1# 2# Mach Operating System 3# Copyright (c) 1986 Carnegie-Mellon University 4# Copyright 2001-2018 Apple Inc. 5# 6# All rights reserved. The CMU software License Agreement 7# specifies the terms and conditions for use and redistribution. 8# 9####################################################################### 10# 11# Master machine independent configuration file. 12# 13# Specific configuration files are created based on this and 14# the machine specific master file using the doconf script. 15# 16# Any changes to the master configuration files will affect all 17# other configuration files based upon it. 18# 19####################################################################### 20# 21# To build a configuration, execute "doconf <configuration>." 22# Configurations are specified in the "Configurations:" section 23# of the MASTER and MASTER.* files as follows: 24# 25# <configuration> = [ <attribute0> <attribute1> ... <attributeN> ] 26# 27# Lines in the MASTER and MASTER.* files are selected based on 28# the attribute selector list, found in a comment at the end of 29# the line. This is a list of attributes separated by commas. 30# The "!" operator selects the line if none of the attributes are 31# specified. 32# 33# For example: 34# 35# <foo,bar> selects a line if "foo" or "bar" are specified. 36# <!foo,bar> selects a line if neither "foo" nor "bar" is 37# specified. 38# 39# Lines with no attributes specified are selected for all 40# configurations. 41# 42####################################################################### 43# 44# SYSTEM SIZE CONFIGURATION (select exactly one) 45# 46# xlarge = extra large scale system configuration 47# large = large scale system configuration 48# medium = medium scale system configuration 49# small = small scale system configuration 50# xsmall = extra small scale system configuration 51# bsmall = special extra small scale system configuration 52# 53####################################################################### 54# 55 56options INET # # <inet> 57 58options MACH # Standard Mach features # <mach> 59options MACH_FLIPC # Fast-Local IPC # <mach_flipc> 60options LOOP # loopback support # <loop> 61options VLAN # # <vlan> 62options BOND # # <bond> 63options IF_FAKE # # <if_fake> 64options IF_HEADLESS # # <if_headless> 65options IF_REDIRECT # # <if_redirect> 66options AH_ALL_CRYPTO # AH all crypto algs # <ah_all_crypto> 67options PF # Packet Filter # <pf> 68options PF_ECN # PF use ECN marking # <pf_ecn> 69options PFLOG # PF log interface # <pflog> 70options MEASURE_BW # interface bandwidth measurement # <measure_bw> 71options DUMMYNET # dummynet support # <dummynet> 72options TRAFFIC_MGT # traffic management support # <traffic_mgt> 73options MULTICAST # Internet Protocol Class-D $ 74options IFNET_INPUT_SANITY_CHK # allow dlil/ifnet input sanity check # <ifnet_input_chk> 75options MULTIPATH # Multipath domain # <multipath> 76options MPTCP # Multipath TCP # <mptcp> 77options SYSV_SEM # SVID semaphores # <sysv_sem> 78options SYSV_MSG # SVID messages # <sysv_msg> 79options SYSV_SHM # SVID shared mem # <sysv_shm> 80options PSYNCH # pthread synch # <psynch> 81options FLOW_DIVERT # <flow_divert> 82options NECP # <necp> 83options CONTENT_FILTER # # <content_filter> 84options PACKET_MANGLER # # <packet_mangler> 85options REMOTE_VIF # # <remote_vif> 86options SKYWALK # # <skywalk> 87options CONFIG_NEXUS_USER_PIPE # # <config_nexus_user_pipe> 88options CONFIG_NEXUS_KERNEL_PIPE # # <config_nexus_kernel_pipe> 89options