscalls.c:Un-staticize some of the sf* functions so that they
can be used elsewhere. (uipc_cow.c)
if_media.c: In the SIOCGIFMEDIA ioctl in ifmedia_ioctl(), avoid
calling malloc() with M_WAITOK. Return an error if
the M_NOWAIT malloc fails.
The ti(4) driver and the wi(4) driver, at least, call
this with a mutex held. This causes witness warnings
for 'ifconfig -a' with a wi(4) or ti(4) board in the
system. (I've only verified for ti(4)).
ip_output.c: Fragment large datagrams so that each segment contains
a multiple of PAGE_SIZE amount of data plus headers.
This allows the receiver to potentially do page
flipping on receives.
if_ti.c: Add zero copy receive support to the ti(4) driver. If
TI_PRIVATE_JUMBOS is not defined, it now uses the
jumbo(9) buffer allocator for jumbo receive buffers.
Add a new character device interface for the ti(4)
driver for the new debugging interface. This allows
(a patched version of) gdb to talk to the Tigon board
and debug the firmware. There are also a few additional
debugging ioctls available through this interface.
Add header splitting support to the ti(4) driver.
Tweak some of the default interrupt coalescing
parameters to more useful defaults.
Add hooks for supporting transmit flow control, but
leave it turned off with a comment describing why it
is turned off.
if_tireg.h: Change the firmware rev to 12.4.11, since we're really
at 12.4.11 plus fixes from 12.4.13.
Add defines needed for debugging.
Remove the ti_stats structure, it is now defined in
sys/tiio.h.
ti_fw.h: 12.4.11 firmware.
ti_fw2.h: 12.4.11 firmware, plus selected fixes from 12.4.13,
and my header splitting patches. Revision 12.4.13
doesn't handle 10/100 negotiation properly. (This
firmware is the same as what was in the tree previously,
with the addition of header splitting support.)
sys/jumbo.h: Jumbo buffer allocator interface.
sys/mbuf.h: Add a new external mbuf type, EXT_DISPOSABLE, to
indicate that the payload buffer can be thrown away /
flipped to a userland process.
socketvar.h: Add prototype for socow_setup.
tiio.h: ioctl interface to the character portion of the ti(4)
driver, plus associated structure/type definitions.
uio.h: Change prototype for uiomoveco() so that we'll know
whether the source page is disposable.
ufs_readwrite.c:Update for new prototype of uiomoveco().
vm_fault.c: In vm_fault(), check to see whether we need to do a page
based copy on write fault.
vm_object.c: Add a new function, vm_object_allocate_wait(). This
does the same thing that vm_object allocate does, except
that it gives the caller the opportunity to specify whether
it should wait on the uma_zalloc() of the object structre.
This allows vm objects to be allocated while holding a
mutex. (Without generating WITNESS warnings.)
vm_object_allocate() is implemented as a call to
vm_object_allocate_wait() with the malloc flag set to
M_WAITOK.
vm_object.h: Add prototype for vm_object_allocate_wait().
vm_page.c: Add page-based copy on write setup, clear and fault
routines.
vm_page.h: Add page based COW function prototypes and variable in
the vm_page structure.
Many thanks to Drew Gallatin, who wrote the zero copy send and receive
code, and to all the other folks who have tested and reviewed this code
over the years.
2002-06-26 03:37:47 +00:00
|
|
|
TI_JUMBO_HDRSPLIT opt_ti.h
|
|
|
|
|
|
1998-01-31 07:23:16 +00:00
|
|
|
# Misc debug flags. Most of these should probably be replaced with
|
|
|
|
|
# 'DEBUG', and then let people recompile just the interesting modules
|
1999-02-14 12:00:00 +00:00
|
|
|
# with 'make CC="cc -DDEBUG"'.
|
1999-01-10 17:41:33 +00:00
|
|
|
DEBUG_1284 opt_ppb_1284.h
|
1999-02-14 12:00:00 +00:00
|
|
|
LPT_DEBUG opt_lpt.h
|
1999-01-23 17:07:49 +00:00
|
|
|
PLIP_DEBUG opt_plip.h
|
1998-01-31 07:23:16 +00:00
|
|
|
LOCKF_DEBUG opt_debug_lockf.h
|
|
|
|
|
SI_DEBUG opt_debug_si.h
|
2015-04-21 10:35:23 +00:00
|
|
|
IFMEDIA_DEBUG opt_ifmedia.h
|
1998-01-31 07:23:16 +00:00
|
|
|
|
1999-11-06 23:41:10 +00:00
|
|
|
# Fb options
|
|
|
|
|
FB_DEBUG opt_fb.h
|
|
|
|
|
FB_INSTALL_CDEV opt_fb.h
|
|
|
|
|
|
1999-01-25 19:34:27 +00:00
|
|
|
# ppbus related options
|
|
|
|
|
PERIPH_1284 opt_ppb_1284.h
|
|
|
|
|
DONTPROBE_1284 opt_ppb_1284.h
|
|
|
|
|
|
|
|
|
|
# smbus related options
|
|
|
|
|
ENABLE_ALART opt_intpm.h
|
1998-01-31 07:23:16 +00:00
|
|
|
|
1998-02-06 12:41:39 +00:00
|
|
|
# These cause changes all over the kernel
|
1999-11-06 23:41:10 +00:00
|
|
|
BLKDEV_IOSIZE opt_global.h
|
2003-07-11 17:04:37 +00:00
|
|
|
BURN_BRIDGES opt_global.h
|
1998-02-06 12:41:39 +00:00
|
|
|
DEBUG opt_global.h
|
1999-01-20 14:49:12 +00:00
|
|
|
DEBUG_LOCKS opt_global.h
|
1999-01-08 17:31:30 +00:00
|
|
|
DEBUG_VFS_LOCKS opt_global.h
|
2008-08-26 07:28:27 +00:00
|
|
|
DFLTPHYS opt_global.h
|
1998-02-06 12:41:39 +00:00
|
|
|
DIAGNOSTIC opt_global.h
|
2001-02-24 19:03:18 +00:00
|
|
|
INVARIANT_SUPPORT opt_global.h
|
1999-01-08 17:31:30 +00:00
|
|
|
INVARIANTS opt_global.h
|
KASSERT: Make runtime optionality optional
Add an option, KASSERT_PANIC_OPTIONAL, that allows runtime KASSERT()
behavior changes. When this option is not enabled, code that allows
KASSERTs to become optional is not enabled, and all violated assertions
cause termination.
The runtime KASSERT behavior was added in r243980.
One important distinction here is that panic has __dead2
("attribute((noreturn))"), while kassert_panic does not. Static analyzers
like Coverity understand __dead2. Without it, KASSERTs go misunderstood,
resulting in many false positives that result from violation of program
invariants.
Reviewed by: jhb, jtl, np, vangyzen
Relnotes: yes
Sponsored by: Dell EMC Isilon
Differential Revision: https://reviews.freebsd.org/D16835
2018-08-22 22:19:42 +00:00
|
|
|
KASSERT_PANIC_OPTIONAL opt_global.h
|
2011-07-19 00:37:24 +00:00
|
|
|
MAXCPU opt_global.h
|
2013-05-07 22:46:24 +00:00
|
|
|
MAXMEMDOM opt_global.h
|
Make MAXPHYS tunable. Bump MAXPHYS to 1M.
Replace MAXPHYS by runtime variable maxphys. It is initialized from
MAXPHYS by default, but can be also adjusted with the tunable kern.maxphys.
Make b_pages[] array in struct buf flexible. Size b_pages[] for buffer
cache buffers exactly to atop(maxbcachebuf) (currently it is sized to
atop(MAXPHYS)), and b_pages[] for pbufs is sized to atop(maxphys) + 1.
The +1 for pbufs allow several pbuf consumers, among them vmapbuf(),
to use unaligned buffers still sized to maxphys, esp. when such
buffers come from userspace (*). Overall, we save significant amount
of otherwise wasted memory in b_pages[] for buffer cache buffers,
while bumping MAXPHYS to desired high value.
Eliminate all direct uses of the MAXPHYS constant in kernel and driver
sources, except a place which initialize maxphys. Some random (and
arguably weird) uses of MAXPHYS, e.g. in linuxolator, are converted
straight. Some drivers, which use MAXPHYS to size embeded structures,
get private MAXPHYS-like constant; their convertion is out of scope
for this work.
