Loading...
1/*
2 * sysctl.c: General linux system control interface
3 *
4 * Begun 24 March 1995, Stephen Tweedie
5 * Added /proc support, Dec 1995
6 * Added bdflush entry and intvec min/max checking, 2/23/96, Tom Dyas.
7 * Added hooks for /proc/sys/net (minor, minor patch), 96/4/1, Mike Shaver.
8 * Added kernel/java-{interpreter,appletviewer}, 96/5/10, Mike Shaver.
9 * Dynamic registration fixes, Stephen Tweedie.
10 * Added kswapd-interval, ctrl-alt-del, printk stuff, 1/8/97, Chris Horn.
11 * Made sysctl support optional via CONFIG_SYSCTL, 1/10/97, Chris
12 * Horn.
13 * Added proc_doulongvec_ms_jiffies_minmax, 09/08/99, Carlos H. Bauer.
14 * Added proc_doulongvec_minmax, 09/08/99, Carlos H. Bauer.
15 * Changed linked lists to use list.h instead of lists.h, 02/24/00, Bill
16 * Wendling.
17 * The list_for_each() macro wasn't appropriate for the sysctl loop.
18 * Removed it and replaced it with older style, 03/23/00, Bill Wendling
19 */
20
21#include <linux/module.h>
22#include <linux/aio.h>
23#include <linux/mm.h>
24#include <linux/swap.h>
25#include <linux/slab.h>
26#include <linux/sysctl.h>
27#include <linux/bitmap.h>
28#include <linux/signal.h>
29#include <linux/printk.h>
30#include <linux/proc_fs.h>
31#include <linux/security.h>
32#include <linux/ctype.h>
33#include <linux/kmemcheck.h>
34#include <linux/kmemleak.h>
35#include <linux/fs.h>
36#include <linux/init.h>
37#include <linux/kernel.h>
38#include <linux/kobject.h>
39#include <linux/net.h>
40#include <linux/sysrq.h>
41#include <linux/highuid.h>
42#include <linux/writeback.h>
43#include <linux/ratelimit.h>
44#include <linux/compaction.h>
45#include <linux/hugetlb.h>
46#include <linux/initrd.h>
47#include <linux/key.h>
48#include <linux/times.h>
49#include <linux/limits.h>
50#include <linux/dcache.h>
51#include <linux/dnotify.h>
52#include <linux/syscalls.h>
53#include <linux/vmstat.h>
54#include <linux/nfs_fs.h>
55#include <linux/acpi.h>
56#include <linux/reboot.h>
57#include <linux/ftrace.h>
58#include <linux/perf_event.h>
59#include <linux/kprobes.h>
60#include <linux/pipe_fs_i.h>
61#include <linux/oom.h>
62#include <linux/kmod.h>
63#include <linux/capability.h>
64#include <linux/binfmts.h>
65#include <linux/sched/sysctl.h>
66#include <linux/kexec.h>
67#include <linux/bpf.h>
68
69#include <asm/uaccess.h>
70#include <asm/processor.h>
71
72#ifdef CONFIG_X86
73#include <asm/nmi.h>
74#include <asm/stacktrace.h>
75#include <asm/io.h>
76#endif
77#ifdef CONFIG_SPARC
78#include <asm/setup.h>
79#endif
80#ifdef CONFIG_BSD_PROCESS_ACCT
81#include <linux/acct.h>
82#endif
83#ifdef CONFIG_RT_MUTEXES
84#include <linux/rtmutex.h>
85#endif
86#if defined(CONFIG_PROVE_LOCKING) || defined(CONFIG_LOCK_STAT)
87#include <linux/lockdep.h>
88#endif
89#ifdef CONFIG_CHR_DEV_SG
90#include <scsi/sg.h>
91#endif
92
93#ifdef CONFIG_LOCKUP_DETECTOR
94#include <linux/nmi.h>
95#endif
96
97#if defined(CONFIG_SYSCTL)
98
99/* External variables not in a header file. */
100extern int suid_dumpable;
101#ifdef CONFIG_COREDUMP
102extern int core_uses_pid;
103extern char core_pattern[];
104extern unsigned int core_pipe_limit;
105#endif
106extern int pid_max;
107extern int pid_max_min, pid_max_max;
108extern int percpu_pagelist_fraction;
109extern int compat_log;
110extern int latencytop_enabled;
111extern int sysctl_nr_open_min, sysctl_nr_open_max;
112#ifndef CONFIG_MMU
113extern int sysctl_nr_trim_pages;
114#endif
115
116/* Constants used for minimum and maximum */
117#ifdef CONFIG_LOCKUP_DETECTOR
118static int sixty = 60;
119#endif
120
121static int __maybe_unused neg_one = -1;
122
123static int zero;
124static int __maybe_unused one = 1;
125static int __maybe_unused two = 2;
126static int __maybe_unused four = 4;
127static unsigned long one_ul = 1;
128static int one_hundred = 100;
129static int one_thousand = 1000;
130#ifdef CONFIG_PRINTK
131static int ten_thousand = 10000;
132#endif
133
134/* this is needed for the proc_doulongvec_minmax of vm_dirty_bytes */
135static unsigned long dirty_bytes_min = 2 * PAGE_SIZE;
136
137/* this is needed for the proc_dointvec_minmax for [fs_]overflow UID and GID */
138static int maxolduid = 65535;
139static int minolduid;
140
141static int ngroups_max = NGROUPS_MAX;
142static const int cap_last_cap = CAP_LAST_CAP;
143
144/*this is needed for proc_doulongvec_minmax of sysctl_hung_task_timeout_secs */
145#ifdef CONFIG_DETECT_HUNG_TASK
146static unsigned long hung_task_timeout_max = (LONG_MAX/HZ);
147#endif
148
149#ifdef CONFIG_INOTIFY_USER
150#include <linux/inotify.h>
151#endif
152#ifdef CONFIG_SPARC
153#endif
154
155#ifdef __hppa__
156extern int pwrsw_enabled;
157#endif
158
159#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
160extern int unaligned_enabled;
161#endif
162
163#ifdef CONFIG_IA64
164extern int unaligned_dump_stack;
165#endif
166
167#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
168extern int no_unaligned_warning;
169#endif
170
171#ifdef CONFIG_PROC_SYSCTL
172
173#define SYSCTL_WRITES_LEGACY -1
174#define SYSCTL_WRITES_WARN 0
175#define SYSCTL_WRITES_STRICT 1
176
177static int sysctl_writes_strict = SYSCTL_WRITES_STRICT;
178
179static int proc_do_cad_pid(struct ctl_table *table, int write,
180 void __user *buffer, size_t *lenp, loff_t *ppos);
181static int proc_taint(struct ctl_table *table, int write,
182 void __user *buffer, size_t *lenp, loff_t *ppos);
183#endif
184
185#ifdef CONFIG_PRINTK
186static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
187 void __user *buffer, size_t *lenp, loff_t *ppos);
188#endif
189
190static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
191 void __user *buffer, size_t *lenp, loff_t *ppos);
192#ifdef CONFIG_COREDUMP
193static int proc_dostring_coredump(struct ctl_table *table, int write,
194 void __user *buffer, size_t *lenp, loff_t *ppos);
195#endif
196
197#ifdef CONFIG_MAGIC_SYSRQ
198/* Note: sysrq code uses it's own private copy */
199static int __sysrq_enabled = CONFIG_MAGIC_SYSRQ_DEFAULT_ENABLE;
200
201static int sysrq_sysctl_handler(struct ctl_table *table, int write,
202 void __user *buffer, size_t *lenp,
203 loff_t *ppos)
204{
205 int error;
206
207 error = proc_dointvec(table, write, buffer, lenp, ppos);
208 if (error)
209 return error;
210
211 if (write)
212 sysrq_toggle_support(__sysrq_enabled);
213
214 return 0;
215}
216
217#endif
218
219static struct ctl_table kern_table[];
220static struct ctl_table vm_table[];
221static struct ctl_table fs_table[];
222static struct ctl_table debug_table[];
223static struct ctl_table dev_table[];
224extern struct ctl_table random_table[];
225#ifdef CONFIG_EPOLL
226extern struct ctl_table epoll_table[];
227#endif
228
229#ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
230int sysctl_legacy_va_layout;
231#endif
232
233/* The default sysctl tables: */
234
235static struct ctl_table sysctl_base_table[] = {
236 {
237 .procname = "kernel",
238 .mode = 0555,
239 .child = kern_table,
240 },
241 {
242 .procname = "vm",
243 .mode = 0555,
244 .child = vm_table,
245 },
246 {
247 .procname = "fs",
248 .mode = 0555,
249 .child = fs_table,
250 },
251 {
252 .procname = "debug",
253 .mode = 0555,
254 .child = debug_table,
255 },
256 {
257 .procname = "dev",
258 .mode = 0555,
259 .child = dev_table,
260 },
261 { }
262};
263
264#ifdef CONFIG_SCHED_DEBUG
265static int min_sched_granularity_ns = 100000; /* 100 usecs */
266static int max_sched_granularity_ns = NSEC_PER_SEC; /* 1 second */
267static int min_wakeup_granularity_ns; /* 0 usecs */
268static int max_wakeup_granularity_ns = NSEC_PER_SEC; /* 1 second */
269#ifdef CONFIG_SMP
270static int min_sched_tunable_scaling = SCHED_TUNABLESCALING_NONE;
271static int max_sched_tunable_scaling = SCHED_TUNABLESCALING_END-1;
272#endif /* CONFIG_SMP */
273#endif /* CONFIG_SCHED_DEBUG */
274
275#ifdef CONFIG_COMPACTION
276static int min_extfrag_threshold;
277static int max_extfrag_threshold = 1000;
278#endif
279
280static struct ctl_table kern_table[] = {
281 {
282 .procname = "sched_child_runs_first",
283 .data = &sysctl_sched_child_runs_first,
284 .maxlen = sizeof(unsigned int),
285 .mode = 0644,
286 .proc_handler = proc_dointvec,
287 },
288#ifdef CONFIG_SCHED_DEBUG
289 {
290 .procname = "sched_min_granularity_ns",
291 .data = &sysctl_sched_min_granularity,
292 .maxlen = sizeof(unsigned int),
293 .mode = 0644,
294 .proc_handler = sched_proc_update_handler,
295 .extra1 = &min_sched_granularity_ns,
296 .extra2 = &max_sched_granularity_ns,
297 },
298 {
299 .procname = "sched_latency_ns",
300 .data = &sysctl_sched_latency,
301 .maxlen = sizeof(unsigned int),
302 .mode = 0644,
303 .proc_handler = sched_proc_update_handler,
304 .extra1 = &min_sched_granularity_ns,
305 .extra2 = &max_sched_granularity_ns,
306 },
307 {
308 .procname = "sched_wakeup_granularity_ns",
309 .data = &sysctl_sched_wakeup_granularity,
310 .maxlen = sizeof(unsigned int),
311 .mode = 0644,
312 .proc_handler = sched_proc_update_handler,
313 .extra1 = &min_wakeup_granularity_ns,
314 .extra2 = &max_wakeup_granularity_ns,
315 },
316#ifdef CONFIG_SMP
317 {
318 .procname = "sched_tunable_scaling",
319 .data = &sysctl_sched_tunable_scaling,
320 .maxlen = sizeof(enum sched_tunable_scaling),
321 .mode = 0644,
322 .proc_handler = sched_proc_update_handler,
323 .extra1 = &min_sched_tunable_scaling,
324 .extra2 = &max_sched_tunable_scaling,
325 },
326 {
327 .procname = "sched_migration_cost_ns",
328 .data = &sysctl_sched_migration_cost,
329 .maxlen = sizeof(unsigned int),
330 .mode = 0644,
331 .proc_handler = proc_dointvec,
332 },
333 {
334 .procname = "sched_nr_migrate",
335 .data = &sysctl_sched_nr_migrate,
336 .maxlen = sizeof(unsigned int),
337 .mode = 0644,
338 .proc_handler = proc_dointvec,
339 },
340 {
341 .procname = "sched_time_avg_ms",
342 .data = &sysctl_sched_time_avg,
343 .maxlen = sizeof(unsigned int),
344 .mode = 0644,
345 .proc_handler = proc_dointvec,
346 },
347 {
348 .procname = "sched_shares_window_ns",
349 .data = &sysctl_sched_shares_window,
350 .maxlen = sizeof(unsigned int),
351 .mode = 0644,
352 .proc_handler = proc_dointvec,
353 },
354#ifdef CONFIG_SCHEDSTATS
355 {
356 .procname = "sched_schedstats",
357 .data = NULL,
358 .maxlen = sizeof(unsigned int),
359 .mode = 0644,
360 .proc_handler = sysctl_schedstats,
361 .extra1 = &zero,
362 .extra2 = &one,
363 },
364#endif /* CONFIG_SCHEDSTATS */
365#endif /* CONFIG_SMP */
366#ifdef CONFIG_NUMA_BALANCING
367 {
368 .procname = "numa_balancing_scan_delay_ms",
369 .data = &sysctl_numa_balancing_scan_delay,
370 .maxlen = sizeof(unsigned int),
371 .mode = 0644,
372 .proc_handler = proc_dointvec,
373 },
374 {
375 .procname = "numa_balancing_scan_period_min_ms",
376 .data = &sysctl_numa_balancing_scan_period_min,
377 .maxlen = sizeof(unsigned int),
378 .mode = 0644,
379 .proc_handler = proc_dointvec,
380 },
381 {
382 .procname = "numa_balancing_scan_period_max_ms",
383 .data = &sysctl_numa_balancing_scan_period_max,
384 .maxlen = sizeof(unsigned int),
385 .mode = 0644,
386 .proc_handler = proc_dointvec,
387 },
388 {
389 .procname = "numa_balancing_scan_size_mb",
390 .data = &sysctl_numa_balancing_scan_size,
391 .maxlen = sizeof(unsigned int),
392 .mode = 0644,
393 .proc_handler = proc_dointvec_minmax,
394 .extra1 = &one,
395 },
396 {
397 .procname = "numa_balancing",
398 .data = NULL, /* filled in by handler */
