1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3 * sysctl.c: General linux system control interface
4 *
5 * Begun 24 March 1995, Stephen Tweedie
6 * Added /proc support, Dec 1995
7 * Added bdflush entry and intvec min/max checking, 2/23/96, Tom Dyas.
8 * Added hooks for /proc/sys/net (minor, minor patch), 96/4/1, Mike Shaver.
9 * Added kernel/java-{interpreter,appletviewer}, 96/5/10, Mike Shaver.
10 * Dynamic registration fixes, Stephen Tweedie.
11 * Added kswapd-interval, ctrl-alt-del, printk stuff, 1/8/97, Chris Horn.
12 * Made sysctl support optional via CONFIG_SYSCTL, 1/10/97, Chris
13 * Horn.
14 * Added proc_doulongvec_ms_jiffies_minmax, 09/08/99, Carlos H. Bauer.
15 * Added proc_doulongvec_minmax, 09/08/99, Carlos H. Bauer.
16 * Changed linked lists to use list.h instead of lists.h, 02/24/00, Bill
17 * Wendling.
18 * The list_for_each() macro wasn't appropriate for the sysctl loop.
19 * Removed it and replaced it with older style, 03/23/00, Bill Wendling
20 */
21
22 #include <linux/module.h>
23 #include <linux/aio.h>
24 #include <linux/mm.h>
25 #include <linux/swap.h>
26 #include <linux/slab.h>
27 #include <linux/sysctl.h>
28 #include <linux/bitmap.h>
29 #include <linux/signal.h>
30 #include <linux/panic.h>
31 #include <linux/printk.h>
32 #include <linux/proc_fs.h>
33 #include <linux/security.h>
34 #include <linux/ctype.h>
35 #include <linux/kmemleak.h>
36 #include <linux/fs.h>
37 #include <linux/init.h>
38 #include <linux/kernel.h>
39 #include <linux/kobject.h>
40 #include <linux/net.h>
41 #include <linux/sysrq.h>
42 #include <linux/highuid.h>
43 #include <linux/writeback.h>
44 #include <linux/ratelimit.h>
45 #include <linux/compaction.h>
46 #include <linux/hugetlb.h>
47 #include <linux/initrd.h>
48 #include <linux/key.h>
49 #include <linux/times.h>
50 #include <linux/limits.h>
51 #include <linux/dcache.h>
52 #include <linux/dnotify.h>
53 #include <linux/syscalls.h>
54 #include <linux/vmstat.h>
55 #include <linux/nfs_fs.h>
56 #include <linux/acpi.h>
57 #include <linux/reboot.h>
58 #include <linux/ftrace.h>
59 #include <linux/perf_event.h>
60 #include <linux/kprobes.h>
61 #include <linux/pipe_fs_i.h>
62 #include <linux/oom.h>
63 #include <linux/kmod.h>
64 #include <linux/capability.h>
65 #include <linux/binfmts.h>
66 #include <linux/sched/sysctl.h>
67 #include <linux/sched/coredump.h>
68 #include <linux/kexec.h>
69 #include <linux/bpf.h>
70 #include <linux/mount.h>
71 #include <linux/userfaultfd_k.h>
72 #include <linux/coredump.h>
73 #include <linux/latencytop.h>
74 #include <linux/pid.h>
75 #include <linux/delayacct.h>
76
77 #include "../lib/kstrtox.h"
78
79 #include <linux/uaccess.h>
80 #include <asm/processor.h>
81
82 #ifdef CONFIG_X86
83 #include <asm/nmi.h>
84 #include <asm/stacktrace.h>
85 #include <asm/io.h>
86 #endif
87 #ifdef CONFIG_SPARC
88 #include <asm/setup.h>
89 #endif
90 #ifdef CONFIG_BSD_PROCESS_ACCT
91 #include <linux/acct.h>
92 #endif
93 #ifdef CONFIG_RT_MUTEXES
94 #include <linux/rtmutex.h>
95 #endif
96 #if defined(CONFIG_PROVE_LOCKING) || defined(CONFIG_LOCK_STAT)
97 #include <linux/lockdep.h>
98 #endif
99 #ifdef CONFIG_CHR_DEV_SG
100 #include <scsi/sg.h>
101 #endif
102 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
103 #include <linux/stackleak.h>
104 #endif
105 #ifdef CONFIG_LOCKUP_DETECTOR
106 #include <linux/nmi.h>
107 #endif
108
109 #if defined(CONFIG_SYSCTL)
110
111 /* Constants used for minimum and maximum */
112 #ifdef CONFIG_LOCKUP_DETECTOR
113 static int sixty = 60;
114 #endif
115
116 static int __maybe_unused neg_one = -1;
117 static int __maybe_unused two = 2;
118 static int __maybe_unused four = 4;
119 static unsigned long zero_ul;
120 static unsigned long one_ul = 1;
121 static unsigned long long_max = LONG_MAX;
122 static int one_hundred = 100;
123 static int two_hundred = 200;
124 static int one_thousand = 1000;
125 #ifdef CONFIG_PRINTK
126 static int ten_thousand = 10000;
127 #endif
128 #ifdef CONFIG_PERF_EVENTS
129 static int six_hundred_forty_kb = 640 * 1024;
130 #endif
131
132 /* this is needed for the proc_doulongvec_minmax of vm_dirty_bytes */
133 static unsigned long dirty_bytes_min = 2 * PAGE_SIZE;
134
135 /* this is needed for the proc_dointvec_minmax for [fs_]overflow UID and GID */
136 static int maxolduid = 65535;
137 static int minolduid;
138
139 static int ngroups_max = NGROUPS_MAX;
140 static const int cap_last_cap = CAP_LAST_CAP;
141
142 /*
143 * This is needed for proc_doulongvec_minmax of sysctl_hung_task_timeout_secs
144 * and hung_task_check_interval_secs
145 */
146 #ifdef CONFIG_DETECT_HUNG_TASK
147 static unsigned long hung_task_timeout_max = (LONG_MAX/HZ);
148 #endif
149
150 #ifdef CONFIG_INOTIFY_USER
151 #include <linux/inotify.h>
152 #endif
153 #ifdef CONFIG_FANOTIFY
154 #include <linux/fanotify.h>
155 #endif
156
157 #ifdef CONFIG_PROC_SYSCTL
158
159 /**
160 * enum sysctl_writes_mode - supported sysctl write modes
161 *
162 * @SYSCTL_WRITES_LEGACY: each write syscall must fully contain the sysctl value
163 * to be written, and multiple writes on the same sysctl file descriptor
164 * will rewrite the sysctl value, regardless of file position. No warning
165 * is issued when the initial position is not 0.
166 * @SYSCTL_WRITES_WARN: same as above but warn when the initial file position is
167 * not 0.
168 * @SYSCTL_WRITES_STRICT: writes to numeric sysctl entries must always be at
169 * file position 0 and the value must be fully contained in the buffer
170 * sent to the write syscall. If dealing with strings respect the file
171 * position, but restrict this to the max length of the buffer, anything
172 * passed the max length will be ignored. Multiple writes will append
173 * to the buffer.
174 *
175 * These write modes control how current file position affects the behavior of
176 * updating sysctl values through the proc interface on each write.
177 */
178 enum sysctl_writes_mode {
179 SYSCTL_WRITES_LEGACY = -1,
180 SYSCTL_WRITES_WARN = 0,
181 SYSCTL_WRITES_STRICT = 1,
182 };
183
184 static enum sysctl_writes_mode sysctl_writes_strict = SYSCTL_WRITES_STRICT;
185 #endif /* CONFIG_PROC_SYSCTL */
186
187 #if defined(HAVE_ARCH_PICK_MMAP_LAYOUT) || \
188 defined(CONFIG_ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT)
189 int sysctl_legacy_va_layout;
190 #endif
191
192 #ifdef CONFIG_COMPACTION
193 static int min_extfrag_threshold;
194 static int max_extfrag_threshold = 1000;
195 #endif
196
197 #endif /* CONFIG_SYSCTL */
198
199 #if defined(CONFIG_BPF_SYSCALL) && defined(CONFIG_SYSCTL)
bpf_stats_handler(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)200 static int bpf_stats_handler(struct ctl_table *table, int write,
201 void *buffer, size_t *lenp, loff_t *ppos)
202 {
203 struct static_key *key = (struct static_key *)table->data;
204 static int saved_val;
205 int val, ret;
206 struct ctl_table tmp = {
207 .data = &val,
208 .maxlen = sizeof(val),
209 .mode = table->mode,
210 .extra1 = SYSCTL_ZERO,
211 .extra2 = SYSCTL_ONE,
212 };
213
214 if (write && !capable(CAP_SYS_ADMIN))
215 return -EPERM;
216
217 mutex_lock(&bpf_stats_enabled_mutex);
218 val = saved_val;
219 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
220 if (write && !ret && val != saved_val) {
221 if (val)
222 static_key_slow_inc(key);
223 else
224 static_key_slow_dec(key);
225 saved_val = val;
226 }
227 mutex_unlock(&bpf_stats_enabled_mutex);
228 return ret;
229 }
230
bpf_unpriv_handler(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)231 static int bpf_unpriv_handler(struct ctl_table *table, int write,
232 void *buffer, size_t *lenp, loff_t *ppos)
233 {
234 int ret, unpriv_enable = *(int *)table->data;
235 bool locked_state = unpriv_enable == 1;
236 struct ctl_table tmp = *table;
237
238 if (write && !capable(CAP_SYS_ADMIN))
239 return -EPERM;
240
241 tmp.data = &unpriv_enable;
242 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
243 if (write && !ret) {
244 if (locked_state && unpriv_enable != 1)
245 return -EPERM;
246 *(int *)table->data = unpriv_enable;
247 }
248 return ret;
249 }
250 #endif /* CONFIG_BPF_SYSCALL && CONFIG_SYSCTL */
251
252 /*
253 * /proc/sys support
254 */
255
256 #ifdef CONFIG_PROC_SYSCTL
257
_proc_do_string(char * data,int maxlen,int write,char * buffer,size_t * lenp,loff_t * ppos)258 static int _proc_do_string(char *data, int maxlen, int write,
259 char *buffer, size_t *lenp, loff_t *ppos)
260 {
261 size_t len;
262 char c, *p;
263
264 if (!data || !maxlen || !*lenp) {
265 *lenp = 0;
266 return 0;
267 }
268
269 if (write) {
270 if (sysctl_writes_strict == SYSCTL_WRITES_STRICT) {
271 /* Only continue writes not past the end of buffer. */
272 len = strlen(data);
273 if (len > maxlen - 1)
274 len = maxlen - 1;
275
276 if (*ppos > len)
277 return 0;
278 len = *ppos;
279 } else {
280 /* Start writing from beginning of buffer. */
281 len = 0;
282 }
283
284 *ppos += *lenp;
285 p = buffer;
286 while ((p - buffer) < *lenp && len < maxlen - 1) {
287 c = *(p++);
288 if (c == 0 || c == '\n')
289 break;
290 data[len++] = c;
291 }
292 data[len] = 0;
293 } else {
294 len = strlen(data);
295 if (len > maxlen)
296 len = maxlen;
297
298 if (*ppos > len) {
299 *lenp = 0;
300 return 0;
301 }
302
303 data += *ppos;
304 len -= *ppos;
305
306 if (len > *lenp)
307 len = *lenp;
308 if (len)
309 memcpy(buffer, data, len);
310 if (len < *lenp) {
311 buffer[len] = '\n';
312 len++;
313 }
314 *lenp = len;
315 *ppos += len;
316 }
317 return 0;
318 }
319
warn_sysctl_write(struct ctl_table * table)320 static void warn_sysctl_write(struct ctl_table *table)
321 {
322 pr_warn_once("%s wrote to %s when file position was not 0!\n"
323 "This will not be supported in the future. To silence this\n"
324 "warning, set kernel.sysctl_writes_strict = -1\n",
325 current->comm, table->procname);
326 }
327
328 /**
329 * proc_first_pos_non_zero_ignore - check if first position is allowed
330 * @ppos: file position
331 * @table: the sysctl table
332 *
333 * Returns true if the first position is non-zero and the sysctl_writes_strict
334 * mode indicates this is not allowed for numeric input types. String proc
335 * handlers can ignore the return value.
336 */
proc_first_pos_non_zero_ignore(loff_t * ppos,struct ctl_table * table)337 static bool proc_first_pos_non_zero_ignore(loff_t *ppos,
338 struct ctl_table *table)
339 {
340 if (!*ppos)
341 return false;
342
343 switch (sysctl_writes_strict) {
344 case SYSCTL_WRITES_STRICT:
345 return true;
346 case SYSCTL_WRITES_WARN:
347 warn_sysctl_write(table);
348 return false;
349 default:
350 return false;
351 }
352 }
353
354 /**
355 * proc_dostring - read a string sysctl
356 * @table: the sysctl table
357 * @write: %TRUE if this is a write to the sysctl file
358 * @buffer: the user buffer
359 * @lenp: the size of the user buffer
360 * @ppos: file position
361 *
362 * Reads/writes a string from/to the user buffer. If the kernel
363 * buffer provided is not large enough to hold the string, the
364 * string is truncated. The copied string is %NULL-terminated.
365 * If the string is being read by the user process, it is copied
366 * and a newline '\n' is added. It is truncated if the buffer is
367 * not large enough.
368 *
369 * Returns 0 on success.
370 */
proc_dostring(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)371 int proc_dostring(struct ctl_table *table, int write,
372 void *buffer, size_t *lenp, loff_t *ppos)
373 {
374 if (write)
375 proc_first_pos_non_zero_ignore(ppos, table);
376
377 return _proc_do_string(table->data, table->maxlen, write, buffer, lenp,
378 ppos);
379 }
380
proc_skip_spaces(char ** buf)381 static size_t proc_skip_spaces(char **buf)
382 {
383 size_t ret;
384 char *tmp = skip_spaces(*buf);
385 ret = tmp - *buf;
386 *buf = tmp;
387 return ret;
388 }
389
proc_skip_char(char ** buf,size_t * size,const char v)390 static void proc_skip_char(char **buf, size_t *size, const char v)
391 {
392 while (*size) {
393 if (**buf != v)
394 break;
395 (*size)--;
396 (*buf)++;
397 }
398 }
399
400 /**
401 * strtoul_lenient - parse an ASCII formatted integer from a buffer and only
402 * fail on overflow
403 *
404 * @cp: kernel buffer containing the string to parse
405 * @endp: pointer to store the trailing characters
406 * @base: the base to use
407 * @res: where the parsed integer will be stored
408 *
409 * In case of success 0 is returned and @res will contain the parsed integer,
410 * @endp will hold any trailing characters.
411 * This function will fail the parse on overflow. If there wasn't an overflow
412 * the function will defer the decision what characters count as invalid to the
413 * caller.
414 */
strtoul_lenient(const char * cp,char ** endp,unsigned int base,unsigned long * res)415 static int strtoul_lenient(const char *cp, char **endp, unsigned int base,
416 unsigned long *res)
417 {
418 unsigned long long result;
419 unsigned int rv;
420
421 cp = _parse_integer_fixup_radix(cp, &base);
422 rv = _parse_integer(cp, base, &result);
423 if ((rv & KSTRTOX_OVERFLOW) || (result != (unsigned long)result))
424 return -ERANGE;
425
426 cp += rv;
427
428 if (endp)
429 *endp = (char *)cp;
430
431 *res = (unsigned long)result;
432 return 0;
433 }
434
435 #define TMPBUFLEN 22
436 /**
437 * proc_get_long - reads an ASCII formatted integer from a user buffer
438 *
439 * @buf: a kernel buffer
440 * @size: size of the kernel buffer
441 * @val: this is where the number will be stored
442 * @neg: set to %TRUE if number is negative
443 * @perm_tr: a vector which contains the allowed trailers
444 * @perm_tr_len: size of the perm_tr vector
445 * @tr: pointer to store the trailer character
446 *
447 * In case of success %0 is returned and @buf and @size are updated with
448 * the amount of bytes read. If @tr is non-NULL and a trailing
449 * character exists (size is non-zero after returning from this
450 * function), @tr is updated with the trailing character.
