mirror of
https://mirrors.bfsu.edu.cn/git/linux.git
synced 2024-11-28 22:54:05 +08:00
5b7c4cabbb
Core
----
- Add dedicated kmem_cache for typical/small skb->head, avoid having
to access struct page at kfree time, and improve memory use.
- Introduce sysctl to set default RPS configuration for new netdevs.
- Define Netlink protocol specification format which can be used
to describe messages used by each family and auto-generate parsers.
Add tools for generating kernel data structures and uAPI headers.
- Expose all net/core sysctls inside netns.
- Remove 4s sleep in netpoll if carrier is instantly detected on boot.
- Add configurable limit of MDB entries per port, and port-vlan.
- Continue populating drop reasons throughout the stack.
- Retire a handful of legacy Qdiscs and classifiers.
Protocols
---------
- Support IPv4 big TCP (TSO frames larger than 64kB).
- Add IP_LOCAL_PORT_RANGE socket option, to control local port range
on socket by socket basis.
- Track and report in procfs number of MPTCP sockets used.
- Support mixing IPv4 and IPv6 flows in the in-kernel MPTCP
path manager.
- IPv6: don't check net.ipv6.route.max_size and rely on garbage
collection to free memory (similarly to IPv4).
- Support Penultimate Segment Pop (PSP) flavor in SRv6 (RFC8986).
- ICMP: add per-rate limit counters.
- Add support for user scanning requests in ieee802154.
- Remove static WEP support.
- Support minimal Wi-Fi 7 Extremely High Throughput (EHT) rate
reporting.
- WiFi 7 EHT channel puncturing support (client & AP).
BPF
---
- Add a rbtree data structure following the "next-gen data structure"
precedent set by recently added linked list, that is, by using
kfunc + kptr instead of adding a new BPF map type.
- Expose XDP hints via kfuncs with initial support for RX hash and
timestamp metadata.
- Add BPF_F_NO_TUNNEL_KEY extension to bpf_skb_set_tunnel_key
to better support decap on GRE tunnel devices not operating
in collect metadata.
- Improve x86 JIT's codegen for PROBE_MEM runtime error checks.
- Remove the need for trace_printk_lock for bpf_trace_printk
and bpf_trace_vprintk helpers.
- Extend libbpf's bpf_tracing.h support for tracing arguments of
kprobes/uprobes and syscall as a special case.
- Significantly reduce the search time for module symbols
by livepatch and BPF.
- Enable cpumasks to be used as kptrs, which is useful for tracing
programs tracking which tasks end up running on which CPUs in
different time intervals.
- Add support for BPF trampoline on s390x and riscv64.
- Add capability to export the XDP features supported by the NIC.
- Add __bpf_kfunc tag for marking kernel functions as kfuncs.
- Add cgroup.memory=nobpf kernel parameter option to disable BPF
memory accounting for container environments.
Netfilter
---------
- Remove the CLUSTERIP target. It has been marked as obsolete
for years, and we still have WARN splats wrt. races of
the out-of-band /proc interface installed by this target.
- Add 'destroy' commands to nf_tables. They are identical to
the existing 'delete' commands, but do not return an error if
the referenced object (set, chain, rule...) did not exist.
Driver API
----------
- Improve cpumask_local_spread() locality to help NICs set the right
IRQ affinity on AMD platforms.
- Separate C22 and C45 MDIO bus transactions more clearly.
- Introduce new DCB table to control DSCP rewrite on egress.
- Support configuration of Physical Layer Collision Avoidance (PLCA)
Reconciliation Sublayer (RS) (802.3cg-2019). Modern version of
shared medium Ethernet.
- Support for MAC Merge layer (IEEE 802.3-2018 clause 99). Allowing
preemption of low priority frames by high priority frames.
- Add support for controlling MACSec offload using netlink SET.
- Rework devlink instance refcounts to allow registration and
de-registration under the instance lock. Split the code into multiple
files, drop some of the unnecessarily granular locks and factor out
common parts of netlink operation handling.
- Add TX frame aggregation parameters (for USB drivers).
- Add a new attr TCA_EXT_WARN_MSG to report TC (offload) warning
messages with notifications for debug.
- Allow offloading of UDP NEW connections via act_ct.
- Add support for per action HW stats in TC.
- Support hardware miss to TC action (continue processing in SW from
a specific point in the action chain).
- Warn if old Wireless Extension user space interface is used with
modern cfg80211/mac80211 drivers. Do not support Wireless Extensions
for Wi-Fi 7 devices at all. Everyone should switch to using nl80211
interface instead.
- Improve the CAN bit timing configuration. Use extack to return error
messages directly to user space, update the SJW handling, including
the definition of a new default value that will benefit CAN-FD
controllers, by increasing their oscillator tolerance.
New hardware / drivers
----------------------
- Ethernet:
- nVidia BlueField-3 support (control traffic driver)
- Ethernet support for imx93 SoCs
- Motorcomm yt8531 gigabit Ethernet PHY
- onsemi NCN26000 10BASE-T1S PHY (with support for PLCA)
- Microchip LAN8841 PHY (incl. cable diagnostics and PTP)
- Amlogic gxl MDIO mux
- WiFi:
- RealTek RTL8188EU (rtl8xxxu)
- Qualcomm Wi-Fi 7 devices (ath12k)
- CAN:
- Renesas R-Car V4H
Drivers
-------
- Bluetooth:
- Set Per Platform Antenna Gain (PPAG) for Intel controllers.