399 .maxlen = sizeof(unsigned int),
400 .mode = 0644,
401 .proc_handler = sysctl_numa_balancing,
402 .extra1 = &zero,
403 .extra2 = &one,
404 },
405#endif /* CONFIG_NUMA_BALANCING */
406#endif /* CONFIG_SCHED_DEBUG */
407 {
408 .procname = "sched_rt_period_us",
409 .data = &sysctl_sched_rt_period,
410 .maxlen = sizeof(unsigned int),
411 .mode = 0644,
412 .proc_handler = sched_rt_handler,
413 },
414 {
415 .procname = "sched_rt_runtime_us",
416 .data = &sysctl_sched_rt_runtime,
417 .maxlen = sizeof(int),
418 .mode = 0644,
419 .proc_handler = sched_rt_handler,
420 },
421 {
422 .procname = "sched_rr_timeslice_ms",
423 .data = &sched_rr_timeslice,
424 .maxlen = sizeof(int),
425 .mode = 0644,
426 .proc_handler = sched_rr_handler,
427 },
428#ifdef CONFIG_SCHED_AUTOGROUP
429 {
430 .procname = "sched_autogroup_enabled",
431 .data = &sysctl_sched_autogroup_enabled,
432 .maxlen = sizeof(unsigned int),
433 .mode = 0644,
434 .proc_handler = proc_dointvec_minmax,
435 .extra1 = &zero,
436 .extra2 = &one,
437 },
438#endif
439#ifdef CONFIG_CFS_BANDWIDTH
440 {
441 .procname = "sched_cfs_bandwidth_slice_us",
442 .data = &sysctl_sched_cfs_bandwidth_slice,
443 .maxlen = sizeof(unsigned int),
444 .mode = 0644,
445 .proc_handler = proc_dointvec_minmax,
446 .extra1 = &one,
447 },
448#endif
449#ifdef CONFIG_PROVE_LOCKING
450 {
451 .procname = "prove_locking",
452 .data = &prove_locking,
453 .maxlen = sizeof(int),
454 .mode = 0644,
455 .proc_handler = proc_dointvec,
456 },
457#endif
458#ifdef CONFIG_LOCK_STAT
459 {
460 .procname = "lock_stat",
461 .data = &lock_stat,
462 .maxlen = sizeof(int),
463 .mode = 0644,
464 .proc_handler = proc_dointvec,
465 },
466#endif
467 {
468 .procname = "panic",
469 .data = &panic_timeout,
470 .maxlen = sizeof(int),
471 .mode = 0644,
472 .proc_handler = proc_dointvec,
473 },
474#ifdef CONFIG_COREDUMP
475 {
476 .procname = "core_uses_pid",
477 .data = &core_uses_pid,
478 .maxlen = sizeof(int),
479 .mode = 0644,
480 .proc_handler = proc_dointvec,
481 },
482 {
483 .procname = "core_pattern",
484 .data = core_pattern,
485 .maxlen = CORENAME_MAX_SIZE,
486 .mode = 0644,
487 .proc_handler = proc_dostring_coredump,
488 },
489 {
490 .procname = "core_pipe_limit",
491 .data = &core_pipe_limit,
492 .maxlen = sizeof(unsigned int),
493 .mode = 0644,
494 .proc_handler = proc_dointvec,
495 },
496#endif
497#ifdef CONFIG_PROC_SYSCTL
498 {
499 .procname = "tainted",
500 .maxlen = sizeof(long),
501 .mode = 0644,
502 .proc_handler = proc_taint,
503 },
504 {
505 .procname = "sysctl_writes_strict",
506 .data = &sysctl_writes_strict,
507 .maxlen = sizeof(int),
508 .mode = 0644,
509 .proc_handler = proc_dointvec_minmax,
510 .extra1 = &neg_one,
511 .extra2 = &one,
512 },
513#endif
514#ifdef CONFIG_LATENCYTOP
515 {
516 .procname = "latencytop",
517 .data = &latencytop_enabled,
518 .maxlen = sizeof(int),
519 .mode = 0644,
520 .proc_handler = sysctl_latencytop,
521 },
522#endif
523#ifdef CONFIG_BLK_DEV_INITRD
524 {
525 .procname = "real-root-dev",
526 .data = &real_root_dev,
527 .maxlen = sizeof(int),
528 .mode = 0644,
529 .proc_handler = proc_dointvec,
530 },
531#endif
532 {
533 .procname = "print-fatal-signals",
534 .data = &print_fatal_signals,
535 .maxlen = sizeof(int),
536 .mode = 0644,
537 .proc_handler = proc_dointvec,
538 },
539#ifdef CONFIG_SPARC
540 {
541 .procname = "reboot-cmd",
542 .data = reboot_command,
543 .maxlen = 256,
544 .mode = 0644,
545 .proc_handler = proc_dostring,
546 },
547 {
548 .procname = "stop-a",
549 .data = &stop_a_enabled,
550 .maxlen = sizeof (int),
551 .mode = 0644,
552 .proc_handler = proc_dointvec,
553 },
554 {
555 .procname = "scons-poweroff",
556 .data = &scons_pwroff,
557 .maxlen = sizeof (int),
558 .mode = 0644,
559 .proc_handler = proc_dointvec,
560 },
561#endif
562#ifdef CONFIG_SPARC64
563 {
564 .procname = "tsb-ratio",
565 .data = &sysctl_tsb_ratio,
566 .maxlen = sizeof (int),
567 .mode = 0644,
568 .proc_handler = proc_dointvec,
569 },
570#endif
571#ifdef __hppa__
572 {
573 .procname = "soft-power",
574 .data = &pwrsw_enabled,
575 .maxlen = sizeof (int),
576 .mode = 0644,
577 .proc_handler = proc_dointvec,
578 },
579#endif
580#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
581 {
582 .procname = "unaligned-trap",
583 .data = &unaligned_enabled,
584 .maxlen = sizeof (int),
585 .mode = 0644,
586 .proc_handler = proc_dointvec,
587 },
588#endif
589 {
590 .procname = "ctrl-alt-del",
591 .data = &C_A_D,
592 .maxlen = sizeof(int),
593 .mode = 0644,
594 .proc_handler = proc_dointvec,
595 },
596#ifdef CONFIG_FUNCTION_TRACER
597 {
598 .procname = "ftrace_enabled",
599 .data = &ftrace_enabled,
600 .maxlen = sizeof(int),
601 .mode = 0644,
602 .proc_handler = ftrace_enable_sysctl,
603 },
604#endif
605#ifdef CONFIG_STACK_TRACER
606 {
607 .procname = "stack_tracer_enabled",
608 .data = &stack_tracer_enabled,
609 .maxlen = sizeof(int),
610 .mode = 0644,
611 .proc_handler = stack_trace_sysctl,
612 },
613#endif
614#ifdef CONFIG_TRACING
615 {
616 .procname = "ftrace_dump_on_oops",
617 .data = &ftrace_dump_on_oops,
618 .maxlen = sizeof(int),
619 .mode = 0644,
620 .proc_handler = proc_dointvec,
621 },
622 {
623 .procname = "traceoff_on_warning",
624 .data = &__disable_trace_on_warning,
625 .maxlen = sizeof(__disable_trace_on_warning),
626 .mode = 0644,
627 .proc_handler = proc_dointvec,
628 },
629 {
630 .procname = "tracepoint_printk",
631 .data = &tracepoint_printk,
632 .maxlen = sizeof(tracepoint_printk),
633 .mode = 0644,
634 .proc_handler = proc_dointvec,
635 },
636#endif
637#ifdef CONFIG_KEXEC_CORE
638 {
639 .procname = "kexec_load_disabled",
640 .data = &kexec_load_disabled,
641 .maxlen = sizeof(int),
642 .mode = 0644,
643 /* only handle a transition from default "0" to "1" */
644 .proc_handler = proc_dointvec_minmax,
645 .extra1 = &one,
646 .extra2 = &one,
647 },
648#endif
649#ifdef CONFIG_MODULES
650 {
651 .procname = "modprobe",
652 .data = &modprobe_path,
653 .maxlen = KMOD_PATH_LEN,
654 .mode = 0644,
655 .proc_handler = proc_dostring,
656 },
657 {
658 .procname = "modules_disabled",
659 .data = &modules_disabled,
660 .maxlen = sizeof(int),
661 .mode = 0644,
662 /* only handle a transition from default "0" to "1" */
663 .proc_handler = proc_dointvec_minmax,
664 .extra1 = &one,
665 .extra2 = &one,
666 },
667#endif
668#ifdef CONFIG_UEVENT_HELPER
669 {
670 .procname = "hotplug",
671 .data = &uevent_helper,
672 .maxlen = UEVENT_HELPER_PATH_LEN,
673 .mode = 0644,
674 .proc_handler = proc_dostring,
675 },
676#endif
677#ifdef CONFIG_CHR_DEV_SG
678 {
679 .procname = "sg-big-buff",
680 .data = &sg_big_buff,
681 .maxlen = sizeof (int),
682 .mode = 0444,
683 .proc_handler = proc_dointvec,
684 },
685#endif
686#ifdef CONFIG_BSD_PROCESS_ACCT
687 {
688 .procname = "acct",
689 .data = &acct_parm,
690 .maxlen = 3*sizeof(int),
691 .mode = 0644,
692 .proc_handler = proc_dointvec,
693 },
694#endif
695#ifdef CONFIG_MAGIC_SYSRQ
696 {
697 .procname = "sysrq",
698 .data = &__sysrq_enabled,
699 .maxlen = sizeof (int),
700 .mode = 0644,
701 .proc_handler = sysrq_sysctl_handler,
702 },
703#endif
704#ifdef CONFIG_PROC_SYSCTL
705 {
706 .procname = "cad_pid",
707 .data = NULL,
708 .maxlen = sizeof (int),
709 .mode = 0600,
710 .proc_handler = proc_do_cad_pid,
711 },
712#endif
713 {
714 .procname = "threads-max",
715 .data = NULL,
716 .maxlen = sizeof(int),
717 .mode = 0644,
718 .proc_handler = sysctl_max_threads,
719 },
720 {
721 .procname = "random",
722 .mode = 0555,
723 .child = random_table,
724 },
725 {
726 .procname = "usermodehelper",
727 .mode = 0555,
728 .child = usermodehelper_table,
729 },
730 {
731 .procname = "overflowuid",
732 .data = &overflowuid,
733 .maxlen = sizeof(int),
734 .mode = 0644,
735 .proc_handler = proc_dointvec_minmax,
736 .extra1 = &minolduid,
737 .extra2 = &maxolduid,
738 },
739 {
740 .procname = "overflowgid",
741 .data = &overflowgid,
742 .maxlen = sizeof(int),
743 .mode = 0644,
744 .proc_handler = proc_dointvec_minmax,
745 .extra1 = &minolduid,
746 .extra2 = &maxolduid,
747 },
748#ifdef CONFIG_S390
749#ifdef CONFIG_MATHEMU
750 {
751 .procname = "ieee_emulation_warnings",
752 .data = &sysctl_ieee_emulation_warnings,
753 .maxlen = sizeof(int),
754 .mode = 0644,
755 .proc_handler = proc_dointvec,
756 },
757#endif
758 {
759 .procname = "userprocess_debug",
760 .data = &show_unhandled_signals,
761 .maxlen = sizeof(int),
762 .mode = 0644,
763 .proc_handler = proc_dointvec,
764 },
765#endif
766 {
767 .procname = "pid_max",
768 .data = &pid_max,
769 .maxlen = sizeof (int),
770 .mode = 0644,
771 .proc_handler = proc_dointvec_minmax,
772 .extra1 = &pid_max_min,
773 .extra2 = &pid_max_max,
774 },
775 {
776 .procname = "panic_on_oops",
777 .data = &panic_on_oops,
778 .maxlen = sizeof(int),
779 .mode = 0644,
780 .proc_handler = proc_dointvec,
781 },
782#if defined CONFIG_PRINTK
783 {
784 .procname = "printk",
785 .data = &console_loglevel,
786 .maxlen = 4*sizeof(int),
787 .mode = 0644,
788 .proc_handler = proc_dointvec,
789 },
790 {
791 .procname = "printk_ratelimit",
792 .data = &printk_ratelimit_state.interval,
793 .maxlen = sizeof(int),
794 .mode = 0644,
795 .proc_handler = proc_dointvec_jiffies,
796 },
797 {
798 .procname = "printk_ratelimit_burst",
799 .data = &printk_ratelimit_state.burst,
800 .maxlen = sizeof(int),
801 .mode = 0644,
802 .proc_handler = proc_dointvec,
803 },
804 {
805 .procname = "printk_delay",
806 .data = &printk_delay_msec,
807 .maxlen = sizeof(int),
808 .mode = 0644,
809 .proc_handler = proc_dointvec_minmax,
810 .extra1 = &zero,
811 .extra2 = &ten_thousand,
812 },
813 {
814 .procname = "dmesg_restrict",
815 .data = &dmesg_restrict,
816 .maxlen = sizeof(int),
817 .mode = 0644,
818 .proc_handler = proc_dointvec_minmax_sysadmin,
819 .extra1 = &zero,
820 .extra2 = &one,
821 },
822 {
823 .procname = "kptr_restrict",
824 .data = &kptr_restrict,
825 .maxlen = sizeof(int),
826 .mode = 0644,
827 .proc_handler = proc_dointvec_minmax_sysadmin,
828 .extra1 = &zero,
829 .extra2 = &two,
830 },
831#endif
832 {
833 .procname = "ngroups_max",
834 .data = &ngroups_max,
835 .maxlen = sizeof (int),
836 .mode = 0444,
837 .proc_handler = proc_dointvec,
838 },
839 {
840 .procname = "cap_last_cap",
841 .data = (void *)&cap_last_cap,
842 .maxlen = sizeof(int),
843 .mode = 0444,
844 .proc_handler = proc_dointvec,
845 },
846#if defined(CONFIG_LOCKUP_DETECTOR)
847 {
848 .procname = "watchdog",
849 .data = &watchdog_user_enabled,
850 .maxlen = sizeof (int),
851 .mode = 0644,
852 .proc_handler = proc_watchdog,
853 .extra1 = &zero,
854 .extra2 = &one,
855 },
856 {
857 .procname = "watchdog_thresh",
858 .data = &watchdog_thresh,
859 .maxlen = sizeof(int),
860 .mode = 0644,
861 .proc_handler = proc_watchdog_thresh,
862 .extra1 = &zero,
863 .extra2 = &sixty,
864 },
865 {
866 .procname = "nmi_watchdog",
867 .data = &nmi_watchdog_enabled,
868 .maxlen = sizeof (int),
869 .mode = 0644,
870 .proc_handler = proc_nmi_watchdog,
871 .extra1 = &zero,
872#if defined(CONFIG_HAVE_NMI_WATCHDOG) || defined(CONFIG_HARDLOCKUP_DETECTOR)
873 .extra2 = &one,
874#else
875 .extra2 = &zero,
876#endif
877 },
878 {
879 .procname = "soft_watchdog",
880 .data = &soft_watchdog_enabled,
881 .maxlen = sizeof (int),
882 .mode = 0644,
883 .proc_handler = proc_soft_watchdog,
884 .extra1 = &zero,
885 .extra2 = &one,
886 },
887 {
888 .procname = "watchdog_cpumask",
889 .data = &watchdog_cpumask_bits,