451 */
proc_get_long(char ** buf,size_t * size,unsigned long * val,bool * neg,const char * perm_tr,unsigned perm_tr_len,char * tr)452 static int proc_get_long(char **buf, size_t *size,
453 unsigned long *val, bool *neg,
454 const char *perm_tr, unsigned perm_tr_len, char *tr)
455 {
456 int len;
457 char *p, tmp[TMPBUFLEN];
458
459 if (!*size)
460 return -EINVAL;
461
462 len = *size;
463 if (len > TMPBUFLEN - 1)
464 len = TMPBUFLEN - 1;
465
466 memcpy(tmp, *buf, len);
467
468 tmp[len] = 0;
469 p = tmp;
470 if (*p == '-' && *size > 1) {
471 *neg = true;
472 p++;
473 } else
474 *neg = false;
475 if (!isdigit(*p))
476 return -EINVAL;
477
478 if (strtoul_lenient(p, &p, 0, val))
479 return -EINVAL;
480
481 len = p - tmp;
482
483 /* We don't know if the next char is whitespace thus we may accept
484 * invalid integers (e.g. 1234...a) or two integers instead of one
485 * (e.g. 123...1). So lets not allow such large numbers. */
486 if (len == TMPBUFLEN - 1)
487 return -EINVAL;
488
489 if (len < *size && perm_tr_len && !memchr(perm_tr, *p, perm_tr_len))
490 return -EINVAL;
491
492 if (tr && (len < *size))
493 *tr = *p;
494
495 *buf += len;
496 *size -= len;
497
498 return 0;
499 }
500
501 /**
502 * proc_put_long - converts an integer to a decimal ASCII formatted string
503 *
504 * @buf: the user buffer
505 * @size: the size of the user buffer
506 * @val: the integer to be converted
507 * @neg: sign of the number, %TRUE for negative
508 *
509 * In case of success @buf and @size are updated with the amount of bytes
510 * written.
511 */
proc_put_long(void ** buf,size_t * size,unsigned long val,bool neg)512 static void proc_put_long(void **buf, size_t *size, unsigned long val, bool neg)
513 {
514 int len;
515 char tmp[TMPBUFLEN], *p = tmp;
516
517 sprintf(p, "%s%lu", neg ? "-" : "", val);
518 len = strlen(tmp);
519 if (len > *size)
520 len = *size;
521 memcpy(*buf, tmp, len);
522 *size -= len;
523 *buf += len;
524 }
525 #undef TMPBUFLEN
526
proc_put_char(void ** buf,size_t * size,char c)527 static void proc_put_char(void **buf, size_t *size, char c)
528 {
529 if (*size) {
530 char **buffer = (char **)buf;
531 **buffer = c;
532
533 (*size)--;
534 (*buffer)++;
535 *buf = *buffer;
536 }
537 }
538
do_proc_dobool_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)539 static int do_proc_dobool_conv(bool *negp, unsigned long *lvalp,
540 int *valp,
541 int write, void *data)
542 {
543 if (write) {
544 *(bool *)valp = *lvalp;
545 } else {
546 int val = *(bool *)valp;
547
548 *lvalp = (unsigned long)val;
549 *negp = false;
550 }
551 return 0;
552 }
553
do_proc_dointvec_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)554 static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
555 int *valp,
556 int write, void *data)
557 {
558 if (write) {
559 if (*negp) {
560 if (*lvalp > (unsigned long) INT_MAX + 1)
561 return -EINVAL;
562 *valp = -*lvalp;
563 } else {
564 if (*lvalp > (unsigned long) INT_MAX)
565 return -EINVAL;
566 *valp = *lvalp;
567 }
568 } else {
569 int val = *valp;
570 if (val < 0) {
571 *negp = true;
572 *lvalp = -(unsigned long)val;
573 } else {
574 *negp = false;
575 *lvalp = (unsigned long)val;
576 }
577 }
578 return 0;
579 }
580
do_proc_douintvec_conv(unsigned long * lvalp,unsigned int * valp,int write,void * data)581 static int do_proc_douintvec_conv(unsigned long *lvalp,
582 unsigned int *valp,
583 int write, void *data)
584 {
585 if (write) {
586 if (*lvalp > UINT_MAX)
587 return -EINVAL;
588 *valp = *lvalp;
589 } else {
590 unsigned int val = *valp;
591 *lvalp = (unsigned long)val;
592 }
593 return 0;
594 }
595
596 static const char proc_wspace_sep[] = { ' ', '\t', '\n' };
597
__do_proc_dointvec(void * tbl_data,struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(bool * negp,unsigned long * lvalp,int * valp,int write,void * data),void * data)598 static int __do_proc_dointvec(void *tbl_data, struct ctl_table *table,
599 int write, void *buffer,
600 size_t *lenp, loff_t *ppos,
601 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
602 int write, void *data),
603 void *data)
604 {
605 int *i, vleft, first = 1, err = 0;
606 size_t left;
607 char *p;
608
609 if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
610 *lenp = 0;
611 return 0;
612 }
613
614 i = (int *) tbl_data;
615 vleft = table->maxlen / sizeof(*i);
616 left = *lenp;
617
618 if (!conv)
619 conv = do_proc_dointvec_conv;
620
621 if (write) {
622 if (proc_first_pos_non_zero_ignore(ppos, table))
623 goto out;
624
625 if (left > PAGE_SIZE - 1)
626 left = PAGE_SIZE - 1;
627 p = buffer;
628 }
629
630 for (; left && vleft--; i++, first=0) {
631 unsigned long lval;
632 bool neg;
633
634 if (write) {
635 left -= proc_skip_spaces(&p);
636
637 if (!left)
638 break;
639 err = proc_get_long(&p, &left, &lval, &neg,
640 proc_wspace_sep,
641 sizeof(proc_wspace_sep), NULL);
642 if (err)
643 break;
644 if (conv(&neg, &lval, i, 1, data)) {
645 err = -EINVAL;
646 break;
647 }
648 } else {
649 if (conv(&neg, &lval, i, 0, data)) {
650 err = -EINVAL;
651 break;
652 }
653 if (!first)
654 proc_put_char(&buffer, &left, '\t');
655 proc_put_long(&buffer, &left, lval, neg);
656 }
657 }
658
659 if (!write && !first && left && !err)
660 proc_put_char(&buffer, &left, '\n');
661 if (write && !err && left)
662 left -= proc_skip_spaces(&p);
663 if (write && first)
664 return err ? : -EINVAL;
665 *lenp -= left;
666 out:
667 *ppos += *lenp;
668 return err;
669 }
670
do_proc_dointvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(bool * negp,unsigned long * lvalp,int * valp,int write,void * data),void * data)671 static int do_proc_dointvec(struct ctl_table *table, int write,
672 void *buffer, size_t *lenp, loff_t *ppos,
673 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
674 int write, void *data),
675 void *data)
676 {
677 return __do_proc_dointvec(table->data, table, write,
678 buffer, lenp, ppos, conv, data);
679 }
680
do_proc_douintvec_w(unsigned int * tbl_data,struct ctl_table * table,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(unsigned long * lvalp,unsigned int * valp,int write,void * data),void * data)681 static int do_proc_douintvec_w(unsigned int *tbl_data,
682 struct ctl_table *table,
683 void *buffer,
684 size_t *lenp, loff_t *ppos,
685 int (*conv)(unsigned long *lvalp,
686 unsigned int *valp,
687 int write, void *data),
688 void *data)
689 {
690 unsigned long lval;
691 int err = 0;
692 size_t left;
693 bool neg;
694 char *p = buffer;
695
696 left = *lenp;
697
698 if (proc_first_pos_non_zero_ignore(ppos, table))
699 goto bail_early;
700
701 if (left > PAGE_SIZE - 1)
702 left = PAGE_SIZE - 1;
703
704 left -= proc_skip_spaces(&p);
705 if (!left) {
706 err = -EINVAL;
707 goto out_free;
708 }
709
710 err = proc_get_long(&p, &left, &lval, &neg,
711 proc_wspace_sep,
712 sizeof(proc_wspace_sep), NULL);
713 if (err || neg) {
714 err = -EINVAL;
715 goto out_free;
716 }
717
718 if (conv(&lval, tbl_data, 1, data)) {
719 err = -EINVAL;
720 goto out_free;
721 }
722
723 if (!err && left)
724 left -= proc_skip_spaces(&p);
725
726 out_free:
727 if (err)
728 return -EINVAL;
729
730 return 0;
731
732 /* This is in keeping with old __do_proc_dointvec() */
733 bail_early:
734 *ppos += *lenp;
735 return err;
736 }
737
do_proc_douintvec_r(unsigned int * tbl_data,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(unsigned long * lvalp,unsigned int * valp,int write,void * data),void * data)738 static int do_proc_douintvec_r(unsigned int *tbl_data, void *buffer,
739 size_t *lenp, loff_t *ppos,
740 int (*conv)(unsigned long *lvalp,
741 unsigned int *valp,
742 int write, void *data),
743 void *data)
744 {
745 unsigned long lval;
746 int err = 0;
747 size_t left;
748
749 left = *lenp;
750
751 if (conv(&lval, tbl_data, 0, data)) {
752 err = -EINVAL;
753 goto out;
754 }
755
756 proc_put_long(&buffer, &left, lval, false);
757 if (!left)
758 goto out;
759
760 proc_put_char(&buffer, &left, '\n');
761
762 out:
763 *lenp -= left;
764 *ppos += *lenp;
765
766 return err;
767 }
768
__do_proc_douintvec(void * tbl_data,struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(unsigned long * lvalp,unsigned int * valp,int write,void * data),void * data)769 static int __do_proc_douintvec(void *tbl_data, struct ctl_table *table,
770 int write, void *buffer,
771 size_t *lenp, loff_t *ppos,
772 int (*conv)(unsigned long *lvalp,
773 unsigned int *valp,
774 int write, void *data),
775 void *data)
776 {
777 unsigned int *i, vleft;
778
779 if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
780 *lenp = 0;
781 return 0;
782 }
783
784 i = (unsigned int *) tbl_data;
785 vleft = table->maxlen / sizeof(*i);
786
787 /*
788 * Arrays are not supported, keep this simple. *Do not* add
789 * support for them.
790 */
791 if (vleft != 1) {
792 *lenp = 0;
793 return -EINVAL;
794 }
795
796 if (!conv)
797 conv = do_proc_douintvec_conv;
798
799 if (write)
800 return do_proc_douintvec_w(i, table, buffer, lenp, ppos,
801 conv, data);
802 return do_proc_douintvec_r(i, buffer, lenp, ppos, conv, data);
803 }
804
do_proc_douintvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,int (* conv)(unsigned long * lvalp,unsigned int * valp,int write,void * data),void * data)805 static int do_proc_douintvec(struct ctl_table *table, int write,
806 void *buffer, size_t *lenp, loff_t *ppos,
807 int (*conv)(unsigned long *lvalp,
808 unsigned int *valp,
809 int write, void *data),
810 void *data)
811 {
812 return __do_proc_douintvec(table->data, table, write,
813 buffer, lenp, ppos, conv, data);
814 }
815
816 /**
817 * proc_dobool - read/write a bool
818 * @table: the sysctl table
819 * @write: %TRUE if this is a write to the sysctl file
820 * @buffer: the user buffer
821 * @lenp: the size of the user buffer
822 * @ppos: file position
823 *
824 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
825 * values from/to the user buffer, treated as an ASCII string.
826 *
827 * Returns 0 on success.
828 */
proc_dobool(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)829 int proc_dobool(struct ctl_table *table, int write, void *buffer,
830 size_t *lenp, loff_t *ppos)
831 {
832 return do_proc_dointvec(table, write, buffer, lenp, ppos,
833 do_proc_dobool_conv, NULL);
834 }
835
836 /**
837 * proc_dointvec - read a vector of integers
838 * @table: the sysctl table
839 * @write: %TRUE if this is a write to the sysctl file
840 * @buffer: the user buffer
841 * @lenp: the size of the user buffer
842 * @ppos: file position
843 *
844 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
845 * values from/to the user buffer, treated as an ASCII string.
846 *
847 * Returns 0 on success.
848 */
proc_dointvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)849 int proc_dointvec(struct ctl_table *table, int write, void *buffer,
850 size_t *lenp, loff_t *ppos)
851 {
852 return do_proc_dointvec(table, write, buffer, lenp, ppos, NULL, NULL);
853 }
854
855 #ifdef CONFIG_COMPACTION
proc_dointvec_minmax_warn_RT_change(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)856 static int proc_dointvec_minmax_warn_RT_change(struct ctl_table *table,
857 int write, void *buffer, size_t *lenp, loff_t *ppos)
858 {
859 int ret, old;
860
861 if (!IS_ENABLED(CONFIG_PREEMPT_RT) || !write)
862 return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
863
864 old = *(int *)table->data;
865 ret = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
866 if (ret)
867 return ret;
868 if (old != *(int *)table->data)
869 pr_warn_once("sysctl attribute %s changed by %s[%d]\n",
870 table->procname, current->comm,
871 task_pid_nr(current));
872 return ret;
873 }
874 #endif
875
876 /**
877 * proc_douintvec - read a vector of unsigned integers
878 * @table: the sysctl table
879 * @write: %TRUE if this is a write to the sysctl file
880 * @buffer: the user buffer
881 * @lenp: the size of the user buffer
882 * @ppos: file position
883 *
884 * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
885 * values from/to the user buffer, treated as an ASCII string.
886 *
887 * Returns 0 on success.
888 */
proc_douintvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)889 int proc_douintvec(struct ctl_table *table, int write, void *buffer,
890 size_t *lenp, loff_t *ppos)
891 {
892 return do_proc_douintvec(table, write, buffer, lenp, ppos,
893 do_proc_douintvec_conv, NULL);
894 }
895
896 /*
897 * Taint values can only be increased
898 * This means we can safely use a temporary.
899 */
proc_taint(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)900 static int proc_taint(struct ctl_table *table, int write,
901 void *buffer, size_t *lenp, loff_t *ppos)
902 {
903 struct ctl_table t;
904 unsigned long tmptaint = get_taint();
905 int err;
906
907 if (write && !capable(CAP_SYS_ADMIN))
908 return -EPERM;
909
910 t = *table;
911 t.data = &tmptaint;
912 err = proc_doulongvec_minmax(&t, write, buffer, lenp, ppos);
913 if (err < 0)
914 return err;
915
916 if (write) {
917 int i;
918
919 /*
920 * If we are relying on panic_on_taint not producing
921 * false positives due to userspace input, bail out
922 * before setting the requested taint flags.
