]> git.saurik.com Git - apple/xnu.git/blobdiff - bsd/conf/MASTER
projects / apple / xnu.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
xnu-1699.22.73.tar.gz
[apple/xnu.git] / bsd / conf / MASTER
diff --git a/bsd/conf/MASTER b/bsd/conf/MASTER
index 8e308ece2b7ae334d3daf5f1f0ac66640a7280f1..bb57c6dae1a5989a20399683bcdff56a0adfcc85 100644 (file)
--- a/bsd/conf/MASTER
+++ b/bsd/conf/MASTER
@@ -101,6 +101,7 @@ options             MACH_IPC_COMPAT # Enable old IPC interface      # <ipc_compat>
 options                MACH_IPC_DEBUG  # Enable IPC debugging calls    # <ipc_debug>
 options                MACH_IPC_TEST   # Testing code/printfs          # <ipc_test>
 options                MACH_LDEBUG     # Sanity-check simple locking   # <test>
 options                MACH_IPC_DEBUG  # Enable IPC debugging calls    # <ipc_debug>
 options                MACH_IPC_TEST   # Testing code/printfs          # <ipc_test>
 options                MACH_LDEBUG     # Sanity-check simple locking   # <test>
+options                CONFIG_ZLEAKS   # Live zone leak debug sysctls  # <zleaks>
 options        MACH_NP         # Mach IPC support              # <np>
 options                MACH_NBC        # No buffer cache               # <nbc>
 options                MACH_NET        # Fast network access           # <mach_net>
 options        MACH_NP         # Mach IPC support              # <np>
 options                MACH_NBC        # No buffer cache               # <nbc>
 options                MACH_NET        # Fast network access           # <mach_net>
@@ -123,9 +124,11 @@ options            LLC             # 802.2 support                 # <llc>
 options                LOOP            # loopback support              # <loop>
 options                MROUTING        # multicast routing             # <mrouting>
 options                ROUTING         # routing                       # <routing>
 options                LOOP            # loopback support              # <loop>
 options                MROUTING        # multicast routing             # <mrouting>
 options                ROUTING         # routing                       # <routing>
-options                NETMIBS         #                               # <netmibs>
 options                VLAN            #                               # <vlan>
 options                BOND            #                               # <bond>
 options                VLAN            #                               # <vlan>
 options                BOND            #                               # <bond>
+options                PF              # Packet Filter                 # <pf>
+options                PF_PKTHDR       # PF tag inside mbuf pkthdr     # <pf_pkthdr>
+options                PFLOG           # PF log interface              # <pflog>
 options                IPDIVERT        # Divert sockets (for NAT)      # <ipdivert>
 options                IPFIREWALL      # IP Firewalling (used by NAT)  # <ipfirewall>
 options                IPFIREWALL_FORWARD      #Transparent proxy      # <ipfirewall>
 options                IPDIVERT        # Divert sockets (for NAT)      # <ipdivert>
 options                IPFIREWALL      # IP Firewalling (used by NAT)  # <ipfirewall>
 options                IPFIREWALL_FORWARD      #Transparent proxy      # <ipfirewall>
@@ -139,21 +142,22 @@ options           RANDOM_IP_ID    # random (not sequential) ip ids        # <randomipid>
 options                TCP_DROP_SYNFIN # Drop TCP packets with SYN+FIN set     # <tcpdrop_synfin>
 options                ICMP_BANDLIM    # ICMP bandwidth limiting sysctl
 options                IFNET_INPUT_SANITY_CHK  # allow dlil/ifnet input sanity check # <ifnet_input_chk>
 options                TCP_DROP_SYNFIN # Drop TCP packets with SYN+FIN set     # <tcpdrop_synfin>
 options                ICMP_BANDLIM    # ICMP bandwidth limiting sysctl
 options                IFNET_INPUT_SANITY_CHK  # allow dlil/ifnet input sanity check # <ifnet_input_chk>
-options                AUDIT           # Security event auditing       # <audit>
 options                SYSV_SEM        # SVID semaphores                       # <sysv_sem>
 options                SYSV_MSG        # SVID messages                         # <sysv_msg>
 options                SYSV_SHM        # SVID shared mem                       # <sysv_shm>
 options                SYSV_SEM        # SVID semaphores                       # <sysv_sem>
 options                SYSV_MSG        # SVID messages                         # <sysv_msg>
 options                SYSV_SHM        # SVID shared mem                       # <sysv_shm>
+options                PSYNCH          # pthread synch                         # <psynch>
 options                PANIC_INFO      # want kernel panic info        # <panic_info>
 options                DEVELOPMENT     # dev kernel                            # <development>
 