890 .maxlen = NR_CPUS,
891 .mode = 0644,
892 .proc_handler = proc_watchdog_cpumask,
893 },
894 {
895 .procname = "softlockup_panic",
896 .data = &softlockup_panic,
897 .maxlen = sizeof(int),
898 .mode = 0644,
899 .proc_handler = proc_dointvec_minmax,
900 .extra1 = &zero,
901 .extra2 = &one,
902 },
903#ifdef CONFIG_HARDLOCKUP_DETECTOR
904 {
905 .procname = "hardlockup_panic",
906 .data = &hardlockup_panic,
907 .maxlen = sizeof(int),
908 .mode = 0644,
909 .proc_handler = proc_dointvec_minmax,
910 .extra1 = &zero,
911 .extra2 = &one,
912 },
913#endif
914#ifdef CONFIG_SMP
915 {
916 .procname = "softlockup_all_cpu_backtrace",
917 .data = &sysctl_softlockup_all_cpu_backtrace,
918 .maxlen = sizeof(int),
919 .mode = 0644,
920 .proc_handler = proc_dointvec_minmax,
921 .extra1 = &zero,
922 .extra2 = &one,
923 },
924 {
925 .procname = "hardlockup_all_cpu_backtrace",
926 .data = &sysctl_hardlockup_all_cpu_backtrace,
927 .maxlen = sizeof(int),
928 .mode = 0644,
929 .proc_handler = proc_dointvec_minmax,
930 .extra1 = &zero,
931 .extra2 = &one,
932 },
933#endif /* CONFIG_SMP */
934#endif
935#if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86)
936 {
937 .procname = "unknown_nmi_panic",
938 .data = &unknown_nmi_panic,
939 .maxlen = sizeof (int),
940 .mode = 0644,
941 .proc_handler = proc_dointvec,
942 },
943#endif
944#if defined(CONFIG_X86)
945 {
946 .procname = "panic_on_unrecovered_nmi",
947 .data = &panic_on_unrecovered_nmi,
948 .maxlen = sizeof(int),
949 .mode = 0644,
950 .proc_handler = proc_dointvec,
951 },
952 {
953 .procname = "panic_on_io_nmi",
954 .data = &panic_on_io_nmi,
955 .maxlen = sizeof(int),
956 .mode = 0644,
957 .proc_handler = proc_dointvec,
958 },
959#ifdef CONFIG_DEBUG_STACKOVERFLOW
960 {
961 .procname = "panic_on_stackoverflow",
962 .data = &sysctl_panic_on_stackoverflow,
963 .maxlen = sizeof(int),
964 .mode = 0644,
965 .proc_handler = proc_dointvec,
966 },
967#endif
968 {
969 .procname = "bootloader_type",
970 .data = &bootloader_type,
971 .maxlen = sizeof (int),
972 .mode = 0444,
973 .proc_handler = proc_dointvec,
974 },
975 {
976 .procname = "bootloader_version",
977 .data = &bootloader_version,
978 .maxlen = sizeof (int),
979 .mode = 0444,
980 .proc_handler = proc_dointvec,
981 },
982 {
983 .procname = "kstack_depth_to_print",
984 .data = &kstack_depth_to_print,
985 .maxlen = sizeof(int),
986 .mode = 0644,
987 .proc_handler = proc_dointvec,
988 },
989 {
990 .procname = "io_delay_type",
991 .data = &io_delay_type,
992 .maxlen = sizeof(int),
993 .mode = 0644,
994 .proc_handler = proc_dointvec,
995 },
996#endif
997#if defined(CONFIG_MMU)
998 {
999 .procname = "randomize_va_space",
1000 .data = &randomize_va_space,
1001 .maxlen = sizeof(int),
1002 .mode = 0644,
1003 .proc_handler = proc_dointvec,
1004 },
1005#endif
1006#if defined(CONFIG_S390) && defined(CONFIG_SMP)
1007 {
1008 .procname = "spin_retry",
1009 .data = &spin_retry,
1010 .maxlen = sizeof (int),
1011 .mode = 0644,
1012 .proc_handler = proc_dointvec,
1013 },
1014#endif
1015#if defined(CONFIG_ACPI_SLEEP) && defined(CONFIG_X86)
1016 {
1017 .procname = "acpi_video_flags",
1018 .data = &acpi_realmode_flags,
1019 .maxlen = sizeof (unsigned long),
1020 .mode = 0644,
1021 .proc_handler = proc_doulongvec_minmax,
1022 },
1023#endif
1024#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
1025 {
1026 .procname = "ignore-unaligned-usertrap",
1027 .data = &no_unaligned_warning,
1028 .maxlen = sizeof (int),
1029 .mode = 0644,
1030 .proc_handler = proc_dointvec,
1031 },
1032#endif
1033#ifdef CONFIG_IA64
1034 {
1035 .procname = "unaligned-dump-stack",
1036 .data = &unaligned_dump_stack,
1037 .maxlen = sizeof (int),
1038 .mode = 0644,
1039 .proc_handler = proc_dointvec,
1040 },
1041#endif
1042#ifdef CONFIG_DETECT_HUNG_TASK
1043 {
1044 .procname = "hung_task_panic",
1045 .data = &sysctl_hung_task_panic,
1046 .maxlen = sizeof(int),
1047 .mode = 0644,
1048 .proc_handler = proc_dointvec_minmax,
1049 .extra1 = &zero,
1050 .extra2 = &one,
1051 },
1052 {
1053 .procname = "hung_task_check_count",
1054 .data = &sysctl_hung_task_check_count,
1055 .maxlen = sizeof(int),
1056 .mode = 0644,
1057 .proc_handler = proc_dointvec_minmax,
1058 .extra1 = &zero,
1059 },
1060 {
1061 .procname = "hung_task_timeout_secs",
1062 .data = &sysctl_hung_task_timeout_secs,
1063 .maxlen = sizeof(unsigned long),
1064 .mode = 0644,
1065 .proc_handler = proc_dohung_task_timeout_secs,
1066 .extra2 = &hung_task_timeout_max,
1067 },
1068 {
1069 .procname = "hung_task_warnings",
1070 .data = &sysctl_hung_task_warnings,
1071 .maxlen = sizeof(int),
1072 .mode = 0644,
1073 .proc_handler = proc_dointvec_minmax,
1074 .extra1 = &neg_one,
1075 },
1076#endif
1077#ifdef CONFIG_COMPAT
1078 {
1079 .procname = "compat-log",
1080 .data = &compat_log,
1081 .maxlen = sizeof (int),
1082 .mode = 0644,
1083 .proc_handler = proc_dointvec,
1084 },
1085#endif
1086#ifdef CONFIG_RT_MUTEXES
1087 {
1088 .procname = "max_lock_depth",
1089 .data = &max_lock_depth,
1090 .maxlen = sizeof(int),
1091 .mode = 0644,
1092 .proc_handler = proc_dointvec,
1093 },
1094#endif
1095 {
1096 .procname = "poweroff_cmd",
1097 .data = &poweroff_cmd,
1098 .maxlen = POWEROFF_CMD_PATH_LEN,
1099 .mode = 0644,
1100 .proc_handler = proc_dostring,
1101 },
1102#ifdef CONFIG_KEYS
1103 {
1104 .procname = "keys",
1105 .mode = 0555,
1106 .child = key_sysctls,
1107 },
1108#endif
1109#ifdef CONFIG_PERF_EVENTS
1110 /*
1111 * User-space scripts rely on the existence of this file
1112 * as a feature check for perf_events being enabled.
1113 *
1114 * So it's an ABI, do not remove!
1115 */
1116 {
1117 .procname = "perf_event_paranoid",
1118 .data = &sysctl_perf_event_paranoid,
1119 .maxlen = sizeof(sysctl_perf_event_paranoid),
1120 .mode = 0644,
1121 .proc_handler = proc_dointvec,
1122 },
1123 {
1124 .procname = "perf_event_mlock_kb",
1125 .data = &sysctl_perf_event_mlock,
1126 .maxlen = sizeof(sysctl_perf_event_mlock),
1127 .mode = 0644,
1128 .proc_handler = proc_dointvec,
1129 },
1130 {
1131 .procname = "perf_event_max_sample_rate",
1132 .data = &sysctl_perf_event_sample_rate,
1133 .maxlen = sizeof(sysctl_perf_event_sample_rate),
1134 .mode = 0644,
1135 .proc_handler = perf_proc_update_handler,
1136 .extra1 = &one,
1137 },
1138 {
1139 .procname = "perf_cpu_time_max_percent",
1140 .data = &sysctl_perf_cpu_time_max_percent,
1141 .maxlen = sizeof(sysctl_perf_cpu_time_max_percent),
1142 .mode = 0644,
1143 .proc_handler = perf_cpu_time_max_percent_handler,
1144 .extra1 = &zero,
1145 .extra2 = &one_hundred,
1146 },
1147#endif
1148#ifdef CONFIG_KMEMCHECK
1149 {
1150 .procname = "kmemcheck",
1151 .data = &kmemcheck_enabled,
1152 .maxlen = sizeof(int),
1153 .mode = 0644,
1154 .proc_handler = proc_dointvec,
1155 },
1156#endif
1157 {
1158 .procname = "panic_on_warn",
1159 .data = &panic_on_warn,
1160 .maxlen = sizeof(int),
1161 .mode = 0644,
1162 .proc_handler = proc_dointvec_minmax,
1163 .extra1 = &zero,
1164 .extra2 = &one,
1165 },
1166#if defined(CONFIG_SMP) && defined(CONFIG_NO_HZ_COMMON)
1167 {
1168 .procname = "timer_migration",
1169 .data = &sysctl_timer_migration,
1170 .maxlen = sizeof(unsigned int),
1171 .mode = 0644,
1172 .proc_handler = timer_migration_handler,
1173 },
1174#endif
1175#ifdef CONFIG_BPF_SYSCALL
1176 {
1177 .procname = "unprivileged_bpf_disabled",
1178 .data = &sysctl_unprivileged_bpf_disabled,
1179 .maxlen = sizeof(sysctl_unprivileged_bpf_disabled),
1180 .mode = 0644,
1181 /* only handle a transition from default "0" to "1" */
1182 .proc_handler = proc_dointvec_minmax,
1183 .extra1 = &one,
1184 .extra2 = &one,
1185 },
1186#endif
1187 { }
1188};
1189
1190static struct ctl_table vm_table[] = {
1191 {
1192 .procname = "overcommit_memory",
1193 .data = &sysctl_overcommit_memory,
1194 .maxlen = sizeof(sysctl_overcommit_memory),
1195 .mode = 0644,
1196 .proc_handler = proc_dointvec_minmax,
1197 .extra1 = &zero,
1198 .extra2 = &two,
1199 },
1200 {
1201 .procname = "panic_on_oom",
1202 .data = &sysctl_panic_on_oom,
1203 .maxlen = sizeof(sysctl_panic_on_oom),
1204 .mode = 0644,
1205 .proc_handler = proc_dointvec_minmax,
1206 .extra1 = &zero,
1207 .extra2 = &two,
1208 },
1209 {
1210 .procname = "oom_kill_allocating_task",
1211 .data = &sysctl_oom_kill_allocating_task,
1212 .maxlen = sizeof(sysctl_oom_kill_allocating_task),
1213 .mode = 0644,
1214 .proc_handler = proc_dointvec,
1215 },
1216 {
1217 .procname = "oom_dump_tasks",
1218 .data = &sysctl_oom_dump_tasks,
1219 .maxlen = sizeof(sysctl_oom_dump_tasks),
1220 .mode = 0644,
1221 .proc_handler = proc_dointvec,
1222 },
1223 {
1224 .procname = "overcommit_ratio",
1225 .data = &sysctl_overcommit_ratio,
1226 .maxlen = sizeof(sysctl_overcommit_ratio),
1227 .mode = 0644,
1228 .proc_handler = overcommit_ratio_handler,
1229 },
1230 {
1231 .procname = "overcommit_kbytes",
1232 .data = &sysctl_overcommit_kbytes,
1233 .maxlen = sizeof(sysctl_overcommit_kbytes),
1234 .mode = 0644,
1235 .proc_handler = overcommit_kbytes_handler,
1236 },
1237 {
1238 .procname = "page-cluster",
1239 .data = &page_cluster,
1240 .maxlen = sizeof(int),
1241 .mode = 0644,
1242 .proc_handler = proc_dointvec_minmax,
1243 .extra1 = &zero,
1244 },
1245 {
1246 .procname = "dirty_background_ratio",
1247 .data = &dirty_background_ratio,
1248 .maxlen = sizeof(dirty_background_ratio),
1249 .mode = 0644,
1250 .proc_handler = dirty_background_ratio_handler,
1251 .extra1 = &zero,
1252 .extra2 = &one_hundred,
1253 },
1254 {
1255 .procname = "dirty_background_bytes",
1256 .data = &dirty_background_bytes,
1257 .maxlen = sizeof(dirty_background_bytes),
1258 .mode = 0644,
1259 .proc_handler = dirty_background_bytes_handler,
1260 .extra1 = &one_ul,
1261 },
1262 {
1263 .procname = "dirty_ratio",
1264 .data = &vm_dirty_ratio,
1265 .maxlen = sizeof(vm_dirty_ratio),
1266 .mode = 0644,
1267 .proc_handler = dirty_ratio_handler,
1268 .extra1 = &zero,
1269 .extra2 = &one_hundred,
1270 },
1271 {
1272 .procname = "dirty_bytes",
1273 .data = &vm_dirty_bytes,
1274 .maxlen = sizeof(vm_dirty_bytes),
1275 .mode = 0644,
1276 .proc_handler = dirty_bytes_handler,
1277 .extra1 = &dirty_bytes_min,
1278 },
1279 {
1280 .procname = "dirty_writeback_centisecs",
1281 .data = &dirty_writeback_interval,
1282 .maxlen = sizeof(dirty_writeback_interval),
1283 .mode = 0644,
1284 .proc_handler = dirty_writeback_centisecs_handler,
1285 },
1286 {
1287 .procname = "dirty_expire_centisecs",
1288 .data = &dirty_expire_interval,
1289 .maxlen = sizeof(dirty_expire_interval),
1290 .mode = 0644,
1291 .proc_handler = proc_dointvec_minmax,
1292 .extra1 = &zero,
1293 },
1294 {
1295 .procname = "dirtytime_expire_seconds",
1296 .data = &dirtytime_expire_interval,
1297 .maxlen = sizeof(dirty_expire_interval),
1298 .mode = 0644,
1299 .proc_handler = dirtytime_interval_handler,
1300 .extra1 = &zero,
1301 },
1302 {
1303 .procname = "nr_pdflush_threads",
1304 .mode = 0444 /* read-only */,
1305 .proc_handler = pdflush_proc_obsolete,
1306 },
1307 {
1308 .procname = "swappiness",
1309 .data = &vm_swappiness,
1310 .maxlen = sizeof(vm_swappiness),
1311 .mode = 0644,
1312 .proc_handler = proc_dointvec_minmax,
1313 .extra1 = &zero,
1314 .extra2 = &one_hundred,
1315 },
1316#ifdef CONFIG_HUGETLB_PAGE
1317 {
1318 .procname = "nr_hugepages",
1319 .data = NULL,
1320 .maxlen = sizeof(unsigned long),
1321 .mode = 0644,