Changes to cam/, dev/ahci, dev/ata, dev/mpr, dev/mpt, dev/mvs,
dev/siis, where either submitted by, or based on changes by mav.
Suggested by: mav (*)
Reviewed by: imp, mav, imp, mckusick, scottl (intermediate versions)
Tested by: pho
Sponsored by: The FreeBSD Foundation
Differential revision: https://reviews.freebsd.org/D27225
2020-11-28 12:12:51 +00:00
|
|
|
MAXPHYS opt_maxphys.h
|
2002-07-11 04:15:53 +00:00
|
|
|
MCLSHIFT opt_global.h
|
2004-02-25 09:35:35 +00:00
|
|
|
MUTEX_NOINLINE opt_global.h
|
2006-11-11 03:18:07 +00:00
|
|
|
LOCK_PROFILING opt_global.h
|
2007-02-27 06:42:05 +00:00
|
|
|
LOCK_PROFILING_FAST opt_global.h
|
2002-07-11 04:15:53 +00:00
|
|
|
MSIZE opt_global.h
|
2001-04-11 19:29:24 +00:00
|
|
|
REGRESSION opt_global.h
|
2006-01-27 23:13:26 +00:00
|
|
|
RWLOCK_NOINLINE opt_global.h
|
2007-03-31 23:23:42 +00:00
|
|
|
SX_NOINLINE opt_global.h
|
1999-01-08 17:31:30 +00:00
|
|
|
VFS_BIO_DEBUG opt_global.h
|
1998-02-23 07:42:43 +00:00
|
|
|
|
|
|
|
|
# These are VM related options
|
1999-11-06 23:51:29 +00:00
|
|
|
VM_KMEM_SIZE opt_vm.h
|
|
|
|
|
VM_KMEM_SIZE_SCALE opt_vm.h
|
1998-02-23 07:42:43 +00:00
|
|
|
VM_KMEM_SIZE_MAX opt_vm.h
|
2007-12-27 16:45:39 +00:00
|
|
|
VM_NRESERVLEVEL opt_vm.h
|
|
|
|
|
VM_LEVEL_0_ORDER opt_vm.h
|
1999-11-06 23:51:29 +00:00
|
|
|
NO_SWAPPING opt_vm.h
|
2003-03-26 20:18:40 +00:00
|
|
|
MALLOC_MAKE_FAILURES opt_vm.h
|
2002-04-09 05:14:17 +00:00
|
|
|
MALLOC_PROFILE opt_vm.h
|
2010-07-28 15:36:12 +00:00
|
|
|
MALLOC_DEBUG_MAXZONES opt_vm.h
|
1998-06-30 08:01:30 +00:00
|
|
|
|
2005-01-21 18:09:17 +00:00
|
|
|
# The MemGuard replacement allocator used for tamper-after-free detection
|
|
|
|
|
DEBUG_MEMGUARD opt_vm.h
|
|
|
|
|
|
2006-01-31 11:09:21 +00:00
|
|
|
# The RedZone malloc(9) protection
|
|
|
|
|
DEBUG_REDZONE opt_vm.h
|
|
|
|
|
|
1998-12-19 23:07:16 +00:00
|
|
|
# Standard SMP options
|
Add an EARLY_AP_STARTUP option to start APs earlier during boot.
Currently, Application Processors (non-boot CPUs) are started by
MD code at SI_SUB_CPU, but they are kept waiting in a "pen" until
SI_SUB_SMP at which point they are released to run kernel threads.
SI_SUB_SMP is one of the last SYSINIT levels, so APs don't enter
the scheduler and start running threads until fairly late in the
boot.
This change moves SI_SUB_SMP up to just before software interrupt
threads are created allowing the APs to start executing kernel
threads much sooner (before any devices are probed). This allows
several initialization routines that need to perform initialization
on all CPUs to now perform that initialization in one step rather
than having to defer the AP initialization to a second SYSINIT run
at SI_SUB_SMP. It also permits all CPUs to be available for
handling interrupts before any devices are probed.
This last feature fixes a problem on with interrupt vector exhaustion.
Specifically, in the old model all device interrupts were routed
onto the boot CPU during boot. Later after the APs were released at
SI_SUB_SMP, interrupts were redistributed across all CPUs.
However, several drivers for multiqueue hardware allocate N interrupts
per CPU in the system. In a system with many CPUs, just a few drivers
doing this could exhaust the available pool of interrupt vectors on
the boot CPU as each driver was allocating N * mp_ncpu vectors on the
boot CPU. Now, drivers will allocate interrupts on their desired CPUs
during boot meaning that only N interrupts are allocated from the boot
CPU instead of N * mp_ncpu.
Some other bits of code can also be simplified as smp_started is
now true much earlier and will now always be true for these bits of
code. This removes the need to treat the single-CPU boot environment
as a special case.
As a transition aid, the new behavior is available under a new kernel
option (EARLY_AP_STARTUP). This will allow the option to be turned off
if need be during initial testing. I plan to enable this on x86 by
default in a followup commit in the next few days and to have all
platforms moved over before 11.0. Once the transition is complete,
the option will be removed along with the !EARLY_AP_STARTUP code.
These changes have only been tested on x86. Other platform maintainers
are encouraged to port their architectures over as well. The main
things to check for are any uses of smp_started in MD code that can be
simplified and SI_SUB_SMP SYSINITs in MD code that can be removed in
the EARLY_AP_STARTUP case (e.g. the interrupt shuffling).
PR: kern/199321
Reviewed by: markj, gnn, kib
Sponsored by: Netflix
2016-05-14 18:22:52 +00:00
|
|
|
EARLY_AP_STARTUP opt_global.h
|
1998-12-19 23:07:16 +00:00
|
|
|
SMP opt_global.h
|
2018-01-14 03:36:03 +00:00
|
|
|
NUMA opt_global.h
|
1998-02-27 10:02:49 +00:00
|
|
|
|
1998-05-19 08:58:53 +00:00
|
|
|
# Size of the kernel message buffer
|
|
|
|
|
MSGBUF_SIZE opt_msgbuf.h
|
1998-06-07 17:13:14 +00:00
|
|
|
|
1998-06-30 03:01:37 +00:00
|
|
|
# NFS options
|
|
|
|
|
NFS_MINATTRTIMO opt_nfs.h
|
|
|
|
|
NFS_MAXATTRTIMO opt_nfs.h
|
|
|
|
|
NFS_MINDIRATTRTIMO opt_nfs.h
|
|
|
|
|
NFS_MAXDIRATTRTIMO opt_nfs.h
|
|
|
|
|
NFS_DEBUG opt_nfs.h
|
|
|
|
|
|
2019-03-25 07:46:20 +00:00
|
|
|
# TMPFS options
|
|
|
|
|
TMPFS_PAGES_MINRESERVED opt_tmpfs.h
|
|
|
|
|
|
2013-08-19 15:51:30 +00:00
|
|
|
# Options for uart(4)
|
2003-09-11 23:06:42 +00:00
|
|
|
UART_PPS_ON_CTS opt_uart.h
|
2013-08-19 15:51:30 +00:00
|
|
|
UART_POLL_FREQ opt_uart.h
|
2015-11-18 06:24:21 +00:00
|
|
|
UART_DEV_TOLERANCE_PCT opt_uart.h
|
2003-09-11 23:06:42 +00:00
|
|
|
|
1998-10-28 08:37:10 +00:00
|
|
|
# options for bus/device framework
|
|
|
|
|
BUS_DEBUG opt_bus.h
|
1998-11-26 23:13:13 +00:00
|
|
|
|
|
|
|
|
# options for USB support
|
|
|
|
|
USB_DEBUG opt_usb.h
|
2011-02-12 21:17:38 +00:00
|
|
|
USB_HOST_ALIGN opt_usb.h
|
2010-05-13 20:48:39 +00:00
|
|
|
USB_REQ_DEBUG opt_usb.h
|
2013-05-03 08:19:09 +00:00
|
|
|
USB_TEMPLATE opt_usb.h
|
2009-07-12 04:48:47 +00:00
|
|
|
USB_VERBOSE opt_usb.h
|
2015-02-02 11:32:15 +00:00
|
|
|
USB_DMA_SINGLE_ALLOC opt_usb.h
|
2008-12-20 03:02:32 +00:00
|
|
|
USB_EHCI_BIG_ENDIAN_DESC opt_usb.h
|
2008-10-24 07:16:13 +00:00
|
|
|
U3G_DEBUG opt_u3g.h
|
2000-05-09 18:23:38 +00:00
|
|
|
UKBD_DFLT_KEYMAP opt_ukbd.h
|
2003-11-16 12:26:10 +00:00
|
|
|
UPLCOM_INTR_INTERVAL opt_uplcom.h
|
2003-03-09 11:50:27 +00:00
|
|
|
UVSCOM_DEFAULT_OPKTSIZE opt_uvscom.h
|
2003-11-16 12:26:10 +00:00
|
|
|
UVSCOM_INTR_INTERVAL opt_uvscom.h
|
1998-12-28 16:31:26 +00:00
|
|
|
|
rtwn(4), urtwn(4): merge common code, add support for 11ac devices.