CONFIG_NEXUS_MONITOR # # <config_nexus_monitor> 90options CONFIG_NEXUS_FLOWSWITCH # # <config_nexus_flowswitch> 91options CONFIG_NEXUS_NETIF # # <config_nexus_netif> 92options CONFIG_MBUF_MCACHE # mbufs use mcache # <config_mbuf_mcache> 93options KCTL_TEST # kernel control test # <kctl_test> 94 95# secure_kernel - secure kernel from user programs 96options SECURE_KERNEL # <secure_kernel> 97 98# 99# 4.4 general kernel 100# 101options SOCKETS # socket support # <inet> 102options DIAGNOSTIC # diagnostics # <diagnostic> 103options PROFILE # kernel profiling # <profile> 104options SENDFILE # sendfile # <sendfile> 105options NETWORKING # networking layer # <inet> 106options CONFIG_FSE # file system events # <config_fse> 107options CONFIG_IMAGEBOOT # local image boot # <config_imageboot> 108options CONFIG_MBUF_JUMBO # jumbo cluster pool # <config_mbuf_jumbo> 109options CONFIG_IMAGEBOOT_IMG4 # authenticate image with AppleImage4 # <config_imageboot_img4> 110options CONFIG_IMAGEBOOT_CHUNKLIST # authenticate image with a chunk list # <config_imageboot_chunklist> 111 112options CONFIG_WORKLOOP_DEBUG # <config_workloop_debug> 113 114# 115# 4.4 filesystems 116# 117options MOCKFS # Boot from an executable # <mockfs> 118options FIFO # fifo support # <fifo> 119options FDESC # fdesc_fs support # <fdesc> 120options DEVFS # devfs support # <devfs> 121options ROUTEFS # routefs support # <routefs> 122options NULLFS # nullfs support # <nullfs> 123options BINDFS # bindfs support # <bindfs> 124options FS_COMPRESSION # fs compression # <fs_compression> 125options CONFIG_DEV_KMEM # /dev/kmem device for reading KVA # <config_dev_kmem> 126 127# 128# file system features 129# 130options QUOTA # file system quotas # <quota> 131options NAMEDSTREAMS # named stream vnop support # <namedstreams> 132options CONFIG_APPLEDOUBLE # apple double support # <config_appledouble> 133options CONFIG_VOLFS # volfs path support (legacy) # <config_volfs> 134options CONFIG_IMGSRC_ACCESS # source of imageboot dmg # <config_imgsrc_access> 135options CONFIG_TRIGGERS # trigger vnodes # <config_triggers> 136options CONFIG_EXT_RESOLVER # e.g. memberd # <config_ext_resolver> 137options CONFIG_SEARCHFS # searchfs syscall support # <config_searchfs> 138options CONFIG_MNT_SUID # allow suid binaries # <config_mnt_suid> 139options CONFIG_MNT_ROOTSNAP # allow rooting from snapshot # <config_mnt_rootsnap> 140options CONFIG_ROSV_STARTUP # allow read-only system volume startup # <config_rosv_startup> 141options CONFIG_FIRMLINKS # support "firmlinks" # <config_firmlinks> 142options CONFIG_MOUNT_VM # mount VM volume on startup # <config_mount_vm> 143options CONFIG_MOUNT_PREBOOTRECOVERY # mount Preboot and/or Recovery volume on startup # <config_mount_prebootrecovery> 144options CONFIG_DATALESS_FILES # support dataless file materialization # <config_dataless_files> 145options CONFIG_BASESYSTEMROOT # mount BaseSystem as initial root filesystem on some kinds of startup # <config_basesystemroot> 146options CONFIG_UNION_MOUNTS # support union mounts # <config_union_mounts> 147options CONFIG_FILE_LEASES # local file leasing support # <config_file_leases> 148 149# 150# VFS debugging 151# 152options CONFIG_IOCOUNT_TRACE # enable vnode's iocount tracing # <config_iocount_trace> 153 154# NFS support 155# 156options NFSSERVER # Be an NFS server # <nfsserver> 157options CONFIG_NETBOOT # network booting # <config_netboot> 158 159# 160# Machine Independent Apple Features 161# 162profile # build a profiling kernel # <profile> 163 164# 165# IPv6 