1322 .proc_handler = hugetlb_sysctl_handler,
1323 },
1324#ifdef CONFIG_NUMA
1325 {
1326 .procname = "nr_hugepages_mempolicy",
1327 .data = NULL,
1328 .maxlen = sizeof(unsigned long),
1329 .mode = 0644,
1330 .proc_handler = &hugetlb_mempolicy_sysctl_handler,
1331 },
1332#endif
1333 {
1334 .procname = "hugetlb_shm_group",
1335 .data = &sysctl_hugetlb_shm_group,
1336 .maxlen = sizeof(gid_t),
1337 .mode = 0644,
1338 .proc_handler = proc_dointvec,
1339 },
1340 {
1341 .procname = "hugepages_treat_as_movable",
1342 .data = &hugepages_treat_as_movable,
1343 .maxlen = sizeof(int),
1344 .mode = 0644,
1345 .proc_handler = proc_dointvec,
1346 },
1347 {
1348 .procname = "nr_overcommit_hugepages",
1349 .data = NULL,
1350 .maxlen = sizeof(unsigned long),
1351 .mode = 0644,
1352 .proc_handler = hugetlb_overcommit_handler,
1353 },
1354#endif
1355 {
1356 .procname = "lowmem_reserve_ratio",
1357 .data = &sysctl_lowmem_reserve_ratio,
1358 .maxlen = sizeof(sysctl_lowmem_reserve_ratio),
1359 .mode = 0644,
1360 .proc_handler = lowmem_reserve_ratio_sysctl_handler,
1361 },
1362 {
1363 .procname = "drop_caches",
1364 .data = &sysctl_drop_caches,
1365 .maxlen = sizeof(int),
1366 .mode = 0644,
1367 .proc_handler = drop_caches_sysctl_handler,
1368 .extra1 = &one,
1369 .extra2 = &four,
1370 },
1371#ifdef CONFIG_COMPACTION
1372 {
1373 .procname = "compact_memory",
1374 .data = &sysctl_compact_memory,
1375 .maxlen = sizeof(int),
1376 .mode = 0200,
1377 .proc_handler = sysctl_compaction_handler,
1378 },
1379 {
1380 .procname = "extfrag_threshold",
1381 .data = &sysctl_extfrag_threshold,
1382 .maxlen = sizeof(int),
1383 .mode = 0644,
1384 .proc_handler = sysctl_extfrag_handler,
1385 .extra1 = &min_extfrag_threshold,
1386 .extra2 = &max_extfrag_threshold,
1387 },
1388 {
1389 .procname = "compact_unevictable_allowed",
1390 .data = &sysctl_compact_unevictable_allowed,
1391 .maxlen = sizeof(int),
1392 .mode = 0644,
1393 .proc_handler = proc_dointvec,
1394 .extra1 = &zero,
1395 .extra2 = &one,
1396 },
1397
1398#endif /* CONFIG_COMPACTION */
1399 {
1400 .procname = "min_free_kbytes",
1401 .data = &min_free_kbytes,
1402 .maxlen = sizeof(min_free_kbytes),
1403 .mode = 0644,
1404 .proc_handler = min_free_kbytes_sysctl_handler,
1405 .extra1 = &zero,
1406 },
1407 {
1408 .procname = "watermark_scale_factor",
1409 .data = &watermark_scale_factor,
1410 .maxlen = sizeof(watermark_scale_factor),
1411 .mode = 0644,
1412 .proc_handler = watermark_scale_factor_sysctl_handler,
1413 .extra1 = &one,
1414 .extra2 = &one_thousand,
1415 },
1416 {
1417 .procname = "percpu_pagelist_fraction",
1418 .data = &percpu_pagelist_fraction,
1419 .maxlen = sizeof(percpu_pagelist_fraction),
1420 .mode = 0644,
1421 .proc_handler = percpu_pagelist_fraction_sysctl_handler,
1422 .extra1 = &zero,
1423 },
1424#ifdef CONFIG_MMU
1425 {
1426 .procname = "max_map_count",
1427 .data = &sysctl_max_map_count,
1428 .maxlen = sizeof(sysctl_max_map_count),
1429 .mode = 0644,
1430 .proc_handler = proc_dointvec_minmax,
1431 .extra1 = &zero,
1432 },
1433#else
1434 {
1435 .procname = "nr_trim_pages",
1436 .data = &sysctl_nr_trim_pages,
1437 .maxlen = sizeof(sysctl_nr_trim_pages),
1438 .mode = 0644,
1439 .proc_handler = proc_dointvec_minmax,
1440 .extra1 = &zero,
1441 },
1442#endif
1443 {
1444 .procname = "laptop_mode",
1445 .data = &laptop_mode,
1446 .maxlen = sizeof(laptop_mode),
1447 .mode = 0644,
1448 .proc_handler = proc_dointvec_jiffies,
1449 },
1450 {
1451 .procname = "block_dump",
1452 .data = &block_dump,
1453 .maxlen = sizeof(block_dump),
1454 .mode = 0644,
1455 .proc_handler = proc_dointvec,
1456 .extra1 = &zero,
1457 },
1458 {
1459 .procname = "vfs_cache_pressure",
1460 .data = &sysctl_vfs_cache_pressure,
1461 .maxlen = sizeof(sysctl_vfs_cache_pressure),
1462 .mode = 0644,
1463 .proc_handler = proc_dointvec,
1464 .extra1 = &zero,
1465 },
1466#ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
1467 {
1468 .procname = "legacy_va_layout",
1469 .data = &sysctl_legacy_va_layout,
1470 .maxlen = sizeof(sysctl_legacy_va_layout),
1471 .mode = 0644,
1472 .proc_handler = proc_dointvec,
1473 .extra1 = &zero,
1474 },
1475#endif
1476#ifdef CONFIG_NUMA
1477 {
1478 .procname = "zone_reclaim_mode",
1479 .data = &zone_reclaim_mode,
1480 .maxlen = sizeof(zone_reclaim_mode),
1481 .mode = 0644,
1482 .proc_handler = proc_dointvec,
1483 .extra1 = &zero,
1484 },
1485 {
1486 .procname = "min_unmapped_ratio",
1487 .data = &sysctl_min_unmapped_ratio,
1488 .maxlen = sizeof(sysctl_min_unmapped_ratio),
1489 .mode = 0644,
1490 .proc_handler = sysctl_min_unmapped_ratio_sysctl_handler,
1491 .extra1 = &zero,
1492 .extra2 = &one_hundred,
1493 },
1494 {
1495 .procname = "min_slab_ratio",
1496 .data = &sysctl_min_slab_ratio,
1497 .maxlen = sizeof(sysctl_min_slab_ratio),
1498 .mode = 0644,
1499 .proc_handler = sysctl_min_slab_ratio_sysctl_handler,
1500 .extra1 = &zero,
1501 .extra2 = &one_hundred,
1502 },
1503#endif
1504#ifdef CONFIG_SMP
1505 {
1506 .procname = "stat_interval",
1507 .data = &sysctl_stat_interval,
1508 .maxlen = sizeof(sysctl_stat_interval),
1509 .mode = 0644,
1510 .proc_handler = proc_dointvec_jiffies,
1511 },
1512#endif
1513#ifdef CONFIG_MMU
1514 {
1515 .procname = "mmap_min_addr",
1516 .data = &dac_mmap_min_addr,
1517 .maxlen = sizeof(unsigned long),
1518 .mode = 0644,
1519 .proc_handler = mmap_min_addr_handler,
1520 },
1521#endif
1522#ifdef CONFIG_NUMA
1523 {
1524 .procname = "numa_zonelist_order",
1525 .data = &numa_zonelist_order,
1526 .maxlen = NUMA_ZONELIST_ORDER_LEN,
1527 .mode = 0644,
1528 .proc_handler = numa_zonelist_order_handler,
1529 },
1530#endif
1531#if (defined(CONFIG_X86_32) && !defined(CONFIG_UML))|| \
1532 (defined(CONFIG_SUPERH) && defined(CONFIG_VSYSCALL))
1533 {
1534 .procname = "vdso_enabled",
1535#ifdef CONFIG_X86_32
1536 .data = &vdso32_enabled,
1537 .maxlen = sizeof(vdso32_enabled),
1538#else
1539 .data = &vdso_enabled,
1540 .maxlen = sizeof(vdso_enabled),
1541#endif
1542 .mode = 0644,
1543 .proc_handler = proc_dointvec,
1544 .extra1 = &zero,
1545 },
1546#endif
1547#ifdef CONFIG_HIGHMEM
1548 {
1549 .procname = "highmem_is_dirtyable",
1550 .data = &vm_highmem_is_dirtyable,
1551 .maxlen = sizeof(vm_highmem_is_dirtyable),
1552 .mode = 0644,
1553 .proc_handler = proc_dointvec_minmax,
1554 .extra1 = &zero,
1555 .extra2 = &one,
1556 },
1557#endif
1558#ifdef CONFIG_MEMORY_FAILURE
1559 {
1560 .procname = "memory_failure_early_kill",
1561 .data = &sysctl_memory_failure_early_kill,
1562 .maxlen = sizeof(sysctl_memory_failure_early_kill),
1563 .mode = 0644,
1564 .proc_handler = proc_dointvec_minmax,
1565 .extra1 = &zero,
1566 .extra2 = &one,
1567 },
1568 {
1569 .procname = "memory_failure_recovery",
1570 .data = &sysctl_memory_failure_recovery,
1571 .maxlen = sizeof(sysctl_memory_failure_recovery),
1572 .mode = 0644,
1573 .proc_handler = proc_dointvec_minmax,
1574 .extra1 = &zero,
1575 .extra2 = &one,
1576 },
1577#endif
1578 {
1579 .procname = "user_reserve_kbytes",
1580 .data = &sysctl_user_reserve_kbytes,
1581 .maxlen = sizeof(sysctl_user_reserve_kbytes),
1582 .mode = 0644,
1583 .proc_handler = proc_doulongvec_minmax,
1584 },
1585 {
1586 .procname = "admin_reserve_kbytes",
1587 .data = &sysctl_admin_reserve_kbytes,
1588 .maxlen = sizeof(sysctl_admin_reserve_kbytes),
1589 .mode = 0644,
1590 .proc_handler = proc_doulongvec_minmax,
1591 },
1592#ifdef CONFIG_HAVE_ARCH_MMAP_RND_BITS
1593 {
1594 .procname = "mmap_rnd_bits",
1595 .data = &mmap_rnd_bits,
1596 .maxlen = sizeof(mmap_rnd_bits),
1597 .mode = 0600,
1598 .proc_handler = proc_dointvec_minmax,
1599 .extra1 = (void *)&mmap_rnd_bits_min,
1600 .extra2 = (void *)&mmap_rnd_bits_max,
1601 },
1602#endif
1603#ifdef CONFIG_HAVE_ARCH_MMAP_RND_COMPAT_BITS
1604 {
1605 .procname = "mmap_rnd_compat_bits",
1606 .data = &mmap_rnd_compat_bits,
1607 .maxlen = sizeof(mmap_rnd_compat_bits),
1608 .mode = 0600,
1609 .proc_handler = proc_dointvec_minmax,
1610 .extra1 = (void *)&mmap_rnd_compat_bits_min,
1611 .extra2 = (void *)&mmap_rnd_compat_bits_max,
1612 },
1613#endif
1614 { }
1615};
1616
1617static struct ctl_table fs_table[] = {
1618 {
1619 .procname = "inode-nr",
1620 .data = &inodes_stat,
1621 .maxlen = 2*sizeof(long),
1622 .mode = 0444,
1623 .proc_handler = proc_nr_inodes,
1624 },
1625 {
1626 .procname = "inode-state",
1627 .data = &inodes_stat,
1628 .maxlen = 7*sizeof(long),
1629 .mode = 0444,
1630 .proc_handler = proc_nr_inodes,
1631 },
1632 {
1633 .procname = "file-nr",
1634 .data = &files_stat,
1635 .maxlen = sizeof(files_stat),
1636 .mode = 0444,
1637 .proc_handler = proc_nr_files,
1638 },
1639 {
1640 .procname = "file-max",
1641 .data = &files_stat.max_files,
1642 .maxlen = sizeof(files_stat.max_files),
1643 .mode = 0644,
1644 .proc_handler = proc_doulongvec_minmax,
1645 },
1646 {
1647 .procname = "nr_open",
1648 .data = &sysctl_nr_open,
1649 .maxlen = sizeof(int),
1650 .mode = 0644,
1651 .proc_handler = proc_dointvec_minmax,
1652 .extra1 = &sysctl_nr_open_min,
1653 .extra2 = &sysctl_nr_open_max,
1654 },
1655 {
1656 .procname = "dentry-state",
1657 .data = &dentry_stat,
1658 .maxlen = 6*sizeof(long),
1659 .mode = 0444,
1660 .proc_handler = proc_nr_dentry,
1661 },
1662 {
1663 .procname = "overflowuid",
1664 .data = &fs_overflowuid,
1665 .maxlen = sizeof(int),
1666 .mode = 0644,
1667 .proc_handler = proc_dointvec_minmax,
1668 .extra1 = &minolduid,
1669 .extra2 = &maxolduid,
1670 },
1671 {
1672 .procname = "overflowgid",
1673 .data = &fs_overflowgid,
1674 .maxlen = sizeof(int),
1675 .mode = 0644,
1676 .proc_handler = proc_dointvec_minmax,
1677 .extra1 = &minolduid,
1678 .extra2 = &maxolduid,
1679 },
1680#ifdef CONFIG_FILE_LOCKING
1681 {
1682 .procname = "leases-enable",
1683 .data = &leases_enable,
1684 .maxlen = sizeof(int),
1685 .mode = 0644,
1686 .proc_handler = proc_dointvec,
1687 },
1688#endif
1689#ifdef CONFIG_DNOTIFY
1690 {
1691 .procname = "dir-notify-enable",
1692 .data = &dir_notify_enable,
1693 .maxlen = sizeof(int),
1694 .mode = 0644,
1695 .proc_handler = proc_dointvec,
1696 },
1697#endif
1698#ifdef CONFIG_MMU
1699#ifdef CONFIG_FILE_LOCKING
1700 {
1701 .procname = "lease-break-time",
1702 .data = &lease_break_time,
1703 .maxlen = sizeof(int),
1704 .mode = 0644,
1705 .proc_handler = proc_dointvec,
1706 },
1707#endif
1708#ifdef CONFIG_AIO
1709 {
1710 .procname = "aio-nr",
1711 .data = &aio_nr,
1712 .maxlen = sizeof(aio_nr),
1713 .mode = 0444,
1714 .proc_handler = proc_doulongvec_minmax,
1715 },
1716 {
1717 .procname = "aio-max-nr",
1718 .data = &aio_max_nr,
1719 .maxlen = sizeof(aio_max_nr),
1720 .mode = 0644,
1721 .proc_handler = proc_doulongvec_minmax,
1722 },
1723#endif /* CONFIG_AIO */
1724#ifdef CONFIG_INOTIFY_USER
1725 {
1726 .procname = "inotify",
1727 .mode = 0555,
1728 .child = inotify_table,
1729 },
1730#endif
1731#ifdef CONFIG_EPOLL
1732 {
1733 .procname = "epoll",
1734 .mode = 0555,
1735 .child = epoll_table,
1736 },
1737#endif
1738#endif
1739 {
1740 .procname = "protected_symlinks",
1741 .data = &sysctl_protected_symlinks,
1742 .maxlen = sizeof(int),
1743 .mode = 0600,
1744 .proc_handler = proc_dointvec_minmax,
1745 .extra1 = &zero,
1746 .extra2 = &one,
1747 },
1748 {
1749 .procname = "protected_hardlinks",
1750 .data = &sysctl_protected_hardlinks,
1751 .maxlen = sizeof(int),
1752 .mode = 0600,
1753 .proc_handler = proc_dointvec_minmax,
1754 .extra1 = &zero,
1755 .extra2 = &one,