All devices:
- add support for rate adaptation via ieee80211_amrr(9);
- use short preamble for transmitted frames when needed;
- multi-bss support:
* for RTL8821AU: 2 VAPs at the same time;
* other: 1 any VAP + 1 sta VAP.
RTL8188CE:
- fix IQ calibration bug (reason of significant speed degradation);
- add h/w crypto acceleration support.
USB:
- A-MPDU Tx support;
- short GI support;
Other:
- add support for RTL8812AU / RTL8821AU chipsets
(a/b/g/n only; no ac yet);
- split merged code into subparts:
* bus glue (usb/*, pci/*, rtl*/usb/*, rtl*/pci/*)
* common (if_rtwn*)
* chip-specific (rtl*/*)
- various other bugfixes.
Due to code reorganization, module names / requirements were changed too:
urtwn urtwnfw -> rtwn rtwn_usb rtwnfw
rtwn rtwnfw -> rtwn rtwn_pci rtwnfw
Tested with RTL8188CE, RTL8188CUS, RTL8188EU and RTL8821AU.
Tested by: kevlo, garga,
Peter Garshtja <peter.garshtja@ambient-md.com>,
Kevin McAleavey <kevin.mcaleavey@knosproject.com>,
Ilias-Dimitrios Vrachnis <id@vrachnis.com>,
<otacilio.neto@bsd.com.br>
Relnotes: yes
2016-10-17 20:38:24 +00:00
|
|
|
# options for the Realtek rtwn driver
|
|
|
|
|
RTWN_DEBUG opt_rtwn.h
|
|
|
|
|
RTWN_WITHOUT_UCODE opt_rtwn.h
|
2016-02-22 00:48:53 +00:00
|
|
|
|
1999-05-05 11:24:15 +00:00
|
|
|
# Embedded system options
|
2005-12-12 10:15:11 +00:00
|
|
|
INIT_PATH
|
1999-05-09 16:46:01 +00:00
|
|
|
|
2005-12-12 10:15:11 +00:00
|
|
|
ROOTDEVNAME
|
1999-06-05 13:57:10 +00:00
|
|
|
|
2017-04-07 21:06:50 +00:00
|
|
|
FDC_DEBUG opt_fdc.h
|
2000-01-19 18:17:25 +00:00
|
|
|
PCFCLOCK_VERBOSE opt_pcfclock.h
|
|
|
|
|
PCFCLOCK_MAX_RETRIES opt_pcfclock.h
|
2002-10-20 08:17:39 +00:00
|
|
|
|
2000-09-07 01:33:02 +00:00
|
|
|
KTR opt_global.h
|
2002-09-22 07:14:27 +00:00
|
|
|
KTR_ALQ opt_ktr.h
|
2000-11-07 01:49:48 +00:00
|
|
|
KTR_MASK opt_ktr.h
|
|
|
|
|
KTR_CPUMASK opt_ktr.h
|
2000-09-07 01:33:02 +00:00
|
|
|
KTR_COMPILE opt_global.h
|
2013-02-03 09:57:39 +00:00
|
|
|
KTR_BOOT_ENTRIES opt_global.h
|
2000-09-07 01:33:02 +00:00
|
|
|
KTR_ENTRIES opt_global.h
|
2000-11-07 01:49:48 +00:00
|
|
|
KTR_VERBOSE opt_ktr.h
|
2000-09-07 01:33:02 +00:00
|
|
|
WITNESS opt_global.h
|
2004-07-11 01:44:07 +00:00
|
|
|
WITNESS_KDB opt_witness.h
|
2013-05-09 16:28:18 +00:00
|
|
|
WITNESS_NO_VNODE opt_witness.h
|
2000-10-27 03:00:28 +00:00
|
|
|
WITNESS_SKIPSPIN opt_witness.h
|
2014-08-03 05:00:43 +00:00
|
|
|
WITNESS_COUNT opt_witness.h
|
2013-08-06 15:51:56 +00:00
|
|
|
OPENSOLARIS_WITNESS opt_global.h
|
2000-09-07 01:33:02 +00:00
|
|
|
|
2019-09-26 21:12:47 +00:00
|
|
|
EPOCH_TRACE opt_global.h
|
2019-09-25 18:26:31 +00:00
|
|
|
|
2000-08-31 15:34:54 +00:00
|
|
|
# options for ACPI support
|
|
|
|
|
ACPI_DEBUG opt_acpi.h
|
2009-06-10 22:54:20 +00:00
|
|
|
ACPI_MAX_TASKS opt_acpi.h
|
2001-12-22 16:05:41 +00:00
|
|
|
ACPI_MAX_THREADS opt_acpi.h
|
2015-05-05 14:19:22 +00:00
|
|
|
DEV_ACPI opt_acpi.h
|
2021-02-08 21:43:25 +00:00
|
|
|
ACPI_EARLY_EPYC_WAR opt_acpi.h
|
2000-09-06 11:26:43 +00:00
|
|
|
|
2020-09-29 20:29:07 +00:00
|
|
|
# options for IOMMU support
|
|
|
|
|
IOMMU opt_iommu.h
|
|
|
|
|
|
2006-06-12 21:07:13 +00:00
|
|
|
# ISA support
|
|
|
|
|
DEV_ISA opt_isa.h
|
|
|
|
|
ISAPNP opt_isa.h
|
|
|
|
|
|
2001-01-29 09:43:36 +00:00
|
|
|
# various 'device presence' options.
|
2004-02-25 09:35:35 +00:00
|
|
|
DEV_BPF opt_bpf.h
|
2005-02-22 13:04:05 +00:00
|
|
|
DEV_CARP opt_carp.h
|
2015-01-17 02:17:57 +00:00
|
|
|
DEV_NETMAP opt_global.h
|
|
|
|
|
DEV_PCI opt_pci.h
|
|
|
|
|
DEV_PF opt_pf.h
|
|
|
|
|
DEV_PFLOG opt_pf.h
|
|
|
|
|
DEV_PFSYNC opt_pf.h
|
2003-06-18 15:25:01 +00:00
|
|
|
DEV_SPLASH opt_splash.h
|
2015-01-17 02:17:57 +00:00
|
|
|
DEV_VLAN opt_vlan.h
|
2001-09-29 22:32:03 +00:00
|
|
|
|
|
|
|
|
# ed driver
|
2005-02-09 20:03:40 +00:00
|
|
|
ED_HPP opt_ed.h
|
|
|
|
|
ED_3C503 opt_ed.h
|
|
|
|
|
ED_SIC opt_ed.h
|
2002-02-12 00:26:06 +00:00
|
|
|
|
2006-04-10 20:04:22 +00:00
|
|
|
# bce driver
|
|
|
|
|
BCE_DEBUG opt_bce.h
|
2010-10-06 18:36:50 +00:00
|
|
|
BCE_NVRAM_WRITE_SUPPORT opt_bce.h
|
2006-04-10 20:04:22 +00:00
|
|
|
|
2003-10-28 05:47:40 +00:00
|
|
|
SOCKBUF_DEBUG opt_global.h
|
|
|
|
|
|
2011-03-14 22:42:41 +00:00
|
|
|
|
2003-03-11 22:47:06 +00:00
|
|
|
# options for hifn driver
|
|
|
|
|
HIFN_DEBUG opt_hifn.h
|
|
|
|
|
HIFN_RNDTEST opt_hifn.h
|
2003-06-18 15:25:01 +00:00
|
|
|
|
2003-07-21 21:50:41 +00:00
|
|
|
# options for safenet driver
|
|
|
|
|
SAFE_DEBUG opt_safe.h
|
|
|
|
|
SAFE_NO_RNG opt_safe.h
|
|
|
|
|
SAFE_RNDTEST opt_safe.h
|
|
|
|
|
|
2013-12-05 22:38:53 +00:00
|
|
|
# syscons/vt options
|
2003-06-18 15:25:01 +00:00
|
|
|
MAXCONS opt_syscons.h
|
|
|
|
|
SC_ALT_MOUSE_IMAGE opt_syscons.h
|
|
|
|
|