Support 166# 167options IPSEC # IP security # <ipsec> 168options IPSEC_ESP # IP security # <ipsec> 169 170pseudo-device gif 1 # <gif> 171pseudo-device dummy 2 # <dummy> 172pseudo-device stf 1 # <stf> 173 174options CRYPTO # <ipsec,crypto> 175options CRYPTO_SHA2 # <crypto_sha2> 176options ENCRYPTED_SWAP # <encrypted_swap> 177 178options CONFIG_IMG4 # <config_img4> 179 180options ZLIB # inflate/deflate support # <zlib> 181options ZLIBC # inflate/deflate support # <zlibc> 182 183options IF_BRIDGE # <if_bridge> 184 185# 186# configurable kernel event related resources 187# 188options CONFIG_KN_HASHSIZE=64 # <medium,large,xlarge> 189options CONFIG_KN_HASHSIZE=48 # <small,xsmall> 190options CONFIG_KN_HASHSIZE=20 # <bsmall> 191 192# 193# configurable vfs related resources 194# CONFIG_VNODES - used to pre allocate vnode related resources 195# CONFIG_NC_HASH - name cache hash table allocation 196# CONFIG_VFS_NAMES - name strings 197# 198# 263168 magic number for medium CONFIG_VNODES is based on memory 199# Number vnodes is (memsize/64k) + 1024 200# This is the calculation that is used by launchd in tiger 201# we are clipping the max based on 16G 202# ie ((16*1024*1024*1024)/(64 *1024)) + 1024 = 263168; 203 204options CONFIG_VNODES=263168 # <large,xlarge> 205options CONFIG_VNODES=263168 # <medium> 206options CONFIG_VNODES=10240 # <small> 207options CONFIG_VNODES=750 # <bsmall> 208 209options CONFIG_NC_HASH=5120 # <large,xlarge> 210options CONFIG_NC_HASH=4096 # <medium> 211options CONFIG_NC_HASH=2048 # <small,xsmall> 212options CONFIG_NC_HASH=1024 # <bsmall> 213 214options CONFIG_VFS_NAMES=5120 # <large,xlarge> 215options CONFIG_VFS_NAMES=4096 # <medium> 216options CONFIG_VFS_NAMES=3072 # <small,xsmall> 217options CONFIG_VFS_NAMES=2048 # <bsmall> 218 219options CONFIG_MAX_CLUSTERS=8 # <xlarge,large,medium> 220options CONFIG_MAX_CLUSTERS=4 # <small,xsmall,bsmall> 221 222# 223# configurable options for minumum number of buffers for kernel memory 224# 225options CONFIG_MIN_NBUF=256 # <medium,large,xlarge> 226options CONFIG_MIN_NBUF=128 # <small> 227options CONFIG_MIN_NBUF=80 # <xsmall> 228options CONFIG_MIN_NBUF=64 # <bsmall> 229 230options CONFIG_MIN_NIOBUF=128 # <medium,large,xlarge> 231options CONFIG_MIN_NIOBUF=64 # <xsmall,small> 232options CONFIG_MIN_NIOBUF=32 # <bsmall> 233 234# 235# set maximum space used for packet buffers 236# 237options CONFIG_NMBCLUSTERS="((1024 * 1024) / MCLBYTES)" # <large,xlarge> 238options CONFIG_NMBCLUSTERS="((1024 * 512) / MCLBYTES)" # <medium> 239options CONFIG_NMBCLUSTERS="((1024 * 256) / MCLBYTES)" # <bsmall,xsmall,small> 240 241# 242# Configure size of TCP hash table 243# 244options CONFIG_TCBHASHSIZE=4096 # <medium,large,xlarge> 245options CONFIG_TCBHASHSIZE=128 # <xsmall,small,bsmall> 246 247# 248# configurable async IO options 249# CONFIG_AIO_MAX - system wide limit of async IO requests. 250# CONFIG_AIO_PROCESS_MAX - process limit of async IO requests. 251# CONFIG_AIO_THREAD_COUNT - number of async IO worker threads created. 