1756 },
1757 {
1758 .procname = "suid_dumpable",
1759 .data = &suid_dumpable,
1760 .maxlen = sizeof(int),
1761 .mode = 0644,
1762 .proc_handler = proc_dointvec_minmax_coredump,
1763 .extra1 = &zero,
1764 .extra2 = &two,
1765 },
1766#if defined(CONFIG_BINFMT_MISC) || defined(CONFIG_BINFMT_MISC_MODULE)
1767 {
1768 .procname = "binfmt_misc",
1769 .mode = 0555,
1770 .child = sysctl_mount_point,
1771 },
1772#endif
1773 {
1774 .procname = "pipe-max-size",
1775 .data = &pipe_max_size,
1776 .maxlen = sizeof(int),
1777 .mode = 0644,
1778 .proc_handler = &pipe_proc_fn,
1779 .extra1 = &pipe_min_size,
1780 },
1781 {
1782 .procname = "pipe-user-pages-hard",
1783 .data = &pipe_user_pages_hard,
1784 .maxlen = sizeof(pipe_user_pages_hard),
1785 .mode = 0644,
1786 .proc_handler = proc_doulongvec_minmax,
1787 },
1788 {
1789 .procname = "pipe-user-pages-soft",
1790 .data = &pipe_user_pages_soft,
1791 .maxlen = sizeof(pipe_user_pages_soft),
1792 .mode = 0644,
1793 .proc_handler = proc_doulongvec_minmax,
1794 },
1795 { }
1796};
1797
1798static struct ctl_table debug_table[] = {
1799#ifdef CONFIG_SYSCTL_EXCEPTION_TRACE
1800 {
1801 .procname = "exception-trace",
1802 .data = &show_unhandled_signals,
1803 .maxlen = sizeof(int),
1804 .mode = 0644,
1805 .proc_handler = proc_dointvec
1806 },
1807#endif
1808#if defined(CONFIG_OPTPROBES)
1809 {
1810 .procname = "kprobes-optimization",
1811 .data = &sysctl_kprobes_optimization,
1812 .maxlen = sizeof(int),
1813 .mode = 0644,
1814 .proc_handler = proc_kprobes_optimization_handler,
1815 .extra1 = &zero,
1816 .extra2 = &one,
1817 },
1818#endif
1819 { }
1820};
1821
1822static struct ctl_table dev_table[] = {
1823 { }
1824};
1825
1826int __init sysctl_init(void)
1827{
1828 struct ctl_table_header *hdr;
1829
1830 hdr = register_sysctl_table(sysctl_base_table);
1831 kmemleak_not_leak(hdr);
1832 return 0;
1833}
1834
1835#endif /* CONFIG_SYSCTL */
1836
1837/*
1838 * /proc/sys support
1839 */
1840
1841#ifdef CONFIG_PROC_SYSCTL
1842
1843static int _proc_do_string(char *data, int maxlen, int write,
1844 char __user *buffer,
1845 size_t *lenp, loff_t *ppos)
1846{
1847 size_t len;
1848 char __user *p;
1849 char c;
1850
1851 if (!data || !maxlen || !*lenp) {
1852 *lenp = 0;
1853 return 0;
1854 }
1855
1856 if (write) {
1857 if (sysctl_writes_strict == SYSCTL_WRITES_STRICT) {
1858 /* Only continue writes not past the end of buffer. */
1859 len = strlen(data);
1860 if (len > maxlen - 1)
1861 len = maxlen - 1;
1862
1863 if (*ppos > len)
1864 return 0;
1865 len = *ppos;
1866 } else {
1867 /* Start writing from beginning of buffer. */
1868 len = 0;
1869 }
1870
1871 *ppos += *lenp;
1872 p = buffer;
1873 while ((p - buffer) < *lenp && len < maxlen - 1) {
1874 if (get_user(c, p++))
1875 return -EFAULT;
1876 if (c == 0 || c == '\n')
1877 break;
1878 data[len++] = c;
1879 }
1880 data[len] = 0;
1881 } else {
1882 len = strlen(data);
1883 if (len > maxlen)
1884 len = maxlen;
1885
1886 if (*ppos > len) {
1887 *lenp = 0;
1888 return 0;
1889 }
1890
1891 data += *ppos;
1892 len -= *ppos;
1893
1894 if (len > *lenp)
1895 len = *lenp;
1896 if (len)
1897 if (copy_to_user(buffer, data, len))
1898 return -EFAULT;
1899 if (len < *lenp) {
1900 if (put_user('\n', buffer + len))
1901 return -EFAULT;
1902 len++;
1903 }
1904 *lenp = len;
1905 *ppos += len;
1906 }
1907 return 0;
1908}
1909
1910static void warn_sysctl_write(struct ctl_table *table)
1911{
1912 pr_warn_once("%s wrote to %s when file position was not 0!\n"
1913 "This will not be supported in the future. To silence this\n"
1914 "warning, set kernel.sysctl_writes_strict = -1\n",
1915 current->comm, table->procname);
1916}
1917
1918/**
1919 * proc_dostring - read a string sysctl
1920 * @table: the sysctl table
1921 * @write: %TRUE if this is a write to the sysctl file
1922 * @buffer: the user buffer
1923 * @lenp: the size of the user buffer
1924 * @ppos: file position
1925 *
1926 * Reads/writes a string from/to the user buffer. If the kernel
1927 * buffer provided is not large enough to hold the string, the
1928 * string is truncated. The copied string is %NULL-terminated.
1929 * If the string is being read by the user process, it is copied
1930 * and a newline '\n' is added. It is truncated if the buffer is
1931 * not large enough.
1932 *
1933 * Returns 0 on success.
1934 */
1935int proc_dostring(struct ctl_table *table, int write,
1936 void __user *buffer, size_t *lenp, loff_t *ppos)
1937{
1938 if (write && *ppos && sysctl_writes_strict == SYSCTL_WRITES_WARN)
1939 warn_sysctl_write(table);
1940
1941 return _proc_do_string((char *)(table->data), table->maxlen, write,
1942 (char __user *)buffer, lenp, ppos);
1943}
1944
1945static size_t proc_skip_spaces(char **buf)
1946{
1947 size_t ret;
1948 char *tmp = skip_spaces(*buf);
1949 ret = tmp - *buf;
1950 *buf = tmp;
1951 return ret;
1952}
1953
1954static void proc_skip_char(char **buf, size_t *size, const char v)
1955{
1956 while (*size) {
1957 if (**buf != v)
1958 break;
1959 (*size)--;
1960 (*buf)++;
1961 }
1962}
1963
1964#define TMPBUFLEN 22
1965/**
1966 * proc_get_long - reads an ASCII formatted integer from a user buffer
1967 *
1968 * @buf: a kernel buffer
1969 * @size: size of the kernel buffer
1970 * @val: this is where the number will be stored
1971 * @neg: set to %TRUE if number is negative
1972 * @perm_tr: a vector which contains the allowed trailers
1973 * @perm_tr_len: size of the perm_tr vector
1974 * @tr: pointer to store the trailer character
1975 *
1976 * In case of success %0 is returned and @buf and @size are updated with
1977 * the amount of bytes read. If @tr is non-NULL and a trailing
1978 * character exists (size is non-zero after returning from this
1979 * function), @tr is updated with the trailing character.
1980 */
1981static int proc_get_long(char **buf, size_t *size,
1982 unsigned long *val, bool *neg,
1983 const char *perm_tr, unsigned perm_tr_len, char *tr)
1984{
1985 int len;
1986 char *p, tmp[TMPBUFLEN];
1987
1988 if (!*size)
1989 return -EINVAL;
1990
1991 len = *size;
1992 if (len > TMPBUFLEN - 1)
1993 len = TMPBUFLEN - 1;
1994
1995 memcpy(tmp, *buf, len);
1996
1997 tmp[len] = 0;
1998 p = tmp;
1999 if (*p == '-' && *size > 1) {
2000 *neg = true;
2001 p++;
2002 } else
2003 *neg = false;
2004 if (!isdigit(*p))
2005 return -EINVAL;
2006
2007 *val = simple_strtoul(p, &p, 0);
2008
2009 len = p - tmp;
2010
2011 /* We don't know if the next char is whitespace thus we may accept
2012 * invalid integers (e.g. 1234...a) or two integers instead of one
2013 * (e.g. 123...1). So lets not allow such large numbers. */
2014 if (len == TMPBUFLEN - 1)
2015 return -EINVAL;
2016
2017 if (len < *size && perm_tr_len && !memchr(perm_tr, *p, perm_tr_len))
2018 return -EINVAL;
2019
2020 if (tr && (len < *size))
2021 *tr = *p;
2022
2023 *buf += len;
2024 *size -= len;
2025
2026 return 0;
2027}
2028
2029/**
2030 * proc_put_long - converts an integer to a decimal ASCII formatted string
2031 *
2032 * @buf: the user buffer
2033 * @size: the size of the user buffer
2034 * @val: the integer to be converted
2035 * @neg: sign of the number, %TRUE for negative
2036 *
2037 * In case of success %0 is returned and @buf and @size are updated with
2038 * the amount of bytes written.
2039 */
2040static int proc_put_long(void __user **buf, size_t *size, unsigned long val,
2041 bool neg)
2042{
2043 int len;
2044 char tmp[TMPBUFLEN], *p = tmp;
2045
2046 sprintf(p, "%s%lu", neg ? "-" : "", val);
2047 len = strlen(tmp);
2048 if (len > *size)
2049 len = *size;
2050 if (copy_to_user(*buf, tmp, len))
2051 return -EFAULT;
2052 *size -= len;
2053 *buf += len;
2054 return 0;
2055}
2056#undef TMPBUFLEN
2057
2058static int proc_put_char(void __user **buf, size_t *size, char c)
2059{
2060 if (*size) {
2061 char __user **buffer = (char __user **)buf;
2062 if (put_user(c, *buffer))
2063 return -EFAULT;
2064 (*size)--, (*buffer)++;
2065 *buf = *buffer;
2066 }
2067 return 0;
2068}
2069
2070static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
2071 int *valp,
2072 int write, void *data)
2073{
2074 if (write) {
2075 if (*negp) {
2076 if (*lvalp > (unsigned long) INT_MAX + 1)
2077 return -EINVAL;
2078 *valp = -*lvalp;
2079 } else {
2080 if (*lvalp > (unsigned long) INT_MAX)
2081 return -EINVAL;
2082 *valp = *lvalp;
2083 }
2084 } else {
2085 int val = *valp;
2086 if (val < 0) {
2087 *negp = true;
2088 *lvalp = -(unsigned long)val;
2089 } else {
2090 *negp = false;
2091 *lvalp = (unsigned long)val;
2092 }
2093 }
2094 return 0;
2095}
2096
2097static const char proc_wspace_sep[] = { ' ', '\t', '\n' };
2098
2099static int __do_proc_dointvec(void *tbl_data, struct ctl_table *table,
2100 int write, void __user *buffer,
2101 size_t *lenp, loff_t *ppos,
2102 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2103 int write, void *data),
2104 void *data)
2105{
2106 int *i, vleft, first = 1, err = 0;
2107 size_t left;
2108 char *kbuf = NULL, *p;
2109
2110 if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
2111 *lenp = 0;
2112 return 0;
2113 }
2114
2115 i = (int *) tbl_data;
2116 vleft = table->maxlen / sizeof(*i);
2117 left = *lenp;
2118
2119 if (!conv)
2120 conv = do_proc_dointvec_conv;
2121
2122 if (write) {
2123 if (*ppos) {
2124 switch (sysctl_writes_strict) {
2125 case SYSCTL_WRITES_STRICT:
2126 goto out;
2127 case SYSCTL_WRITES_WARN:
2128 warn_sysctl_write(table);
2129 break;
2130 default:
2131 break;
2132 }
2133 }
2134
2135 if (left > PAGE_SIZE - 1)
2136 left = PAGE_SIZE - 1;
2137 p = kbuf = memdup_user_nul(buffer, left);
2138 if (IS_ERR(kbuf))
2139 return PTR_ERR(kbuf);
2140 }
2141
2142 for (; left && vleft--; i++, first=0) {
2143 unsigned long lval;
2144 bool neg;
2145
2146 if (write) {
2147 left -= proc_skip_spaces(&p);
2148
2149 if (!left)
2150 break;
2151 err = proc_get_long(&p, &left, &lval, &neg,
2152 proc_wspace_sep,
2153 sizeof(proc_wspace_sep), NULL);
2154 if (err)
2155 break;
2156 if (conv(&neg, &lval, i, 1, data)) {
2157 err = -EINVAL;
2158 break;
2159 }
2160 } else {
2161 if (conv(&neg, &lval, i, 0, data)) {
2162 err = -EINVAL;
2163 break;
2164 }
2165 if (!first)
2166 err = proc_put_char(&buffer, &left, '\t');
2167 if (err)
2168 break;
2169 err = proc_put_long(&buffer, &left, lval, neg);
2170 if (err)
2171 break;
2172 }
2173 }
2174
2175 if (!write && !first && left && !err)
2176 err = proc_put_char(&buffer, &left, '\n');
2177 if (write && !err && left)
2178 left -= proc_skip_spaces(&p);
2179 if (write) {
2180 kfree(kbuf);
2181 if (first)
2182 return err ? : -EINVAL;
2183 }
2184 *lenp -= left;
2185out:
2186 *ppos += *lenp;
2187 return err;
2188}
2189
2190static int do_proc_dointvec(struct ctl_table *table, int write,
2191 void __user *buffer, size_t *lenp, loff_t *ppos,
2192 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2193 int write, void *data),
2194 void *data)
2195{
2196 return __do_proc_dointvec(table->data, table, write,
2197 buffer, lenp, ppos, conv, data);
2198}
2199
2200/**
2201 * proc_dointvec - read a vector of integers
2202 * @table: the sysctl table
2203 * @write: %TRUE if this is a write to the sysctl file
2204 * @buffer: the user buffer
2205 * @lenp: the size of the user buffer
2206 * @ppos: file position
2207 *
2208 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2209 * values from/to the user buffer, treated as an ASCII string.