SC_CUT_SPACES2TABS opt_syscons.h
|
|
|
|
|
SC_CUT_SEPCHARS opt_syscons.h
|
|
|
|
|
SC_DEBUG_LEVEL opt_syscons.h
|
|
|
|
|
SC_DFLT_FONT opt_syscons.h
|
2019-02-22 06:41:47 +00:00
|
|
|
SC_DFLT_TERM opt_syscons.h
|
2004-07-11 01:44:07 +00:00
|
|
|
SC_DISABLE_KDBKEY opt_syscons.h
|
2003-06-18 15:25:01 +00:00
|
|
|
SC_DISABLE_REBOOT opt_syscons.h
|
|
|
|
|
SC_HISTORY_SIZE opt_syscons.h
|
|
|
|
|
SC_KERNEL_CONS_ATTR opt_syscons.h
|
2018-06-02 14:07:27 +00:00
|
|
|
SC_KERNEL_CONS_ATTRS opt_syscons.h
|
2003-06-18 15:25:01 +00:00
|
|
|
SC_KERNEL_CONS_REV_ATTR opt_syscons.h
|
|
|
|
|
SC_MOUSE_CHAR opt_syscons.h
|
|
|
|
|
SC_NO_CUTPASTE opt_syscons.h
|
|
|
|
|
SC_NO_FONT_LOADING opt_syscons.h
|
|
|
|
|
SC_NO_HISTORY opt_syscons.h
|
2007-01-10 18:45:18 +00:00
|
|
|
SC_NO_MODE_CHANGE opt_syscons.h
|
2004-02-25 09:35:35 +00:00
|
|
|
SC_NO_SUSPEND_VTYSWITCH opt_syscons.h
|
2003-06-18 15:25:01 +00:00
|
|
|
SC_NO_SYSMOUSE opt_syscons.h
|
2019-02-22 06:41:47 +00:00
|
|
|
SC_NO_TERM_DUMB opt_syscons.h
|
|
|
|
|
SC_NO_TERM_SC opt_syscons.h
|
|
|
|
|
SC_NO_TERM_TEKEN opt_syscons.h
|
2003-06-18 15:25:01 +00:00
|
|
|
SC_NORM_ATTR opt_syscons.h
|
|
|
|
|
SC_NORM_REV_ATTR opt_syscons.h
|
|
|
|
|
SC_PIXEL_MODE opt_syscons.h
|
|
|
|
|
SC_RENDER_DEBUG opt_syscons.h
|
|
|
|
|
SC_TWOBUTTON_MOUSE opt_syscons.h
|
2014-06-30 19:34:16 +00:00
|
|
|
VT_ALT_TO_ESC_HACK opt_syscons.h
|
2020-06-04 16:05:24 +00:00
|
|
|
VT_FB_MAX_WIDTH opt_syscons.h
|
|
|
|
|
VT_FB_MAX_HEIGHT opt_syscons.h
|
2014-06-30 19:34:16 +00:00
|
|
|
VT_MAXWINDOWS opt_syscons.h
|
|
|
|
|
VT_TWOBUTTON_MOUSE opt_syscons.h
|
2013-12-10 15:36:29 +00:00
|
|
|
DEV_SC opt_syscons.h
|
|
|
|
|
DEV_VT opt_syscons.h
|
|
|
|
|
|
2009-01-17 16:37:13 +00:00
|
|
|
# teken terminal emulator options
|
2009-11-13 05:54:55 +00:00
|
|
|
TEKEN_CONS25 opt_teken.h
|
2009-01-17 16:37:13 +00:00
|
|
|
TEKEN_UTF8 opt_teken.h
|
2014-06-27 19:57:57 +00:00
|
|
|
TERMINAL_KERN_ATTR opt_teken.h
|
|
|
|
|
TERMINAL_NORM_ATTR opt_teken.h
|
2009-01-17 16:37:13 +00:00
|
|
|
|
2006-11-30 04:17:05 +00:00
|
|
|
# options for printf
|
|
|
|
|
PRINTF_BUFR_SIZE opt_printf.h
|
2018-08-09 17:47:47 +00:00
|
|
|
BOOT_TAG opt_printf.h
|
|
|
|
|
BOOT_TAG_SZ opt_printf.h
|
2006-11-30 04:17:05 +00:00
|
|
|
|
2003-06-18 15:25:01 +00:00
|
|
|
# kbd options
|
|
|
|
|
KBD_DISABLE_KEYMAP_LOAD opt_kbd.h
|
|
|
|
|
KBD_INSTALL_CDEV opt_kbd.h
|
|
|
|
|
KBD_MAXRETRY opt_kbd.h
|
|
|
|
|
KBD_MAXWAIT opt_kbd.h
|
|
|
|
|
KBD_RESETDELAY opt_kbd.h
|
|
|
|
|
KBDIO_DEBUG opt_kbd.h
|
2003-06-25 14:51:20 +00:00
|
|
|
|
2016-04-07 20:12:45 +00:00
|
|
|
KBDMUX_DFLT_KEYMAP opt_kbdmux.h
|
|
|
|
|
|
2006-04-03 18:14:02 +00:00
|
|
|
# options for the Atheros driver
|
|
|
|
|
ATH_DEBUG opt_ath.h
|
|
|
|
|
ATH_TXBUF opt_ath.h
|
|
|
|
|
ATH_RXBUF opt_ath.h
|
|
|
|
|
ATH_DIAGAPI opt_ath.h
|
|
|
|
|
ATH_TX99_DIAG opt_ath.h
|
2011-06-26 13:43:15 +00:00
|
|
|
ATH_ENABLE_11N opt_ath.h
|
|
|
|
|
ATH_ENABLE_DFS opt_ath.h
|
2012-04-13 18:00:48 +00:00
|
|
|
ATH_EEPROM_FIRMWARE opt_ath.h
|
2012-06-24 07:01:49 +00:00
|
|
|
ATH_ENABLE_RADIOTAP_VENDOR_EXT opt_ath.h
|
2013-01-15 18:04:15 +00:00
|
|
|
ATH_DEBUG_ALQ opt_ath.h
|
|
|
|
|
ATH_KTR_INTR_DEBUG opt_ath.h
|
2006-04-03 18:14:02 +00:00
|
|
|
|
2008-12-01 16:53:01 +00:00
|
|
|
# options for the Atheros hal
|
2011-05-02 05:39:43 +00:00
|
|
|
# XXX For now, this breaks non-AR9130 chipsets, so only use it
|
2016-05-03 22:01:48 +00:00
|
|
|
# XXX when actually targeting AR9130.
|
2011-04-29 18:26:17 +00:00
|
|
|
AH_SUPPORT_AR9130 opt_ah.h
|
2008-12-01 16:53:01 +00:00
|
|
|
|
2013-06-26 05:01:50 +00:00
|
|
|
# This is required for AR933x SoC support
|
|
|
|
|
AH_SUPPORT_AR9330 opt_ah.h
|
|
|
|
|
AH_SUPPORT_AR9340 opt_ah.h
|
2015-11-28 01:09:30 +00:00
|
|
|
AH_SUPPORT_QCA9530 opt_ah.h
|
2015-01-06 07:51:46 +00:00
|
|
|
AH_SUPPORT_QCA9550 opt_ah.h
|
2013-06-26 05:01:50 +00:00
|
|
|
|
2008-12-01 16:53:01 +00:00
|
|
|
AH_DEBUG opt_ah.h
|
|
|
|
|
AH_ASSERT opt_ah.h
|
|
|
|
|
AH_DEBUG_ALQ opt_ah.h
|
|
|
|
|
AH_REGOPS_FUNC opt_ah.h
|
|
|
|
|
AH_WRITE_REGDOMAIN opt_ah.h
|
|
|
|
|
AH_DEBUG_COUNTRY opt_ah.h
|
|
|
|
|
AH_WRITE_EEPROM opt_ah.h
|
|
|
|
|
AH_PRIVATE_DIAG opt_ah.h
|
|
|
|
|
AH_NEED_DESC_SWAP opt_ah.h
|
|
|
|
|
AH_USE_INIPDGAIN opt_ah.h
|
2009-01-28 18:00:22 +00:00
|
|
|
AH_MAXCHAN opt_ah.h
|
The Atheros AR71xx CPUs, when paired with the AR5212 parts, has a bug
that generates a fatal bus trap. Normally, the chips are setup to do
128 byte DMA bursts, but when on this CPU, they can only safely due
4-byte DMA bursts due to this bug. Details of the exact nature of the
bug are sketchy, but some can be found at
https://forum.openwrt.org/viewtopic.php?pid=70060 on pages 4, 5 and 6.