252# 253options CONFIG_AIO_MAX=360 # <xlarge> 254options CONFIG_AIO_MAX=180 # <large> 255options CONFIG_AIO_MAX=90 # <medium> 256options CONFIG_AIO_MAX=45 # <small> 257options CONFIG_AIO_MAX=20 # <xsmall> 258options CONFIG_AIO_MAX=10 # <bsmall> 259 260options CONFIG_AIO_PROCESS_MAX=64 # <xlarge> 261options CONFIG_AIO_PROCESS_MAX=32 # <large> 262options CONFIG_AIO_PROCESS_MAX=16 # <medium> 263options CONFIG_AIO_PROCESS_MAX=12 # <small> 264options CONFIG_AIO_PROCESS_MAX=8 # <xsmall> 265options CONFIG_AIO_PROCESS_MAX=4 # <bsmall> 266 267options CONFIG_AIO_THREAD_COUNT=16 # <xlarge> 268options CONFIG_AIO_THREAD_COUNT=8 # <large> 269options CONFIG_AIO_THREAD_COUNT=4 # <medium> 270options CONFIG_AIO_THREAD_COUNT=3 # <small> 271options CONFIG_AIO_THREAD_COUNT=2 # <xsmall,bsmall> 272 273options CONFIG_MAXVIFS=32 # <medium,large,xlarge> 274options CONFIG_MAXVIFS=16 # <small,xsmall> 275options CONFIG_MAXVIFS=2 # <bsmall> 276 277options CONFIG_MFCTBLSIZ=256 # <medium,large,xlarge> 278options CONFIG_MFCTBLSIZ=128 # <small,xsmall> 279options CONFIG_MFCTBLSIZ=16 # <bsmall> 280 281# 282# configurable kernel message buffer size 283# 284options CONFIG_MSG_BSIZE_REL=16384 # <msgb_small> 285options CONFIG_MSG_BSIZE_DEV=131072 # <msgb_small> 286options CONFIG_MSG_BSIZE_REL=131072 # <msgb_large> 287options CONFIG_MSG_BSIZE_DEV=131072 # <msgb_large> 288options CONFIG_MSG_BSIZE=CONFIG_MSG_BSIZE_REL # <!development,debug> 289options CONFIG_MSG_BSIZE=CONFIG_MSG_BSIZE_DEV # <development,debug> 290 291# 292# maximum size of the per-process Mach IPC table 293# 294options CONFIG_IPC_TABLE_ENTRIES_SIZE_MAX=3145728 # 3M == 131072 entries # <bsmall,small,xsmall> 295options CONFIG_IPC_TABLE_ENTRIES_SIZE_MAX=7340032 # 7M == 305834 entries # <medium,large,xlarge> 296options CONFIG_IPC_TABLE_REQUEST_SIZE_MAX=1048576 # 1M == 65536 requests # <bsmall,small,xsmall> 297options CONFIG_IPC_TABLE_REQUEST_SIZE_MAX=2097152 # 2M == 131072 requests # <medium,large,xlarge> 298 299# 300# maximum copyout size for IPC debugging tools 301# 302options CONFIG_IPC_KERNEL_MAP_SIZE=32 # 32M # <bsmall,small,xsmall> 303options CONFIG_IPC_KERNEL_MAP_SIZE=64 # 64M # <medium,large,xlarge> 304 305# 306# configurable kernel - use these options to strip strings from panic 307# and printf calls. 308# no_printf_str - saves around 45K of kernel footprint. 309# 310options CONFIG_NO_PRINTF_STRINGS # <no_printf_str> 311options CONFIG_NO_KPRINTF_STRINGS # <no_kprintf_str> 312 313# support vsprintf (deprecated in favor of vsnprintf) 314options CONFIG_VSPRINTF # <vsprintf> 315 316# 317# configurable kernel - general switch to say we are building for an 318# embedded device 319# 320options CONFIG_EMBEDDED # <config_embedded> 321 322 323# Compile XNU with SPTM support. This option should be used mutually exclusively 324# with the config_pmap_ppl option 325options CONFIG_SPTM # <config_sptm> 326 327 328# Enable support for commmunication with exclaves. Requires SPTM support. 329options CONFIG_EXCLAVES # <config_exclaves> 330 331# Compile XNU with PPL support. 332options CONFIG_PMAP_PPL # <config_pmap_ppl> 333 334options NOS_ARM_ASM # <nos_arm_asm> 335options NOS_ARM_PMAP # <nos_arm_pmap> 336 337# support dynamic signing of code 338# 339options CONFIG_DYNAMIC_CODE_SIGNING # <dynamic_codesigning> 340 341# enforce library validation on all processes. 342# 343options CONFIG_ENFORCE_LIBRARY_VALIDATION # <config_library_validation> 344 345# support loading a second static trust cache 346# 347options CONFIG_SECOND_STATIC_TRUST_CACHE # <second_static_trust_cache> 348 349# support supplemental signatures 350# 351options CONFIG_SUPPLEMENTAL_SIGNATURES # <config_supplemental_signatures> 352 353# 354# code decryption... used on embedded for app protection, DSMOS on desktop 355# 356options CONFIG_CODE_DECRYPTION # <config_code_decryption> 357 358# 359# User Content Protection, used on embedded 360# 361options CONFIG_PROTECT # <config_protect> 362 363#allow write-protection of key page 364options CONFIG_KEYPAGE_WP # <config_keypage_wp> 365 