2210 *
2211 * Returns 0 on success.
2212 */
2213int proc_dointvec(struct ctl_table *table, int write,
2214 void __user *buffer, size_t *lenp, loff_t *ppos)
2215{
2216 return do_proc_dointvec(table,write,buffer,lenp,ppos,
2217 NULL,NULL);
2218}
2219
2220/*
2221 * Taint values can only be increased
2222 * This means we can safely use a temporary.
2223 */
2224static int proc_taint(struct ctl_table *table, int write,
2225 void __user *buffer, size_t *lenp, loff_t *ppos)
2226{
2227 struct ctl_table t;
2228 unsigned long tmptaint = get_taint();
2229 int err;
2230
2231 if (write && !capable(CAP_SYS_ADMIN))
2232 return -EPERM;
2233
2234 t = *table;
2235 t.data = &tmptaint;
2236 err = proc_doulongvec_minmax(&t, write, buffer, lenp, ppos);
2237 if (err < 0)
2238 return err;
2239
2240 if (write) {
2241 /*
2242 * Poor man's atomic or. Not worth adding a primitive
2243 * to everyone's atomic.h for this
2244 */
2245 int i;
2246 for (i = 0; i < BITS_PER_LONG && tmptaint >> i; i++) {
2247 if ((tmptaint >> i) & 1)
2248 add_taint(i, LOCKDEP_STILL_OK);
2249 }
2250 }
2251
2252 return err;
2253}
2254
2255#ifdef CONFIG_PRINTK
2256static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
2257 void __user *buffer, size_t *lenp, loff_t *ppos)
2258{
2259 if (write && !capable(CAP_SYS_ADMIN))
2260 return -EPERM;
2261
2262 return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2263}
2264#endif
2265
2266struct do_proc_dointvec_minmax_conv_param {
2267 int *min;
2268 int *max;
2269};
2270
2271static int do_proc_dointvec_minmax_conv(bool *negp, unsigned long *lvalp,
2272 int *valp,
2273 int write, void *data)
2274{
2275 struct do_proc_dointvec_minmax_conv_param *param = data;
2276 if (write) {
2277 int val = *negp ? -*lvalp : *lvalp;
2278 if ((param->min && *param->min > val) ||
2279 (param->max && *param->max < val))
2280 return -EINVAL;
2281 *valp = val;
2282 } else {
2283 int val = *valp;
2284 if (val < 0) {
2285 *negp = true;
2286 *lvalp = -(unsigned long)val;
2287 } else {
2288 *negp = false;
2289 *lvalp = (unsigned long)val;
2290 }
2291 }
2292 return 0;
2293}
2294
2295/**
2296 * proc_dointvec_minmax - read a vector of integers with min/max values
2297 * @table: the sysctl table
2298 * @write: %TRUE if this is a write to the sysctl file
2299 * @buffer: the user buffer
2300 * @lenp: the size of the user buffer
2301 * @ppos: file position
2302 *
2303 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2304 * values from/to the user buffer, treated as an ASCII string.
2305 *
2306 * This routine will ensure the values are within the range specified by
2307 * table->extra1 (min) and table->extra2 (max).
2308 *
2309 * Returns 0 on success.
2310 */
2311int proc_dointvec_minmax(struct ctl_table *table, int write,
2312 void __user *buffer, size_t *lenp, loff_t *ppos)
2313{
2314 struct do_proc_dointvec_minmax_conv_param param = {
2315 .min = (int *) table->extra1,
2316 .max = (int *) table->extra2,
2317 };
2318 return do_proc_dointvec(table, write, buffer, lenp, ppos,
2319 do_proc_dointvec_minmax_conv, ¶m);
2320}
2321
2322static void validate_coredump_safety(void)
2323{
2324#ifdef CONFIG_COREDUMP
2325 if (suid_dumpable == SUID_DUMP_ROOT &&
2326 core_pattern[0] != '/' && core_pattern[0] != '|') {
2327 printk(KERN_WARNING "Unsafe core_pattern used with "\
2328 "suid_dumpable=2. Pipe handler or fully qualified "\
2329 "core dump path required.\n");
2330 }
2331#endif
2332}
2333
2334static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
2335 void __user *buffer, size_t *lenp, loff_t *ppos)
2336{
2337 int error = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2338 if (!error)
2339 validate_coredump_safety();
2340 return error;
2341}
2342
2343#ifdef CONFIG_COREDUMP
2344static int proc_dostring_coredump(struct ctl_table *table, int write,
2345 void __user *buffer, size_t *lenp, loff_t *ppos)
2346{
2347 int error = proc_dostring(table, write, buffer, lenp, ppos);
2348 if (!error)
2349 validate_coredump_safety();
2350 return error;
2351}
2352#endif
2353
2354static int __do_proc_doulongvec_minmax(void *data, struct ctl_table *table, int write,
2355 void __user *buffer,
2356 size_t *lenp, loff_t *ppos,
2357 unsigned long convmul,
2358 unsigned long convdiv)
2359{
2360 unsigned long *i, *min, *max;
2361 int vleft, first = 1, err = 0;
2362 size_t left;
2363 char *kbuf = NULL, *p;
2364
2365 if (!data || !table->maxlen || !*lenp || (*ppos && !write)) {
2366 *lenp = 0;
2367 return 0;
2368 }
2369
2370 i = (unsigned long *) data;
2371 min = (unsigned long *) table->extra1;
2372 max = (unsigned long *) table->extra2;
2373 vleft = table->maxlen / sizeof(unsigned long);
2374 left = *lenp;
2375
2376 if (write) {
2377 if (*ppos) {
2378 switch (sysctl_writes_strict) {
2379 case SYSCTL_WRITES_STRICT:
2380 goto out;
2381 case SYSCTL_WRITES_WARN:
2382 warn_sysctl_write(table);
2383 break;
2384 default:
2385 break;
2386 }
2387 }
2388
2389 if (left > PAGE_SIZE - 1)
2390 left = PAGE_SIZE - 1;
2391 p = kbuf = memdup_user_nul(buffer, left);
2392 if (IS_ERR(kbuf))
2393 return PTR_ERR(kbuf);
2394 }
2395
2396 for (; left && vleft--; i++, first = 0) {
2397 unsigned long val;
2398
2399 if (write) {
2400 bool neg;
2401
2402 left -= proc_skip_spaces(&p);
2403
2404 err = proc_get_long(&p, &left, &val, &neg,
2405 proc_wspace_sep,
2406 sizeof(proc_wspace_sep), NULL);
2407 if (err)
2408 break;
2409 if (neg)
2410 continue;
2411 if ((min && val < *min) || (max && val > *max))
2412 continue;
2413 *i = val;
2414 } else {
2415 val = convdiv * (*i) / convmul;
2416 if (!first) {
2417 err = proc_put_char(&buffer, &left, '\t');
2418 if (err)
2419 break;
2420 }
2421 err = proc_put_long(&buffer, &left, val, false);
2422 if (err)
2423 break;
2424 }
2425 }
2426
2427 if (!write && !first && left && !err)
2428 err = proc_put_char(&buffer, &left, '\n');
2429 if (write && !err)
2430 left -= proc_skip_spaces(&p);
2431 if (write) {
2432 kfree(kbuf);
2433 if (first)
2434 return err ? : -EINVAL;
2435 }
2436 *lenp -= left;
2437out:
2438 *ppos += *lenp;
2439 return err;
2440}
2441
2442static int do_proc_doulongvec_minmax(struct ctl_table *table, int write,
2443 void __user *buffer,
2444 size_t *lenp, loff_t *ppos,
2445 unsigned long convmul,
2446 unsigned long convdiv)
2447{
2448 return __do_proc_doulongvec_minmax(table->data, table, write,
2449 buffer, lenp, ppos, convmul, convdiv);
2450}
2451
2452/**
2453 * proc_doulongvec_minmax - read a vector of long integers with min/max values
2454 * @table: the sysctl table
2455 * @write: %TRUE if this is a write to the sysctl file
2456 * @buffer: the user buffer
2457 * @lenp: the size of the user buffer
2458 * @ppos: file position
2459 *
2460 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2461 * values from/to the user buffer, treated as an ASCII string.
2462 *
2463 * This routine will ensure the values are within the range specified by
2464 * table->extra1 (min) and table->extra2 (max).
2465 *
2466 * Returns 0 on success.
2467 */
2468int proc_doulongvec_minmax(struct ctl_table *table, int write,
2469 void __user *buffer, size_t *lenp, loff_t *ppos)
2470{
2471 return do_proc_doulongvec_minmax(table, write, buffer, lenp, ppos, 1l, 1l);
2472}
2473
2474/**
2475 * proc_doulongvec_ms_jiffies_minmax - read a vector of millisecond values with min/max values
2476 * @table: the sysctl table
2477 * @write: %TRUE if this is a write to the sysctl file
2478 * @buffer: the user buffer
2479 * @lenp: the size of the user buffer
2480 * @ppos: file position
2481 *
2482 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2483 * values from/to the user buffer, treated as an ASCII string. The values
2484 * are treated as milliseconds, and converted to jiffies when they are stored.
2485 *
2486 * This routine will ensure the values are within the range specified by
2487 * table->extra1 (min) and table->extra2 (max).
2488 *
2489 * Returns 0 on success.
2490 */
2491int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
2492 void __user *buffer,
2493 size_t *lenp, loff_t *ppos)
2494{
2495 return do_proc_doulongvec_minmax(table, write, buffer,
2496 lenp, ppos, HZ, 1000l);
2497}
2498
2499
2500static int do_proc_dointvec_jiffies_conv(bool *negp, unsigned long *lvalp,
2501 int *valp,
2502 int write, void *data)
2503{
2504 if (write) {
2505 if (*lvalp > LONG_MAX / HZ)
2506 return 1;
2507 *valp = *negp ? -(*lvalp*HZ) : (*lvalp*HZ);
2508 } else {
2509 int val = *valp;
2510 unsigned long lval;
2511 if (val < 0) {
2512 *negp = true;
2513 lval = -(unsigned long)val;
2514 } else {
2515 *negp = false;
2516 lval = (unsigned long)val;
2517 }
2518 *lvalp = lval / HZ;
2519 }
2520 return 0;
2521}
2522
2523static int do_proc_dointvec_userhz_jiffies_conv(bool *negp, unsigned long *lvalp,
2524 int *valp,
2525 int write, void *data)
2526{
2527 if (write) {
2528 if (USER_HZ < HZ && *lvalp > (LONG_MAX / HZ) * USER_HZ)
2529 return 1;
2530 *valp = clock_t_to_jiffies(*negp ? -*lvalp : *lvalp);
2531 } else {
2532 int val = *valp;
2533 unsigned long lval;
2534 if (val < 0) {
2535 *negp = true;
2536 lval = -(unsigned long)val;
2537 } else {
2538 *negp = false;
2539 lval = (unsigned long)val;
2540 }
2541 *lvalp = jiffies_to_clock_t(lval);
2542 }
2543 return 0;
2544}
2545
2546static int do_proc_dointvec_ms_jiffies_conv(bool *negp, unsigned long *lvalp,
2547 int *valp,
2548 int write, void *data)
2549{
2550 if (write) {
2551 unsigned long jif = msecs_to_jiffies(*negp ? -*lvalp : *lvalp);
2552
2553 if (jif > INT_MAX)
2554 return 1;
2555 *valp = (int)jif;
2556 } else {
2557 int val = *valp;
2558 unsigned long lval;
2559 if (val < 0) {
2560 *negp = true;
2561 lval = -(unsigned long)val;
2562 } else {
2563 *negp = false;
2564 lval = (unsigned long)val;
2565 }
2566 *lvalp = jiffies_to_msecs(lval);
2567 }
2568 return 0;
2569}
2570
2571/**
2572 * proc_dointvec_jiffies - read a vector of integers as seconds
2573 * @table: the sysctl table
2574 * @write: %TRUE if this is a write to the sysctl file
2575 * @buffer: the user buffer
2576 * @lenp: the size of the user buffer
2577 * @ppos: file position
2578 *
2579 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2580 * values from/to the user buffer, treated as an ASCII string.
2581 * The values read are assumed to be in seconds, and are converted into
2582 * jiffies.
2583 *
2584 * Returns 0 on success.
2585 */
2586int proc_dointvec_jiffies(struct ctl_table *table, int write,
2587 void __user *buffer, size_t *lenp, loff_t *ppos)
2588{
2589 return do_proc_dointvec(table,write,buffer,lenp,ppos,
2590 do_proc_dointvec_jiffies_conv,NULL);
2591}
2592
2593/**
2594 * proc_dointvec_userhz_jiffies - read a vector of integers as 1/USER_HZ seconds
2595 * @table: the sysctl table
2596 * @write: %TRUE if this is a write to the sysctl file
2597 * @buffer: the user buffer
2598 * @lenp: the size of the user buffer
2599 * @ppos: pointer to the file position
2600 *
2601 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2602 * values from/to the user buffer, treated as an ASCII string.
2603 * The values read are assumed to be in 1/USER_HZ seconds, and
2604 * are converted into jiffies.
2605 *
2606 * Returns 0 on success.