923 */
924 if (panic_on_taint_nousertaint && (tmptaint & panic_on_taint))
925 return -EINVAL;
926
927 /*
928 * Poor man's atomic or. Not worth adding a primitive
929 * to everyone's atomic.h for this
930 */
931 for (i = 0; i < TAINT_FLAGS_COUNT; i++)
932 if ((1UL << i) & tmptaint)
933 add_taint(i, LOCKDEP_STILL_OK);
934 }
935
936 return err;
937 }
938
939 #ifdef CONFIG_PRINTK
proc_dointvec_minmax_sysadmin(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)940 static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
941 void *buffer, size_t *lenp, loff_t *ppos)
942 {
943 if (write && !capable(CAP_SYS_ADMIN))
944 return -EPERM;
945
946 return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
947 }
948 #endif
949
950 /**
951 * struct do_proc_dointvec_minmax_conv_param - proc_dointvec_minmax() range checking structure
952 * @min: pointer to minimum allowable value
953 * @max: pointer to maximum allowable value
954 *
955 * The do_proc_dointvec_minmax_conv_param structure provides the
956 * minimum and maximum values for doing range checking for those sysctl
957 * parameters that use the proc_dointvec_minmax() handler.
958 */
959 struct do_proc_dointvec_minmax_conv_param {
960 int *min;
961 int *max;
962 };
963
do_proc_dointvec_minmax_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)964 static int do_proc_dointvec_minmax_conv(bool *negp, unsigned long *lvalp,
965 int *valp,
966 int write, void *data)
967 {
968 int tmp, ret;
969 struct do_proc_dointvec_minmax_conv_param *param = data;
970 /*
971 * If writing, first do so via a temporary local int so we can
972 * bounds-check it before touching *valp.
973 */
974 int *ip = write ? &tmp : valp;
975
976 ret = do_proc_dointvec_conv(negp, lvalp, ip, write, data);
977 if (ret)
978 return ret;
979
980 if (write) {
981 if ((param->min && *param->min > tmp) ||
982 (param->max && *param->max < tmp))
983 return -EINVAL;
984 *valp = tmp;
985 }
986
987 return 0;
988 }
989
990 /**
991 * proc_dointvec_minmax - read a vector of integers with min/max values
992 * @table: the sysctl table
993 * @write: %TRUE if this is a write to the sysctl file
994 * @buffer: the user buffer
995 * @lenp: the size of the user buffer
996 * @ppos: file position
997 *
998 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
999 * values from/to the user buffer, treated as an ASCII string.
1000 *
1001 * This routine will ensure the values are within the range specified by
1002 * table->extra1 (min) and table->extra2 (max).
1003 *
1004 * Returns 0 on success or -EINVAL on write when the range check fails.
1005 */
proc_dointvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1006 int proc_dointvec_minmax(struct ctl_table *table, int write,
1007 void *buffer, size_t *lenp, loff_t *ppos)
1008 {
1009 struct do_proc_dointvec_minmax_conv_param param = {
1010 .min = (int *) table->extra1,
1011 .max = (int *) table->extra2,
1012 };
1013 return do_proc_dointvec(table, write, buffer, lenp, ppos,
1014 do_proc_dointvec_minmax_conv, ¶m);
1015 }
1016
1017 /**
1018 * struct do_proc_douintvec_minmax_conv_param - proc_douintvec_minmax() range checking structure
1019 * @min: pointer to minimum allowable value
1020 * @max: pointer to maximum allowable value
1021 *
1022 * The do_proc_douintvec_minmax_conv_param structure provides the
1023 * minimum and maximum values for doing range checking for those sysctl
1024 * parameters that use the proc_douintvec_minmax() handler.
1025 */
1026 struct do_proc_douintvec_minmax_conv_param {
1027 unsigned int *min;
1028 unsigned int *max;
1029 };
1030
do_proc_douintvec_minmax_conv(unsigned long * lvalp,unsigned int * valp,int write,void * data)1031 static int do_proc_douintvec_minmax_conv(unsigned long *lvalp,
1032 unsigned int *valp,
1033 int write, void *data)
1034 {
1035 int ret;
1036 unsigned int tmp;
1037 struct do_proc_douintvec_minmax_conv_param *param = data;
1038 /* write via temporary local uint for bounds-checking */
1039 unsigned int *up = write ? &tmp : valp;
1040
1041 ret = do_proc_douintvec_conv(lvalp, up, write, data);
1042 if (ret)
1043 return ret;
1044
1045 if (write) {
1046 if ((param->min && *param->min > tmp) ||
1047 (param->max && *param->max < tmp))
1048 return -ERANGE;
1049
1050 *valp = tmp;
1051 }
1052
1053 return 0;
1054 }
1055
1056 /**
1057 * proc_douintvec_minmax - read a vector of unsigned ints with min/max values
1058 * @table: the sysctl table
1059 * @write: %TRUE if this is a write to the sysctl file
1060 * @buffer: the user buffer
1061 * @lenp: the size of the user buffer
1062 * @ppos: file position
1063 *
1064 * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
1065 * values from/to the user buffer, treated as an ASCII string. Negative
1066 * strings are not allowed.
1067 *
1068 * This routine will ensure the values are within the range specified by
1069 * table->extra1 (min) and table->extra2 (max). There is a final sanity
1070 * check for UINT_MAX to avoid having to support wrap around uses from
1071 * userspace.
1072 *
1073 * Returns 0 on success or -ERANGE on write when the range check fails.
1074 */
proc_douintvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1075 int proc_douintvec_minmax(struct ctl_table *table, int write,
1076 void *buffer, size_t *lenp, loff_t *ppos)
1077 {
1078 struct do_proc_douintvec_minmax_conv_param param = {
1079 .min = (unsigned int *) table->extra1,
1080 .max = (unsigned int *) table->extra2,
1081 };
1082 return do_proc_douintvec(table, write, buffer, lenp, ppos,
1083 do_proc_douintvec_minmax_conv, ¶m);
1084 }
1085
1086 /**
1087 * proc_dou8vec_minmax - read a vector of unsigned chars with min/max values
1088 * @table: the sysctl table
1089 * @write: %TRUE if this is a write to the sysctl file
1090 * @buffer: the user buffer
1091 * @lenp: the size of the user buffer
1092 * @ppos: file position
1093 *
1094 * Reads/writes up to table->maxlen/sizeof(u8) unsigned chars
1095 * values from/to the user buffer, treated as an ASCII string. Negative
1096 * strings are not allowed.
1097 *
1098 * This routine will ensure the values are within the range specified by
1099 * table->extra1 (min) and table->extra2 (max).
1100 *
1101 * Returns 0 on success or an error on write when the range check fails.
1102 */
proc_dou8vec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1103 int proc_dou8vec_minmax(struct ctl_table *table, int write,
1104 void *buffer, size_t *lenp, loff_t *ppos)
1105 {
1106 struct ctl_table tmp;
1107 unsigned int min = 0, max = 255U, val;
1108 u8 *data = table->data;
1109 struct do_proc_douintvec_minmax_conv_param param = {
1110 .min = &min,
1111 .max = &max,
1112 };
1113 int res;
1114
1115 /* Do not support arrays yet. */
1116 if (table->maxlen != sizeof(u8))
1117 return -EINVAL;
1118
1119 if (table->extra1) {
1120 min = *(unsigned int *) table->extra1;
1121 if (min > 255U)
1122 return -EINVAL;
1123 }
1124 if (table->extra2) {
1125 max = *(unsigned int *) table->extra2;
1126 if (max > 255U)
1127 return -EINVAL;
1128 }
1129
1130 tmp = *table;
1131
1132 tmp.maxlen = sizeof(val);
1133 tmp.data = &val;
1134 val = *data;
1135 res = do_proc_douintvec(&tmp, write, buffer, lenp, ppos,
1136 do_proc_douintvec_minmax_conv, ¶m);
1137 if (res)
1138 return res;
1139 if (write)
1140 *data = val;
1141 return 0;
1142 }
1143 EXPORT_SYMBOL_GPL(proc_dou8vec_minmax);
1144
do_proc_dopipe_max_size_conv(unsigned long * lvalp,unsigned int * valp,int write,void * data)1145 static int do_proc_dopipe_max_size_conv(unsigned long *lvalp,
1146 unsigned int *valp,
1147 int write, void *data)
1148 {
1149 if (write) {
1150 unsigned int val;
1151
1152 val = round_pipe_size(*lvalp);
1153 if (val == 0)
1154 return -EINVAL;
1155
1156 *valp = val;
1157 } else {
1158 unsigned int val = *valp;
1159 *lvalp = (unsigned long) val;
1160 }
1161
1162 return 0;
1163 }
1164
proc_dopipe_max_size(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1165 static int proc_dopipe_max_size(struct ctl_table *table, int write,
1166 void *buffer, size_t *lenp, loff_t *ppos)
1167 {
1168 return do_proc_douintvec(table, write, buffer, lenp, ppos,
1169 do_proc_dopipe_max_size_conv, NULL);
1170 }
1171
validate_coredump_safety(void)1172 static void validate_coredump_safety(void)
1173 {
1174 #ifdef CONFIG_COREDUMP
1175 if (suid_dumpable == SUID_DUMP_ROOT &&
1176 core_pattern[0] != '/' && core_pattern[0] != '|') {
1177 printk(KERN_WARNING
1178 "Unsafe core_pattern used with fs.suid_dumpable=2.\n"
1179 "Pipe handler or fully qualified core dump path required.\n"
1180 "Set kernel.core_pattern before fs.suid_dumpable.\n"
1181 );
1182 }
1183 #endif
1184 }
1185
proc_dointvec_minmax_coredump(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1186 static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
1187 void *buffer, size_t *lenp, loff_t *ppos)
1188 {
1189 int error = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
1190 if (!error)
1191 validate_coredump_safety();
1192 return error;
1193 }
1194
1195 #ifdef CONFIG_COREDUMP
proc_dostring_coredump(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1196 static int proc_dostring_coredump(struct ctl_table *table, int write,
1197 void *buffer, size_t *lenp, loff_t *ppos)
1198 {
1199 int error = proc_dostring(table, write, buffer, lenp, ppos);
1200 if (!error)
1201 validate_coredump_safety();
1202 return error;
1203 }
1204 #endif
1205
1206 #ifdef CONFIG_MAGIC_SYSRQ
sysrq_sysctl_handler(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1207 static int sysrq_sysctl_handler(struct ctl_table *table, int write,
1208 void *buffer, size_t *lenp, loff_t *ppos)
1209 {
1210 int tmp, ret;
1211
1212 tmp = sysrq_mask();
1213
1214 ret = __do_proc_dointvec(&tmp, table, write, buffer,
1215 lenp, ppos, NULL, NULL);
1216 if (ret || !write)
1217 return ret;
1218
1219 if (write)
1220 sysrq_toggle_support(tmp);
1221
1222 return 0;
1223 }
1224 #endif
1225
__do_proc_doulongvec_minmax(void * data,struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,unsigned long convmul,unsigned long convdiv)1226 static int __do_proc_doulongvec_minmax(void *data, struct ctl_table *table,
1227 int write, void *buffer, size_t *lenp, loff_t *ppos,
1228 unsigned long convmul, unsigned long convdiv)
1229 {
1230 unsigned long *i, *min, *max;
1231 int vleft, first = 1, err = 0;
1232 size_t left;
1233 char *p;
1234
1235 if (!data || !table->maxlen || !*lenp || (*ppos && !write)) {
1236 *lenp = 0;
1237 return 0;
1238 }
1239
1240 i = (unsigned long *) data;
1241 min = (unsigned long *) table->extra1;
1242 max = (unsigned long *) table->extra2;
1243 vleft = table->maxlen / sizeof(unsigned long);
1244 left = *lenp;
1245
1246 if (write) {
1247 if (proc_first_pos_non_zero_ignore(ppos, table))
1248 goto out;
1249
1250 if (left > PAGE_SIZE - 1)
1251 left = PAGE_SIZE - 1;
1252 p = buffer;
1253 }
1254
1255 for (; left && vleft--; i++, first = 0) {
1256 unsigned long val;
1257
1258 if (write) {
1259 bool neg;
1260
1261 left -= proc_skip_spaces(&p);
1262 if (!left)
1263 break;
1264
1265 err = proc_get_long(&p, &left, &val, &neg,
1266 proc_wspace_sep,
1267 sizeof(proc_wspace_sep), NULL);
1268 if (err)
1269 break;
1270 if (neg)
1271 continue;
1272 val = convmul * val / convdiv;
1273 if ((min && val < *min) || (max && val > *max)) {
1274 err = -EINVAL;
1275 break;
1276 }
1277 *i = val;
1278 } else {
1279 val = convdiv * (*i) / convmul;
1280 if (!first)
1281 proc_put_char(&buffer, &left, '\t');
1282 proc_put_long(&buffer, &left, val, false);
1283 }
1284 }
1285
1286 if (!write && !first && left && !err)
1287 proc_put_char(&buffer, &left, '\n');
1288 if (write && !err)
1289 left -= proc_skip_spaces(&p);
1290 if (write && first)
1291 return err ? : -EINVAL;
1292 *lenp -= left;
1293 out:
1294 *ppos += *lenp;
1295 return err;
1296 }
1297
do_proc_doulongvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos,unsigned long convmul,unsigned long convdiv)1298 static int do_proc_doulongvec_minmax(struct ctl_table *table, int write,
1299 void *buffer, size_t *lenp, loff_t *ppos, unsigned long convmul,
1300 unsigned long convdiv)
1301 {
1302 return __do_proc_doulongvec_minmax(table->data, table, write,
1303 buffer, lenp, ppos, convmul, convdiv);
1304 }
1305
1306 /**
1307 * proc_doulongvec_minmax - read a vector of long integers with min/max values
1308 * @table: the sysctl table
1309 * @write: %TRUE if this is a write to the sysctl file
1310 * @buffer: the user buffer
1311 * @lenp: the size of the user buffer
1312 * @ppos: file position
1313 *
1314 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
1315 * values from/to the user buffer, treated as an ASCII string.
1316 *
1317 * This routine will ensure the values are within the range specified by
1318 * table->extra1 (min) and table->extra2 (max).
1319 *
1320 * Returns 0 on success.
1321 */
proc_doulongvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1322 int proc_doulongvec_minmax(struct ctl_table *table, int write,
1323 void *buffer, size_t *lenp, loff_t *ppos)
1324 {
1325 return do_proc_doulongvec_minmax(table, write, buffer, lenp, ppos, 1l, 1l);
1326 }
1327
1328 /**
1329 * proc_doulongvec_ms_jiffies_minmax - read a vector of millisecond values with min/max values
1330 * @table: the sysctl table
1331 * @write: %TRUE if this is a write to the sysctl file
1332 * @buffer: the user buffer
1333 * @lenp: the size of the user buffer
1334 * @ppos: file position
1335 *
1336 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
1337 * values from/to the user buffer, treated as an ASCII string. The values
1338 * are treated as milliseconds, and converted to jiffies when they are stored.
1339 *
1340 * This routine will ensure the values are within the range specified by
1341 * table->extra1 (min) and table->extra2 (max).
1342 *
1343 * Returns 0 on success.