There's a small performance penalty associated with this workaround,
so it is only enabled when needed on the Atheros AR71xx platforms.
Unfortunately, this condition is impossible to detect at runtime
without MIPS specific ifdefs. Rather than cast an overly-broad net
like Linux/OpenWRT dues (which enables this workaround all the time on
MIPS32 platforms), we put this option in the kernel for just the
affected machines. Sam didn't like this aspect of the patch when he
reviewed it, and I'd love to hear sane proposals on how to fix it :)
Reviewed by: sam@
2010-05-01 16:36:14 +00:00
|
|
|
AH_RXCFG_SDMAMW_4BYTES opt_ah.h
|
2013-01-15 18:04:15 +00:00
|
|
|
AH_INTERRUPT_DEBUGGING opt_ah.h
|
2011-03-31 08:48:05 +00:00
|
|
|
# AR5416 and later interrupt mitigation
|
2011-05-02 05:39:43 +00:00
|
|
|
# XXX do not use this for AR9130
|
2011-03-31 08:48:05 +00:00
|
|
|
AH_AR5416_INTERRUPT_MITIGATION opt_ah.h
|
|
|
|
|
|
2019-06-27 18:08:18 +00:00
|
|
|
# options for the Altera mSGDMA driver (altera_msgdma)
|
|
|
|
|
ALTERA_MSGDMA_DESC_STD opt_altera_msgdma.h
|
|
|
|
|
ALTERA_MSGDMA_DESC_EXT opt_altera_msgdma.h
|
|
|
|
|
ALTERA_MSGDMA_DESC_PF_STD opt_altera_msgdma.h
|
|
|
|
|
ALTERA_MSGDMA_DESC_PF_EXT opt_altera_msgdma.h
|
|
|
|
|
|
Bring in Andrew Thompson's port of Sepherosa Ziehau's bwi driver for
Broadcom BCM43xx chipsets. This driver uses the v3 firmware that
needs to be fetched separately. A port will be committed to create
the bwi firmware module.
The driver matches the following chips: Broadcom BCM4301, BCM4307,
BCM4306, BCM4309, BCM4311, BCM4312, BCM4318, BCM4319
The driver works for 802.11b and 802.11g.
Limitations:
This doesn't support the 802.11a or 802.11n portion of radios.
Some BCM4306 and BCM4309 cards don't work with Channel 1, 2 or 3.
Documenation for this firmware is reverse engineered from
http://bcm.sipsolutions.net/
V4 of the firmware is needed for 11a or 11n support
http://bcm-v4.sipsolutions.net/
Firmware needs to be fetched from a third party, port to be committed
# I've tested this with a BCM4319 mini-pci and a BCM4318 CardBus card, and
# not connected it to the build until the firmware port is committed.
Obtained from: DragonFlyBSD, //depot/projects/vap
Reviewed by: sam@, thompsa@
2009-05-03 04:01:43 +00:00
|
|
|
# options for the Broadcom BCM43xx driver (bwi)
|
|
|
|
|
BWI_DEBUG opt_bwi.h
|
|
|
|
|
BWI_DEBUG_VERBOSE opt_bwi.h
|
|
|
|
|
|
2016-05-09 05:59:21 +00:00
|
|
|
# options for the Brodacom BCM43xx driver (bwn)
|
2016-05-09 06:02:57 +00:00
|
|
|
BWN_DEBUG opt_bwn.h
|
2016-05-17 07:10:30 +00:00
|
|
|
BWN_GPL_PHY opt_bwn.h
|
Introduce bwn(4) support for the bhnd(4) bus.
Currently, bwn(4) relies on the siba_bwn(4) bus driver to provide support
for the on-chip SSB interconnect found in Broadcom's older PCI(e) Wi-Fi
adapters. Non-PCI Wi-Fi adapters, as well as the newer BCMA interconnect
found in post-2009 Broadcom Wi-Fi hardware, are not supported by
siba_bwn(4).
The bhnd(4) bus driver (also used by the FreeBSD/MIPS Broadcom port)
provides a unified kernel interface to a superset of the hardware supported
by siba_bwn; by attaching bwn(4) via bhnd(4), we can support both modern
PCI(e) Wi-Fi devices based on the BCMA backplane interconnect, as well as
Broadcom MIPS WiSoCs that include a D11 MAC core directly attached to their
SSB or BCMA backplane.
This diff introduces opt-in bwn(4) support for bhnd(4) by providing:
- A small bwn(4) driver subclass, if_bwn_bhnd, that attaches via
bhnd(4) instead of siba_bwn(4).
- A bhndb(4)-based PCI host bridge driver, if_bwn_pci, that optionally
probes at a higher priority than the siba_bwn(4) PCI driver.
- A set of compatibility shims that perform translation of bwn(4)'s
siba_bwn function calls into their bhnd(9) API equivalents when bwn(4)
is attached via a bhnd(4) bus parent. When bwn(4) is attached via
siba_bwn(4), all siba_bwn function calls are simply passed through to
their original implementations.
To test bwn(4) with bhnd(4), place the following lines in loader.conf(5):
hw.bwn_pci.preferred="1"
if_bwn_pci_load="YES
bwn_v4_ucode_load="YES"
bwn_v4_lp_ucode_load="YES"
To verify that bwn(4) is using bhnd(4), you can check dmesg:
bwn0: <Broadcom 802.11 MAC/PHY/Radio, rev 15> ... on bhnd0
... or devinfo(8):
pcib2
pci2
bwn_pci0
bhndb0
bhnd0
bwn0
...