2607 */
2608int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
2609 void __user *buffer, size_t *lenp, loff_t *ppos)
2610{
2611 return do_proc_dointvec(table,write,buffer,lenp,ppos,
2612 do_proc_dointvec_userhz_jiffies_conv,NULL);
2613}
2614
2615/**
2616 * proc_dointvec_ms_jiffies - read a vector of integers as 1 milliseconds
2617 * @table: the sysctl table
2618 * @write: %TRUE if this is a write to the sysctl file
2619 * @buffer: the user buffer
2620 * @lenp: the size of the user buffer
2621 * @ppos: file position
2622 * @ppos: the current position in the file
2623 *
2624 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2625 * values from/to the user buffer, treated as an ASCII string.
2626 * The values read are assumed to be in 1/1000 seconds, and
2627 * are converted into jiffies.
2628 *
2629 * Returns 0 on success.
2630 */
2631int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
2632 void __user *buffer, size_t *lenp, loff_t *ppos)
2633{
2634 return do_proc_dointvec(table, write, buffer, lenp, ppos,
2635 do_proc_dointvec_ms_jiffies_conv, NULL);
2636}
2637
2638static int proc_do_cad_pid(struct ctl_table *table, int write,
2639 void __user *buffer, size_t *lenp, loff_t *ppos)
2640{
2641 struct pid *new_pid;
2642 pid_t tmp;
2643 int r;
2644
2645 tmp = pid_vnr(cad_pid);
2646
2647 r = __do_proc_dointvec(&tmp, table, write, buffer,
2648 lenp, ppos, NULL, NULL);
2649 if (r || !write)
2650 return r;
2651
2652 new_pid = find_get_pid(tmp);
2653 if (!new_pid)
2654 return -ESRCH;
2655
2656 put_pid(xchg(&cad_pid, new_pid));
2657 return 0;
2658}
2659
2660/**
2661 * proc_do_large_bitmap - read/write from/to a large bitmap
2662 * @table: the sysctl table
2663 * @write: %TRUE if this is a write to the sysctl file
2664 * @buffer: the user buffer
2665 * @lenp: the size of the user buffer
2666 * @ppos: file position
2667 *
2668 * The bitmap is stored at table->data and the bitmap length (in bits)
2669 * in table->maxlen.
2670 *
2671 * We use a range comma separated format (e.g. 1,3-4,10-10) so that
2672 * large bitmaps may be represented in a compact manner. Writing into
2673 * the file will clear the bitmap then update it with the given input.
2674 *
2675 * Returns 0 on success.
2676 */
2677int proc_do_large_bitmap(struct ctl_table *table, int write,
2678 void __user *buffer, size_t *lenp, loff_t *ppos)
2679{
2680 int err = 0;
2681 bool first = 1;
2682 size_t left = *lenp;
2683 unsigned long bitmap_len = table->maxlen;
2684 unsigned long *bitmap = *(unsigned long **) table->data;
2685 unsigned long *tmp_bitmap = NULL;
2686 char tr_a[] = { '-', ',', '\n' }, tr_b[] = { ',', '\n', 0 }, c;
2687
2688 if (!bitmap || !bitmap_len || !left || (*ppos && !write)) {
2689 *lenp = 0;
2690 return 0;
2691 }
2692
2693 if (write) {
2694 char *kbuf, *p;
2695
2696 if (left > PAGE_SIZE - 1)
2697 left = PAGE_SIZE - 1;
2698
2699 p = kbuf = memdup_user_nul(buffer, left);
2700 if (IS_ERR(kbuf))
2701 return PTR_ERR(kbuf);
2702
2703 tmp_bitmap = kzalloc(BITS_TO_LONGS(bitmap_len) * sizeof(unsigned long),
2704 GFP_KERNEL);
2705 if (!tmp_bitmap) {
2706 kfree(kbuf);
2707 return -ENOMEM;
2708 }
2709 proc_skip_char(&p, &left, '\n');
2710 while (!err && left) {
2711 unsigned long val_a, val_b;
2712 bool neg;
2713
2714 err = proc_get_long(&p, &left, &val_a, &neg, tr_a,
2715 sizeof(tr_a), &c);
2716 if (err)
2717 break;
2718 if (val_a >= bitmap_len || neg) {
2719 err = -EINVAL;
2720 break;
2721 }
2722
2723 val_b = val_a;
2724 if (left) {
2725 p++;
2726 left--;
2727 }
2728
2729 if (c == '-') {
2730 err = proc_get_long(&p, &left, &val_b,
2731 &neg, tr_b, sizeof(tr_b),
2732 &c);
2733 if (err)
2734 break;
2735 if (val_b >= bitmap_len || neg ||
2736 val_a > val_b) {
2737 err = -EINVAL;
2738 break;
2739 }
2740 if (left) {
2741 p++;
2742 left--;
2743 }
2744 }
2745
2746 bitmap_set(tmp_bitmap, val_a, val_b - val_a + 1);
2747 first = 0;
2748 proc_skip_char(&p, &left, '\n');
2749 }
2750 kfree(kbuf);
2751 } else {
2752 unsigned long bit_a, bit_b = 0;
2753
2754 while (left) {
2755 bit_a = find_next_bit(bitmap, bitmap_len, bit_b);
2756 if (bit_a >= bitmap_len)
2757 break;
2758 bit_b = find_next_zero_bit(bitmap, bitmap_len,
2759 bit_a + 1) - 1;
2760
2761 if (!first) {
2762 err = proc_put_char(&buffer, &left, ',');
2763 if (err)
2764 break;
2765 }
2766 err = proc_put_long(&buffer, &left, bit_a, false);
2767 if (err)
2768 break;
2769 if (bit_a != bit_b) {
2770 err = proc_put_char(&buffer, &left, '-');
2771 if (err)
2772 break;
2773 err = proc_put_long(&buffer, &left, bit_b, false);
2774 if (err)
2775 break;
2776 }
2777
2778 first = 0; bit_b++;
2779 }
2780 if (!err)
2781 err = proc_put_char(&buffer, &left, '\n');
2782 }
2783
2784 if (!err) {
2785 if (write) {
2786 if (*ppos)
2787 bitmap_or(bitmap, bitmap, tmp_bitmap, bitmap_len);
2788 else
2789 bitmap_copy(bitmap, tmp_bitmap, bitmap_len);
2790 }
2791 kfree(tmp_bitmap);
2792 *lenp -= left;
2793 *ppos += *lenp;
2794 return 0;
2795 } else {
2796 kfree(tmp_bitmap);
2797 return err;
2798 }
2799}
2800
2801#else /* CONFIG_PROC_SYSCTL */
2802
2803int proc_dostring(struct ctl_table *table, int write,
2804 void __user *buffer, size_t *lenp, loff_t *ppos)
2805{
2806 return -ENOSYS;
2807}
2808
2809int proc_dointvec(struct ctl_table *table, int write,
2810 void __user *buffer, size_t *lenp, loff_t *ppos)
2811{
2812 return -ENOSYS;
2813}
2814
2815int proc_dointvec_minmax(struct ctl_table *table, int write,
2816 void __user *buffer, size_t *lenp, loff_t *ppos)
2817{
2818 return -ENOSYS;
2819}
2820
2821int proc_dointvec_jiffies(struct ctl_table *table, int write,
2822 void __user *buffer, size_t *lenp, loff_t *ppos)
2823{
2824 return -ENOSYS;
2825}
2826
2827int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
2828 void __user *buffer, size_t *lenp, loff_t *ppos)
2829{
2830 return -ENOSYS;
2831}
2832
2833int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
2834 void __user *buffer, size_t *lenp, loff_t *ppos)
2835{
2836 return -ENOSYS;
2837}
2838
2839int proc_doulongvec_minmax(struct ctl_table *table, int write,
2840 void __user *buffer, size_t *lenp, loff_t *ppos)
2841{
2842 return -ENOSYS;
2843}
2844
2845int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
2846 void __user *buffer,
2847 size_t *lenp, loff_t *ppos)
2848{
2849 return -ENOSYS;
2850}
2851
2852
2853#endif /* CONFIG_PROC_SYSCTL */
2854
2855/*
2856 * No sense putting this after each symbol definition, twice,
2857 * exception granted :-)
2858 */
2859EXPORT_SYMBOL(proc_dointvec);
2860EXPORT_SYMBOL(proc_dointvec_jiffies);
2861EXPORT_SYMBOL(proc_dointvec_minmax);
2862EXPORT_SYMBOL(proc_dointvec_userhz_jiffies);
2863EXPORT_SYMBOL(proc_dointvec_ms_jiffies);
2864EXPORT_SYMBOL(proc_dostring);
2865EXPORT_SYMBOL(proc_doulongvec_minmax);
2866EXPORT_SYMBOL(proc_doulongvec_ms_jiffies_minmax);
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * sysctl.c: General linux system control interface
4 *
5 * Begun 24 March 1995, Stephen Tweedie
6 * Added /proc support, Dec 1995
7 * Added bdflush entry and intvec min/max checking, 2/23/96, Tom Dyas.
8 * Added hooks for /proc/sys/net (minor, minor patch), 96/4/1, Mike Shaver.
9 * Added kernel/java-{interpreter,appletviewer}, 96/5/10, Mike Shaver.
10 * Dynamic registration fixes, Stephen Tweedie.
11 * Added kswapd-interval, ctrl-alt-del, printk stuff, 1/8/97, Chris Horn.
12 * Made sysctl support optional via CONFIG_SYSCTL, 1/10/97, Chris
13 * Horn.
14 * Added proc_doulongvec_ms_jiffies_minmax, 09/08/99, Carlos H. Bauer.
15 * Added proc_doulongvec_minmax, 09/08/99, Carlos H. Bauer.
16 * Changed linked lists to use list.h instead of lists.h, 02/24/00, Bill
17 * Wendling.
18 * The list_for_each() macro wasn't appropriate for the sysctl loop.
19 * Removed it and replaced it with older style, 03/23/00, Bill Wendling
20 */
21
22#include <linux/module.h>
23#include <linux/aio.h>
24#include <linux/mm.h>
25#include <linux/swap.h>
26#include <linux/slab.h>
27#include <linux/sysctl.h>
28#include <linux/bitmap.h>
29#include <linux/signal.h>
30#include <linux/panic.h>
31#include <linux/printk.h>
32#include <linux/proc_fs.h>
33#include <linux/security.h>
34#include <linux/ctype.h>
35#include <linux/kmemleak.h>
36#include <linux/fs.h>
37#include <linux/init.h>
38#include <linux/kernel.h>
39#include <linux/kobject.h>
40#include <linux/net.h>
41#include <linux/sysrq.h>
42#include <linux/highuid.h>
43#include <linux/writeback.h>
44#include <linux/ratelimit.h>
45#include <linux/compaction.h>
46#include <linux/hugetlb.h>
47#include <linux/initrd.h>
48#include <linux/key.h>
49#include <linux/times.h>
50#include <linux/limits.h>
51#include <linux/dcache.h>
52#include <linux/dnotify.h>
53#include <linux/syscalls.h>
54#include <linux/vmstat.h>
55#include <linux/nfs_fs.h>
56#include <linux/acpi.h>
57#include <linux/reboot.h>
58#include <linux/ftrace.h>
59#include <linux/perf_event.h>
60#include <linux/kprobes.h>
61#include <linux/pipe_fs_i.h>
62#include <linux/oom.h>
63#include <linux/kmod.h>
64#include <linux/capability.h>
65#include <linux/binfmts.h>
66#include <linux/sched/sysctl.h>
67#include <linux/sched/coredump.h>
68#include <linux/kexec.h>
69#include <linux/bpf.h>
70#include <linux/mount.h>
71#include <linux/userfaultfd_k.h>
72#include <linux/coredump.h>
73#include <linux/latencytop.h>
74#include <linux/pid.h>
75#include <linux/delayacct.h>
76
77#include "../lib/kstrtox.h"
78
79#include <linux/uaccess.h>
80#include <asm/processor.h>
81
82#ifdef CONFIG_X86
83#include <asm/nmi.h>
84#include <asm/stacktrace.h>
85#include <asm/io.h>
86#endif
87#ifdef CONFIG_SPARC
88#include <asm/setup.h>
89#endif
90#ifdef CONFIG_BSD_PROCESS_ACCT
91#include <linux/acct.h>
92#endif
93#ifdef CONFIG_RT_MUTEXES
94#include <linux/rtmutex.h>
95#endif
96#if defined(CONFIG_PROVE_LOCKING) || defined(CONFIG_LOCK_STAT)
97#include <linux/lockdep.h>
98#endif
99#ifdef CONFIG_CHR_DEV_SG
100#include <scsi/sg.h>
101#endif
102#ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
103#include <linux/stackleak.h>
104#endif
105#ifdef CONFIG_LOCKUP_DETECTOR
106#include <linux/nmi.h>
107#endif
108
109#if defined(CONFIG_SYSCTL)
110
111/* Constants used for minimum and maximum */
112#ifdef CONFIG_LOCKUP_DETECTOR
113static int sixty = 60;
114#endif
115
116static int __maybe_unused neg_one = -1;
117static int __maybe_unused two = 2;
118static int __maybe_unused four = 4;
119static unsigned long zero_ul;
120static unsigned long one_ul = 1;
121static unsigned long long_max = LONG_MAX;
122static int one_hundred = 100;
123static int two_hundred = 200;
124static int one_thousand = 1000;
125#ifdef CONFIG_PRINTK
126static int ten_thousand = 10000;
127#endif
128#ifdef CONFIG_PERF_EVENTS
129static int six_hundred_forty_kb = 640 * 1024;
130#endif
131
132/* this is needed for the proc_doulongvec_minmax of vm_dirty_bytes */
133static unsigned long dirty_bytes_min = 2 * PAGE_SIZE;
134
135/* this is needed for the proc_dointvec_minmax for [fs_]overflow UID and GID */
136static int maxolduid = 65535;
137static int minolduid;
138
139static int ngroups_max = NGROUPS_MAX;
140static const int cap_last_cap = CAP_LAST_CAP;
141
142/*
143 * This is needed for proc_doulongvec_minmax of sysctl_hung_task_timeout_secs
144 * and hung_task_check_interval_secs
145 */
146#ifdef CONFIG_DETECT_HUNG_TASK
147static unsigned long hung_task_timeout_max = (LONG_MAX/HZ);
148#endif
149
150#ifdef CONFIG_INOTIFY_USER
151#include <linux/inotify.h>
152#endif
153#ifdef CONFIG_FANOTIFY
154#include <linux/fanotify.h>
155#endif
156
157#ifdef CONFIG_PROC_SYSCTL
158
159/**
160 * enum sysctl_writes_mode - supported sysctl write modes
161 *
162 * @SYSCTL_WRITES_LEGACY: each write syscall must fully contain the sysctl value
163 * to be written, and multiple writes on the same sysctl file descriptor
164 * will rewrite the sysctl value, regardless of file position. No warning
165 * is issued when the initial position is not 0.