- Ethernet NICs:
- Intel (1G, igc):
- support TSN / Qbv / packet scheduling features of i226 model
- Intel (100G, ice):
- use GNSS subsystem instead of TTY
- multi-buffer XDP support
- extend support for GPIO pins to E823 devices
- nVidia/Mellanox:
- update the shared buffer configuration on PFC commands
- implement PTP adjphase function for HW offset control
- TC support for Geneve and GRE with VF tunnel offload
- more efficient crypto key management method
- multi-port eswitch support
- Netronome/Corigine:
- add DCB IEEE support
- support IPsec offloading for NFP3800
- Freescale/NXP (enetc):
- enetc: support XDP_REDIRECT for XDP non-linear buffers
- enetc: improve reconfig, avoid link flap and waiting for idle
- enetc: support MAC Merge layer
- Other NICs:
- sfc/ef100: add basic devlink support for ef100
- ionic: rx_push mode operation (writing descriptors via MMIO)
- bnxt: use the auxiliary bus abstraction for RDMA
- r8169: disable ASPM and reset bus in case of tx timeout
- cpsw: support QSGMII mode for J721e CPSW9G
- cpts: support pulse-per-second output
- ngbe: add an mdio bus driver
- usbnet: optimize usbnet_bh() by avoiding unnecessary queuing
- r8152: handle devices with FW with NCM support
- amd-xgbe: support 10Mbps, 2.5GbE speeds and rx-adaptation
- virtio-net: support multi buffer XDP
- virtio/vsock: replace virtio_vsock_pkt with sk_buff
- tsnep: XDP support
- Ethernet high-speed switches:
- nVidia/Mellanox (mlxsw):
- add support for latency TLV (in FW control messages)
- Microchip (sparx5):
- separate explicit and implicit traffic forwarding rules, make
the implicit rules always active
- add support for egress DSCP rewrite
- IS0 VCAP support (Ingress Classification)
- IS2 VCAP filters (protos, L3 addrs, L4 ports, flags, ToS etc.)
- ES2 VCAP support (Egress Access Control)
- support for Per-Stream Filtering and Policing (802.1Q, 8.6.5.1)
- Ethernet embedded switches:
- Marvell (mv88e6xxx):
- add MAB (port auth) offload support
- enable PTP receive for mv88e6390
- NXP (ocelot):
- support MAC Merge layer
- support for the the vsc7512 internal copper phys
- Microchip:
- lan9303: convert to PHYLINK
- lan966x: support TC flower filter statistics
- lan937x: PTP support for KSZ9563/KSZ8563 and LAN937x
- lan937x: support Credit Based Shaper configuration
- ksz9477: support Energy Efficient Ethernet
- other:
- qca8k: convert to regmap read/write API, use bulk operations
- rswitch: Improve TX timestamp accuracy
- Intel WiFi (iwlwifi):
- EHT (Wi-Fi 7) rate reporting
- STEP equalizer support: transfer some STEP (connection to radio
on platforms with integrated wifi) related parameters from the
BIOS to the firmware.
- Qualcomm 802.11ax WiFi (ath11k):
- IPQ5018 support
- Fine Timing Measurement (FTM) responder role support
- channel 177 support
- MediaTek WiFi (mt76):
- per-PHY LED support
- mt7996: EHT (Wi-Fi 7) support
- Wireless Ethernet Dispatch (WED) reset support
- switch to using page pool allocator
- RealTek WiFi (rtw89):
- support new version of Bluetooth co-existance
- Mobile:
- rmnet: support TX aggregation.
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
-----BEGIN PGP SIGNATURE-----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=xXhC
-----END PGP SIGNATURE-----
Merge tag 'net-next-6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next
Pull networking updates from Jakub Kicinski:
"Core:
- Add dedicated kmem_cache for typical/small skb->head, avoid having
to access struct page at kfree time, and improve memory use.
- Introduce sysctl to set default RPS configuration for new netdevs.
- Define Netlink protocol specification format which can be used to
describe messages used by each family and auto-generate parsers.
Add tools for generating kernel data structures and uAPI headers.
- Expose all net/core sysctls inside netns.
- Remove 4s sleep in netpoll if carrier is instantly detected on
boot.
- Add configurable limit of MDB entries per port, and port-vlan.
- Continue populating drop reasons throughout the stack.
- Retire a handful of legacy Qdiscs and classifiers.
Protocols:
- Support IPv4 big TCP (TSO frames larger than 64kB).
- Add IP_LOCAL_PORT_RANGE socket option, to control local port range
on socket by socket basis.
- Track and report in procfs number of MPTCP sockets used.
- Support mixing IPv4 and IPv6 flows in the in-kernel MPTCP path
manager.
- IPv6: don't check net.ipv6.route.max_size and rely on garbage
collection to free memory (similarly to IPv4).
- Support Penultimate Segment Pop (PSP) flavor in SRv6 (RFC8986).
- ICMP: add per-rate limit counters.
- Add support for user scanning requests in ieee802154.
- Remove static WEP support.
- Support minimal Wi-Fi 7 Extremely High Throughput (EHT) rate
reporting.
- WiFi 7 EHT channel puncturing support (client & AP).
BPF:
- Add a rbtree data structure following the "next-gen data structure"
precedent set by recently added linked list, that is, by using
kfunc + kptr instead of adding a new BPF map type.
- Expose XDP hints via kfuncs with initial support for RX hash and
timestamp metadata.
- Add BPF_F_NO_TUNNEL_KEY extension to bpf_skb_set_tunnel_key to
better support decap on GRE tunnel devices not operating in collect
metadata.
- Improve x86 JIT's codegen for PROBE_MEM runtime error checks.