366# 367# allow vm_pageout_scan to dynamically adjust its priority based on priorities of waiters 368# 369options CONFIG_VPS_DYNAMIC_PRIO # <vps_dynamic_prio> 370 371# 372# enable per-process memory priority tracking 373# 374options CONFIG_MEMORYSTATUS # <memorystatus> 375 376options CONFIG_DEFERRED_RECLAIM # <config_deferred_reclaim> 377 378# 379# enable jetsam - used on embedded 380# 381options CONFIG_JETSAM # <jetsam> 382 383# 384# enable new wait queue implementation stats / debugging 385# 386options CONFIG_WAITQ_STATS # <config_waitq_stats> 387 388# 389# enable freezing of suspended processes - used on embedded 390# 391options CONFIG_FREEZE # <freeze> 392 393options CHECK_CS_VALIDATION_BITMAP # <config_cs_validation_bitmap> 394 395# 396# enable physical writes accounting 397# 398options CONFIG_PHYS_WRITE_ACCT # <phys_write_acct> 399 400# 401# enable detection of file cache thrashing - used on platforms with 402# dynamic VM compression enabled 403# 404options CONFIG_PHANTOM_CACHE # <phantom_cache> 405 406# 407# enable detection of anonymous pages staying unmodified after first use 408# - used on platforms with dynamic VM compression enabled 409# 410options CONFIG_TRACK_UNMODIFIED_ANON_PAGES # <track_unmodified_anon_pages> 411 412# 413# memory pressure event support 414# 415options VM_PRESSURE_EVENTS # <vm_pressure_events> 416 417options CONFIG_SECLUDED_MEMORY # <config_secluded_memory> 418 419# 420# Ledger features 421# 422options CONFIG_LEDGER_INTERVAL_MAX # <config_ledger_interval_max> 423 424# 425# I/O Scheduling 426# 427options CONFIG_IOSCHED # <config_iosched> 428 429# 430# Accounting for I/O usage 431# 432options CONFIG_IO_ACCOUNTING # <config_io_accounting> 433 434# 435# Enable inheritance of importance through specially marked mach ports and for file locks 436# For now debug is enabled wherever inheritance is 437# 438options IMPORTANCE_INHERITANCE # <importance_inheritance> 439options IMPORTANCE_TRACE # <importance_trace> 440options IMPORTANCE_DEBUG # <importance_debug> 441 442options CONFIG_TELEMETRY # <config_telemetry> 443 444options CONFIG_PROC_UUID_POLICY # <config_proc_uuid_policy> 445 446# 447# ECC data logging 448# 449options CONFIG_ECC_LOGGING # <config_ecc_logging> 450 451# 452# Application core dumps 453# 454options CONFIG_COREDUMP # <config_coredump> 455 456# 457# Vnode guards 458# 459options CONFIG_VNGUARD # <config_vnguard> 460 461# 462# Paravirtualization 463# 464options CONFIG_PV_TICKET # <config_pv_ticket> 465 466# 467# Enable extended VM address space and user heap segregation 468# 469options CONFIG_MAP_RANGES # <config_map_ranges> 470 471# 472# Ethernet (ARP) 473# 474pseudo-device ether # <networking,inet> 475# 476# Network loopback device 477# 478pseudo-device loop # <networking,inet> 479# 480# UCB pseudo terminal service 481# 482pseudo-device pty 512 init pty_init # <xlarge> 483pseudo-device pty 256 init pty_init # <large> 484pseudo-device pty 128 init pty_init # <medium> 485pseudo-device pty 48 init pty_init # <small> 486pseudo-device pty 16 init pty_init # <xsmall> 487pseudo-device pty 8 init pty_init # <bsmall> 488# 489# Cloning pseudo terminal service 490# 491pseudo-device ptmx 1 init ptmx_init 492 493# 494# memory device 495pseudo-device mdevdevice 1 init mdevinit 496 497# 498# 499# packet filter device 500# 501pseudo-device bpfilter 4 init bpf_init # <networking,inet> 502 503# 504# fsevents device 505pseudo-device fsevents 1 init fsevents_init # <config_fse> 506 507pseudo-device random 1 init random_init 508pseudo-device