| Commit message (Collapse) | Author | Age |
|
|
|
| |
They are enabled by default on Arch.
|
| |
|
|\ |
|
| |\
| | |
| | | |
linux: enable force feedback support in HID drivers
|
| | | |
|
|\| | |
|
| |\ \
| | | |
| | | | |
linux: explicitly enable AIO
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This is disabled by default in the linux-hardened patchset, but is
required by e.g. LVM.
Fixes #87260.
|
|\| | | |
|
| | | | |
|
|/ / /
| | |
| | |
| | |
| | |
| | |
| | | |
The default enable for SND_HDA_CODEC_CA0132_DSP was already merged into
5.7-rc1 [1], which means we can adjust the whenOlder to 5.7.
[1]: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=652bb5d8df4b3a79ed350db35cda12637e63efa7
|
|\ \ \ |
|
| | |/
| |/|
| | |
| | | |
Even the default pkgsi686Linux.linux was broken.
|
|\ \ \
| |/ /
|/| |
| | |
| | |
| | | |
This commit has already been partially rebuilt in
https://hydra.nixos.org/eval/1592635
In particular, the severe security fix for gnutls is contained.
|
| | |
| | |
| | |
| | | |
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
|
| | | |
|
|/ /
| |
| |
| |
| | |
Some of the options didn't have correct kernel version constraints,
others had been removed or made optional unnecessarily in #84032.
|
|\ \
| | |
| | | |
Fix kernel configuration merge
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | | |
With the fix in kernel configuration merging, some kernel configuration items
marked as mandatory now correctly trigger an error when unused (while they
previously were unused).
|
| |/
|/|
| |
| |
| |
| |
| |
| | |
This config value ensures that when booting through e.g. UEFI, the
existing framebuffer contents stay put until the first character is
printed. As the default NixOS stage-1 immediately outputs a welcome
message on init, this does not impact it, but it will allow for a cleaner boot when
configured as such.
|
|\ \ |
|
| | | |
|
|/ / |
|
|\ \ |
|
| |\ \
| | | |
| | | | |
linux_*_hardened: use linux-hardened patch set
|
| | |/
| | |
| | |
| | |
| | | |
The linux-hardened patch set removes this default, probably because of
its original focus on Android kernel hardening.
|
| | |
| | |
| | |
| | | |
Needed for subscribing to dropped packets (e.g. via `dropwatch`).
|
|\ \ \
| |/ /
|/| | |
linux config: Set TCP_CONG_CUBIC=yes to restore the default
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This will switch the default TCP congestion control algorithm from
new Reno to CUBIC. CUBIC is the default since Linux kernel 2.6.19
(see 597811ec167fa) and most (all?) distributions keep this default
(e.g. Debian and Ubuntu). On NixOS the default was still new Reno
because generate-config.pl changes TCP_CONG_CUBIC from y to m (since we
try to build everything as a module by default).
To check the active and available algorithms:
$ sysctl net.ipv4.tcp_congestion_control
net.ipv4.tcp_congestion_control = cubic
$ sysctl net.ipv4.tcp_available_congestion_control
net.ipv4.tcp_available_congestion_control = cubic reno
Note: E.g. x86_64_defconfig sets TCP_CONG_CUBIC=y indirectly via
CONFIG_TCP_CONG_ADVANCED=y (but CUBIC is also the default if set to no,
see net/ipv4/Kconfig).
|
| |/
|/|
| |
| |
| |
| |
| |
| |
| | |
Since we select everything as a module, snd_hda_codec_ca0132 is built as
well. DSP loading is not enabled by default, but without it the
soundcard produces timeouts within ALSA and does not emit sound.
Explicitly enable the firmware loading to ensure Soundblaster
Z/Zx/ZxR/Recon devices can be used with NixOS.
The patch to enable this by default in the kernel is staged for 5.8.
|
|\ \
| | |
| | | |
Add lib.kernel
|
| | |
| | |
| | |
| | |
| | | |
whenAtLeast/whenBetween are made available in lib/kernel.nix but are now
scoped under whenXXX.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Remove the "version" parameter in order to make it more widely
available.
Starts making some kernel configuration helpers available.
The intent is to be able to better build and check the linux kernel
configuration.
|
| |/
|/|
| |
| |
| |
| |
| |
| |
| | |
CONFIG_IP_MULTIPLE_TABLES is part of the default x86 kernel config but
absent from the Aarch64 one. Adding explicitely this flag together
with its dependency IP_ADVANCED_ROUTER.
Both of these config flags are needed to use the routing policy
facilities.
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This reverts a small bit of af808bd82 from PR #73328. Fixes #79304:
tests.installer.simpleUefiSystemdBoot.x86_64-linux
I still don't know why the regression happened, but this feature doesn't
seem important enough to block channel now, though it reportedly helps
to mitigate spectre 2 attack CVE-2017-5715.
|
| |
| |
| |
| |
| | |
This is available for 5.5+ and enables support for
NVMe drives temperature reporting
|
|\ \
| | |
| | | |
linux config: add support for xdp sockets and ebpf jit
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
xdp socket support (AF_XDP) is the new way of implementing high
performance networking on linux. on arch linux and debian this is
already enabled (checked via the links from the nixos manual).
moreover, these flags are suggested by the bpf documentation at cilium:
https://cilium.readthedocs.io/en/latest/bpf/#compiling-the-kernel
additionally the flag `BPF_JIT_ALWAYS_ON` on was suggested to help
spectre attack mitigations:
https://github.com/torvalds/linux/commit/290af86629b25ffd1ed6232c4e9107da031705cb
|
| | |
| | |
| | |
| | |
| | | |
These configuration options are needed for the ROCm GPU compute stack
on kernels >= 5.3.
|
| | | |
|
|/ /
| |
| |
| | |
See comments: https://github.com/NixOS/nixpkgs/commit/9b67ea9106102d882f53d62890468071900b9647
|
| |
| |
| |
| |
| |
| |
| | |
This is available for 5.3+ and enables support for
Apple trackpads and keyboards
Closes #71552
|
|\ \
| | |
| | | |
nftables: enable all features in kernel
|
| | | |
|
|/ /
| |
| |
| |
| | |
Our oldest kernel is 4.4. That's why we can remove configurations that only
applies to kernels older than that.
|
|\ \
| | |
| | | |
kernel/common-config: enable INET_{TCP,UDP,RAW}_DIAG and INET_DIAG_DESTROY
|
| |/ |
|
|/ |
|
|\
| |
| | |
kernel: set POWERCAP and INTEL_RAPL
|