1344 */
proc_doulongvec_ms_jiffies_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1345 int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
1346 void *buffer, size_t *lenp, loff_t *ppos)
1347 {
1348 return do_proc_doulongvec_minmax(table, write, buffer,
1349 lenp, ppos, HZ, 1000l);
1350 }
1351
1352
do_proc_dointvec_jiffies_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)1353 static int do_proc_dointvec_jiffies_conv(bool *negp, unsigned long *lvalp,
1354 int *valp,
1355 int write, void *data)
1356 {
1357 if (write) {
1358 if (*lvalp > INT_MAX / HZ)
1359 return 1;
1360 *valp = *negp ? -(*lvalp*HZ) : (*lvalp*HZ);
1361 } else {
1362 int val = *valp;
1363 unsigned long lval;
1364 if (val < 0) {
1365 *negp = true;
1366 lval = -(unsigned long)val;
1367 } else {
1368 *negp = false;
1369 lval = (unsigned long)val;
1370 }
1371 *lvalp = lval / HZ;
1372 }
1373 return 0;
1374 }
1375
do_proc_dointvec_userhz_jiffies_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)1376 static int do_proc_dointvec_userhz_jiffies_conv(bool *negp, unsigned long *lvalp,
1377 int *valp,
1378 int write, void *data)
1379 {
1380 if (write) {
1381 if (USER_HZ < HZ && *lvalp > (LONG_MAX / HZ) * USER_HZ)
1382 return 1;
1383 *valp = clock_t_to_jiffies(*negp ? -*lvalp : *lvalp);
1384 } else {
1385 int val = *valp;
1386 unsigned long lval;
1387 if (val < 0) {
1388 *negp = true;
1389 lval = -(unsigned long)val;
1390 } else {
1391 *negp = false;
1392 lval = (unsigned long)val;
1393 }
1394 *lvalp = jiffies_to_clock_t(lval);
1395 }
1396 return 0;
1397 }
1398
do_proc_dointvec_ms_jiffies_conv(bool * negp,unsigned long * lvalp,int * valp,int write,void * data)1399 static int do_proc_dointvec_ms_jiffies_conv(bool *negp, unsigned long *lvalp,
1400 int *valp,
1401 int write, void *data)
1402 {
1403 if (write) {
1404 unsigned long jif = msecs_to_jiffies(*negp ? -*lvalp : *lvalp);
1405
1406 if (jif > INT_MAX)
1407 return 1;
1408 *valp = (int)jif;
1409 } else {
1410 int val = *valp;
1411 unsigned long lval;
1412 if (val < 0) {
1413 *negp = true;
1414 lval = -(unsigned long)val;
1415 } else {
1416 *negp = false;
1417 lval = (unsigned long)val;
1418 }
1419 *lvalp = jiffies_to_msecs(lval);
1420 }
1421 return 0;
1422 }
1423
1424 /**
1425 * proc_dointvec_jiffies - read a vector of integers as seconds
1426 * @table: the sysctl table
1427 * @write: %TRUE if this is a write to the sysctl file
1428 * @buffer: the user buffer
1429 * @lenp: the size of the user buffer
1430 * @ppos: file position
1431 *
1432 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1433 * values from/to the user buffer, treated as an ASCII string.
1434 * The values read are assumed to be in seconds, and are converted into
1435 * jiffies.
1436 *
1437 * Returns 0 on success.
1438 */
proc_dointvec_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1439 int proc_dointvec_jiffies(struct ctl_table *table, int write,
1440 void *buffer, size_t *lenp, loff_t *ppos)
1441 {
1442 return do_proc_dointvec(table,write,buffer,lenp,ppos,
1443 do_proc_dointvec_jiffies_conv,NULL);
1444 }
1445
1446 /**
1447 * proc_dointvec_userhz_jiffies - read a vector of integers as 1/USER_HZ seconds
1448 * @table: the sysctl table
1449 * @write: %TRUE if this is a write to the sysctl file
1450 * @buffer: the user buffer
1451 * @lenp: the size of the user buffer
1452 * @ppos: pointer to the file position
1453 *
1454 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1455 * values from/to the user buffer, treated as an ASCII string.
1456 * The values read are assumed to be in 1/USER_HZ seconds, and
1457 * are converted into jiffies.
1458 *
1459 * Returns 0 on success.
1460 */
proc_dointvec_userhz_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1461 int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
1462 void *buffer, size_t *lenp, loff_t *ppos)
1463 {
1464 return do_proc_dointvec(table,write,buffer,lenp,ppos,
1465 do_proc_dointvec_userhz_jiffies_conv,NULL);
1466 }
1467
1468 /**
1469 * proc_dointvec_ms_jiffies - read a vector of integers as 1 milliseconds
1470 * @table: the sysctl table
1471 * @write: %TRUE if this is a write to the sysctl file
1472 * @buffer: the user buffer
1473 * @lenp: the size of the user buffer
1474 * @ppos: file position
1475 * @ppos: the current position in the file
1476 *
1477 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1478 * values from/to the user buffer, treated as an ASCII string.
1479 * The values read are assumed to be in 1/1000 seconds, and
1480 * are converted into jiffies.
1481 *
1482 * Returns 0 on success.
1483 */
proc_dointvec_ms_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1484 int proc_dointvec_ms_jiffies(struct ctl_table *table, int write, void *buffer,
1485 size_t *lenp, loff_t *ppos)
1486 {
1487 return do_proc_dointvec(table, write, buffer, lenp, ppos,
1488 do_proc_dointvec_ms_jiffies_conv, NULL);
1489 }
1490
proc_do_cad_pid(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1491 static int proc_do_cad_pid(struct ctl_table *table, int write, void *buffer,
1492 size_t *lenp, loff_t *ppos)
1493 {
1494 struct pid *new_pid;
1495 pid_t tmp;
1496 int r;
1497
1498 tmp = pid_vnr(cad_pid);
1499
1500 r = __do_proc_dointvec(&tmp, table, write, buffer,
1501 lenp, ppos, NULL, NULL);
1502 if (r || !write)
1503 return r;
1504
1505 new_pid = find_get_pid(tmp);
1506 if (!new_pid)
1507 return -ESRCH;
1508
1509 put_pid(xchg(&cad_pid, new_pid));
1510 return 0;
1511 }
1512
1513 /**
1514 * proc_do_large_bitmap - read/write from/to a large bitmap
1515 * @table: the sysctl table
1516 * @write: %TRUE if this is a write to the sysctl file
1517 * @buffer: the user buffer
1518 * @lenp: the size of the user buffer
1519 * @ppos: file position
1520 *
1521 * The bitmap is stored at table->data and the bitmap length (in bits)
1522 * in table->maxlen.
1523 *
1524 * We use a range comma separated format (e.g. 1,3-4,10-10) so that
1525 * large bitmaps may be represented in a compact manner. Writing into
1526 * the file will clear the bitmap then update it with the given input.
1527 *
1528 * Returns 0 on success.
1529 */
proc_do_large_bitmap(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1530 int proc_do_large_bitmap(struct ctl_table *table, int write,
1531 void *buffer, size_t *lenp, loff_t *ppos)
1532 {
1533 int err = 0;
1534 size_t left = *lenp;
1535 unsigned long bitmap_len = table->maxlen;
1536 unsigned long *bitmap = *(unsigned long **) table->data;
1537 unsigned long *tmp_bitmap = NULL;
1538 char tr_a[] = { '-', ',', '\n' }, tr_b[] = { ',', '\n', 0 }, c;
1539
1540 if (!bitmap || !bitmap_len || !left || (*ppos && !write)) {
1541 *lenp = 0;
1542 return 0;
1543 }
1544
1545 if (write) {
1546 char *p = buffer;
1547 size_t skipped = 0;
1548
1549 if (left > PAGE_SIZE - 1) {
1550 left = PAGE_SIZE - 1;
1551 /* How much of the buffer we'll skip this pass */
1552 skipped = *lenp - left;
1553 }
1554
1555 tmp_bitmap = bitmap_zalloc(bitmap_len, GFP_KERNEL);
1556 if (!tmp_bitmap)
1557 return -ENOMEM;
1558 proc_skip_char(&p, &left, '\n');
1559 while (!err && left) {
1560 unsigned long val_a, val_b;
1561 bool neg;
1562 size_t saved_left;
1563
1564 /* In case we stop parsing mid-number, we can reset */
1565 saved_left = left;
1566 err = proc_get_long(&p, &left, &val_a, &neg, tr_a,
1567 sizeof(tr_a), &c);
1568 /*
1569 * If we consumed the entirety of a truncated buffer or
1570 * only one char is left (may be a "-"), then stop here,
1571 * reset, & come back for more.
1572 */
1573 if ((left <= 1) && skipped) {
1574 left = saved_left;
1575 break;
1576 }
1577
1578 if (err)
1579 break;
1580 if (val_a >= bitmap_len || neg) {
1581 err = -EINVAL;
1582 break;
1583 }
1584
1585 val_b = val_a;
1586 if (left) {
1587 p++;
1588 left--;
1589 }
1590
1591 if (c == '-') {
1592 err = proc_get_long(&p, &left, &val_b,
1593 &neg, tr_b, sizeof(tr_b),
1594 &c);
1595 /*
1596 * If we consumed all of a truncated buffer or
1597 * then stop here, reset, & come back for more.
1598 */
1599 if (!left && skipped) {
1600 left = saved_left;
1601 break;
1602 }
1603
1604 if (err)
1605 break;
1606 if (val_b >= bitmap_len || neg ||
1607 val_a > val_b) {
1608 err = -EINVAL;
1609 break;
1610 }
1611 if (left) {
1612 p++;
1613 left--;
1614 }
1615 }
1616
1617 bitmap_set(tmp_bitmap, val_a, val_b - val_a + 1);
1618 proc_skip_char(&p, &left, '\n');
1619 }
1620 left += skipped;
1621 } else {
1622 unsigned long bit_a, bit_b = 0;
1623 bool first = 1;
1624
1625 while (left) {
1626 bit_a = find_next_bit(bitmap, bitmap_len, bit_b);
1627 if (bit_a >= bitmap_len)
1628 break;
1629 bit_b = find_next_zero_bit(bitmap, bitmap_len,
1630 bit_a + 1) - 1;
1631
1632 if (!first)
1633 proc_put_char(&buffer, &left, ',');
1634 proc_put_long(&buffer, &left, bit_a, false);
1635 if (bit_a != bit_b) {
1636 proc_put_char(&buffer, &left, '-');
1637 proc_put_long(&buffer, &left, bit_b, false);
1638 }
1639
1640 first = 0; bit_b++;
1641 }
1642 proc_put_char(&buffer, &left, '\n');
1643 }
1644
1645 if (!err) {
1646 if (write) {
1647 if (*ppos)
1648 bitmap_or(bitmap, bitmap, tmp_bitmap, bitmap_len);
1649 else
1650 bitmap_copy(bitmap, tmp_bitmap, bitmap_len);
1651 }
1652 *lenp -= left;
1653 *ppos += *lenp;
1654 }
1655
1656 bitmap_free(tmp_bitmap);
1657 return err;
1658 }
1659
1660 #else /* CONFIG_PROC_SYSCTL */
1661
proc_dostring(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1662 int proc_dostring(struct ctl_table *table, int write,
1663 void *buffer, size_t *lenp, loff_t *ppos)
1664 {
1665 return -ENOSYS;
1666 }
1667
proc_dobool(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1668 int proc_dobool(struct ctl_table *table, int write,
1669 void *buffer, size_t *lenp, loff_t *ppos)
1670 {
1671 return -ENOSYS;
1672 }
1673
proc_dointvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1674 int proc_dointvec(struct ctl_table *table, int write,
1675 void *buffer, size_t *lenp, loff_t *ppos)
1676 {
1677 return -ENOSYS;
1678 }
1679
proc_douintvec(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1680 int proc_douintvec(struct ctl_table *table, int write,
1681 void *buffer, size_t *lenp, loff_t *ppos)
1682 {
1683 return -ENOSYS;
1684 }
1685
proc_dointvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1686 int proc_dointvec_minmax(struct ctl_table *table, int write,
1687 void *buffer, size_t *lenp, loff_t *ppos)
1688 {
1689 return -ENOSYS;
1690 }
1691
proc_douintvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1692 int proc_douintvec_minmax(struct ctl_table *table, int write,
1693 void *buffer, size_t *lenp, loff_t *ppos)
1694 {
1695 return -ENOSYS;
1696 }
1697
proc_dou8vec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1698 int proc_dou8vec_minmax(struct ctl_table *table, int write,
1699 void *buffer, size_t *lenp, loff_t *ppos)
1700 {
1701 return -ENOSYS;
1702 }
1703
proc_dointvec_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1704 int proc_dointvec_jiffies(struct ctl_table *table, int write,
1705 void *buffer, size_t *lenp, loff_t *ppos)
1706 {
1707 return -ENOSYS;
1708 }
1709
proc_dointvec_userhz_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1710 int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
1711 void *buffer, size_t *lenp, loff_t *ppos)
1712 {
1713 return -ENOSYS;
1714 }
1715
proc_dointvec_ms_jiffies(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1716 int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