- Remove the need for trace_printk_lock for bpf_trace_printk and
bpf_trace_vprintk helpers.
- Extend libbpf's bpf_tracing.h support for tracing arguments of
kprobes/uprobes and syscall as a special case.
- Significantly reduce the search time for module symbols by
livepatch and BPF.
- Enable cpumasks to be used as kptrs, which is useful for tracing
programs tracking which tasks end up running on which CPUs in
different time intervals.
- Add support for BPF trampoline on s390x and riscv64.
- Add capability to export the XDP features supported by the NIC.
- Add __bpf_kfunc tag for marking kernel functions as kfuncs.
- Add cgroup.memory=nobpf kernel parameter option to disable BPF
memory accounting for container environments.
Netfilter:
- Remove the CLUSTERIP target. It has been marked as obsolete for
years, and we still have WARN splats wrt races of the out-of-band
/proc interface installed by this target.
- Add 'destroy' commands to nf_tables. They are identical to the
existing 'delete' commands, but do not return an error if the
referenced object (set, chain, rule...) did not exist.
Driver API:
- Improve cpumask_local_spread() locality to help NICs set the right
IRQ affinity on AMD platforms.
- Separate C22 and C45 MDIO bus transactions more clearly.
- Introduce new DCB table to control DSCP rewrite on egress.
- Support configuration of Physical Layer Collision Avoidance (PLCA)
Reconciliation Sublayer (RS) (802.3cg-2019). Modern version of
shared medium Ethernet.
- Support for MAC Merge layer (IEEE 802.3-2018 clause 99). Allowing
preemption of low priority frames by high priority frames.
- Add support for controlling MACSec offload using netlink SET.
- Rework devlink instance refcounts to allow registration and
de-registration under the instance lock. Split the code into
multiple files, drop some of the unnecessarily granular locks and
factor out common parts of netlink operation handling.
- Add TX frame aggregation parameters (for USB drivers).
- Add a new attr TCA_EXT_WARN_MSG to report TC (offload) warning
messages with notifications for debug.
- Allow offloading of UDP NEW connections via act_ct.
- Add support for per action HW stats in TC.
- Support hardware miss to TC action (continue processing in SW from
a specific point in the action chain).
- Warn if old Wireless Extension user space interface is used with
modern cfg80211/mac80211 drivers. Do not support Wireless
Extensions for Wi-Fi 7 devices at all. Everyone should switch to
using nl80211 interface instead.
- Improve the CAN bit timing configuration. Use extack to return
error messages directly to user space, update the SJW handling,
including the definition of a new default value that will benefit
CAN-FD controllers, by increasing their oscillator tolerance.
New hardware / drivers:
- Ethernet:
- nVidia BlueField-3 support (control traffic driver)
- Ethernet support for imx93 SoCs
- Motorcomm yt8531 gigabit Ethernet PHY
- onsemi NCN26000 10BASE-T1S PHY (with support for PLCA)
- Microchip LAN8841 PHY (incl. cable diagnostics and PTP)
- Amlogic gxl MDIO mux
- WiFi:
- RealTek RTL8188EU (rtl8xxxu)
- Qualcomm Wi-Fi 7 devices (ath12k)
- CAN:
- Renesas R-Car V4H
Drivers:
- Bluetooth:
- Set Per Platform Antenna Gain (PPAG) for Intel controllers.
- Ethernet NICs:
- Intel (1G, igc):
- support TSN / Qbv / packet scheduling features of i226 model
- Intel (100G, ice):
- use GNSS subsystem instead of TTY
- multi-buffer XDP support
- extend support for GPIO pins to E823 devices
- nVidia/Mellanox:
- update the shared buffer configuration on PFC commands
- implement PTP adjphase function for HW offset control
- TC support for Geneve and GRE with VF tunnel offload
- more efficient crypto key management method
- multi-port eswitch support
- Netronome/Corigine:
- add DCB IEEE support
- support IPsec offloading for NFP3800
- Freescale/NXP (enetc):
- support XDP_REDIRECT for XDP non-linear buffers
- improve reconfig, avoid link flap and waiting for idle
- support MAC Merge layer
- Other NICs:
- sfc/ef100: add basic devlink support for ef100
- ionic: rx_push mode operation (writing descriptors via MMIO)
- bnxt: use the auxiliary bus abstraction for RDMA
- r8169: disable ASPM and reset bus in case of tx timeout
- cpsw: support QSGMII mode for J721e CPSW9G
- cpts: support pulse-per-second output
- ngbe: add an mdio bus driver
- usbnet: optimize usbnet_bh() by avoiding unnecessary queuing
- r8152: handle devices with FW with NCM support
- amd-xgbe: support 10Mbps, 2.5GbE speeds and rx-adaptation
- virtio-net: support multi buffer XDP
- virtio/vsock: replace virtio_vsock_pkt with sk_buff
- tsnep: XDP support
- Ethernet high-speed switches:
- nVidia/Mellanox (mlxsw):
- add support for latency TLV (in FW control messages)
- Microchip (sparx5):
- separate explicit and implicit traffic forwarding rules, make
the implicit rules always active
- add support for egress DSCP rewrite
- IS0 VCAP support (Ingress Classification)
- IS2 VCAP filters (protos, L3 addrs, L4 ports, flags, ToS
etc.)