bwn(4)/bhnd(4) has been tested for regressions with most chipsets currently
supported by bwn(4), including:
- BCM4312
- BCM4318
- BCM4321
With minimal changes to the DMA code (not included in this commit), I was
also able to test support for newer BCMA devices by bringing up basic
working Wi-Fi on two previously unsupported, BCMA-based N-PHY chipsets:
- BCM43224
- BCM43225
Approved by: adrian (mentor, implicit)
Sponsored by: The FreeBSD Foundation & Plausible Labs
Differential Revision: https://reviews.freebsd.org/D13041
2017-12-02 02:21:27 +00:00
|
|
|
BWN_USE_SIBA opt_bwn.h
|
2016-05-09 05:59:21 +00:00
|
|
|
|
2016-05-16 20:18:54 +00:00
|
|
|
# Options for the SIBA driver
|
|
|
|
|
SIBA_DEBUG opt_siba.h
|
|
|
|
|
|
2008-04-20 20:35:46 +00:00
|
|
|
# options for the Marvell 8335 wireless driver
|
|
|
|
|
MALO_DEBUG opt_malo.h
|
|
|
|
|
MALO_TXBUF opt_malo.h
|
|
|
|
|
MALO_RXBUF opt_malo.h
|
|
|
|
|
|
2009-06-01 18:07:01 +00:00
|
|
|
# options for the Marvell wireless driver
|
|
|
|
|
MWL_DEBUG opt_mwl.h
|
|
|
|
|
MWL_TXBUF opt_mwl.h
|
|
|
|
|
MWL_RXBUF opt_mwl.h
|
|
|
|
|
MWL_DIAGAPI opt_mwl.h
|
|
|
|
|
MWL_AGGR_SIZE opt_mwl.h
|
|
|
|
|
MWL_TX_NODROP opt_mwl.h
|
|
|
|
|
|
2017-06-13 18:46:29 +00:00
|
|
|
# Options for the Marvell NETA driver
|
|
|
|
|
MVNETA_MULTIQUEUE opt_mvneta.h
|
|
|
|
|
MVNETA_KTR opt_mvneta.h
|
|
|
|
|
|
2015-08-10 16:32:47 +00:00
|
|
|
# Options for the Intel 802.11ac wireless driver
|
2015-08-08 20:45:12 +00:00
|
|
|
IWM_DEBUG opt_iwm.h
|
|
|
|
|
|
2013-08-01 21:50:13 +00:00
|
|
|
# Options for the Intel 802.11n wireless driver
|
|
|
|
|
IWN_DEBUG opt_iwn.h
|
|
|
|
|
|
2015-02-07 23:09:03 +00:00
|
|
|
# Options for the Intel 3945ABG wireless driver
|
|
|
|
|
WPI_DEBUG opt_wpi.h
|
|
|
|
|
|
2003-10-24 15:44:10 +00:00
|
|
|
# dcons options
|
|
|
|
|
DCONS_BUF_SIZE opt_dcons.h
|
|
|
|
|
DCONS_POLL_HZ opt_dcons.h
|
|
|
|
|
DCONS_FORCE_CONSOLE opt_dcons.h
|
|
|
|
|
DCONS_FORCE_GDB opt_dcons.h
|
2004-08-30 23:03:58 +00:00
|
|
|
|
2005-04-19 04:01:25 +00:00
|
|
|
# HWPMC options
|
2015-05-08 15:57:23 +00:00
|
|
|
HWPMC_DEBUG opt_global.h
|
2005-06-24 00:16:57 +00:00
|
|
|
HWPMC_HOOKS
|
2012-03-22 18:01:23 +00:00
|
|
|
HWPMC_MIPS_BACKTRACE opt_hwpmc_hooks.h
|
2005-12-12 01:14:59 +00:00
|
|
|
|
2008-04-20 20:35:46 +00:00
|
|
|
# 802.11 support layer
|
|
|
|
|
IEEE80211_DEBUG opt_wlan.h
|
|
|
|
|
IEEE80211_DEBUG_REFCNT opt_wlan.h
|
Implementation of the upcoming Wireless Mesh standard, 802.11s, on the
net80211 wireless stack. This work is based on the March 2009 D3.0 draft
standard. This standard is expected to become final next year.
This includes two main net80211 modules, ieee80211_mesh.c
which deals with peer link management, link metric calculation,
routing table control and mesh configuration and ieee80211_hwmp.c
which deals with the actually routing process on the mesh network.
HWMP is the mandatory routing protocol on by the mesh standard, but
others, such as RA-OLSR, can be implemented.
Authentication and encryption are not implemented.
There are several scripts under tools/tools/net80211/scripts that can be
used to test different mesh network topologies and they also teach you
how to setup a mesh vap (for the impatient: ifconfig wlan0 create
wlandev ... wlanmode mesh).
A new build option is available: IEEE80211_SUPPORT_MESH and it's enabled
by default on GENERIC kernels for i386, amd64, sparc64 and pc98.
Drivers that support mesh networks right now are: ath, ral and mwl.
More information at: http://wiki.freebsd.org/WifiMesh
Please note that this work is experimental. Also, please note that
bridging a mesh vap with another network interface is not yet supported.
Many thanks to the FreeBSD Foundation for sponsoring this project and to
Sam Leffler for his support.
Also, I would like to thank Gateworks Corporation for sending me a
Cambria board which was used during the development of this project.
Reviewed by: sam
Approved by: re (kensmith)
Obtained from: projects/mesh11s
2009-07-11 15:02:45 +00:00
|
|
|
IEEE80211_SUPPORT_MESH opt_wlan.h
|
2009-03-24 20:39:08 +00:00
|
|
|
IEEE80211_SUPPORT_SUPERG opt_wlan.h
|
2009-01-08 17:12:47 +00:00
|
|
|
IEEE80211_SUPPORT_TDMA opt_wlan.h
|
2011-04-21 03:59:37 +00:00
|
|
|
IEEE80211_ALQ opt_wlan.h
|
2012-01-31 00:03:49 +00:00
|
|
|
IEEE80211_DFS_DEBUG opt_wlan.h
|
2009-01-08 17:12:47 +00:00
|
|
|
|
|
|
|
|
# 802.11 TDMA support
|
|
|
|
|
TDMA_SLOTLEN_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_SLOTCNT_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_BINTVAL_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_11B_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_11G_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_11A_DEFAULT opt_tdma.h
|
2009-05-01 17:18:45 +00:00
|
|
|
TDMA_TXRATE_TURBO_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_HALF_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_QUARTER_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_11NA_DEFAULT opt_tdma.h
|
|
|
|
|
TDMA_TXRATE_11NG_DEFAULT opt_tdma.h
|
2008-04-20 20:35:46 +00:00
|
|
|
|
2015-02-15 11:37:40 +00:00
|
|
|
# VideoMode
|
|
|
|
|
PICKMODE_DEBUG opt_videomode.h
|
|
|
|
|
|
2009-08-14 22:41:39 +00:00
|
|
|
# Network stack virtualization options
|
2008-08-24 21:33:10 +00:00
|
|
|
VIMAGE opt_global.h
|
2009-08-14 22:41:39 +00:00
|
|
|
VNET_DEBUG opt_global.h
|
2009-02-05 18:12:07 +00:00
|
|
|
|
|
|
|
|
# Common Flash Interface (CFI) options
|
|
|
|
|
CFI_SUPPORT_STRATAFLASH opt_cfi.h
|
|
|
|
|
CFI_ARMEDANDDANGEROUS opt_cfi.h
|
2016-02-04 22:39:27 +00:00
|
|
|
CFI_HARDWAREBYTESWAP opt_cfi.h
|
Sound Mega-commit. Expect further cleanup until code freeze.
For a slightly thorough explaination, please refer to
[1] http://people.freebsd.org/~ariff/SOUND_4.TXT.html .
Summary of changes includes:
1 Volume Per-Channel (vpc). Provides private / standalone volume control
unique per-stream pcm channel without touching master volume / pcm.
Applications can directly use SNDCTL_DSP_[GET|SET][PLAY|REC]VOL, or for
backwards compatibility, SOUND_MIXER_PCM through the opened dsp device
instead of /dev/mixer. Special "bypass" mode is enabled through
/dev/mixer which will automatically detect if the adjustment is made
through /dev/mixer and forward its request to this private volume
controller. Changes to this volume object will not interfere with
other channels.
Requirements:
- SNDCTL_DSP_[GET|SET][PLAY|REC]_VOL are newer ioctls (OSSv4) which
require specific application modifications (preferred).
- No modifications required for using bypass mode, so applications
like mplayer or xmms should work out of the box.
Kernel hints:
- hint.pcm.%d.vpc (0 = disable vpc).
Kernel sysctls:
- hw.snd.vpc_mixer_bypass (default: 1). Enable or disable /dev/mixer
bypass mode.
- hw.snd.vpc_autoreset (default: 1). By default, closing/opening
/dev/dsp will reset the volume back to 0 db gain/attenuation.
Setting this to 0 will preserve its settings across device
closing/opening.
- hw.snd.vpc_reset (default: 0). Panic/reset button to reset all
volume settings back to 0 db.
- hw.snd.vpc_0db (default: 45). 0 db relative to linear mixer value.
2 High quality fixed-point Bandlimited SINC sampling rate converter,
based on Julius O'Smith's Digital Audio Resampling -
http://ccrma.stanford.edu/~jos/resample/. It includes a filter design
script written in awk (the clumsiest joke I've ever written)
- 100% 32bit fixed-point, 64bit accumulator.
- Possibly among the fastest (if not fastest) of its kind.
- Resampling quality is tunable, either runtime or during kernel
compilation (FEEDER_RATE_PRESETS).
- Quality can be further customized during kernel compilation by
defining FEEDER_RATE_PRESETS in /etc/make.conf.
Kernel sysctls:
- hw.snd.feeder_rate_quality.
0 - Zero-order Hold (ZOH). Fastest, bad quality.
1 - Linear Interpolation (LINEAR). Slightly slower than ZOH,
better quality but still does not eliminate aliasing.
2 - (and above) - Sinc Interpolation(SINC). Best quality. SINC
quality always start from 2 and above.