 # secure_kernel - secure kernel from user programs
 options     SECURE_KERNEL       # <secure_kernel> 
 
 options                PANIC_INFO      # want kernel panic info        # <panic_info>
 options                DEVELOPMENT     # dev kernel                            # <development>
 
 # secure_kernel - secure kernel from user programs
 options     SECURE_KERNEL       # <secure_kernel> 
 
+options     OLD_SEMWAIT_SIGNAL  # old semwait_signal handler
+
 #
 #      4.4 general kernel 
 #
 options                SOCKETS         # socket support                        # <inet, inet6, netat>
 #
 #      4.4 general kernel 
 #
 options                SOCKETS         # socket support                        # <inet, inet6, netat>
-options        COMPAT_43_TTY   # 4.3 BSD tty compat    # <compat_43_tty>
 options        DIAGNOSTIC      # diagnostics                           # <diagnostic>
 options                CONFIG_DTRACE   # dtrace support                        # <config_dtrace>
 options                GPROF           # build profiling                       # <profile>
 options        DIAGNOSTIC      # diagnostics                           # <diagnostic>
 options                CONFIG_DTRACE   # dtrace support                        # <config_dtrace>
 options                GPROF           # build profiling                       # <profile>
@@ -162,9 +166,11 @@ options            NETWORKING      # networking layer                      # <inet, inet6, netat>
 options                CONFIG_FSE      # file system events            # <config_fse>
 options                CONFIG_IMAGEBOOT        # local image boot      # <config_imageboot>
 options                CONFIG_SOWUPCALL        # SB_UPCALL on sowwakeup        # <config_sowupcall>
 options                CONFIG_FSE      # file system events            # <config_fse>
 options                CONFIG_IMAGEBOOT        # local image boot      # <config_imageboot>
 options                CONFIG_SOWUPCALL        # SB_UPCALL on sowwakeup        # <config_sowupcall>
-options                CONFIG_FORCE_OUT_IFP    # Force IP output to use an interface # <config_force_out_ifp>
-options                CONFIG_MBUF_NOEXPAND    # limit mbuf expansion  # <config_mbuf_noexpand>
 options                CONFIG_MBUF_JUMBO       # jumbo cluster pool    # <config_mbuf_jumbo>
 options                CONFIG_MBUF_JUMBO       # jumbo cluster pool    # <config_mbuf_jumbo>
+options                CONFIG_FORCE_OUT_IFP    # Enable IP_FORCE_OUT_IFP # <config_force_out_ifp>
+options                CONFIG_IFEF_NOWINDOWSCALE # Scale TCP window per driver # <config_ifef_nowindowscale>
+
+options                CONFIG_WORKQUEUE        # <config_workqueue>
 
 #
 #      4.4 filesystems 
 
 #
 #      4.4 filesystems 
@@ -172,11 +178,11 @@ options           CONFIG_MBUF_JUMBO       # jumbo cluster pool    # <config_mbuf_jumbo>
 options                FFS                     # Fast Filesystem Support       # <ffs>
 options                HFS                     # HFS/HFS+ support              # <hfs>
 options                FIFO            # fifo support                  # <fifo>
 options                FFS                     # Fast Filesystem Support       # <ffs>
 options                HFS                     # HFS/HFS+ support              # <hfs>
 options                FIFO            # fifo support                  # <fifo>
-options                UNION           # union_fs support              # <union>
 options                FDESC           # fdesc_fs support              # <fdesc>
 options                FDESC           # fdesc_fs support              # <fdesc>
-options                CD9660          # ISO 9660 CD-ROM support       # <cd9660>
 options                DEVFS           # devfs support                 # <devfs>
 options                JOURNALING      # journaling support    # <journaling>
 options                DEVFS           # devfs support                 # <devfs>
 options                JOURNALING      # journaling support    # <journaling>
+options                HFS_COMPRESSION # hfs compression       # <hfs_compression>
+options                CONFIG_HFS_TRIM # HFS trims unused blocks       # <config_hfs_trim>
 