- ES2 VCAP support (Egress Access Control)
- support for Per-Stream Filtering and Policing (802.1Q,
8.6.5.1)
- Ethernet embedded switches:
- Marvell (mv88e6xxx):
- add MAB (port auth) offload support
- enable PTP receive for mv88e6390
- NXP (ocelot):
- support MAC Merge layer
- support for the the vsc7512 internal copper phys
- Microchip:
- lan9303: convert to PHYLINK
- lan966x: support TC flower filter statistics
- lan937x: PTP support for KSZ9563/KSZ8563 and LAN937x
- lan937x: support Credit Based Shaper configuration
- ksz9477: support Energy Efficient Ethernet
- other:
- qca8k: convert to regmap read/write API, use bulk operations
- rswitch: Improve TX timestamp accuracy
- Intel WiFi (iwlwifi):
- EHT (Wi-Fi 7) rate reporting
- STEP equalizer support: transfer some STEP (connection to radio
on platforms with integrated wifi) related parameters from the
BIOS to the firmware.
- Qualcomm 802.11ax WiFi (ath11k):
- IPQ5018 support
- Fine Timing Measurement (FTM) responder role support
- channel 177 support
- MediaTek WiFi (mt76):
- per-PHY LED support
- mt7996: EHT (Wi-Fi 7) support
- Wireless Ethernet Dispatch (WED) reset support
- switch to using page pool allocator
- RealTek WiFi (rtw89):
- support new version of Bluetooth co-existance
- Mobile:
- rmnet: support TX aggregation"
* tag 'net-next-6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next: (1872 commits)
page_pool: add a comment explaining the fragment counter usage
net: ethtool: fix __ethtool_dev_mm_supported() implementation
ethtool: pse-pd: Fix double word in comments
xsk: add linux/vmalloc.h to xsk.c
sefltests: netdevsim: wait for devlink instance after netns removal
selftest: fib_tests: Always cleanup before exit
net/mlx5e: Align IPsec ASO result memory to be as required by hardware
net/mlx5e: TC, Set CT miss to the specific ct action instance
net/mlx5e: Rename CHAIN_TO_REG to MAPPED_OBJ_TO_REG
net/mlx5: Refactor tc miss handling to a single function
net/mlx5: Kconfig: Make tc offload depend on tc skb extension
net/sched: flower: Support hardware miss to tc action
net/sched: flower: Move filter handle initialization earlier
net/sched: cls_api: Support hardware miss to tc action
net/sched: Rename user cookie and act cookie
sfc: fix builds without CONFIG_RTC_LIB
sfc: clean up some inconsistent indentings
net/mlx4_en: Introduce flexible array to silence overflow warning
net: lan966x: Fix possible deadlock inside PTP
net/ulp: Remove redundant ->clone() test in inet_clone_ulp().
...
623 lines
20 KiB
Plaintext
623 lines
20 KiB
Plaintext
# SPDX-License-Identifier: GPL-2.0-only
|
|
#
|
|
# Network device configuration
|
|
#
|
|
|
|
menuconfig NETDEVICES
|
|
default y if UML
|
|
depends on NET
|
|
bool "Network device support"
|
|
help
|
|
You can say N here if you don't intend to connect your Linux box to
|
|
any other computer at all.
|
|
|
|
You'll have to say Y if your computer contains a network card that
|
|
you want to use under Linux. If you are going to run SLIP or PPP over
|
|
telephone line or null modem cable you need say Y here. Connecting
|
|
two machines with parallel ports using PLIP needs this, as well as
|
|
AX.25/KISS for sending Internet traffic over amateur radio links.
|
|
|
|
See also "The Linux Network Administrator's Guide" by Olaf Kirch and
|
|
Terry Dawson. Available at <http://www.tldp.org/guides.html>.
|
|
|
|
If unsure, say Y.
|
|
|
|
# All the following symbols are dependent on NETDEVICES - do not repeat
|
|
# that for each of the symbols.
|
|
if NETDEVICES
|
|
|
|
config MII
|
|
tristate
|
|
|
|
config NET_CORE
|
|
default y
|
|
bool "Network core driver support"
|
|
help
|
|
You can say N here if you do not intend to use any of the
|
|
networking core drivers (i.e. VLAN, bridging, bonding, etc.)
|
|
|
|
if NET_CORE
|
|
|
|
config BONDING
|
|
tristate "Bonding driver support"
|
|
depends on INET
|
|
depends on IPV6 || IPV6=n
|
|
depends on TLS || TLS_DEVICE=n
|
|
help
|
|
Say 'Y' or 'M' if you wish to be able to 'bond' multiple Ethernet
|
|
Channels together. This is called 'Etherchannel' by Cisco,
|
|
'Trunking' by Sun, 802.3ad by the IEEE, and 'Bonding' in Linux.
|
|
|
|
The driver supports multiple bonding modes to allow for both high
|
|
performance and high availability operation.
|
|
|
|
Refer to <file:Documentation/networking/bonding.rst> for more
|
|
information.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called bonding.
|
|
|
|
config DUMMY
|
|
tristate "Dummy net driver support"
|
|
help
|
|
This is essentially a bit-bucket device (i.e. traffic you send to
|
|
this device is consigned into oblivion) with a configurable IP
|
|
address. It is most commonly used in order to make your currently
|
|
inactive SLIP address seem like a real address for local programs.
|
|
If you use SLIP or PPP, you might want to say Y here. It won't
|
|
enlarge your kernel. What a deal. Read about it in the Network
|
|
Administrator's Guide, available from
|
|
<http://www.tldp.org/docs.html#guide>.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called dummy.