1717 void *buffer, size_t *lenp, loff_t *ppos)
1718 {
1719 return -ENOSYS;
1720 }
1721
proc_doulongvec_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1722 int proc_doulongvec_minmax(struct ctl_table *table, int write,
1723 void *buffer, size_t *lenp, loff_t *ppos)
1724 {
1725 return -ENOSYS;
1726 }
1727
proc_doulongvec_ms_jiffies_minmax(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1728 int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
1729 void *buffer, size_t *lenp, loff_t *ppos)
1730 {
1731 return -ENOSYS;
1732 }
1733
proc_do_large_bitmap(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1734 int proc_do_large_bitmap(struct ctl_table *table, int write,
1735 void *buffer, size_t *lenp, loff_t *ppos)
1736 {
1737 return -ENOSYS;
1738 }
1739
1740 #endif /* CONFIG_PROC_SYSCTL */
1741
1742 #if defined(CONFIG_SYSCTL)
proc_do_static_key(struct ctl_table * table,int write,void * buffer,size_t * lenp,loff_t * ppos)1743 int proc_do_static_key(struct ctl_table *table, int write,
1744 void *buffer, size_t *lenp, loff_t *ppos)
1745 {
1746 struct static_key *key = (struct static_key *)table->data;
1747 static DEFINE_MUTEX(static_key_mutex);
1748 int val, ret;
1749 struct ctl_table tmp = {
1750 .data = &val,
1751 .maxlen = sizeof(val),
1752 .mode = table->mode,
1753 .extra1 = SYSCTL_ZERO,
1754 .extra2 = SYSCTL_ONE,
1755 };
1756
1757 if (write && !capable(CAP_SYS_ADMIN))
1758 return -EPERM;
1759
1760 mutex_lock(&static_key_mutex);
1761 val = static_key_enabled(key);
1762 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
1763 if (write && !ret) {
1764 if (val)
1765 static_key_enable(key);
1766 else
1767 static_key_disable(key);
1768 }
1769 mutex_unlock(&static_key_mutex);
1770 return ret;
1771 }
1772
1773 static struct ctl_table kern_table[] = {
1774 {
1775 .procname = "sched_child_runs_first",
1776 .data = &sysctl_sched_child_runs_first,
1777 .maxlen = sizeof(unsigned int),
1778 .mode = 0644,
1779 .proc_handler = proc_dointvec,
1780 },
1781 #ifdef CONFIG_SCHEDSTATS
1782 {
1783 .procname = "sched_schedstats",
1784 .data = NULL,
1785 .maxlen = sizeof(unsigned int),
1786 .mode = 0644,
1787 .proc_handler = sysctl_schedstats,
1788 .extra1 = SYSCTL_ZERO,
1789 .extra2 = SYSCTL_ONE,
1790 },
1791 #endif /* CONFIG_SCHEDSTATS */
1792 #ifdef CONFIG_TASK_DELAY_ACCT
1793 {
1794 .procname = "task_delayacct",
1795 .data = NULL,
1796 .maxlen = sizeof(unsigned int),
1797 .mode = 0644,
1798 .proc_handler = sysctl_delayacct,
1799 .extra1 = SYSCTL_ZERO,
1800 .extra2 = SYSCTL_ONE,
1801 },
1802 #endif /* CONFIG_TASK_DELAY_ACCT */
1803 #ifdef CONFIG_NUMA_BALANCING
1804 {
1805 .procname = "numa_balancing",
1806 .data = NULL, /* filled in by handler */
1807 .maxlen = sizeof(unsigned int),
1808 .mode = 0644,
1809 .proc_handler = sysctl_numa_balancing,
1810 .extra1 = SYSCTL_ZERO,
1811 .extra2 = SYSCTL_ONE,
1812 },
1813 #endif /* CONFIG_NUMA_BALANCING */
1814 {
1815 .procname = "sched_rt_period_us",
1816 .data = &sysctl_sched_rt_period,
1817 .maxlen = sizeof(unsigned int),
1818 .mode = 0644,
1819 .proc_handler = sched_rt_handler,
1820 },
1821 {
1822 .procname = "sched_rt_runtime_us",
1823 .data = &sysctl_sched_rt_runtime,
1824 .maxlen = sizeof(int),
1825 .mode = 0644,
1826 .proc_handler = sched_rt_handler,
1827 },
1828 {
1829 .procname = "sched_deadline_period_max_us",
1830 .data = &sysctl_sched_dl_period_max,
1831 .maxlen = sizeof(unsigned int),
1832 .mode = 0644,
1833 .proc_handler = proc_dointvec,
1834 },
1835 {
1836 .procname = "sched_deadline_period_min_us",
1837 .data = &sysctl_sched_dl_period_min,
1838 .maxlen = sizeof(unsigned int),
1839 .mode = 0644,
1840 .proc_handler = proc_dointvec,
1841 },
1842 {
1843 .procname = "sched_rr_timeslice_ms",
1844 .data = &sysctl_sched_rr_timeslice,
1845 .maxlen = sizeof(int),
1846 .mode = 0644,
1847 .proc_handler = sched_rr_handler,
1848 },
1849 #ifdef CONFIG_UCLAMP_TASK
1850 {
1851 .procname = "sched_util_clamp_min",
1852 .data = &sysctl_sched_uclamp_util_min,
1853 .maxlen = sizeof(unsigned int),
1854 .mode = 0644,
1855 .proc_handler = sysctl_sched_uclamp_handler,
1856 },
1857 {
1858 .procname = "sched_util_clamp_max",
1859 .data = &sysctl_sched_uclamp_util_max,
1860 .maxlen = sizeof(unsigned int),
1861 .mode = 0644,
1862 .proc_handler = sysctl_sched_uclamp_handler,
1863 },
1864 {
1865 .procname = "sched_util_clamp_min_rt_default",
1866 .data = &sysctl_sched_uclamp_util_min_rt_default,
1867 .maxlen = sizeof(unsigned int),
1868 .mode = 0644,
1869 .proc_handler = sysctl_sched_uclamp_handler,
1870 },
1871 #endif
1872 #ifdef CONFIG_SCHED_AUTOGROUP
1873 {
1874 .procname = "sched_autogroup_enabled",
1875 .data = &sysctl_sched_autogroup_enabled,
1876 .maxlen = sizeof(unsigned int),
1877 .mode = 0644,
1878 .proc_handler = proc_dointvec_minmax,
1879 .extra1 = SYSCTL_ZERO,
1880 .extra2 = SYSCTL_ONE,
1881 },
1882 #endif
1883 #ifdef CONFIG_CFS_BANDWIDTH
1884 {
1885 .procname = "sched_cfs_bandwidth_slice_us",
1886 .data = &sysctl_sched_cfs_bandwidth_slice,
1887 .maxlen = sizeof(unsigned int),
1888 .mode = 0644,
1889 .proc_handler = proc_dointvec_minmax,
1890 .extra1 = SYSCTL_ONE,
1891 },
1892 #endif
1893 #if defined(CONFIG_ENERGY_MODEL) && defined(CONFIG_CPU_FREQ_GOV_SCHEDUTIL)
1894 {
1895 .procname = "sched_energy_aware",
1896 .data = &sysctl_sched_energy_aware,
1897 .maxlen = sizeof(unsigned int),
1898 .mode = 0644,
1899 .proc_handler = sched_energy_aware_handler,
1900 .extra1 = SYSCTL_ZERO,
1901 .extra2 = SYSCTL_ONE,
1902 },
1903 #endif
1904 #ifdef CONFIG_PROVE_LOCKING
1905 {
1906 .procname = "prove_locking",
1907 .data = &prove_locking,
1908 .maxlen = sizeof(int),
1909 .mode = 0644,
1910 .proc_handler = proc_dointvec,
1911 },
1912 #endif
1913 #ifdef CONFIG_LOCK_STAT
1914 {
1915 .procname = "lock_stat",
1916 .data = &lock_stat,
1917 .maxlen = sizeof(int),
1918 .mode = 0644,
1919 .proc_handler = proc_dointvec,
1920 },
1921 #endif
1922 {
1923 .procname = "panic",
1924 .data = &panic_timeout,
1925 .maxlen = sizeof(int),
1926 .mode = 0644,
1927 .proc_handler = proc_dointvec,
1928 },
1929 #ifdef CONFIG_COREDUMP
1930 {
1931 .procname = "core_uses_pid",
1932 .data = &core_uses_pid,
1933 .maxlen = sizeof(int),
1934 .mode = 0644,
1935 .proc_handler = proc_dointvec,
1936 },
1937 {
1938 .procname = "core_pattern",
1939 .data = core_pattern,
1940 .maxlen = CORENAME_MAX_SIZE,
1941 .mode = 0644,
1942 .proc_handler = proc_dostring_coredump,
1943 },
1944 {
1945 .procname = "core_pipe_limit",
1946 .data = &core_pipe_limit,
1947 .maxlen = sizeof(unsigned int),
1948 .mode = 0644,
1949 .proc_handler = proc_dointvec,
1950 },
1951 #endif
1952 #ifdef CONFIG_PROC_SYSCTL
1953 {
1954 .procname = "tainted",
1955 .maxlen = sizeof(long),
1956 .mode = 0644,
1957 .proc_handler = proc_taint,
1958 },
1959 {
1960 .procname = "sysctl_writes_strict",
1961 .data = &sysctl_writes_strict,
1962 .maxlen = sizeof(int),
1963 .mode = 0644,
1964 .proc_handler = proc_dointvec_minmax,
1965 .extra1 = &neg_one,
1966 .extra2 = SYSCTL_ONE,
1967 },
1968 #endif
1969 #ifdef CONFIG_LATENCYTOP
1970 {
1971 .procname = "latencytop",
1972 .data = &latencytop_enabled,
1973 .maxlen = sizeof(int),
1974 .mode = 0644,
1975 .proc_handler = sysctl_latencytop,
1976 },
1977 #endif
1978 #ifdef CONFIG_BLK_DEV_INITRD
1979 {
1980 .procname = "real-root-dev",
1981 .data = &real_root_dev,
1982 .maxlen = sizeof(int),
1983 .mode = 0644,
1984 .proc_handler = proc_dointvec,
1985 },
1986 #endif
1987 {
1988 .procname = "print-fatal-signals",
1989 .data = &print_fatal_signals,
1990 .maxlen = sizeof(int),
1991 .mode = 0644,
1992 .proc_handler = proc_dointvec,
1993 },
1994 #ifdef CONFIG_SPARC
1995 {
1996 .procname = "reboot-cmd",
1997 .data = reboot_command,
1998 .maxlen = 256,
1999 .mode = 0644,
2000 .proc_handler = proc_dostring,
2001 },
2002 {
2003 .procname = "stop-a",
2004 .data = &stop_a_enabled,
2005 .maxlen = sizeof (int),
2006 .mode = 0644,
2007 .proc_handler = proc_dointvec,
2008 },
2009 {
2010 .procname = "scons-poweroff",
2011 .data = &scons_pwroff,
2012 .maxlen = sizeof (int),
2013 .mode = 0644,
2014 .proc_handler = proc_dointvec,
2015 },
2016 #endif
2017 #ifdef CONFIG_SPARC64
2018 {
2019 .procname = "tsb-ratio",
2020 .data = &sysctl_tsb_ratio,
2021 .maxlen = sizeof (int),
2022 .mode = 0644,
2023 .proc_handler = proc_dointvec,
2024 },
2025 #endif
2026 #ifdef CONFIG_PARISC
2027 {
2028 .procname = "soft-power",
2029 .data = &pwrsw_enabled,
2030 .maxlen = sizeof (int),
2031 .mode = 0644,
2032 .proc_handler = proc_dointvec,
2033 },
2034 #endif
2035 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
2036 {
2037 .procname = "unaligned-trap",
2038 .data = &unaligned_enabled,
2039 .maxlen = sizeof (int),
2040 .mode = 0644,
2041 .proc_handler = proc_dointvec,
2042 },
2043 #endif
2044 {
2045 .procname = "ctrl-alt-del",
2046 .data = &C_A_D,
2047 .maxlen = sizeof(int),
2048 .mode = 0644,
2049 .proc_handler = proc_dointvec,
2050 },
2051 #ifdef CONFIG_FUNCTION_TRACER
2052 {
2053 .procname = "ftrace_enabled",
2054 .data = &ftrace_enabled,
2055 .maxlen = sizeof(int),
2056 .mode = 0644,
2057 .proc_handler = ftrace_enable_sysctl,
2058 },
2059 #endif
2060 #ifdef CONFIG_STACK_TRACER
2061 {
2062 .procname = "stack_tracer_enabled",
2063 .data = &stack_tracer_enabled,
2064 .maxlen = sizeof(int),
2065 .mode = 0644,
2066 .proc_handler = stack_trace_sysctl,
2067 },
2068 #endif
2069 #ifdef CONFIG_TRACING
2070 {
2071 .procname = "ftrace_dump_on_oops",
2072 .data = &ftrace_dump_on_oops,
2073 .maxlen = sizeof(int),
2074 .mode = 0644,
2075 .proc_handler = proc_dointvec,
2076 },
2077 {
2078 .procname = "traceoff_on_warning",
2079 .data = &__disable_trace_on_warning,
2080 .maxlen = sizeof(__disable_trace_on_warning),
2081 .mode = 0644,
2082 .proc_handler = proc_dointvec,
2083 },
2084 {
2085 .procname = "tracepoint_printk",
2086 .data = &tracepoint_printk,
2087 .maxlen = sizeof(tracepoint_printk),
2088 .mode = 0644,
2089 .proc_handler = tracepoint_printk_sysctl,
2090 },
2091 #endif
2092 #ifdef CONFIG_KEXEC_CORE
2093 {
2094 .procname = "kexec_load_disabled",
2095 .data = &kexec_load_disabled,
2096 .maxlen = sizeof(int),
2097 .mode = 0644,
2098 /* only handle a transition from default "0" to "1" */
2099 .proc_handler = proc_dointvec_minmax,
2100 .extra1 = SYSCTL_ONE,
2101 .extra2 = SYSCTL_ONE,
2102 },
2103 #endif
2104 #ifdef CONFIG_MODULES
2105 {
2106 .procname = "modprobe",
2107 .data = &modprobe_path,
2108 .maxlen = KMOD_PATH_LEN,
2109 .mode = 0644,
2110 .proc_handler = proc_dostring,
2111 },
2112 {
2113 .procname = "modules_disabled",
2114 .data = &modules_disabled,
2115 .maxlen = sizeof(int),
2116 .mode = 0644,
2117 /* only handle a transition from default "0" to "1" */
2118 .proc_handler = proc_dointvec_minmax,
2119 .extra1 = SYSCTL_ONE,
2120 .extra2 = SYSCTL_ONE,
2121 },
2122 #endif
2123 #ifdef CONFIG_UEVENT_HELPER
2124 {
2125 .procname = "hotplug",
2126 .data = &uevent_helper,
2127 .maxlen = UEVENT_HELPER_PATH_LEN,
2128 .mode = 0644,
2129 .proc_handler = proc_dostring,
2130 },
2131 #endif
2132 #ifdef CONFIG_CHR_DEV_SG
2133 {
2134 .procname = "sg-big-buff",
2135 .data = &sg_big_buff,
2136 .maxlen = sizeof (int),
2137 .mode = 0444,
2138 .proc_handler = proc_dointvec,
2139 },
2140 #endif
2141 #ifdef CONFIG_BSD_PROCESS_ACCT
2142 {
2143 .procname = "acct",
2144 .data = &acct_parm,
2145 .maxlen = 3*sizeof(int),
2146 .mode = 0644,
2147 .proc_handler = proc_dointvec,
2148 },
2149 #endif
2150 #ifdef CONFIG_MAGIC_SYSRQ