 #
 #      file system features
 
 #
 #      file system features
@@ -185,6 +191,8 @@ options             QUOTA           # file system quotas            # <quota>
 options                REV_ENDIAN_FS   # Reverse Endian FS             # <revfs>
 options                NAMEDSTREAMS    # named stream vnop support     # <namedstreams>
 options                CONFIG_VOLFS    # volfs path support (legacy)   # <config_volfs>
 options                REV_ENDIAN_FS   # Reverse Endian FS             # <revfs>
 options                NAMEDSTREAMS    # named stream vnop support     # <namedstreams>
 options                CONFIG_VOLFS    # volfs path support (legacy)   # <config_volfs>
+options                CONFIG_IMGSRC_ACCESS # source of imageboot dmg  # <config_imgsrc_access>
+options                CONFIG_TRIGGERS # trigger vnodes                # <config_triggers>
 
 #
 # NFS support
 
 #
 # NFS support
@@ -235,6 +243,8 @@ options                     randomipid              # <inet,randomipid>
 
 options                ZLIB            # inflate/deflate support       # <zlib>
 
 
 options                ZLIB            # inflate/deflate support       # <zlib>
 
+options                IF_BRIDGE                       # <if_bridge>
+
 makeoptions    LIBDRIVER = "libDriver_kern.o"                  # <libdriver>
 makeoptions    LIBOBJC   = "libkobjc.o"                        # <kernobjc>
 
 makeoptions    LIBDRIVER = "libDriver_kern.o"                  # <libdriver>
 makeoptions    LIBOBJC   = "libkobjc.o"                        # <kernobjc>
 
@@ -277,8 +287,7 @@ options   CONFIG_KN_HASHSIZE=20             # <bsmall>
 options   CONFIG_VNODES=263168         # <large,xlarge>
 options   CONFIG_VNODES=263168         # <medium>
 options   CONFIG_VNODES=10240          # <small>
 options   CONFIG_VNODES=263168         # <large,xlarge>
 options   CONFIG_VNODES=263168         # <medium>
 options   CONFIG_VNODES=10240          # <small>
-options   CONFIG_VNODES=1024           # <xsmall>
-options   CONFIG_VNODES=512                    # <bsmall>
+options   CONFIG_VNODES=750                    # <bsmall>
 
 options   CONFIG_VNODE_FREE_MIN=500            # <large,xlarge>
 options   CONFIG_VNODE_FREE_MIN=300            # <medium>
 
 options   CONFIG_VNODE_FREE_MIN=500            # <large,xlarge>
 options   CONFIG_VNODE_FREE_MIN=300            # <medium>
@@ -296,6 +305,9 @@ options   CONFIG_VFS_NAMES=4096             # <medium>
 options   CONFIG_VFS_NAMES=3072                # <small,xsmall>
 options   CONFIG_VFS_NAMES=2048                # <bsmall>
 
 options   CONFIG_VFS_NAMES=3072                # <small,xsmall>
 options   CONFIG_VFS_NAMES=2048                # <bsmall>
 
+options   CONFIG_MAX_CLUSTERS=8                # <xlarge,large,medium>
+options   CONFIG_MAX_CLUSTERS=4                # <small,xsmall,bsmall>
+
 #
 #  configurable kauth credential related resources 
 #
 #
 #  configurable kauth credential related resources 
 #
@@ -324,6 +336,12 @@ options        CONFIG_NMBCLUSTERS="((1024 * 1024) / MCLBYTES)"             # <large,xlarge>
 options        CONFIG_NMBCLUSTERS="((1024 * 512) / MCLBYTES)"          # <medium>
 options        CONFIG_NMBCLUSTERS="((1024 * 256) / MCLBYTES)"          # <bsmall,xsmall,small>
 
 options        CONFIG_NMBCLUSTERS="((1024 * 512) / MCLBYTES)"          # <medium>
 options        CONFIG_NMBCLUSTERS="((1024 * 256) / MCLBYTES)"          # <bsmall,xsmall,small>
 