Rough quality comparisons:
- http://people.freebsd.org/~ariff/z_comparison/
3 Bit-perfect mode. Bypasses all feeder/dsp effects. Pure sound will be
directly fed into the hardware.
4 Parametric (compile time) Software Equalizer (Bass/Treble mixer). Can
be customized by defining FEEDER_EQ_PRESETS in /etc/make.conf.
5 Transparent/Adaptive Virtual Channel. Now you don't have to disable
vchans in order to make digital format pass through. It also makes
vchans more dynamic by choosing a better format/rate among all the
concurrent streams, which means that dev.pcm.X.play.vchanformat/rate
becomes sort of optional.
6 Exclusive Stream, with special open() mode O_EXCL. This will "mute"
other concurrent vchan streams and only allow a single channel with
O_EXCL set to keep producing sound.
Other Changes:
* most feeder_* stuffs are compilable in userland. Let's not
speculate whether we should go all out for it (save that for
FreeBSD 16.0-RELEASE).
* kobj signature fixups, thanks to Andriy Gapon <avg@freebsd.org>
* pull out channel mixing logic out of vchan.c and create its own
feeder_mixer for world justice.
* various refactoring here and there, for good or bad.
* activation of few more OSSv4 ioctls() (see [1] above).
* opt_snd.h for possible compile time configuration:
(mostly for debugging purposes, don't try these at home)
SND_DEBUG
SND_DIAGNOSTIC
SND_FEEDER_MULTIFORMAT
SND_FEEDER_FULL_MULTIFORMAT
SND_FEEDER_RATE_HP
SND_PCM_64
SND_OLDSTEREO
Manual page updates are on the way.
Tested by: joel, Olivier SMEDTS <olivier at gid0 d org>, too many
unsung / unnamed heroes.
2009-06-07 19:12:08 +00:00
|
|
|
|
|
|
|
|
# Sound options
|
|
|
|
|
SND_DEBUG opt_snd.h
|
|
|
|
|
SND_DIAGNOSTIC opt_snd.h
|
|
|
|
|
SND_FEEDER_MULTIFORMAT opt_snd.h
|
|
|
|
|
SND_FEEDER_FULL_MULTIFORMAT opt_snd.h
|
|
|
|
|
SND_FEEDER_RATE_HP opt_snd.h
|
|
|
|
|
SND_PCM_64 opt_snd.h
|
|
|
|
|
SND_OLDSTEREO opt_snd.h
|
2009-09-09 05:53:26 +00:00
|
|
|
|
2009-09-21 08:17:57 +00:00
|
|
|
X86BIOS
|
2010-05-28 10:35:44 +00:00
|
|
|
|
|
|
|
|
# Flattened device tree options
|
|
|
|
|
FDT opt_platform.h
|
|
|
|
|
FDT_DTB_STATIC opt_platform.h
|
2011-03-21 09:40:01 +00:00
|
|
|
|
|
|
|
|
# OFED Infiniband stack
|
2015-01-18 01:28:08 +00:00
|
|
|
OFED opt_ofed.h
|
2011-03-21 09:40:01 +00:00
|
|
|
OFED_DEBUG_INIT opt_ofed.h
|
|
|
|
|
SDP opt_ofed.h
|
|
|
|
|
SDP_DEBUG opt_ofed.h
|
2012-03-14 22:44:56 +00:00
|
|
|
IPOIB opt_ofed.h
|
2011-03-21 09:40:01 +00:00
|
|
|
IPOIB_DEBUG opt_ofed.h
|
|
|
|
|
IPOIB_CM opt_ofed.h
|
2011-03-27 08:44:27 +00:00
|
|
|
|
2011-03-29 17:47:25 +00:00
|
|
|
# Resource Accounting
|
|
|
|
|
RACCT opt_global.h
|
2015-05-14 14:03:55 +00:00
|
|
|
RACCT_DEFAULT_TO_DISABLED opt_global.h
|
2011-03-29 17:47:25 +00:00
|
|
|
|
2011-03-30 17:48:15 +00:00
|
|
|
# Resource Limits
|
|
|
|
|
RCTL opt_global.h
|
2013-10-08 11:05:26 +00:00
|
|
|
|
|
|
|
|
# Random number generator(s)
|
2020-10-10 21:45:59 +00:00
|
|
|
# Alternative RNG algorithm.
|
|
|
|
|
RANDOM_FENESTRASX opt_global.h
|
2015-08-17 07:36:12 +00:00
|
|
|
# With this, no entropy processor is loaded, but the entropy
|
|
|
|
|
# harvesting infrastructure is present. This means an entropy
|
|
|
|
|
# processor may be loaded as a module.
|
2015-09-08 08:50:28 +00:00
|
|
|
RANDOM_LOADABLE opt_global.h
|
2015-08-22 12:59:05 +00:00
|
|
|
# This turns on high-rate and potentially expensive harvesting in
|
|
|
|
|
# the uma slab allocator.
|
|
|
|
|
RANDOM_ENABLE_UMA opt_global.h
|
2018-05-31 21:53:07 +00:00
|
|
|
RANDOM_ENABLE_ETHER opt_global.h
|
Change EM_MULTIQUEUE to a real kernconf entry and enable support for
up to 2 rx/tx queues for the 82574.
Program the 82574 to enable 5 msix vectors, assign 1 to each rx queue,
1 to each tx queue and 1 to the link handler.
Inspired by DragonFlyBSD, enable some RSS logic for handling tx queue
handling/processing.
Move multiqueue handler functions so that they line up better in a diff
review to if_igb.c
Always enqueue tx work to be done in em_mq_start, if unable to acquire
the TX lock, then this will be processed in the background later by the
taskqueue. Remove mbuf argument from em_start_mq_locked() as the work
is always enqueued. (stolen from igb)
Setup TARC, TXDCTL and RXDCTL registers for better performance and stability
in multiqueue and singlequeue implementations. Handle Intel errata 3 and
generic multiqueue behavior with the initialization of TARC(0) and TARC(1)
Bind interrupt threads to cpus in order. (stolen from igb)
Add 2 new DDB functions, one to display the queue(s) and their settings and
one to reset the adapter. Primarily used for debugging.
In the multiqueue configuration, bump RXD and TXD ring size to max for the
adapter (4096). Setup an RDTR of 64 and an RADV of 128 in multiqueue configuration
to cut down on the number of interrupts. RADV was arbitrarily set to 2x RDTR
and can be adjusted as needed.
Cleanup the display in top a bit to make it clearer where the taskqueue threads
are running and what they should be doing.
Ensure that both queues are processed by em_local_timer() by writing them both
to the IMS register to generate soft interrupts.
Ensure that an soft interrupt is generated when em_msix_link() is run so that
any races between assertion of the link/status interrupt and a rx/tx interrupt
are handled.
Document existing tuneables: hw.em.eee_setting, hw.em.msix, hw.em.smart_pwr_down, hw.em.sbp
Document use of hw.em.num_queues and the new kernel option EM_MULTIQUEUE
Thanks to Intel for their continued support of FreeBSD.
Reviewed by: erj jfv hiren gnn wblock
Obtained from: Intel Corporation
MFC after: 2 weeks
Relnotes: Yes
Sponsored by: Limelight Networks
Differential Revision: https://reviews.freebsd.org/D1994
2015-06-03 18:01:09 +00:00
|
|
|
|
2019-03-23 05:13:51 +00:00
|
|
|
# This options turns TPM into entropy source.
|
|
|
|
|
TPM_HARVEST opt_tpm.h
|
|
|
|
|
|
2016-05-16 23:40:32 +00:00
|
|
|
# BHND(4) driver
|
|
|
|
|
BHND_LOGLEVEL opt_global.h
|
2016-05-27 01:36:29 +00:00
|
|
|
|
|
|
|
|
# GPIO and child devices
|
|
|
|
|
GPIO_SPI_DEBUG opt_gpio.h
|
2016-09-11 18:56:38 +00:00
|
|
|
|
2018-06-21 21:16:26 +00:00
|
|
|
# SPI devices
|
|
|
|
|
SPIGEN_LEGACY_CDEVNAME opt_spi.h
|
|
|
|
|
|
2016-11-15 21:58:04 +00:00
|
|
|
# etherswitch(4) driver
|
|
|
|
|
RTL8366_SOFT_RESET opt_etherswitch.h
|
|
|
|
|
|
2016-09-11 18:56:38 +00:00
|
|
|
# evdev protocol support
|
2016-10-02 03:20:31 +00:00
|
|
|
EVDEV_SUPPORT opt_evdev.h
|
2016-09-11 18:56:38 +00:00
|
|
|
EVDEV_DEBUG opt_evdev.h
|
|
|
|
|
UINPUT_DEBUG opt_evdev.h
|
2016-11-15 01:34:38 +00:00
|
|
|
|
2016-12-01 03:27:16 +00:00
|
|
|
# Hyper-V network driver
|
|
|
|
|
HN_DEBUG opt_hn.h
|
Add support for encrypted kernel crash dumps.
