Commit Graph

342 Commits

Author SHA1 Message Date
Samuel Dionne-Riel
7264c049c7 linux/common-config.nix: Configure for armv7l-linux too 2021-05-04 19:42:12 -04:00
Samuel Dionne-Riel
595a50fd07 linux/common-config.nix: Enable FB_SIMPLE on AArch64 2021-05-04 19:42:12 -04:00
github-actions[bot]
6ef7c23763
Merge master into staging-next 2021-04-19 18:11:51 +00:00
Jens Nolte
610d831a4b kernel: Remove CONFIG_BLK_DEV_RAM=y (remove /dev/ram* devices)
This option allows to use portions of the system RAM as block devices.
It was configured to 'y' (built-in, therefore not unloadable or
reconfigurable) and configured 16 4MB RAM disks which, to my knowledge,
currently have no purpose in NixOS.

Removing the option restores it to it's default value of 'm', which
enables it to be loaded at runtime (which is also required to be able to
change it's configuration without rebuilding the kernel).
2021-04-18 05:34:55 +02:00
Alyssa Ross
52cd3538ff linux: remove remnants of grsecurity
Nixpkgs hasn't supported grsecurity kernels since 2017, so unless
anybody is manually enabling the grsecurity feature to make these
small kernel tweaks this is dead code.

This means we don't actually support any "features" in the kernel
common-config any more, but I've left the argument there because it's
conceivable we could have some again in future.
2021-04-06 09:48:56 +00:00
Alyssa Ross
5f24024de6 linux: enable Xen everywhere it can be
I don't think there's any reason to have a seperate kernel variant
because of this, with all the maintenance burden that imposes.  Debian
and Fedora both enable all these options on their normal kernels.

Alias the Linux Xen attributes, so this change should be seemless for
people who were using the Xen kernels up to now.

All the Xen options are marked as optional anyway, so it should be
fine to try to enable them on non-x86 platforms as well.

Fixes: https://github.com/NixOS/nixpkgs/issues/115182
2021-04-04 14:26:21 +00:00
github-actions[bot]
3e45982f7a
Merge master into staging-next 2021-04-04 12:06:01 +00:00
Vladimír Čunát
7a3f21c1e4
linux: don't compress by ZSTD on 32-bit
It doesn't build on i686 and I don't consider it worth deep
investigation.  I tried a VM test, too (nixosTests.knot).
2021-04-03 16:11:17 +02:00
github-actions[bot]
636e58e31b
Merge staging-next into staging 2021-04-02 00:21:46 +00:00
Alyssa Ross
f67748ecda
Fix some typos in comments 2021-04-01 18:34:27 +00:00
Martin Weinelt
f5eed9579b
Merge pull request #117645 from zhaofengli/linux-srv6
linux: Enable SRv6 options
2021-03-29 05:00:08 +02:00
Tim Steinbach
a7d6642cf3 linux-testing: 5.11-rc5 -> 5.12-rc4
- Sound SOC support was refactored in
torvalds/linux@43df5242af

- GMA3600 is part of GMA500 as of
torvalds/linux@26499e0518
2021-03-26 18:48:37 -04:00
Zhaofeng Li
6981b50e9d linux: Enable SRv6 options 2021-03-26 10:54:12 -07:00
Jonathan Teh
29e7b1ff82 linux: enable NVMe Multipath
Enable NVME_MULTIPATH so that a single /dev/nvmeXnY device will show
up for each NVMe namespaces, even if it is accessible through multiple
controllers. Can be disabled at boot with `nvme_core.multipath=0`.

This is default enabled in Debian [1], Ubuntu 20.04 [2] , Arch [3] and
Fedora 33 [4].

[1]: https://salsa.debian.org/kernel-team/linux/-/blob/debian/5.10.19-1/debian/config/config#L4362
[2]: https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal/tree/debian.master/config/config.common.ubuntu?h=Ubuntu-5.4.0-67.75#n6722
[3]: https://git.archlinux.org/svntogit/packages.git/tree/trunk/config?h=packages/linux#n2423
[4]: https://src.fedoraproject.org/rpms/kernel/blob/f33/f/kernel-x86_64-fedora.config#_4338
2021-03-10 17:40:30 +00:00
Linus Heckemann
c762b1eaab
Merge pull request #90065 from wizeman/u/fix-config-merge
linux: make sure all config options have the same value
2021-03-08 21:34:59 +01:00
Tim Steinbach
ecce29eba2
kernel: RANDOM_TRUST_CPU for >= 4.19 2021-03-08 11:49:08 -05:00
Rouven Czerwinski
368bdd13f6 linux: enable RANDOM_TRUST_CPU
Allows the RDRAND instruction to seed the kernel RNG. This should lead
to faster CRNG initialization, since the kernel can use the processors
capabilities directly. This is default enabled in Debian [1] and Fedora
[2] as well.