+#
+# set maximum space used for packet buffers
+#
+options CONFIG_USESOCKTHRESHOLD=1      # <large,xlarge,medium>
+options CONFIG_USESOCKTHRESHOLD=0      # <bsmall,xsmall,small>
+
 #
 # Configure size of TCP hash table
 #
 #
 # Configure size of TCP hash table
 #
@@ -372,6 +390,12 @@ options   CONFIG_MFCTBLSIZ=256                     # <medium,large,xlarge>
 options   CONFIG_MFCTBLSIZ=128                 # <small,xsmall>
 options   CONFIG_MFCTBLSIZ=16                  # <bsmall>
 
 options   CONFIG_MFCTBLSIZ=128                 # <small,xsmall>
 options   CONFIG_MFCTBLSIZ=16                  # <bsmall>
 
+#
+# configurable kernel message buffer size
+#
+options   CONFIG_MSG_BSIZE=4096                        # <bsmall,small,xsmall>
+options   CONFIG_MSG_BSIZE=16384               # <medium,large,xlarge>
+
 #
 #  configurable kernel - use these options to strip strings from panic
 #  and printf calls.
 #
 #  configurable kernel - use these options to strip strings from panic
 #  and printf calls.
@@ -382,12 +406,47 @@ options   CONFIG_NO_PANIC_STRINGS         # <no_panic_str>
 options   CONFIG_NO_PRINTF_STRINGS             # <no_printf_str>
 options   CONFIG_NO_KPRINTF_STRINGS            # <no_kprintf_str>
 
 options   CONFIG_NO_PRINTF_STRINGS             # <no_printf_str>
 options   CONFIG_NO_KPRINTF_STRINGS            # <no_kprintf_str>
 
+#
+# use finer-grained lock groups for the proc subsystem
+#
+options   CONFIG_FINE_LOCK_GROUPS               # <medium,large,xlarge>
+
 #
 # configurable kernel - general switch to say we are building for an
 # embedded device
 #
 options   CONFIG_EMBEDDED                      # <config_embedded>
 
 #
 # configurable kernel - general switch to say we are building for an
 # embedded device
 #
 options   CONFIG_EMBEDDED                      # <config_embedded>
 
+# only execute signed code. Hang this off config_embedded since there's
+# nothing more appropriate right now
+#
+options   CONFIG_ENFORCE_SIGNED_CODE           # <config_embedded>
+
+# support dynamic signing of code
+#
+options                CONFIG_DYNAMIC_CODE_SIGNING     # <dynamic_codesigning>
+
+#
+# code decryption... used on embedded for app protection
+# must be set in all the bsd/conf and osfmk/conf MASTER files
+#
+options                CONFIG_CODE_DECRYPTION  # <config_embedded>
+
+#
+# User Content Protection, used on embedded
+#
+
+options                CONFIG_PROTECT  # <config_protect>
+
+#
+# freeze - support app hibernation, used on embedded
+# CONFIG_FREEZE_SUSPENDED_MIN is the minimum number of suspended  
+# processes to be left unhibernated
+#
+options                CONFIG_FREEZE                                   # <freeze>
+
+options                CHECK_CS_VALIDATION_BITMAP                      # <config_cs_validation_bitmap>
+
 #
 #  Ethernet (ARP)
 #
 #
 #  Ethernet (ARP)
 #
@@ -417,6 +476,7 @@ pseudo-device  vndevice        16       init    vndevice_init   # <xlarge>
 pseudo-device  vndevice                8       init    vndevice_init   # <large>
 pseudo-device  vndevice                4       init    vndevice_init   # <medium>
 pseudo-device  vndevice                3       init    vndevice_init   # <small>
 pseudo-device  vndevice                8       init    vndevice_init   # <large>
 pseudo-device  vndevice                4       init    vndevice_init   # <medium>
 pseudo-device  vndevice                3       init    vndevice_init   # <small>
+pseudo-device  vndevice                2       init    vndevice_init   # <xsmall>
 pseudo-device  vndevice                2       init    vndevice_init   # <bsmall>
 
 #
 pseudo-device  vndevice                2       init    vndevice_init   # <bsmall>
 
 #
mirror of XNU