dtrace 1 init dtrace_init # <config_dtrace> 509pseudo-device helper 1 init helper_init # <config_dtrace> 510pseudo-device lockstat 1 init lockstat_init # <config_dtrace> 511pseudo-device lockprof 1 init lockprof_init # <config_dtrace> 512pseudo-device sdt 1 init sdt_init # <config_dtrace> 513pseudo-device systrace 1 init systrace_init # <config_dtrace> 514pseudo-device fbt 1 init fbt_init # <config_dtrace> 515pseudo-device profile_prvd 1 init profile_init # <config_dtrace> 516 517# monotonic devices 518pseudo-device monotonic 1 init mt_dev_init # <config_cpu_counters> 519 520# 521# IOKit configuration options 522# 523 524options HIBERNATION # system hibernation # <hibernation> 525options IOKITCPP # C++ implementation # <iokitcpp> 526options IOKITSTATS # IOKit statistics # <iokitstats> 527options IOTRACKING # IOKit tracking # <iotracking> 528options CONFIG_SLEEP # # <config_sleep> 529options CONFIG_MAX_THREADS=500 # IOConfigThread threads 530options NO_KEXTD # <no_kextd> 531options NO_KERNEL_HID # <no_kernel_hid> 532 533# 534# Libkern configuration options 535# 536 537options LIBKERNCPP # C++ implementation # <libkerncpp> 538options CONFIG_BLOCKS # Blocks runtime # <config_blocks> 539options CONFIG_KXLD # kxld/runtime linking of kexts # <config_kxld> 540options CONFIG_KEC_FIPS # Kernel External Components for FIPS compliance (KEC_FIPS) # <config_kec_fips> 541 542# Note that when adding this config option to an architecture, one MUST 543# add the architecture to the preprocessor test at the beginning of 544# libkern/kmod/cplus_{start.c,stop.c}. 545options CONFIG_STATIC_CPPINIT # Static library initializes kext cpp runtime # <config_static_cppinit> 546 547# 548# libsa configuration options 549# 550 551# CONFIG_KEXT_BASEMENT - alloc post boot loaded kexts after prelinked kexts 552# 553options CONFIG_KEXT_BASEMENT # # <config_kext_basement> 554 555# 556# Persona Management 557# 558options CONFIG_PERSONAS # Persona management # <config_personas> 559options PERSONA_DEBUG # Persona debugging # <persona_debug> 560 561# 562# security configuration options 563# 564 565options CONFIG_MACF # Mandatory Access Control Framework # <config_macf> 566options CONFIG_MACF_SOCKET_SUBSET # MAC socket subest (no labels) # <config_macf> 567#options CONFIG_MACF_DEBUG # debug # <config_macf> 568 569options CONFIG_AUDIT # Kernel auditing # <config_audit> 570 571options CONFIG_ARCADE # Arcade validation support # <config_arcade> 572 573options CONFIG_SETUID # setuid/setgid support # <config_setuid> 574 575options CONFIG_SECURE_BSD_ROOT # secure BSD root # <config_secure_bsd_root> 576 577options CONFIG_KAS_INFO # kas_info support # <config_kas_info> 578 579options CONFIG_PROC_RESOURCE_LIMITS # Per process limits for resources like file descriptors and mach ports # <config_proc_resource_limits> 580 581# 582# MACH configuration options. 583# 584 585# 586# This defines configuration options that are normally used only during 587# kernel code development and debugging. They add run-time error checks or 588# statistics gathering, which will slow down the system 589# 590########################################################## 591# 592# MACH_ASSERT controls the assert() and ASSERT() macros, used to verify the 593# consistency of various algorithms in the kernel. The performance impact 594# of this option is significant. 