2151 {
2152 .procname = "sysrq",
2153 .data = NULL,
2154 .maxlen = sizeof (int),
2155 .mode = 0644,
2156 .proc_handler = sysrq_sysctl_handler,
2157 },
2158 #endif
2159 #ifdef CONFIG_PROC_SYSCTL
2160 {
2161 .procname = "cad_pid",
2162 .data = NULL,
2163 .maxlen = sizeof (int),
2164 .mode = 0600,
2165 .proc_handler = proc_do_cad_pid,
2166 },
2167 #endif
2168 {
2169 .procname = "threads-max",
2170 .data = NULL,
2171 .maxlen = sizeof(int),
2172 .mode = 0644,
2173 .proc_handler = sysctl_max_threads,
2174 },
2175 {
2176 .procname = "random",
2177 .mode = 0555,
2178 .child = random_table,
2179 },
2180 {
2181 .procname = "usermodehelper",
2182 .mode = 0555,
2183 .child = usermodehelper_table,
2184 },
2185 #ifdef CONFIG_FW_LOADER_USER_HELPER
2186 {
2187 .procname = "firmware_config",
2188 .mode = 0555,
2189 .child = firmware_config_table,
2190 },
2191 #endif
2192 {
2193 .procname = "overflowuid",
2194 .data = &overflowuid,
2195 .maxlen = sizeof(int),
2196 .mode = 0644,
2197 .proc_handler = proc_dointvec_minmax,
2198 .extra1 = &minolduid,
2199 .extra2 = &maxolduid,
2200 },
2201 {
2202 .procname = "overflowgid",
2203 .data = &overflowgid,
2204 .maxlen = sizeof(int),
2205 .mode = 0644,
2206 .proc_handler = proc_dointvec_minmax,
2207 .extra1 = &minolduid,
2208 .extra2 = &maxolduid,
2209 },
2210 #ifdef CONFIG_S390
2211 {
2212 .procname = "userprocess_debug",
2213 .data = &show_unhandled_signals,
2214 .maxlen = sizeof(int),
2215 .mode = 0644,
2216 .proc_handler = proc_dointvec,
2217 },
2218 #endif
2219 #ifdef CONFIG_SMP
2220 {
2221 .procname = "oops_all_cpu_backtrace",
2222 .data = &sysctl_oops_all_cpu_backtrace,
2223 .maxlen = sizeof(int),
2224 .mode = 0644,
2225 .proc_handler = proc_dointvec_minmax,
2226 .extra1 = SYSCTL_ZERO,
2227 .extra2 = SYSCTL_ONE,
2228 },
2229 #endif /* CONFIG_SMP */
2230 {
2231 .procname = "pid_max",
2232 .data = &pid_max,
2233 .maxlen = sizeof (int),
2234 .mode = 0644,
2235 .proc_handler = proc_dointvec_minmax,
2236 .extra1 = &pid_max_min,
2237 .extra2 = &pid_max_max,
2238 },
2239 {
2240 .procname = "panic_on_oops",
2241 .data = &panic_on_oops,
2242 .maxlen = sizeof(int),
2243 .mode = 0644,
2244 .proc_handler = proc_dointvec,
2245 },
2246 {
2247 .procname = "panic_print",
2248 .data = &panic_print,
2249 .maxlen = sizeof(unsigned long),
2250 .mode = 0644,
2251 .proc_handler = proc_doulongvec_minmax,
2252 },
2253 #if defined CONFIG_PRINTK
2254 {
2255 .procname = "printk",
2256 .data = &console_loglevel,
2257 .maxlen = 4*sizeof(int),
2258 .mode = 0644,
2259 .proc_handler = proc_dointvec,
2260 },
2261 {
2262 .procname = "printk_ratelimit",
2263 .data = &printk_ratelimit_state.interval,
2264 .maxlen = sizeof(int),
2265 .mode = 0644,
2266 .proc_handler = proc_dointvec_jiffies,
2267 },
2268 {
2269 .procname = "printk_ratelimit_burst",
2270 .data = &printk_ratelimit_state.burst,
2271 .maxlen = sizeof(int),
2272 .mode = 0644,
2273 .proc_handler = proc_dointvec,
2274 },
2275 {
2276 .procname = "printk_delay",
2277 .data = &printk_delay_msec,
2278 .maxlen = sizeof(int),
2279 .mode = 0644,
2280 .proc_handler = proc_dointvec_minmax,
2281 .extra1 = SYSCTL_ZERO,
2282 .extra2 = &ten_thousand,
2283 },
2284 {
2285 .procname = "printk_devkmsg",
2286 .data = devkmsg_log_str,
2287 .maxlen = DEVKMSG_STR_MAX_SIZE,
2288 .mode = 0644,
2289 .proc_handler = devkmsg_sysctl_set_loglvl,
2290 },
2291 {
2292 .procname = "dmesg_restrict",
2293 .data = &dmesg_restrict,
2294 .maxlen = sizeof(int),
2295 .mode = 0644,
2296 .proc_handler = proc_dointvec_minmax_sysadmin,
2297 .extra1 = SYSCTL_ZERO,
2298 .extra2 = SYSCTL_ONE,
2299 },
2300 {
2301 .procname = "kptr_restrict",
2302 .data = &kptr_restrict,
2303 .maxlen = sizeof(int),
2304 .mode = 0644,
2305 .proc_handler = proc_dointvec_minmax_sysadmin,
2306 .extra1 = SYSCTL_ZERO,
2307 .extra2 = &two,
2308 },
2309 #endif
2310 {
2311 .procname = "ngroups_max",
2312 .data = &ngroups_max,
2313 .maxlen = sizeof (int),
2314 .mode = 0444,
2315 .proc_handler = proc_dointvec,
2316 },
2317 {
2318 .procname = "cap_last_cap",
2319 .data = (void *)&cap_last_cap,
2320 .maxlen = sizeof(int),
2321 .mode = 0444,
2322 .proc_handler = proc_dointvec,
2323 },
2324 #if defined(CONFIG_LOCKUP_DETECTOR)
2325 {
2326 .procname = "watchdog",
2327 .data = &watchdog_user_enabled,
2328 .maxlen = sizeof(int),
2329 .mode = 0644,
2330 .proc_handler = proc_watchdog,
2331 .extra1 = SYSCTL_ZERO,
2332 .extra2 = SYSCTL_ONE,
2333 },
2334 {
2335 .procname = "watchdog_thresh",
2336 .data = &watchdog_thresh,
2337 .maxlen = sizeof(int),
2338 .mode = 0644,
2339 .proc_handler = proc_watchdog_thresh,
2340 .extra1 = SYSCTL_ZERO,
2341 .extra2 = &sixty,
2342 },
2343 {
2344 .procname = "nmi_watchdog",
2345 .data = &nmi_watchdog_user_enabled,
2346 .maxlen = sizeof(int),
2347 .mode = NMI_WATCHDOG_SYSCTL_PERM,
2348 .proc_handler = proc_nmi_watchdog,
2349 .extra1 = SYSCTL_ZERO,
2350 .extra2 = SYSCTL_ONE,
2351 },
2352 {
2353 .procname = "watchdog_cpumask",
2354 .data = &watchdog_cpumask_bits,
2355 .maxlen = NR_CPUS,
2356 .mode = 0644,
2357 .proc_handler = proc_watchdog_cpumask,
2358 },
2359 #ifdef CONFIG_SOFTLOCKUP_DETECTOR
2360 {
2361 .procname = "soft_watchdog",
2362 .data = &soft_watchdog_user_enabled,
2363 .maxlen = sizeof(int),
2364 .mode = 0644,
2365 .proc_handler = proc_soft_watchdog,
2366 .extra1 = SYSCTL_ZERO,
2367 .extra2 = SYSCTL_ONE,
2368 },
2369 {
2370 .procname = "softlockup_panic",
2371 .data = &softlockup_panic,
2372 .maxlen = sizeof(int),
2373 .mode = 0644,
2374 .proc_handler = proc_dointvec_minmax,
2375 .extra1 = SYSCTL_ZERO,
2376 .extra2 = SYSCTL_ONE,
2377 },
2378 #ifdef CONFIG_SMP
2379 {
2380 .procname = "softlockup_all_cpu_backtrace",
2381 .data = &sysctl_softlockup_all_cpu_backtrace,
2382 .maxlen = sizeof(int),
2383 .mode = 0644,
2384 .proc_handler = proc_dointvec_minmax,
2385 .extra1 = SYSCTL_ZERO,
2386 .extra2 = SYSCTL_ONE,
2387 },
2388 #endif /* CONFIG_SMP */
2389 #endif
2390 #ifdef CONFIG_HARDLOCKUP_DETECTOR
2391 {
2392 .procname = "hardlockup_panic",
2393 .data = &hardlockup_panic,
2394 .maxlen = sizeof(int),
2395 .mode = 0644,
2396 .proc_handler = proc_dointvec_minmax,
2397 .extra1 = SYSCTL_ZERO,
2398 .extra2 = SYSCTL_ONE,
2399 },
2400 #ifdef CONFIG_SMP
2401 {
2402 .procname = "hardlockup_all_cpu_backtrace",
2403 .data = &sysctl_hardlockup_all_cpu_backtrace,
2404 .maxlen = sizeof(int),
2405 .mode = 0644,
2406 .proc_handler = proc_dointvec_minmax,
2407 .extra1 = SYSCTL_ZERO,
2408 .extra2 = SYSCTL_ONE,
2409 },
2410 #endif /* CONFIG_SMP */
2411 #endif
2412 #endif
2413
2414 #if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86)
2415 {
2416 .procname = "unknown_nmi_panic",
2417 .data = &unknown_nmi_panic,
2418 .maxlen = sizeof (int),
2419 .mode = 0644,
2420 .proc_handler = proc_dointvec,
2421 },
2422 #endif
2423
2424 #if (defined(CONFIG_X86_32) || defined(CONFIG_PARISC)) && \
2425 defined(CONFIG_DEBUG_STACKOVERFLOW)
2426 {
2427 .procname = "panic_on_stackoverflow",
2428 .data = &sysctl_panic_on_stackoverflow,
2429 .maxlen = sizeof(int),
2430 .mode = 0644,
2431 .proc_handler = proc_dointvec,
2432 },
2433 #endif
2434 #if defined(CONFIG_X86)
2435 {
2436 .procname = "panic_on_unrecovered_nmi",
2437 .data = &panic_on_unrecovered_nmi,
2438 .maxlen = sizeof(int),
2439 .mode = 0644,
2440 .proc_handler = proc_dointvec,
2441 },
2442 {
2443 .procname = "panic_on_io_nmi",
2444 .data = &panic_on_io_nmi,
2445 .maxlen = sizeof(int),
2446 .mode = 0644,
2447 .proc_handler = proc_dointvec,
2448 },
2449 {
2450 .procname = "bootloader_type",
2451 .data = &bootloader_type,
2452 .maxlen = sizeof (int),
2453 .mode = 0444,
2454 .proc_handler = proc_dointvec,
2455 },
2456 {
2457 .procname = "bootloader_version",
2458 .data = &bootloader_version,
2459 .maxlen = sizeof (int),
2460 .mode = 0444,
2461 .proc_handler = proc_dointvec,
2462 },
2463 {
2464 .procname = "io_delay_type",
2465 .data = &io_delay_type,
2466 .maxlen = sizeof(int),
2467 .mode = 0644,
2468 .proc_handler = proc_dointvec,
2469 },
2470 #endif
2471 #if defined(CONFIG_MMU)
2472 {
2473 .procname = "randomize_va_space",
2474 .data = &randomize_va_space,
2475 .maxlen = sizeof(int),
2476 .mode = 0644,
2477 .proc_handler = proc_dointvec,
2478 },
2479 #endif
2480 #if defined(CONFIG_S390) && defined(CONFIG_SMP)
2481 {
2482 .procname = "spin_retry",
2483 .data = &spin_retry,
2484 .maxlen = sizeof (int),
2485 .mode = 0644,
2486 .proc_handler = proc_dointvec,
2487 },
2488 #endif
2489 #if defined(CONFIG_ACPI_SLEEP) && defined(CONFIG_X86)
2490 {
2491 .procname = "acpi_video_flags",
2492 .data = &acpi_realmode_flags,
2493 .maxlen = sizeof (unsigned long),
2494 .mode = 0644,
2495 .proc_handler = proc_doulongvec_minmax,
2496 },
2497 #endif
2498 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
2499 {
2500 .procname = "ignore-unaligned-usertrap",
2501 .data = &no_unaligned_warning,
2502 .maxlen = sizeof (int),
2503 .mode = 0644,
2504 .proc_handler = proc_dointvec,
2505 },
2506 #endif
2507 #ifdef CONFIG_IA64
2508 {
2509 .procname = "unaligned-dump-stack",
2510 .data = &unaligned_dump_stack,
2511 .maxlen = sizeof (int),
2512 .mode = 0644,
2513 .proc_handler = proc_dointvec,
2514 },
2515 #endif
2516 #ifdef CONFIG_DETECT_HUNG_TASK
2517 #ifdef CONFIG_SMP
2518 {
2519 .procname = "hung_task_all_cpu_backtrace",
2520 .data = &sysctl_hung_task_all_cpu_backtrace,
2521 .maxlen = sizeof(int),
2522 .mode = 0644,
2523 .proc_handler = proc_dointvec_minmax,
2524 .extra1 = SYSCTL_ZERO,
2525 .extra2 = SYSCTL_ONE,
2526 },
2527 #endif /* CONFIG_SMP */
2528 {
2529 .procname = "hung_task_panic",
2530 .data = &sysctl_hung_task_panic,
2531 .maxlen = sizeof(int),
2532 .mode = 0644,
2533 .proc_handler = proc_dointvec_minmax,
2534 .extra1 = SYSCTL_ZERO,
2535 .extra2 = SYSCTL_ONE,
2536 },
2537 {
2538 .procname = "hung_task_check_count",
2539 .data = &sysctl_hung_task_check_count,
2540 .maxlen = sizeof(int),
2541 .mode = 0644,
2542 .proc_handler = proc_dointvec_minmax,
2543 .extra1 = SYSCTL_ZERO,
2544 },
2545 {
2546 .procname = "hung_task_timeout_secs",
2547 .data = &sysctl_hung_task_timeout_secs,
2548 .maxlen = sizeof(unsigned long),
2549 .mode = 0644,
2550 .proc_handler = proc_dohung_task_timeout_secs,
2551 .extra2 = &hung_task_timeout_max,
2552 },
2553 {
2554 .procname = "hung_task_check_interval_secs",
2555 .data = &sysctl_hung_task_check_interval_secs,
2556 .maxlen = sizeof(unsigned long),
2557 .mode = 0644,
2558 .proc_handler = proc_dohung_task_timeout_secs,
2559 .extra2 = &hung_task_timeout_max,
2560 },
2561 {
2562 .procname = "hung_task_warnings",
2563 .data = &sysctl_hung_task_warnings,
2564 .maxlen = sizeof(int),
2565 .mode = 0644,
2566 .proc_handler = proc_dointvec_minmax,
2567 .extra1 = &neg_one,
2568 },
2569 #endif
2570 #ifdef CONFIG_RT_MUTEXES
2571 {
2572 .procname = "max_lock_depth",
2573 .data = &max_lock_depth,
2574 .maxlen = sizeof(int),
2575 .mode = 0644,
2576 .proc_handler = proc_dointvec,
2577 },
2578 #endif
2579 {
2580 .procname = "poweroff_cmd",
2581 .data = &poweroff_cmd,
2582 .maxlen = POWEROFF_CMD_PATH_LEN,
2583 .mode = 0644,
2584 .proc_handler = proc_dostring,
2585 },
2586 #ifdef CONFIG_KEYS
2587 {
2588 .procname = "keys",
2589 .mode = 0555,
2590 .child = key_sysctls,
2591 },
2592 #endif
2593 #ifdef CONFIG_PERF_EVENTS
2594 /*
2595 * User-space scripts rely on the existence of this file
2596 * as a feature check for perf_events being enabled.
2597 *
2598 * So it's an ABI, do not remove!