|
|
|
|
config WIREGUARD
|
|
tristate "WireGuard secure network tunnel"
|
|
depends on NET && INET
|
|
depends on IPV6 || !IPV6
|
|
depends on !KMSAN # KMSAN doesn't support the crypto configs below
|
|
select NET_UDP_TUNNEL
|
|
select DST_CACHE
|
|
select CRYPTO
|
|
select CRYPTO_LIB_CURVE25519
|
|
select CRYPTO_LIB_CHACHA20POLY1305
|
|
select CRYPTO_CHACHA20_X86_64 if X86 && 64BIT
|
|
select CRYPTO_POLY1305_X86_64 if X86 && 64BIT
|
|
select CRYPTO_BLAKE2S_X86 if X86 && 64BIT
|
|
select CRYPTO_CURVE25519_X86 if X86 && 64BIT
|
|
select CRYPTO_CHACHA20_NEON if ARM || (ARM64 && KERNEL_MODE_NEON)
|
|
select CRYPTO_POLY1305_NEON if ARM64 && KERNEL_MODE_NEON
|
|
select CRYPTO_POLY1305_ARM if ARM
|
|
select CRYPTO_BLAKE2S_ARM if ARM
|
|
select CRYPTO_CURVE25519_NEON if ARM && KERNEL_MODE_NEON
|
|
select CRYPTO_CHACHA_MIPS if CPU_MIPS32_R2
|
|
select CRYPTO_POLY1305_MIPS if MIPS
|
|
select CRYPTO_CHACHA_S390 if S390
|
|
help
|
|
WireGuard is a secure, fast, and easy to use replacement for IPSec
|
|
that uses modern cryptography and clever networking tricks. It's
|
|
designed to be fairly general purpose and abstract enough to fit most
|
|
use cases, while at the same time remaining extremely simple to
|
|
configure. See www.wireguard.com for more info.
|
|
|
|
It's safe to say Y or M here, as the driver is very lightweight and
|
|
is only in use when an administrator chooses to add an interface.
|
|
|
|
config WIREGUARD_DEBUG
|
|
bool "Debugging checks and verbose messages"
|
|
depends on WIREGUARD
|
|
help
|
|
This will write log messages for handshake and other events
|
|
that occur for a WireGuard interface. It will also perform some
|
|
extra validation checks and unit tests at various points. This is
|
|
only useful for debugging.
|
|
|
|
Say N here unless you know what you're doing.
|
|
|
|
config EQUALIZER
|
|
tristate "EQL (serial line load balancing) support"
|
|
help
|
|
If you have two serial connections to some other computer (this
|
|
usually requires two modems and two telephone lines) and you use
|
|
SLIP (the protocol for sending Internet traffic over telephone
|
|
lines) or PPP (a better SLIP) on them, you can make them behave like
|
|
one double speed connection using this driver. Naturally, this has
|
|
to be supported at the other end as well, either with a similar EQL
|
|
Linux driver or with a Livingston Portmaster 2e.
|
|
|
|
Say Y if you want this and read
|
|
<file:Documentation/networking/eql.rst>. You may also want to read
|
|
section 6.2 of the NET-3-HOWTO, available from
|
|
<http://www.tldp.org/docs.html#howto>.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called eql. If unsure, say N.
|
|
|
|
config NET_FC
|
|
bool "Fibre Channel driver support"
|
|
depends on SCSI && PCI
|
|
help
|
|
Fibre Channel is a high speed serial protocol mainly used to connect
|
|
large storage devices to the computer; it is compatible with and
|
|
intended to replace SCSI.
|
|
|
|
If you intend to use Fibre Channel, you need to have a Fibre channel
|
|
adaptor card in your computer; say Y here and to the driver for your
|
|
adaptor below. You also should have said Y to "SCSI support" and
|
|
"SCSI generic support".
|
|
|
|
config IFB
|
|
tristate "Intermediate Functional Block support"
|
|
depends on NET_ACT_MIRRED || NFT_FWD_NETDEV
|
|
select NET_REDIRECT
|
|
help
|
|
This is an intermediate driver that allows sharing of
|
|
resources.
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called ifb. If you want to use more than one ifb
|
|
device at a time, you need to compile this driver as a module.
|
|
Instead of 'ifb', the devices will then be called 'ifb0',
|
|
'ifb1' etc.
|
|
Look at the iproute2 documentation directory for usage etc
|
|
|
|
source "drivers/net/team/Kconfig"
|
|
|
|
config MACVLAN
|
|
tristate "MAC-VLAN support"
|
|
help
|
|
This allows one to create virtual interfaces that map packets to
|
|
or from specific MAC addresses to a particular interface.
|
|
|
|
Macvlan devices can be added using the "ip" command from the
|
|
iproute2 package starting with the iproute2-2.6.23 release:
|
|
|
|
"ip link add link <real dev> [ address MAC ] [ NAME ] type macvlan"
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called macvlan.
|
|
|
|
config MACVTAP
|
|
tristate "MAC-VLAN based tap driver"
|
|
depends on MACVLAN
|
|
depends on INET
|
|
select TAP
|
|
help
|
|
This adds a specialized tap character device driver that is based
|
|
on the MAC-VLAN network interface, called macvtap. A macvtap device
|
|
can be added in the same way as a macvlan device, using 'type
|
|
macvtap', and then be accessed through the tap user space interface.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called macvtap.
|
|
|
|
config IPVLAN_L3S
|
|
depends on NETFILTER
|
|
depends on IPVLAN
|
|
def_bool y
|
|
select NET_L3_MASTER_DEV
|
|
|
|
config IPVLAN
|
|
tristate "IP-VLAN support"
|
|
depends on INET
|
|
depends on IPV6 || !IPV6
|
|
help
|
|
This allows one to create virtual devices off of a main interface
|
|
and packets will be delivered based on the dest L3 (IPv6/IPv4 addr)
|
|
on packets. All interfaces (including the main interface) share L2
|
|
making it transparent to the connected L2 switch.