595# 596options MACH_ASSERT # # <mach_assert> 597options MACH_VM_DEBUG # # <debug> 598options CONFIG_ZLEAKS # Live zone leak debugging # <zleaks> 599options CONFIG_VOUCHER_DEPRECATED # Enable deprecated voucher managers # <config_voucher_deprecated> 600 601# 602# CONFIG_DEBUGGER_FOR_ZONE_INFO restricts zone info so that it is only 603# available when the kernel is being debugged. 604# 605options CONFIG_DEBUGGER_FOR_ZONE_INFO # <debugger_for_zone_info> 606# 607# MACH_LDEBUG controls the internal consistency checks and 608# data gathering in the locking package. This also enables a debug-only 609# version of simple-locks on uniprocessor machines. The code size and 610# performance impact of this option is significant. 611# 612options MACH_LDEBUG # # <debug> 613 614# 615# configuration option for full, partial, or no kernel debug event tracing 616# 617options KDEBUG # kernel tracing # <kdebug> 618options IST_KDEBUG # limited tracing # <ist_kdebug> 619options NO_KDEBUG # no kernel tracing # <no_kdebug> 620 621# 622# CONFIG_DTRACE enables code needed to support DTrace. Currently this is 623# only used for delivery of traps/interrupts to DTrace. 624# 625options CONFIG_DTRACE # # <config_dtrace> 626 627options LOCK_STATS # # <lock_stats> 628 629# kernel performance tracing 630options KPERF # <kperf> 631 632options CONFIG_CPU_COUNTERS # <config_cpu_counters> 633 634options CONFIG_PERVASIVE_CPI # <config_pervasive_cpi> 635options CONFIG_PERVASIVE_ENERGY # <config_pervasive_energy> 636 637options CONFIG_IOTRACE # Physical IO tracing # <config_iotrace> 638 639options PGO # <pgo> 640 641# DEVELOPMENT define for development builds 642options DEVELOPMENT # dev kernel # <development> 643 644# DEBUG kernel 645options DEBUG # general debugging code # <debug> 646options CONFIG_NONFATAL_ASSERTS # non fatal asserts # <softasserts> 647 648options MACH_BSD # BSD subsystem on top of Mach # <mach_bsd> 649options IOKIT # # <iokit> 650 651# 652# configurable kernel related resources (CONFIG_THREAD_MAX needs to stay in 653# sync with bsd/conf/MASTER until we fix the config system... todo XXX 654# 655options CONFIG_THREAD_MAX=2560 # <medium,large,xlarge> 656options CONFIG_THREAD_MAX=1536 # <small,xsmall> 657options CONFIG_THREAD_MAX=1024 # <bsmall> 658 659options CONFIG_TASK_MAX=1024 # <medium,large,xlarge> 660options CONFIG_TASK_MAX=768 # <small,> 661options CONFIG_TASK_MAX=512 # <xsmall,bsmall> 662 663# 664# Minimum zone map size: 115 MB 665# 666options CONFIG_ZONE_MAP_MIN=120586240 # <xsmall,bsmall,small,medium,large,xlarge> 667 668# vc_progress_white - make the progress gear white instead of black 669options CONFIG_VC_PROGRESS_WHITE # <vc_progress_white> 670 671# 672# Timeshare scheduler implementations 673# 674options CONFIG_SCHED_TIMESHARE_CORE # <config_sched_timeshare_core> 675options CONFIG_CLUTCH # <config_clutch> 676options CONFIG_SCHED_AUTO_JOIN # <config_sched_auto_join> 677options CONFIG_SCHED_RT_ALLOW # <config_sched_rt_allow> 678 679options CONFIG_SCHED_IDLE_IN_PLACE # <config_sched_idle_in_place> 680options CONFIG_SCHED_SFI # <config_sched_sfi> 681options CONFIG_PROB_GZALLOC # <pgzalloc> 682options CONFIG_SCHED_DEFERRED_AST # <config_sched_deferred_ast> 683 684options CONFIG_PREADOPT_TG # <config_preadopt_tg> 685options CONFIG_PREADOPT_TG_DEBUG # <config_preadopt_tg_debug> 686 687# This is overridden by the board configuration's HAS_FAST_CNTVCT. 