2599 */
2600 {
2601 .procname = "perf_event_paranoid",
2602 .data = &sysctl_perf_event_paranoid,
2603 .maxlen = sizeof(sysctl_perf_event_paranoid),
2604 .mode = 0644,
2605 .proc_handler = proc_dointvec,
2606 },
2607 {
2608 .procname = "perf_event_mlock_kb",
2609 .data = &sysctl_perf_event_mlock,
2610 .maxlen = sizeof(sysctl_perf_event_mlock),
2611 .mode = 0644,
2612 .proc_handler = proc_dointvec,
2613 },
2614 {
2615 .procname = "perf_event_max_sample_rate",
2616 .data = &sysctl_perf_event_sample_rate,
2617 .maxlen = sizeof(sysctl_perf_event_sample_rate),
2618 .mode = 0644,
2619 .proc_handler = perf_proc_update_handler,
2620 .extra1 = SYSCTL_ONE,
2621 },
2622 {
2623 .procname = "perf_cpu_time_max_percent",
2624 .data = &sysctl_perf_cpu_time_max_percent,
2625 .maxlen = sizeof(sysctl_perf_cpu_time_max_percent),
2626 .mode = 0644,
2627 .proc_handler = perf_cpu_time_max_percent_handler,
2628 .extra1 = SYSCTL_ZERO,
2629 .extra2 = &one_hundred,
2630 },
2631 {
2632 .procname = "perf_event_max_stack",
2633 .data = &sysctl_perf_event_max_stack,
2634 .maxlen = sizeof(sysctl_perf_event_max_stack),
2635 .mode = 0644,
2636 .proc_handler = perf_event_max_stack_handler,
2637 .extra1 = SYSCTL_ZERO,
2638 .extra2 = &six_hundred_forty_kb,
2639 },
2640 {
2641 .procname = "perf_event_max_contexts_per_stack",
2642 .data = &sysctl_perf_event_max_contexts_per_stack,
2643 .maxlen = sizeof(sysctl_perf_event_max_contexts_per_stack),
2644 .mode = 0644,
2645 .proc_handler = perf_event_max_stack_handler,
2646 .extra1 = SYSCTL_ZERO,
2647 .extra2 = &one_thousand,
2648 },
2649 #endif
2650 {
2651 .procname = "panic_on_warn",
2652 .data = &panic_on_warn,
2653 .maxlen = sizeof(int),
2654 .mode = 0644,
2655 .proc_handler = proc_dointvec_minmax,
2656 .extra1 = SYSCTL_ZERO,
2657 .extra2 = SYSCTL_ONE,
2658 },
2659 #if defined(CONFIG_SMP) && defined(CONFIG_NO_HZ_COMMON)
2660 {
2661 .procname = "timer_migration",
2662 .data = &sysctl_timer_migration,
2663 .maxlen = sizeof(unsigned int),
2664 .mode = 0644,
2665 .proc_handler = timer_migration_handler,
2666 .extra1 = SYSCTL_ZERO,
2667 .extra2 = SYSCTL_ONE,
2668 },
2669 #endif
2670 #ifdef CONFIG_BPF_SYSCALL
2671 {
2672 .procname = "unprivileged_bpf_disabled",
2673 .data = &sysctl_unprivileged_bpf_disabled,
2674 .maxlen = sizeof(sysctl_unprivileged_bpf_disabled),
2675 .mode = 0644,
2676 .proc_handler = bpf_unpriv_handler,
2677 .extra1 = SYSCTL_ZERO,
2678 .extra2 = &two,
2679 },
2680 {
2681 .procname = "bpf_stats_enabled",
2682 .data = &bpf_stats_enabled_key.key,
2683 .maxlen = sizeof(bpf_stats_enabled_key),
2684 .mode = 0644,
2685 .proc_handler = bpf_stats_handler,
2686 },
2687 #endif
2688 #if defined(CONFIG_TREE_RCU)
2689 {
2690 .procname = "panic_on_rcu_stall",
2691 .data = &sysctl_panic_on_rcu_stall,
2692 .maxlen = sizeof(sysctl_panic_on_rcu_stall),
2693 .mode = 0644,
2694 .proc_handler = proc_dointvec_minmax,
2695 .extra1 = SYSCTL_ZERO,
2696 .extra2 = SYSCTL_ONE,
2697 },
2698 #endif
2699 #if defined(CONFIG_TREE_RCU)
2700 {
2701 .procname = "max_rcu_stall_to_panic",
2702 .data = &sysctl_max_rcu_stall_to_panic,
2703 .maxlen = sizeof(sysctl_max_rcu_stall_to_panic),
2704 .mode = 0644,
2705 .proc_handler = proc_dointvec_minmax,
2706 .extra1 = SYSCTL_ONE,
2707 .extra2 = SYSCTL_INT_MAX,
2708 },
2709 #endif
2710 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
2711 {
2712 .procname = "stack_erasing",
2713 .data = NULL,
2714 .maxlen = sizeof(int),
2715 .mode = 0600,
2716 .proc_handler = stack_erasing_sysctl,
2717 .extra1 = SYSCTL_ZERO,
2718 .extra2 = SYSCTL_ONE,
2719 },
2720 #endif
2721 { }
2722 };
2723
2724 static struct ctl_table vm_table[] = {
2725 {
2726 .procname = "overcommit_memory",
2727 .data = &sysctl_overcommit_memory,
2728 .maxlen = sizeof(sysctl_overcommit_memory),
2729 .mode = 0644,
2730 .proc_handler = overcommit_policy_handler,
2731 .extra1 = SYSCTL_ZERO,
2732 .extra2 = &two,
2733 },
2734 {
2735 .procname = "panic_on_oom",
2736 .data = &sysctl_panic_on_oom,
2737 .maxlen = sizeof(sysctl_panic_on_oom),
2738 .mode = 0644,
2739 .proc_handler = proc_dointvec_minmax,
2740 .extra1 = SYSCTL_ZERO,
2741 .extra2 = &two,
2742 },
2743 {
2744 .procname = "oom_kill_allocating_task",
2745 .data = &sysctl_oom_kill_allocating_task,
2746 .maxlen = sizeof(sysctl_oom_kill_allocating_task),
2747 .mode = 0644,
2748 .proc_handler = proc_dointvec,
2749 },
2750 {
2751 .procname = "oom_dump_tasks",
2752 .data = &sysctl_oom_dump_tasks,
2753 .maxlen = sizeof(sysctl_oom_dump_tasks),
2754 .mode = 0644,
2755 .proc_handler = proc_dointvec,
2756 },
2757 {
2758 .procname = "overcommit_ratio",
2759 .data = &sysctl_overcommit_ratio,
2760 .maxlen = sizeof(sysctl_overcommit_ratio),
2761 .mode = 0644,
2762 .proc_handler = overcommit_ratio_handler,
2763 },
2764 {
2765 .procname = "overcommit_kbytes",
2766 .data = &sysctl_overcommit_kbytes,
2767 .maxlen = sizeof(sysctl_overcommit_kbytes),
2768 .mode = 0644,
2769 .proc_handler = overcommit_kbytes_handler,
2770 },
2771 {
2772 .procname = "page-cluster",
2773 .data = &page_cluster,
2774 .maxlen = sizeof(int),
2775 .mode = 0644,
2776 .proc_handler = proc_dointvec_minmax,
2777 .extra1 = SYSCTL_ZERO,
2778 },
2779 {
2780 .procname = "dirty_background_ratio",
2781 .data = &dirty_background_ratio,
2782 .maxlen = sizeof(dirty_background_ratio),
2783 .mode = 0644,
2784 .proc_handler = dirty_background_ratio_handler,
2785 .extra1 = SYSCTL_ZERO,
2786 .extra2 = &one_hundred,
2787 },
2788 {
2789 .procname = "dirty_background_bytes",
2790 .data = &dirty_background_bytes,
2791 .maxlen = sizeof(dirty_background_bytes),
2792 .mode = 0644,
2793 .proc_handler = dirty_background_bytes_handler,
2794 .extra1 = &one_ul,
2795 },
2796 {
2797 .procname = "dirty_ratio",
2798 .data = &vm_dirty_ratio,
2799 .maxlen = sizeof(vm_dirty_ratio),
2800 .mode = 0644,
2801 .proc_handler = dirty_ratio_handler,
2802 .extra1 = SYSCTL_ZERO,
2803 .extra2 = &one_hundred,
2804 },
2805 {
2806 .procname = "dirty_bytes",
2807 .data = &vm_dirty_bytes,
2808 .maxlen = sizeof(vm_dirty_bytes),
2809 .mode = 0644,
2810 .proc_handler = dirty_bytes_handler,
2811 .extra1 = &dirty_bytes_min,
2812 },
2813 {
2814 .procname = "dirty_writeback_centisecs",
2815 .data = &dirty_writeback_interval,
2816 .maxlen = sizeof(dirty_writeback_interval),
2817 .mode = 0644,
2818 .proc_handler = dirty_writeback_centisecs_handler,
2819 },
2820 {
2821 .procname = "dirty_expire_centisecs",
2822 .data = &dirty_expire_interval,
2823 .maxlen = sizeof(dirty_expire_interval),
2824 .mode = 0644,
2825 .proc_handler = proc_dointvec_minmax,
2826 .extra1 = SYSCTL_ZERO,
2827 },
2828 {
2829 .procname = "dirtytime_expire_seconds",
2830 .data = &dirtytime_expire_interval,
2831 .maxlen = sizeof(dirtytime_expire_interval),
2832 .mode = 0644,
2833 .proc_handler = dirtytime_interval_handler,
2834 .extra1 = SYSCTL_ZERO,
2835 },
2836 {
2837 .procname = "swappiness",
2838 .data = &vm_swappiness,
2839 .maxlen = sizeof(vm_swappiness),
2840 .mode = 0644,
2841 .proc_handler = proc_dointvec_minmax,
2842 .extra1 = SYSCTL_ZERO,
2843 .extra2 = &two_hundred,
2844 },
2845 #ifdef CONFIG_HUGETLB_PAGE
2846 {
2847 .procname = "nr_hugepages",
2848 .data = NULL,
2849 .maxlen = sizeof(unsigned long),
2850 .mode = 0644,
2851 .proc_handler = hugetlb_sysctl_handler,
2852 },
2853 #ifdef CONFIG_NUMA
2854 {
2855 .procname = "nr_hugepages_mempolicy",
2856 .data = NULL,
2857 .maxlen = sizeof(unsigned long),
2858 .mode = 0644,
2859 .proc_handler = &hugetlb_mempolicy_sysctl_handler,
2860 },
2861 {
2862 .procname = "numa_stat",
2863 .data = &sysctl_vm_numa_stat,
2864 .maxlen = sizeof(int),
2865 .mode = 0644,
2866 .proc_handler = sysctl_vm_numa_stat_handler,
2867 .extra1 = SYSCTL_ZERO,
2868 .extra2 = SYSCTL_ONE,
2869 },
2870 #endif
2871 {
2872 .procname = "hugetlb_shm_group",
2873 .data = &sysctl_hugetlb_shm_group,
2874 .maxlen = sizeof(gid_t),
2875 .mode = 0644,
2876 .proc_handler = proc_dointvec,
2877 },
2878 {
2879 .procname = "nr_overcommit_hugepages",
2880 .data = NULL,
2881 .maxlen = sizeof(unsigned long),
2882 .mode = 0644,
2883 .proc_handler = hugetlb_overcommit_handler,
2884 },
2885 #endif
2886 {
2887 .procname = "lowmem_reserve_ratio",
2888 .data = &sysctl_lowmem_reserve_ratio,
2889 .maxlen = sizeof(sysctl_lowmem_reserve_ratio),
2890 .mode = 0644,
2891 .proc_handler = lowmem_reserve_ratio_sysctl_handler,
2892 },
2893 {
2894 .procname = "drop_caches",
2895 .data = &sysctl_drop_caches,
2896 .maxlen = sizeof(int),
2897 .mode = 0200,
2898 .proc_handler = drop_caches_sysctl_handler,
2899 .extra1 = SYSCTL_ONE,
2900 .extra2 = &four,
2901 },
2902 #ifdef CONFIG_COMPACTION
2903 {
2904 .procname = "compact_memory",
2905 .data = NULL,
2906 .maxlen = sizeof(int),
2907 .mode = 0200,
2908 .proc_handler = sysctl_compaction_handler,
2909 },
2910 {
2911 .procname = "compaction_proactiveness",
2912 .data = &sysctl_compaction_proactiveness,
2913 .maxlen = sizeof(sysctl_compaction_proactiveness),
2914 .mode = 0644,
2915 .proc_handler = compaction_proactiveness_sysctl_handler,
2916 .extra1 = SYSCTL_ZERO,
2917 .extra2 = &one_hundred,
2918 },
2919 {
2920 .procname = "extfrag_threshold",
2921 .data = &sysctl_extfrag_threshold,
2922 .maxlen = sizeof(int),
2923 .mode = 0644,
2924 .proc_handler = proc_dointvec_minmax,
2925 .extra1 = &min_extfrag_threshold,
2926 .extra2 = &max_extfrag_threshold,
2927 },
2928 {
2929 .procname = "compact_unevictable_allowed",
2930 .data = &sysctl_compact_unevictable_allowed,
2931 .maxlen = sizeof(int),
2932 .mode = 0644,
2933 .proc_handler = proc_dointvec_minmax_warn_RT_change,
2934 .extra1 = SYSCTL_ZERO,
2935 .extra2 = SYSCTL_ONE,
2936 },
2937
2938 #endif /* CONFIG_COMPACTION */
2939 {
2940 .procname = "min_free_kbytes",
2941 .data = &min_free_kbytes,
2942 .maxlen = sizeof(min_free_kbytes),
2943 .mode = 0644,
2944 .proc_handler = min_free_kbytes_sysctl_handler,
2945 .extra1 = SYSCTL_ZERO,
2946 },
2947 {
2948 .procname = "watermark_boost_factor",
2949 .data = &watermark_boost_factor,
2950 .maxlen = sizeof(watermark_boost_factor),
2951 .mode = 0644,
2952 .proc_handler = proc_dointvec_minmax,
2953 .extra1 = SYSCTL_ZERO,
2954 },
2955 {
2956 .procname = "watermark_scale_factor",
2957 .data = &watermark_scale_factor,
2958 .maxlen = sizeof(watermark_scale_factor),
2959 .mode = 0644,
2960 .proc_handler = watermark_scale_factor_sysctl_handler,
2961 .extra1 = SYSCTL_ONE,
2962 .extra2 = &one_thousand,
2963 },
2964 {
2965 .procname = "percpu_pagelist_high_fraction",
2966 .data = &percpu_pagelist_high_fraction,
2967 .maxlen = sizeof(percpu_pagelist_high_fraction),
2968 .mode = 0644,
2969 .proc_handler = percpu_pagelist_high_fraction_sysctl_handler,
2970 .extra1 = SYSCTL_ZERO,
2971 },
2972 {
2973 .procname = "page_lock_unfairness",
2974 .data = &sysctl_page_lock_unfairness,
2975 .maxlen = sizeof(sysctl_page_lock_unfairness),
2976 .mode = 0644,
2977 .proc_handler = proc_dointvec_minmax,
2978 .extra1 = SYSCTL_ZERO,
2979 },
2980 #ifdef CONFIG_MMU
2981 {
2982 .procname = "max_map_count",
2983 .data = &sysctl_max_map_count,
2984 .maxlen = sizeof(sysctl_max_map_count),
2985 .mode = 0644,
2986 .proc_handler = proc_dointvec_minmax,
2987 .extra1 = SYSCTL_ZERO,
2988 },
2989 #else
2990 {
2991 .procname = "nr_trim_pages",
2992 .data = &sysctl_nr_trim_pages,
2993 .maxlen = sizeof(sysctl_nr_trim_pages),
2994 .mode = 0644,
2995 .proc_handler = proc_dointvec_minmax,
2996 .extra1 = SYSCTL_ZERO,
2997 },
2998 #endif
2999 {
3000 .procname = "laptop_mode",
3001 .data = &laptop_mode,
3002 .maxlen = sizeof(laptop_mode),
3003 .mode = 0644,
3004 .proc_handler = proc_dointvec_jiffies,
3005 },
3006 {
3007 .procname = "vfs_cache_pressure",
3008 .data = &sysctl_vfs_cache_pressure,
3009 .maxlen = sizeof(sysctl_vfs_cache_pressure),
3010 .mode = 0644,
3011 .proc_handler = proc_dointvec_minmax,
3012 .extra1 = SYSCTL_ZERO,
3013 },
3014 #if defined(HAVE_ARCH_PICK_MMAP_LAYOUT) || \
3015 defined(CONFIG_ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT)
3016 {
3017 .procname = "legacy_va_layout",