|
|
|
|
Ipvlan devices can be added using the "ip" command from the
|
|
iproute2 package starting with the iproute2-3.19 release:
|
|
|
|
"ip link add link <main-dev> [ NAME ] type ipvlan"
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called ipvlan.
|
|
|
|
config IPVTAP
|
|
tristate "IP-VLAN based tap driver"
|
|
depends on IPVLAN
|
|
depends on INET
|
|
select TAP
|
|
help
|
|
This adds a specialized tap character device driver that is based
|
|
on the IP-VLAN network interface, called ipvtap. An ipvtap device
|
|
can be added in the same way as a ipvlan device, using 'type
|
|
ipvtap', and then be accessed through the tap user space interface.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called ipvtap.
|
|
|
|
config VXLAN
|
|
tristate "Virtual eXtensible Local Area Network (VXLAN)"
|
|
depends on INET
|
|
select NET_UDP_TUNNEL
|
|
select GRO_CELLS
|
|
help
|
|
This allows one to create vxlan virtual interfaces that provide
|
|
Layer 2 Networks over Layer 3 Networks. VXLAN is often used
|
|
to tunnel virtual network infrastructure in virtualized environments.
|
|
For more information see:
|
|
http://tools.ietf.org/html/draft-mahalingam-dutt-dcops-vxlan-02
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called vxlan.
|
|
|
|
config GENEVE
|
|
tristate "Generic Network Virtualization Encapsulation"
|
|
depends on INET
|
|
depends on IPV6 || !IPV6
|
|
select NET_UDP_TUNNEL
|
|
select GRO_CELLS
|
|
help
|
|
This allows one to create geneve virtual interfaces that provide
|
|
Layer 2 Networks over Layer 3 Networks. GENEVE is often used
|
|
to tunnel virtual network infrastructure in virtualized environments.
|
|
For more information see:
|
|
http://tools.ietf.org/html/draft-gross-geneve-02
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called geneve.
|
|
|
|
config BAREUDP
|
|
tristate "Bare UDP Encapsulation"
|
|
depends on INET
|
|
depends on IPV6 || !IPV6
|
|
select NET_UDP_TUNNEL
|
|
select GRO_CELLS
|
|
help
|
|
This adds a bare UDP tunnel module for tunnelling different
|
|
kinds of traffic like MPLS, IP, etc. inside a UDP tunnel.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called bareudp.
|
|
|
|
config GTP
|
|
tristate "GPRS Tunneling Protocol datapath (GTP-U)"
|
|
depends on INET
|
|
select NET_UDP_TUNNEL
|
|
help
|
|
This allows one to create gtp virtual interfaces that provide
|
|
the GPRS Tunneling Protocol datapath (GTP-U). This tunneling protocol
|
|
is used to prevent subscribers from accessing mobile carrier core
|
|
network infrastructure. This driver requires a userspace software that
|
|
implements the signaling protocol (GTP-C) to update its PDP context
|
|
base, such as OpenGGSN <http://git.osmocom.org/openggsn/). This
|
|
tunneling protocol is implemented according to the GSM TS 09.60 and
|
|
3GPP TS 29.060 standards.
|
|
|
|
To compile this drivers as a module, choose M here: the module
|
|
will be called gtp.
|
|
|
|
config AMT
|
|
tristate "Automatic Multicast Tunneling (AMT)"
|
|
depends on INET && IP_MULTICAST
|
|
depends on IPV6 || !IPV6
|
|
select NET_UDP_TUNNEL
|
|
help
|
|
This allows one to create AMT(Automatic Multicast Tunneling)
|
|
virtual interfaces that provide multicast tunneling.
|
|
There are two roles, Gateway, and Relay.
|
|
Gateway Encapsulates IGMP/MLD traffic from listeners to the Relay.
|
|
Gateway Decapsulates multicast traffic from the Relay to Listeners.
|
|
Relay Encapsulates multicast traffic from Sources to Gateway.
|
|
Relay Decapsulates IGMP/MLD traffic from Gateway.
|
|
|
|
To compile this drivers as a module, choose M here: the module
|
|
will be called amt.
|
|
|
|
config MACSEC
|
|
tristate "IEEE 802.1AE MAC-level encryption (MACsec)"
|
|
select CRYPTO
|
|
select CRYPTO_AES
|
|
select CRYPTO_GCM
|
|
select GRO_CELLS
|
|
help
|
|
MACsec is an encryption standard for Ethernet.
|
|
|
|
config NETCONSOLE
|
|
tristate "Network console logging support"
|
|
help
|
|
If you want to log kernel messages over the network, enable this.
|
|
See <file:Documentation/networking/netconsole.rst> for details.
|
|
|
|
config NETCONSOLE_DYNAMIC
|
|
bool "Dynamic reconfiguration of logging targets"
|
|
depends on NETCONSOLE && SYSFS && CONFIGFS_FS && \
|
|
!(NETCONSOLE=y && CONFIGFS_FS=m)
|
|
help
|
|
This option enables the ability to dynamically reconfigure target
|
|
parameters (interface, IP addresses, port numbers, MAC addresses)
|
|
at runtime through a userspace interface exported using configfs.
|
|
See <file:Documentation/networking/netconsole.rst> for details.