688options CONFIG_SKIP_PRECISE_USER_KERNEL_TIME # <config_skip_precise_user_kernel_time> 689 690# 691# Switch to disable cpu, wakeup and high memory watermark monitors 692# 693options CONFIG_NOMONITORS # <config_nomonitors> 694 695options MACH_KDP # KDP # <mach_kdp> 696options CONFIG_SERIAL_KDP # KDP over serial # <config_serial_kdp> 697options CONFIG_KDP_INTERACTIVE_DEBUGGING # <kdp_interactive_debugging> 698options CONFIG_KDP_COREDUMP_ENCRYPTION # Support for encrypting kernel coredumps # <config_kdp_coredump_encryption> 699 700options CONFIG_TASKWATCH 701options CONFIG_USER_NOTIFICATION # <config_user_notification> 702# 703# Kernel Power On Self Tests 704# 705options CONFIG_XNUPOST # <config_xnupost> 706 707# 708# Kernel proc reference instrumentation 709# 710options PROC_REF_DEBUG # <proc_ref_debug> 711 712# 713# Kernel Voucher Attr Manager for Activity Trace 714# 715options CONFIG_ATM # <config_atm> 716 717# Group related tasks together into coalitions 718options CONFIG_COALITIONS # <config_coalitions> 719 720# Enable support for sysdiagnose notifications 721options CONFIG_SYSDIAGNOSE # <config_sysdiagnose> 722 723# Configurable Security Restrictions 724options CONFIG_CSR # <config_csr> 725options CONFIG_CSR_FROM_DT # <config_csr_from_dt> 726 727# Enable collection of IO Compression statistics 728options CONFIG_IO_COMPRESSION_STATS # <config_io_compression_stats> 729 730# 731# Console options 732# 733options SERIAL_CONSOLE # bi-directional serial over UART 734options VIDEO_CONSOLE # uni-directional output over framebuffer 735 736# 737# Syscall options 738# 739options CONFIG_REQUIRES_U32_MUNGING # incoming U32 argument structures must be munged to match U64 # <config_requires_u32_munging> 740 741# 742# copyout() instrumentation 743# 744options COPYOUT_SHIM # Shim for copyout memory analysis via kext #<copyout_shim> 745 746# 747# Enable hardware correlation of mach absolute time 748# across intel/arm boundary 749options CONFIG_MACH_BRIDGE_SEND_TIME # # <config_mach_bridge_send_time> 750options CONFIG_MACH_BRIDGE_RECV_TIME # # <config_mach_bridge_recv_time> 751 752options CONFIG_QUIESCE_COUNTER # Support for _COMM_PAGE_CPU_QUIESCENT_COUNTER # <config_quiesce_counter> 753options CONFIG_ARM_PFZ # Support for PFZ on ARM # <config_arm_pfz> 754 755# 756# Sanitizers 757# 758options CONFIG_KASAN # <config_kasan> 759options CONFIG_UBSAN # <config_ubsan> 760 761options CONFIG_KCOV # <config_kcov> 762options CONFIG_KSANCOV # <config_ksancov> 763options CONFIG_STKSZ # <config_stksz> 764 765# dark boot support 766options CONFIG_DARKBOOT # <config_darkboot> 767 768# support for tracking service port labels for stackshots/debugging 769options CONFIG_SERVICE_PORT_INFO # <config_service_port_info> 770 771# support for processes delaying idle sleep for pending IO 772options CONFIG_DELAY_IDLE_SLEEP # <config_delay_idle_sleep> 773 774# support for storing a 64-bit user supplied value in the proc structure 775options CONFIG_PROC_UDATA_STORAGE # <config_proc_udata_storage> 776 777pseudo-device ksancov 1 init ksancov_init_dev # <config_ksancov> 778 779# Debug instrumentation for statistics and catching of code that 780# leaves interrupts masked or preemption disabled for an excessive 781# period of time. 782options SCHED_HYGIENE_DEBUG # <sched_hygiene_debug> 783 784# support for system call rejection/tracing 785options CONFIG_DEBUG_SYSCALL_REJECTION # <config_debug_syscall_rejection> 786 787# Extensible panic log support 788options CONFIG_EXT_PANICLOG # <config_ext_paniclog> 789 790# support for collecting statistics on task suspension 791options CONFIG_TASK_SUSPEND_STATS # <config_task_suspend_stats> 792 793# Support for non-fatal Branch Target Identification exception reporting and logging 794options CONFIG_BTI_TELEMETRY # <config_bti_telemetry> 795