3018 .data = &sysctl_legacy_va_layout,
3019 .maxlen = sizeof(sysctl_legacy_va_layout),
3020 .mode = 0644,
3021 .proc_handler = proc_dointvec_minmax,
3022 .extra1 = SYSCTL_ZERO,
3023 },
3024 #endif
3025 #ifdef CONFIG_NUMA
3026 {
3027 .procname = "zone_reclaim_mode",
3028 .data = &node_reclaim_mode,
3029 .maxlen = sizeof(node_reclaim_mode),
3030 .mode = 0644,
3031 .proc_handler = proc_dointvec_minmax,
3032 .extra1 = SYSCTL_ZERO,
3033 },
3034 {
3035 .procname = "min_unmapped_ratio",
3036 .data = &sysctl_min_unmapped_ratio,
3037 .maxlen = sizeof(sysctl_min_unmapped_ratio),
3038 .mode = 0644,
3039 .proc_handler = sysctl_min_unmapped_ratio_sysctl_handler,
3040 .extra1 = SYSCTL_ZERO,
3041 .extra2 = &one_hundred,
3042 },
3043 {
3044 .procname = "min_slab_ratio",
3045 .data = &sysctl_min_slab_ratio,
3046 .maxlen = sizeof(sysctl_min_slab_ratio),
3047 .mode = 0644,
3048 .proc_handler = sysctl_min_slab_ratio_sysctl_handler,
3049 .extra1 = SYSCTL_ZERO,
3050 .extra2 = &one_hundred,
3051 },
3052 #endif
3053 #ifdef CONFIG_SMP
3054 {
3055 .procname = "stat_interval",
3056 .data = &sysctl_stat_interval,
3057 .maxlen = sizeof(sysctl_stat_interval),
3058 .mode = 0644,
3059 .proc_handler = proc_dointvec_jiffies,
3060 },
3061 {
3062 .procname = "stat_refresh",
3063 .data = NULL,
3064 .maxlen = 0,
3065 .mode = 0600,
3066 .proc_handler = vmstat_refresh,
3067 },
3068 #endif
3069 #ifdef CONFIG_MMU
3070 {
3071 .procname = "mmap_min_addr",
3072 .data = &dac_mmap_min_addr,
3073 .maxlen = sizeof(unsigned long),
3074 .mode = 0644,
3075 .proc_handler = mmap_min_addr_handler,
3076 },
3077 #endif
3078 #ifdef CONFIG_NUMA
3079 {
3080 .procname = "numa_zonelist_order",
3081 .data = &numa_zonelist_order,
3082 .maxlen = NUMA_ZONELIST_ORDER_LEN,
3083 .mode = 0644,
3084 .proc_handler = numa_zonelist_order_handler,
3085 },
3086 #endif
3087 #if (defined(CONFIG_X86_32) && !defined(CONFIG_UML))|| \
3088 (defined(CONFIG_SUPERH) && defined(CONFIG_VSYSCALL))
3089 {
3090 .procname = "vdso_enabled",
3091 #ifdef CONFIG_X86_32
3092 .data = &vdso32_enabled,
3093 .maxlen = sizeof(vdso32_enabled),
3094 #else
3095 .data = &vdso_enabled,
3096 .maxlen = sizeof(vdso_enabled),
3097 #endif
3098 .mode = 0644,
3099 .proc_handler = proc_dointvec,
3100 .extra1 = SYSCTL_ZERO,
3101 },
3102 #endif
3103 #ifdef CONFIG_HIGHMEM
3104 {
3105 .procname = "highmem_is_dirtyable",
3106 .data = &vm_highmem_is_dirtyable,
3107 .maxlen = sizeof(vm_highmem_is_dirtyable),
3108 .mode = 0644,
3109 .proc_handler = proc_dointvec_minmax,
3110 .extra1 = SYSCTL_ZERO,
3111 .extra2 = SYSCTL_ONE,
3112 },
3113 #endif
3114 #ifdef CONFIG_MEMORY_FAILURE
3115 {
3116 .procname = "memory_failure_early_kill",
3117 .data = &sysctl_memory_failure_early_kill,
3118 .maxlen = sizeof(sysctl_memory_failure_early_kill),
3119 .mode = 0644,
3120 .proc_handler = proc_dointvec_minmax,
3121 .extra1 = SYSCTL_ZERO,
3122 .extra2 = SYSCTL_ONE,
3123 },
3124 {
3125 .procname = "memory_failure_recovery",
3126 .data = &sysctl_memory_failure_recovery,
3127 .maxlen = sizeof(sysctl_memory_failure_recovery),
3128 .mode = 0644,
3129 .proc_handler = proc_dointvec_minmax,
3130 .extra1 = SYSCTL_ZERO,
3131 .extra2 = SYSCTL_ONE,
3132 },
3133 #endif
3134 {
3135 .procname = "user_reserve_kbytes",
3136 .data = &sysctl_user_reserve_kbytes,
3137 .maxlen = sizeof(sysctl_user_reserve_kbytes),
3138 .mode = 0644,
3139 .proc_handler = proc_doulongvec_minmax,
3140 },
3141 {
3142 .procname = "admin_reserve_kbytes",
3143 .data = &sysctl_admin_reserve_kbytes,
3144 .maxlen = sizeof(sysctl_admin_reserve_kbytes),
3145 .mode = 0644,
3146 .proc_handler = proc_doulongvec_minmax,
3147 },
3148 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_BITS
3149 {
3150 .procname = "mmap_rnd_bits",
3151 .data = &mmap_rnd_bits,
3152 .maxlen = sizeof(mmap_rnd_bits),
3153 .mode = 0600,
3154 .proc_handler = proc_dointvec_minmax,
3155 .extra1 = (void *)&mmap_rnd_bits_min,
3156 .extra2 = (void *)&mmap_rnd_bits_max,
3157 },
3158 #endif
3159 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_COMPAT_BITS
3160 {
3161 .procname = "mmap_rnd_compat_bits",
3162 .data = &mmap_rnd_compat_bits,
3163 .maxlen = sizeof(mmap_rnd_compat_bits),
3164 .mode = 0600,
3165 .proc_handler = proc_dointvec_minmax,
3166 .extra1 = (void *)&mmap_rnd_compat_bits_min,
3167 .extra2 = (void *)&mmap_rnd_compat_bits_max,
3168 },
3169 #endif
3170 #ifdef CONFIG_USERFAULTFD
3171 {
3172 .procname = "unprivileged_userfaultfd",
3173 .data = &sysctl_unprivileged_userfaultfd,
3174 .maxlen = sizeof(sysctl_unprivileged_userfaultfd),
3175 .mode = 0644,
3176 .proc_handler = proc_dointvec_minmax,
3177 .extra1 = SYSCTL_ZERO,
3178 .extra2 = SYSCTL_ONE,
3179 },
3180 #endif
3181 { }
3182 };
3183
3184 static struct ctl_table fs_table[] = {
3185 {
3186 .procname = "inode-nr",
3187 .data = &inodes_stat,
3188 .maxlen = 2*sizeof(long),
3189 .mode = 0444,
3190 .proc_handler = proc_nr_inodes,
3191 },
3192 {
3193 .procname = "inode-state",
3194 .data = &inodes_stat,
3195 .maxlen = 7*sizeof(long),
3196 .mode = 0444,
3197 .proc_handler = proc_nr_inodes,
3198 },
3199 {
3200 .procname = "file-nr",
3201 .data = &files_stat,
3202 .maxlen = sizeof(files_stat),
3203 .mode = 0444,
3204 .proc_handler = proc_nr_files,
3205 },
3206 {
3207 .procname = "file-max",
3208 .data = &files_stat.max_files,
3209 .maxlen = sizeof(files_stat.max_files),
3210 .mode = 0644,
3211 .proc_handler = proc_doulongvec_minmax,
3212 .extra1 = &zero_ul,
3213 .extra2 = &long_max,
3214 },
3215 {
3216 .procname = "nr_open",
3217 .data = &sysctl_nr_open,
3218 .maxlen = sizeof(unsigned int),
3219 .mode = 0644,
3220 .proc_handler = proc_dointvec_minmax,
3221 .extra1 = &sysctl_nr_open_min,
3222 .extra2 = &sysctl_nr_open_max,
3223 },
3224 {
3225 .procname = "dentry-state",
3226 .data = &dentry_stat,
3227 .maxlen = 6*sizeof(long),
3228 .mode = 0444,
3229 .proc_handler = proc_nr_dentry,
3230 },
3231 {
3232 .procname = "overflowuid",
3233 .data = &fs_overflowuid,
3234 .maxlen = sizeof(int),
3235 .mode = 0644,
3236 .proc_handler = proc_dointvec_minmax,
3237 .extra1 = &minolduid,
3238 .extra2 = &maxolduid,
3239 },
3240 {
3241 .procname = "overflowgid",
3242 .data = &fs_overflowgid,
3243 .maxlen = sizeof(int),
3244 .mode = 0644,
3245 .proc_handler = proc_dointvec_minmax,
3246 .extra1 = &minolduid,
3247 .extra2 = &maxolduid,
3248 },
3249 #ifdef CONFIG_FILE_LOCKING
3250 {
3251 .procname = "leases-enable",
3252 .data = &leases_enable,
3253 .maxlen = sizeof(int),
3254 .mode = 0644,
3255 .proc_handler = proc_dointvec,
3256 },
3257 #endif
3258 #ifdef CONFIG_DNOTIFY
3259 {
3260 .procname = "dir-notify-enable",
3261 .data = &dir_notify_enable,
3262 .maxlen = sizeof(int),
3263 .mode = 0644,
3264 .proc_handler = proc_dointvec,
3265 },
3266 #endif
3267 #ifdef CONFIG_MMU
3268 #ifdef CONFIG_FILE_LOCKING
3269 {
3270 .procname = "lease-break-time",
3271 .data = &lease_break_time,
3272 .maxlen = sizeof(int),
3273 .mode = 0644,
3274 .proc_handler = proc_dointvec,
3275 },
3276 #endif
3277 #ifdef CONFIG_AIO
3278 {
3279 .procname = "aio-nr",
3280 .data = &aio_nr,
3281 .maxlen = sizeof(aio_nr),
3282 .mode = 0444,
3283 .proc_handler = proc_doulongvec_minmax,
3284 },
3285 {
3286 .procname = "aio-max-nr",
3287 .data = &aio_max_nr,
3288 .maxlen = sizeof(aio_max_nr),
3289 .mode = 0644,
3290 .proc_handler = proc_doulongvec_minmax,
3291 },
3292 #endif /* CONFIG_AIO */
3293 #ifdef CONFIG_INOTIFY_USER
3294 {
3295 .procname = "inotify",
3296 .mode = 0555,
3297 .child = inotify_table,
3298 },
3299 #endif
3300 #ifdef CONFIG_FANOTIFY
3301 {
3302 .procname = "fanotify",
3303 .mode = 0555,
3304 .child = fanotify_table,
3305 },
3306 #endif
3307 #ifdef CONFIG_EPOLL
3308 {
3309 .procname = "epoll",
3310 .mode = 0555,
3311 .child = epoll_table,
3312 },
3313 #endif
3314 #endif
3315 {
3316 .procname = "protected_symlinks",
3317 .data = &sysctl_protected_symlinks,
3318 .maxlen = sizeof(int),
3319 .mode = 0600,
3320 .proc_handler = proc_dointvec_minmax,
3321 .extra1 = SYSCTL_ZERO,
3322 .extra2 = SYSCTL_ONE,
3323 },
3324 {
3325 .procname = "protected_hardlinks",
3326 .data = &sysctl_protected_hardlinks,
3327 .maxlen = sizeof(int),
3328 .mode = 0600,
3329 .proc_handler = proc_dointvec_minmax,
3330 .extra1 = SYSCTL_ZERO,
3331 .extra2 = SYSCTL_ONE,
3332 },
3333 {
3334 .procname = "protected_fifos",
3335 .data = &sysctl_protected_fifos,
3336 .maxlen = sizeof(int),
3337 .mode = 0600,
3338 .proc_handler = proc_dointvec_minmax,
3339 .extra1 = SYSCTL_ZERO,
3340 .extra2 = &two,
3341 },
3342 {
3343 .procname = "protected_regular",
3344 .data = &sysctl_protected_regular,
3345 .maxlen = sizeof(int),
3346 .mode = 0600,
3347 .proc_handler = proc_dointvec_minmax,
3348 .extra1 = SYSCTL_ZERO,
3349 .extra2 = &two,
3350 },
3351 {
3352 .procname = "suid_dumpable",
3353 .data = &suid_dumpable,
3354 .maxlen = sizeof(int),
3355 .mode = 0644,
3356 .proc_handler = proc_dointvec_minmax_coredump,
3357 .extra1 = SYSCTL_ZERO,
3358 .extra2 = &two,
3359 },
3360 #if defined(CONFIG_BINFMT_MISC) || defined(CONFIG_BINFMT_MISC_MODULE)
3361 {
3362 .procname = "binfmt_misc",
3363 .mode = 0555,
3364 .child = sysctl_mount_point,
3365 },
3366 #endif
3367 {
3368 .procname = "pipe-max-size",
3369 .data = &pipe_max_size,
3370 .maxlen = sizeof(pipe_max_size),
3371 .mode = 0644,
3372 .proc_handler = proc_dopipe_max_size,
3373 },
3374 {
3375 .procname = "pipe-user-pages-hard",
3376 .data = &pipe_user_pages_hard,
3377 .maxlen = sizeof(pipe_user_pages_hard),
3378 .mode = 0644,
3379 .proc_handler = proc_doulongvec_minmax,
3380 },
3381 {
3382 .procname = "pipe-user-pages-soft",
3383 .data = &pipe_user_pages_soft,
3384 .maxlen = sizeof(pipe_user_pages_soft),
3385 .mode = 0644,
3386 .proc_handler = proc_doulongvec_minmax,
3387 },
3388 {
3389 .procname = "mount-max",
3390 .data = &sysctl_mount_max,
3391 .maxlen = sizeof(unsigned int),
3392 .mode = 0644,
3393 .proc_handler = proc_dointvec_minmax,
3394 .extra1 = SYSCTL_ONE,
3395 },
3396 { }
3397 };
3398
3399 static struct ctl_table debug_table[] = {
3400 #ifdef CONFIG_SYSCTL_EXCEPTION_TRACE
3401 {
3402 .procname = "exception-trace",
3403 .data = &show_unhandled_signals,
3404 .maxlen = sizeof(int),
3405 .mode = 0644,
3406 .proc_handler = proc_dointvec
3407 },
3408 #endif
3409 #if defined(CONFIG_OPTPROBES)
3410 {
3411 .procname = "kprobes-optimization",
3412 .data = &sysctl_kprobes_optimization,
3413 .maxlen = sizeof(int),
3414 .mode = 0644,
3415 .proc_handler = proc_kprobes_optimization_handler,
3416 .extra1 = SYSCTL_ZERO,
3417 .extra2 = SYSCTL_ONE,
3418 },
3419 #endif
3420 { }
3421 };
3422
3423 static struct ctl_table dev_table[] = {
3424 { }
3425 };
3426
3427 static struct ctl_table sysctl_base_table[] = {
3428 {
3429 .procname = "kernel",
3430 .mode = 0555,
3431 .child = kern_table,
3432 },
3433 {
3434 .procname = "vm",
3435 .mode = 0555,
3436 .child = vm_table,
3437 },
3438 {
3439 .procname = "fs",
3440 .mode = 0555,
3441 .child = fs_table,
3442 },
3443 {
3444 .procname = "debug",
3445 .mode = 0555,
3446 .child = debug_table,
3447 },
3448 {
3449 .procname = "dev",
3450 .mode = 0555,
3451 .child = dev_table,
3452 },
3453 { }
3454 };
3455
sysctl_init(void)3456 int __init sysctl_init(void)
3457 {
3458 struct ctl_table_header *hdr;
3459
3460 hdr = register_sysctl_table(sysctl_base_table);
3461 kmemleak_not_leak(hdr);
3462 return 0;
3463 }
3464 #endif /* CONFIG_SYSCTL */
3465 /*
3466 * No sense putting this after each symbol definition, twice,
3467 * exception granted :-)
3468 */
3469 EXPORT_SYMBOL(proc_dobool);
3470 EXPORT_SYMBOL(proc_dointvec);
3471 EXPORT_SYMBOL(proc_douintvec);
3472 EXPORT_SYMBOL(proc_dointvec_jiffies);
3473 EXPORT_SYMBOL(proc_dointvec_minmax);
3474 EXPORT_SYMBOL_GPL(proc_douintvec_minmax);
3475 EXPORT_SYMBOL(proc_dointvec_userhz_jiffies);
3476 EXPORT_SYMBOL(proc_dointvec_ms_jiffies);
3477 EXPORT_SYMBOL(proc_dostring);
3478 EXPORT_SYMBOL(proc_doulongvec_minmax);
3479 EXPORT_SYMBOL(proc_doulongvec_ms_jiffies_minmax);
3480 EXPORT_SYMBOL(proc_do_large_bitmap);
3481