|
|
|
|
config NETPOLL
|
|
def_bool NETCONSOLE
|
|
|
|
config NET_POLL_CONTROLLER
|
|
def_bool NETPOLL
|
|
|
|
config NTB_NETDEV
|
|
tristate "Virtual Ethernet over NTB Transport"
|
|
depends on NTB_TRANSPORT
|
|
|
|
config RIONET
|
|
tristate "RapidIO Ethernet over messaging driver support"
|
|
depends on RAPIDIO
|
|
|
|
config RIONET_TX_SIZE
|
|
int "Number of outbound queue entries"
|
|
depends on RIONET
|
|
default "128"
|
|
|
|
config RIONET_RX_SIZE
|
|
int "Number of inbound queue entries"
|
|
depends on RIONET
|
|
default "128"
|
|
|
|
config TUN
|
|
tristate "Universal TUN/TAP device driver support"
|
|
depends on INET
|
|
select CRC32
|
|
help
|
|
TUN/TAP provides packet reception and transmission for user space
|
|
programs. It can be viewed as a simple Point-to-Point or Ethernet
|
|
device, which instead of receiving packets from a physical media,
|
|
receives them from user space program and instead of sending packets
|
|
via physical media writes them to the user space program.
|
|
|
|
When a program opens /dev/net/tun, driver creates and registers
|
|
corresponding net device tunX or tapX. After a program closed above
|
|
devices, driver will automatically delete tunXX or tapXX device and
|
|
all routes corresponding to it.
|
|
|
|
Please read <file:Documentation/networking/tuntap.rst> for more
|
|
information.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called tun.
|
|
|
|
If you don't know what to use this for, you don't need it.
|
|
|
|
config TAP
|
|
tristate
|
|
help
|
|
This option is selected by any driver implementing tap user space
|
|
interface for a virtual interface to re-use core tap functionality.
|
|
|
|
config TUN_VNET_CROSS_LE
|
|
bool "Support for cross-endian vnet headers on little-endian kernels"
|
|
default n
|
|
help
|
|
This option allows TUN/TAP and MACVTAP device drivers in a
|
|
little-endian kernel to parse vnet headers that come from a
|
|
big-endian legacy virtio device.
|
|
|
|
Userspace programs can control the feature using the TUNSETVNETBE
|
|
and TUNGETVNETBE ioctls.
|
|
|
|
Unless you have a little-endian system hosting a big-endian virtual
|
|
machine with a legacy virtio NIC, you should say N.
|
|
|
|
config VETH
|
|
tristate "Virtual ethernet pair device"
|
|
help
|
|
This device is a local ethernet tunnel. Devices are created in pairs.
|
|
When one end receives the packet it appears on its pair and vice
|
|
versa.
|
|
|
|
config VIRTIO_NET
|
|
tristate "Virtio network driver"
|
|
depends on VIRTIO
|
|
select NET_FAILOVER
|
|
help
|
|
This is the virtual network driver for virtio. It can be used with
|
|
QEMU based VMMs (like KVM or Xen). Say Y or M.
|
|
|
|
config NLMON
|
|
tristate "Virtual netlink monitoring device"
|
|
help
|
|
This option enables a monitoring net device for netlink skbs. The
|
|
purpose of this is to analyze netlink messages with packet sockets.
|
|
Thus applications like tcpdump will be able to see local netlink
|
|
messages if they tap into the netlink device, record pcaps for further
|
|
diagnostics, etc. This is mostly intended for developers or support
|
|
to debug netlink issues. If unsure, say N.
|
|
|
|
config NET_VRF
|
|
tristate "Virtual Routing and Forwarding (Lite)"
|
|
depends on IP_MULTIPLE_TABLES
|
|
depends on NET_L3_MASTER_DEV
|
|
depends on IPV6 || IPV6=n
|
|
depends on IPV6_MULTIPLE_TABLES || IPV6=n
|
|
help
|
|
This option enables the support for mapping interfaces into VRF's. The
|
|
support enables VRF devices.
|
|
|
|
config VSOCKMON
|
|
tristate "Virtual vsock monitoring device"
|
|
depends on VHOST_VSOCK
|
|
help
|
|
This option enables a monitoring net device for vsock sockets. It is
|
|
mostly intended for developers or support to debug vsock issues. If
|
|
unsure, say N.
|
|
|
|
config MHI_NET
|
|
tristate "MHI network driver"
|
|
depends on MHI_BUS
|
|
help
|
|
This is the network driver for MHI bus. It can be used with
|
|
QCOM based WWAN modems for IP or QMAP/rmnet protocol (like SDX55).
|
|
Say Y or M.
|
|
|
|
endif # NET_CORE
|
|
|
|
config SUNGEM_PHY
|
|
tristate
|
|
|
|
source "drivers/net/arcnet/Kconfig"
|
|
|
|
source "drivers/atm/Kconfig"
|
|
|
|
source "drivers/net/caif/Kconfig"
|
|
|
|
source "drivers/net/dsa/Kconfig"
|
|
|
|
source "drivers/net/ethernet/Kconfig"
|
|
|
|
source "drivers/net/fddi/Kconfig"
|
|
|
|
source "drivers/net/hippi/Kconfig"
|
|
|
|
source "drivers/net/ipa/Kconfig"
|
|
|
|
config NET_SB1000
|
|
tristate "General Instruments Surfboard 1000"
|
|
depends on PNP
|
|
help
|
|
This is a driver for the General Instrument (also known as
|
|
NextLevel) SURFboard 1000 internal
|
|
cable modem. This is an ISA card which is used by a number of cable
|
|
TV companies to provide cable modem access. It's a one-way
|
|
downstream-only cable modem, meaning that your upstream net link is
|
|
provided by your regular phone modem.
