commit 3df74bdd3fd3f90d05bf321c22a59a9f319e0658

pyrox.dev / nixpkgs

lol

kernel: enable core scheduling on 5.14+ kernels

Core scheduling is a recent innovation in newer kernels to help run
certain untrusted compute workloads more safely in the face of
vulnerabilities like Spectre. In short: it lets processes assign a
unique "cookie" to some group of processes to indicate they are allowed
to be scheduled together on the same SMT-capable core. This helps
mitigate attacks that rely on observing usage of CPU execution units by
cohabitated threads.

Some extra details are available via Linux Weekly News:

"Core scheduling lands in 5.14", https://lwn.net/Articles/861251/

Signed-off-by: Austin Seipp <aseipp@pobox.com>

Austin Seipp 4 years ago 3df74bdd 7e7e16cc

1 changed file

expand all

unified split

pkgs

os-specific

linux

kernel

common-config.nix

pkgs/os-specific/linux/kernel/common-config.nix

··· 859 859 860 860 LIRC = mkMerge [ (whenOlder "4.16" module) (whenAtLeast "4.17" yes) ]; 861 861 862 + SCHED_CORE = whenAtLeast "5.14" yes; 863 + 862 864 } // optionalAttrs (stdenv.hostPlatform.system == "x86_64-linux" || stdenv.hostPlatform.system == "aarch64-linux") { 863 865 # Enable CPU/memory hotplug support 864 866 # Allows you to dynamically add & remove CPUs/memory to a VM client running NixOS without requiring a reboot