Changes include modifications in kernel crash dump routines, dumpon(8) and
savecore(8). A new tool called decryptcore(8) was added.
A new DIOCSKERNELDUMP I/O control was added to send a kernel crash dump
configuration in the diocskerneldump_arg structure to the kernel.
The old DIOCSKERNELDUMP I/O control was renamed to DIOCSKERNELDUMP_FREEBSD11 for
backward ABI compatibility.
dumpon(8) generates an one-time random symmetric key and encrypts it using
an RSA public key in capability mode. Currently only AES-256-CBC is supported
but EKCD was designed to implement support for other algorithms in the future.
The public key is chosen using the -k flag. The dumpon rc(8) script can do this
automatically during startup using the dumppubkey rc.conf(5) variable. Once the
keys are calculated dumpon sends them to the kernel via DIOCSKERNELDUMP I/O
control.
When the kernel receives the DIOCSKERNELDUMP I/O control it generates a random
IV and sets up the key schedule for the specified algorithm. Each time the
kernel tries to write a crash dump to the dump device, the IV is replaced by
a SHA-256 hash of the previous value. This is intended to make a possible
differential cryptanalysis harder since it is possible to write multiple crash
dumps without reboot by repeating the following commands:
# sysctl debug.kdb.enter=1
db> call doadump(0)
db> continue
# savecore
A kernel dump key consists of an algorithm identifier, an IV and an encrypted
symmetric key. The kernel dump key size is included in a kernel dump header.
The size is an unsigned 32-bit integer and it is aligned to a block size.
The header structure has 512 bytes to match the block size so it was required to
make a panic string 4 bytes shorter to add a new field to the header structure.
If the kernel dump key size in the header is nonzero it is assumed that the
kernel dump key is placed after the first header on the dump device and the core
dump is encrypted.
Separate functions were implemented to write the kernel dump header and the
kernel dump key as they need to be unencrypted. The dump_write function encrypts
data if the kernel was compiled with the EKCD option. Encrypted kernel textdumps
are not supported due to the way they are constructed which makes it impossible
to use the CBC mode for encryption. It should be also noted that textdumps don't
contain sensitive data by design as a user decides what information should be
dumped.
savecore(8) writes the kernel dump key to a key.# file if its size in the header
is nonzero. # is the number of the current core dump.
decryptcore(8) decrypts the core dump using a private RSA key and the kernel
dump key. This is performed by a child process in capability mode.
If the decryption was not successful the parent process removes a partially
decrypted core dump.
Description on how to encrypt crash dumps was added to the decryptcore(8),
dumpon(8), rc.conf(5) and savecore(8) manual pages.
EKCD was tested on amd64 using bhyve and i386, mipsel and sparc64 using QEMU.
The feature still has to be tested on arm and arm64 as it wasn't possible to run
FreeBSD due to the problems with QEMU emulation and lack of hardware.
Designed by: def, pjd
Reviewed by: cem, oshogbo, pjd
Partial review: delphij, emaste, jhb, kib
Approved by: pjd (mentor)
Differential Revision: https://reviews.freebsd.org/D4712
2016-12-10 16:20:39 +00:00
|
|
|
|
2017-07-09 16:57:24 +00:00
|
|
|
# CAM-based MMC stack
|
|
|
|
|
MMCCAM
|
Add support for encrypted kernel crash dumps.
Changes include modifications in kernel crash dump routines, dumpon(8) and
savecore(8). A new tool called decryptcore(8) was added.
A new DIOCSKERNELDUMP I/O control was added to send a kernel crash dump
configuration in the diocskerneldump_arg structure to the kernel.
The old DIOCSKERNELDUMP I/O control was renamed to DIOCSKERNELDUMP_FREEBSD11 for
backward ABI compatibility.
dumpon(8) generates an one-time random symmetric key and encrypts it using
an RSA public key in capability mode. Currently only AES-256-CBC is supported
but EKCD was designed to implement support for other algorithms in the future.
The public key is chosen using the -k flag. The dumpon rc(8) script can do this
automatically during startup using the dumppubkey rc.conf(5) variable. Once the
keys are calculated dumpon sends them to the kernel via DIOCSKERNELDUMP I/O
control.
When the kernel receives the DIOCSKERNELDUMP I/O control it generates a random
IV and sets up the key schedule for the specified algorithm. Each time the
kernel tries to write a crash dump to the dump device, the IV is replaced by
a SHA-256 hash of the previous value. This is intended to make a possible
differential cryptanalysis harder since it is possible to write multiple crash
dumps without reboot by repeating the following commands:
# sysctl debug.kdb.enter=1
db> call doadump(0)
db> continue
# savecore
A kernel dump key consists of an algorithm identifier, an IV and an encrypted
symmetric key. The kernel dump key size is included in a kernel dump header.
The size is an unsigned 32-bit integer and it is aligned to a block size.
The header structure has 512 bytes to match the block size so it was required to
make a panic string 4 bytes shorter to add a new field to the header structure.
If the kernel dump key size in the header is nonzero it is assumed that the
kernel dump key is placed after the first header on the dump device and the core
dump is encrypted.
Separate functions were implemented to write the kernel dump header and the
kernel dump key as they need to be unencrypted. The dump_write function encrypts
data if the kernel was compiled with the EKCD option. Encrypted kernel textdumps
are not supported due to the way they are constructed which makes it impossible
to use the CBC mode for encryption. It should be also noted that textdumps don't
contain sensitive data by design as a user decides what information should be
dumped.
savecore(8) writes the kernel dump key to a key.# file if its size in the header
is nonzero. # is the number of the current core dump.
decryptcore(8) decrypts the core dump using a private RSA key and the kernel
dump key. This is performed by a child process in capability mode.
If the decryption was not successful the parent process removes a partially
decrypted core dump.
Description on how to encrypt crash dumps was added to the decryptcore(8),
dumpon(8), rc.conf(5) and savecore(8) manual pages.
EKCD was tested on amd64 using bhyve and i386, mipsel and sparc64 using QEMU.
The feature still has to be tested on arm and arm64 as it wasn't possible to run
FreeBSD due to the problems with QEMU emulation and lack of hardware.
Designed by: def, pjd
Reviewed by: cem, oshogbo, pjd
Partial review: delphij, emaste, jhb, kib
Approved by: pjd (mentor)
Differential Revision: https://reviews.freebsd.org/D4712
2016-12-10 16:20:39 +00:00
|
|
|
# Encrypted kernel crash dumps
|
|
|
|
|
EKCD opt_ekcd.h
|
2017-08-28 23:54:25 +00:00
|
|
|
|
|
|
|
|
# NVME options
|
|
|
|
|
NVME_USE_NVD opt_nvme.h
|
2018-04-24 13:07:17 +00:00
|
|
|
|
|
|
|
|
# amdsbwd options
|
|
|
|
|
AMDSBWD_DEBUG opt_amdsbwd.h
|
2019-02-23 21:14:00 +00:00
|
|
|
|
|
|
|
|
# gcov support
|
|
|
|
|
GCOV opt_global.h
|
|
|
|
|
LINDEBUGFS
|
2020-10-05 09:38:11 +00:00
|
|
|
|
|
|
|
|
# options for HID support
|
|
|
|
|
HID_DEBUG opt_hid.h
|
2020-10-06 21:50:16 +00:00
|
|
|
IICHID_DEBUG opt_hid.h
|
|
|
|
|
IICHID_SAMPLING opt_hid.h
|
2020-10-12 19:52:29 +00:00
|
|
|
HKBD_DFLT_KEYMAP opt_hkbd.h
|
2020-12-13 09:37:55 +00:00
|
|
|
HIDRAW_MAKE_UHID_ALIAS opt_hid.h
|