|
|
|
|
At present this driver only compiles as a module, so say M here if
|
|
you have this card. The module will be called sb1000. Then read
|
|
<file:Documentation/networking/device_drivers/cable/sb1000.rst> for
|
|
information on how to use this module, as it needs special ppp
|
|
scripts for establishing a connection. Further documentation
|
|
and the necessary scripts can be found at:
|
|
|
|
<http://www.jacksonville.net/~fventuri/>
|
|
<http://home.adelphia.net/~siglercm/sb1000.html>
|
|
<http://linuxpower.cx/~cable/>
|
|
|
|
If you don't have this card, of course say N.
|
|
|
|
source "drivers/net/phy/Kconfig"
|
|
|
|
source "drivers/net/pse-pd/Kconfig"
|
|
|
|
source "drivers/net/can/Kconfig"
|
|
|
|
source "drivers/net/mctp/Kconfig"
|
|
|
|
source "drivers/net/mdio/Kconfig"
|
|
|
|
source "drivers/net/pcs/Kconfig"
|
|
|
|
source "drivers/net/plip/Kconfig"
|
|
|
|
source "drivers/net/ppp/Kconfig"
|
|
|
|
source "drivers/net/slip/Kconfig"
|
|
|
|
source "drivers/s390/net/Kconfig"
|
|
|
|
source "drivers/net/usb/Kconfig"
|
|
|
|
source "drivers/net/wireless/Kconfig"
|
|
|
|
source "drivers/net/wan/Kconfig"
|
|
|
|
source "drivers/net/ieee802154/Kconfig"
|
|
|
|
source "drivers/net/wwan/Kconfig"
|
|
|
|
config XEN_NETDEV_FRONTEND
|
|
tristate "Xen network device frontend driver"
|
|
depends on XEN
|
|
select XEN_XENBUS_FRONTEND
|
|
select PAGE_POOL
|
|
default y
|
|
help
|
|
This driver provides support for Xen paravirtual network
|
|
devices exported by a Xen network driver domain (often
|
|
domain 0).
|
|
|
|
The corresponding Linux backend driver is enabled by the
|
|
CONFIG_XEN_NETDEV_BACKEND option.
|
|
|
|
If you are compiling a kernel for use as Xen guest, you
|
|
should say Y here. To compile this driver as a module, chose
|
|
M here: the module will be called xen-netfront.
|
|
|
|
config XEN_NETDEV_BACKEND
|
|
tristate "Xen backend network device"
|
|
depends on XEN_BACKEND
|
|
help
|
|
This driver allows the kernel to act as a Xen network driver
|
|
domain which exports paravirtual network devices to other
|
|
Xen domains. These devices can be accessed by any operating
|
|
system that implements a compatible front end.
|
|
|
|
The corresponding Linux frontend driver is enabled by the
|
|
CONFIG_XEN_NETDEV_FRONTEND configuration option.
|
|
|
|
The backend driver presents a standard network device
|
|
endpoint for each paravirtual network device to the driver
|
|
domain network stack. These can then be bridged or routed
|
|
etc in order to provide full network connectivity.
|
|
|
|
If you are compiling a kernel to run in a Xen network driver
|
|
domain (often this is domain 0) you should say Y here. To
|
|
compile this driver as a module, chose M here: the module
|
|
will be called xen-netback.
|
|
|
|
config VMXNET3
|
|
tristate "VMware VMXNET3 ethernet driver"
|
|
depends on PCI && INET
|
|
depends on PAGE_SIZE_LESS_THAN_64KB
|
|
help
|
|
This driver supports VMware's vmxnet3 virtual ethernet NIC.
|
|
To compile this driver as a module, choose M here: the
|
|
module will be called vmxnet3.
|
|
|
|
config FUJITSU_ES
|
|
tristate "FUJITSU Extended Socket Network Device driver"
|
|
depends on ACPI
|
|
help
|
|
This driver provides support for Extended Socket network device
|
|
on Extended Partitioning of FUJITSU PRIMEQUEST 2000 E2 series.
|
|
|
|
source "drivers/net/thunderbolt/Kconfig"
|
|
source "drivers/net/hyperv/Kconfig"
|
|
|
|
config NETDEVSIM
|
|
tristate "Simulated networking device"
|
|
depends on DEBUG_FS
|
|
depends on INET
|
|
depends on IPV6 || IPV6=n
|
|
depends on PSAMPLE || PSAMPLE=n
|
|
select NET_DEVLINK
|
|
help
|
|
This driver is a developer testing tool and software model that can
|
|
be used to test various control path networking APIs, especially
|
|
HW-offload related.
|
|
|
|
To compile this driver as a module, choose M here: the module
|
|
will be called netdevsim.
|
|
|
|
config NET_FAILOVER
|
|
tristate "Failover driver"
|
|
select FAILOVER
|
|
help
|
|
This provides an automated failover mechanism via APIs to create
|
|
and destroy a failover master netdev and manages a primary and
|
|
standby slave netdevs that get registered via the generic failover
|
|
infrastructure. This can be used by paravirtual drivers to enable
|
|
an alternate low latency datapath. It also enables live migration of
|
|
a VM with direct attached VF by failing over to the paravirtual
|
|
datapath when the VF is unplugged.
|
|
|
|
config NETDEV_LEGACY_INIT
|
|
bool
|
|
depends on ISA
|
|
help
|
|
Drivers that call netdev_boot_setup_check() should select this
|
|
symbol, everything else no longer needs it.
|
|
|
|
endif # NETDEVICES
|