[1]: https://salsa.debian.org/kernel-team/linux/-/blob/debian/5.10.13-1/debian/config/config#L459
[2]: https://src.fedoraproject.org/rpms/kernel/blob/rawhide/f/kernel-x86_64-fedora.config#_4907
2021-03-08 09:34:22 -05:00
Ricardo M. Correia
d81067f3f3 linux: fix fallout from conflicting kernel configs
The parent commit forbids conflicting kernel config options.

Fix the hardened kernels by allowing options in common-config.nix to
be overridden by conflicting ones in hardened/config.nix.

I'm explicitly avoiding using a higher priority (e.g. using mkForce)
in hardened/config.nix so that the user can easily override the
options in that file.
2021-03-07 20:55:55 +01:00
Varris
662e3b88ae linux: Enable CONFIG_UNICODE to support casefold
Required to mount filesystems with casefold enabled. Fixes #109432
2021-03-01 12:05:51 -05:00
Jan Tojnar
8f50f1ce10
Merge branch 'staging-next' into staging
Resolved the following conflicts:

- kernel flags between 09176d28a0 and 2b28822d8d
- clojure-lsp between 3fa00685ce and e03c068af5
2021-02-19 17:15:31 +01:00
Tim Steinbach
bc1d90eb25
Revert "linux: Disable BFQ scheduler"
This reverts commit b2f79fe7e7.
2021-02-19 09:14:30 -05:00
Arthur Gautier
2b28822d8d common-config: fixup compilation for linux 5.11
DRM_AMD_DC_DCN3_0 has been renamed DRM_AMD_DC_DCN in linux 5.11
see:
20f2ffe504
https://github.com/NixOS/nixpkgs/pull/113194#issuecomment-781766471

Signed-off-by: Arthur Gautier <baloo@superbaloo.net>
2021-02-19 05:31:11 +00:00
Michael Weiss
968d7e80c7
Merge pull request #113236 from blitz/kcmp
linux: enable kcmp() system call
2021-02-18 14:43:29 +01:00
Julian Stecklina
4c73c02917
linux: enable kcmp() system call
Since 2020, Mesa requires the kcmp() system call to be available for
some of its functionality. At the moment, this system call is enabled
when CHECKPOINT_RESTORE is enabled in the Linux kernel. This option is
also enabled by default in Fedora and Debian.

This patch enables CHECKPOINT_RESTORE by default on all kernel
versions where it is not marked as EXPERT, i.e. everything after and
including 4.19.

Fixes #112082.
2021-02-18 12:31:11 +01:00
github-actions[bot]
9d6726a2e3
Merge staging-next into staging 2021-02-17 18:14:09 +00:00
github-actions[bot]
afcea01614
Merge master into staging-next 2021-02-17 18:14:04 +00:00
Tim Steinbach
b2f79fe7e7
linux: Disable BFQ scheduler 2021-02-17 10:12:28 -05:00
Jörg Thalheim
09176d28a0
linux: fix DRM_AMD_DC_DCN3_0 beeing defined twice
both https://github.com/NixOS/nixpkgs/pull/111177 and
https://github.com/NixOS/nixpkgs/pull/109105

introduced the same option.
2021-02-15 14:47:51 +01:00
Linus Heckemann
e1580db42f
Merge pull request #109105 from wakira/amdgpu_dcn
linux: enable display core support for all amd gpus
2021-02-15 12:35:49 +01:00
Sandro
7e55500f54
Merge pull request #111177 from afontaine/enable-rx6000-gpus
common-config: Enable RX 6000 Series AMDGPU
2021-02-03 11:29:14 +01:00
Jörg Thalheim
dec19cba44
Merge pull request #109644 from Izorkin/update-firewall 2021-02-03 05:41:42 +00:00
Andrew Fontaine
6ebf1a17af
common-config: Enable RX 6000 Series AMDGPU
The kernel config parameter `DRM_AMD_DC_DCN3_0` is required to enable
the RX 6000 series GPUs, and is supported on kernels at least `5.9.12`.

Source: https://wiki.gentoo.org/wiki/AMDGPU#Installation
2021-01-29 12:05:57 -05:00
Jörg Thalheim
7b1310166c
Merge pull request #110542 from Atemu/kernel-f2fs-compression
linux: enable F2FS compression
2021-01-24 21:53:58 +00:00
Atemu
9d342077cd linux: enable F2FS compression
Fixes https://github.com/NixOS/nixpkgs/issues/110534
2021-01-22 22:35:34 +01:00
github-actions[bot]
b7f20dcd02
Merge master into staging-next 2021-01-18 01:16:03 +00:00
Izorkin
25a5c04a23
nftables: add netdev REJECT support 2021-01-17 22:15:22 +03:00
Ben Siraphob
16d91ee628 pkgs/os-specific: stdenv.lib -> lib 2021-01-17 23:26:08 +07:00
Sheng Wang
57c9a0d0ca linux: enable display core support for all amd gpus
newer amd gpus require display core to function normally
2021-01-12 14:56:53 +00:00
github-actions[bot]
757ad34b82
Merge master into staging-next 2021-01-11 18:42:29 +00:00
Tim Steinbach
d91f1b0f47
linux: Optional SECURITY_LOCKDOWN_LSM
The option has been removed in the most recent dot releases
2021-01-11 11:09:02 -05:00
Milan Pässler
0f03222d88 linux: build with multipath tcp support
Starting from Linx 5.6, there is partial upstream support for the Multipath TCP
protocol. There are no downsides to enabling it afaict, since
applications need to opt-in when creating a socket.

From https://github.com/multipath-tcp/mptcp_net-next/wiki:
"[...] users of regular TCP continue to get the same type of connection and
performance unless MPTCP is requested."
2021-01-07 18:37:57 +01:00
github-actions[bot]
a6f7ba3752
Merge staging-next into staging 2020-12-31 18:42:44 +00:00
Samuel Dionne-Riel
4e75a31e98 linux: configure aarch64 contiguous memory allocator via kernel config
As per the in-line comment, this is where distros should configure it.
Not via kernel command line parameters.

As found by looking at the implementation, while exploring the cause of
a bug on the Raspberry Pi 4, it was found that `cma=` on the command
line parameters will overwrite the values a device tree will have
configured for a given platform.

With this, the more recent 5.4 vendor kernel boots just fine on the
Raspberry Pi 4 using our common configuration.
2020-12-31 18:20:49 +01:00
Michael Raskin
a95d8f160a
Merge pull request #107625 from Atemu/r13y/kernel-disable-module-signing
kernel: disable module signing
2020-12-30 17:47:49 +00:00
Blaž Hrastnik
9461f0a734 kernel: use zstd compression on 5.9+. 2020-12-28 14:25:17 +01:00
Atemu
2c19ef2209 linux: disable module signing
Without this, the kernel would generate a random one for us which obviously
isn't reproducible.

`nix-build -A linux --check` succeeds now!
(Tested at different times with different kernel)
2020-12-26 13:15:04 +01:00
Gaute Ravndal
5183864d18 linux: explicitly enable RAS
This is needed for EDAC support.
2020-11-26 10:08:51 +01:00
Florian Klink
13be37662d kernel config: explicitly enable CONFIG_IPV6
We currently build CONFIG_IPV6=m.

This seems to be not really well-supported in mainline kernels - see
https://lore.kernel.org/netdev/20201115224509.2020651-1-flokli@flokli.de/T/#u

Compiling it as a module doesn't give too much benefit - even for people
who did explicitly set `enableIPv6` to false, the `ipv6` module was
still loaded, as soon as another module was loaded that requires it
(bridge,br_netfilter,wireguard,ip6table_mangle,sctp,…).

By compiling it in, we only loose the possibility to not add it to
`boot.kernelModules` anymore (as it's part of the kernel directly). The
space savings are negligible.

People wanting to disable IPv6 still get the appropriate sysctls and
options set (while having the kernel code loaded), nothing is really
changing here.
2020-11-16 13:07:49 +01:00
edef
a6a6659e56
Merge pull request #33283 from fahadsadah/dpauxchardev
kernel config: CONFIG_DRM_DP_AUX_CHARDEV
2020-09-06 16:34:11 +00:00
Symphorien Gibol
8c56afb042 linux: enable io cost and io latency block group controller
They are enabled by default on Arch.
2020-07-18 12:00:00 +00:00