166 * @SYSCTL_WRITES_WARN: same as above but warn when the initial file position is
167 * not 0.
168 * @SYSCTL_WRITES_STRICT: writes to numeric sysctl entries must always be at
169 * file position 0 and the value must be fully contained in the buffer
170 * sent to the write syscall. If dealing with strings respect the file
171 * position, but restrict this to the max length of the buffer, anything
172 * passed the max length will be ignored. Multiple writes will append
173 * to the buffer.
174 *
175 * These write modes control how current file position affects the behavior of
176 * updating sysctl values through the proc interface on each write.
177 */
178enum sysctl_writes_mode {
179 SYSCTL_WRITES_LEGACY = -1,
180 SYSCTL_WRITES_WARN = 0,
181 SYSCTL_WRITES_STRICT = 1,
182};
183
184static enum sysctl_writes_mode sysctl_writes_strict = SYSCTL_WRITES_STRICT;
185#endif /* CONFIG_PROC_SYSCTL */
186
187#if defined(HAVE_ARCH_PICK_MMAP_LAYOUT) || \
188 defined(CONFIG_ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT)
189int sysctl_legacy_va_layout;
190#endif
191
192#ifdef CONFIG_COMPACTION
193static int min_extfrag_threshold;
194static int max_extfrag_threshold = 1000;
195#endif
196
197#endif /* CONFIG_SYSCTL */
198
199#if defined(CONFIG_BPF_SYSCALL) && defined(CONFIG_SYSCTL)
200static int bpf_stats_handler(struct ctl_table *table, int write,
201 void *buffer, size_t *lenp, loff_t *ppos)
202{
203 struct static_key *key = (struct static_key *)table->data;
204 static int saved_val;
205 int val, ret;
206 struct ctl_table tmp = {
207 .data = &val,
208 .maxlen = sizeof(val),
209 .mode = table->mode,
210 .extra1 = SYSCTL_ZERO,
211 .extra2 = SYSCTL_ONE,
212 };
213
214 if (write && !capable(CAP_SYS_ADMIN))
215 return -EPERM;
216
217 mutex_lock(&bpf_stats_enabled_mutex);
218 val = saved_val;
219 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
220 if (write && !ret && val != saved_val) {
221 if (val)
222 static_key_slow_inc(key);
223 else
224 static_key_slow_dec(key);
225 saved_val = val;
226 }
227 mutex_unlock(&bpf_stats_enabled_mutex);
228 return ret;
229}
230
231static int bpf_unpriv_handler(struct ctl_table *table, int write,
232 void *buffer, size_t *lenp, loff_t *ppos)
233{
234 int ret, unpriv_enable = *(int *)table->data;
235 bool locked_state = unpriv_enable == 1;
236 struct ctl_table tmp = *table;
237
238 if (write && !capable(CAP_SYS_ADMIN))
239 return -EPERM;
240
241 tmp.data = &unpriv_enable;
242 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
243 if (write && !ret) {
244 if (locked_state && unpriv_enable != 1)
245 return -EPERM;
246 *(int *)table->data = unpriv_enable;
247 }
248 return ret;
249}
250#endif /* CONFIG_BPF_SYSCALL && CONFIG_SYSCTL */
251
252/*
253 * /proc/sys support
254 */
255
256#ifdef CONFIG_PROC_SYSCTL
257
258static int _proc_do_string(char *data, int maxlen, int write,
259 char *buffer, size_t *lenp, loff_t *ppos)
260{
261 size_t len;
262 char c, *p;
263
264 if (!data || !maxlen || !*lenp) {
265 *lenp = 0;
266 return 0;
267 }
268
269 if (write) {
270 if (sysctl_writes_strict == SYSCTL_WRITES_STRICT) {
271 /* Only continue writes not past the end of buffer. */
272 len = strlen(data);
273 if (len > maxlen - 1)
274 len = maxlen - 1;
275
276 if (*ppos > len)
277 return 0;
278 len = *ppos;
279 } else {
280 /* Start writing from beginning of buffer. */
281 len = 0;
282 }
283
284 *ppos += *lenp;
285 p = buffer;
286 while ((p - buffer) < *lenp && len < maxlen - 1) {
287 c = *(p++);
288 if (c == 0 || c == '\n')
289 break;
290 data[len++] = c;
291 }
292 data[len] = 0;
293 } else {
294 len = strlen(data);
295 if (len > maxlen)
296 len = maxlen;
297
298 if (*ppos > len) {
299 *lenp = 0;
300 return 0;
301 }
302
303 data += *ppos;
304 len -= *ppos;
305
306 if (len > *lenp)
307 len = *lenp;
308 if (len)
309 memcpy(buffer, data, len);
310 if (len < *lenp) {
311 buffer[len] = '\n';
312 len++;
313 }
314 *lenp = len;
315 *ppos += len;
316 }
317 return 0;
318}
319
320static void warn_sysctl_write(struct ctl_table *table)
321{
322 pr_warn_once("%s wrote to %s when file position was not 0!\n"
323 "This will not be supported in the future. To silence this\n"
324 "warning, set kernel.sysctl_writes_strict = -1\n",
325 current->comm, table->procname);
326}
327
328/**
329 * proc_first_pos_non_zero_ignore - check if first position is allowed
330 * @ppos: file position
331 * @table: the sysctl table
332 *
333 * Returns true if the first position is non-zero and the sysctl_writes_strict
334 * mode indicates this is not allowed for numeric input types. String proc
335 * handlers can ignore the return value.
336 */
337static bool proc_first_pos_non_zero_ignore(loff_t *ppos,
338 struct ctl_table *table)
339{
340 if (!*ppos)
341 return false;
342
343 switch (sysctl_writes_strict) {
344 case SYSCTL_WRITES_STRICT:
345 return true;
346 case SYSCTL_WRITES_WARN:
347 warn_sysctl_write(table);
348 return false;
349 default:
350 return false;
351 }
352}
353
354/**
355 * proc_dostring - read a string sysctl
356 * @table: the sysctl table
357 * @write: %TRUE if this is a write to the sysctl file
358 * @buffer: the user buffer
359 * @lenp: the size of the user buffer
360 * @ppos: file position
361 *
362 * Reads/writes a string from/to the user buffer. If the kernel
363 * buffer provided is not large enough to hold the string, the
364 * string is truncated. The copied string is %NULL-terminated.
365 * If the string is being read by the user process, it is copied
366 * and a newline '\n' is added. It is truncated if the buffer is
367 * not large enough.
368 *
369 * Returns 0 on success.
370 */
371int proc_dostring(struct ctl_table *table, int write,
372 void *buffer, size_t *lenp, loff_t *ppos)
373{
374 if (write)
375 proc_first_pos_non_zero_ignore(ppos, table);
376
377 return _proc_do_string(table->data, table->maxlen, write, buffer, lenp,
378 ppos);
379}
380
381static size_t proc_skip_spaces(char **buf)
382{
383 size_t ret;
384 char *tmp = skip_spaces(*buf);
385 ret = tmp - *buf;
386 *buf = tmp;
387 return ret;
388}
389
390static void proc_skip_char(char **buf, size_t *size, const char v)
391{
392 while (*size) {
393 if (**buf != v)
394 break;
395 (*size)--;
396 (*buf)++;
397 }
398}
399
400/**
401 * strtoul_lenient - parse an ASCII formatted integer from a buffer and only
402 * fail on overflow
403 *
404 * @cp: kernel buffer containing the string to parse
405 * @endp: pointer to store the trailing characters
406 * @base: the base to use
407 * @res: where the parsed integer will be stored
408 *
409 * In case of success 0 is returned and @res will contain the parsed integer,
410 * @endp will hold any trailing characters.
411 * This function will fail the parse on overflow. If there wasn't an overflow
412 * the function will defer the decision what characters count as invalid to the
413 * caller.
414 */
415static int strtoul_lenient(const char *cp, char **endp, unsigned int base,
416 unsigned long *res)
417{
418 unsigned long long result;
419 unsigned int rv;
420
421 cp = _parse_integer_fixup_radix(cp, &base);
422 rv = _parse_integer(cp, base, &result);
423 if ((rv & KSTRTOX_OVERFLOW) || (result != (unsigned long)result))
424 return -ERANGE;
425
426 cp += rv;
427
428 if (endp)
429 *endp = (char *)cp;
430
431 *res = (unsigned long)result;
432 return 0;
433}
434
435#define TMPBUFLEN 22
436/**
437 * proc_get_long - reads an ASCII formatted integer from a user buffer
438 *
439 * @buf: a kernel buffer
440 * @size: size of the kernel buffer
441 * @val: this is where the number will be stored
442 * @neg: set to %TRUE if number is negative
443 * @perm_tr: a vector which contains the allowed trailers
444 * @perm_tr_len: size of the perm_tr vector
445 * @tr: pointer to store the trailer character
446 *
447 * In case of success %0 is returned and @buf and @size are updated with
448 * the amount of bytes read. If @tr is non-NULL and a trailing
449 * character exists (size is non-zero after returning from this
450 * function), @tr is updated with the trailing character.
451 */
452static int proc_get_long(char **buf, size_t *size,
453 unsigned long *val, bool *neg,
454 const char *perm_tr, unsigned perm_tr_len, char *tr)
455{
456 int len;
457 char *p, tmp[TMPBUFLEN];
458
459 if (!*size)
460 return -EINVAL;
461
462 len = *size;
463 if (len > TMPBUFLEN - 1)
464 len = TMPBUFLEN - 1;
465
466 memcpy(tmp, *buf, len);
467
468 tmp[len] = 0;
469 p = tmp;
470 if (*p == '-' && *size > 1) {
471 *neg = true;
472 p++;
473 } else
474 *neg = false;
475 if (!isdigit(*p))
476 return -EINVAL;
477
478 if (strtoul_lenient(p, &p, 0, val))
479 return -EINVAL;
480
481 len = p - tmp;
482
483 /* We don't know if the next char is whitespace thus we may accept
484 * invalid integers (e.g. 1234...a) or two integers instead of one
485 * (e.g. 123...1). So lets not allow such large numbers. */
486 if (len == TMPBUFLEN - 1)
487 return -EINVAL;
488
489 if (len < *size && perm_tr_len && !memchr(perm_tr, *p, perm_tr_len))
490 return -EINVAL;
491
492 if (tr && (len < *size))
493 *tr = *p;
494
495 *buf += len;
496 *size -= len;
497
498 return 0;
499}
500
501/**
502 * proc_put_long - converts an integer to a decimal ASCII formatted string
503 *
504 * @buf: the user buffer
505 * @size: the size of the user buffer
506 * @val: the integer to be converted
507 * @neg: sign of the number, %TRUE for negative
508 *
509 * In case of success @buf and @size are updated with the amount of bytes
510 * written.
511 */
512static void proc_put_long(void **buf, size_t *size, unsigned long val, bool neg)
513{
514 int len;
515 char tmp[TMPBUFLEN], *p = tmp;
516
517 sprintf(p, "%s%lu", neg ? "-" : "", val);
518 len = strlen(tmp);
519 if (len > *size)
520 len = *size;
521 memcpy(*buf, tmp, len);
522 *size -= len;
523 *buf += len;
524}
525#undef TMPBUFLEN
526
527static void proc_put_char(void **buf, size_t *size, char c)
528{
529 if (*size) {
530 char **buffer = (char **)buf;
531 **buffer = c;
532
533 (*size)--;
534 (*buffer)++;
535 *buf = *buffer;
536 }
537}
538
539static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
540 int *valp,
541 int write, void *data)
542{
543 if (write) {
544 if (*negp) {
545 if (*lvalp > (unsigned long) INT_MAX + 1)
546 return -EINVAL;
547 *valp = -*lvalp;
548 } else {
549 if (*lvalp > (unsigned long) INT_MAX)
550 return -EINVAL;
551 *valp = *lvalp;
552 }
553 } else {
554 int val = *valp;
555 if (val < 0) {
556 *negp = true;
557 *lvalp = -(unsigned long)val;
558 } else {
559 *negp = false;
560 *lvalp = (unsigned long)val;
561 }
562 }
563 return 0;
564}
565
566static int do_proc_douintvec_conv(unsigned long *lvalp,
567 unsigned int *valp,
568 int write, void *data)
569{
570 if (write) {
571 if (*lvalp > UINT_MAX)
572 return -EINVAL;
573 *valp = *lvalp;
574 } else {
575 unsigned int val = *valp;
576 *lvalp = (unsigned long)val;
577 }
578 return 0;
579}
580
581static const char proc_wspace_sep[] = { ' ', '\t', '\n' };
582
583static int __do_proc_dointvec(void *tbl_data, struct ctl_table *table,
584 int write, void *buffer,
585 size_t *lenp, loff_t *ppos,
586 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
587 int write, void *data),
588 void *data)
589{
590 int *i, vleft, first = 1, err = 0;
591 size_t left;
592 char *p;
593
594 if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
595 *lenp = 0;
596 return 0;
597 }
598
599 i = (int *) tbl_data;
600 vleft = table->maxlen / sizeof(*i);
601 left = *lenp;
602
603 if (!conv)
604 conv = do_proc_dointvec_conv;
605
606 if (write) {
607 if (proc_first_pos_non_zero_ignore(ppos, table))
608 goto out;
609
610 if (left > PAGE_SIZE - 1)
611 left = PAGE_SIZE - 1;
612 p = buffer;
613 }
614
615 for (; left && vleft--; i++, first=0) {
616 unsigned long lval;
617 bool neg;
618
619 if (write) {
620 left -= proc_skip_spaces(&p);
621
622 if (!left)
623 break;
624 err = proc_get_long(&p, &left, &lval, &neg,
625 proc_wspace_sep,
626 sizeof(proc_wspace_sep), NULL);
627 if (err)
628 break;
629 if (conv(&neg, &lval, i, 1, data)) {
630 err = -EINVAL;
631 break;
632 }
633 } else {
634 if (conv(&neg, &lval, i, 0, data)) {
635 err = -EINVAL;
636 break;
637 }
638 if (!first)
639 proc_put_char(&buffer, &left, '\t');
640 proc_put_long(&buffer, &left, lval, neg);
641 }
642 }
643
644 if (!write && !first && left && !err)
645 proc_put_char(&buffer, &left, '\n');
646 if (write && !err && left)
647 left -= proc_skip_spaces(&p);
648 if (write && first)
649 return err ? : -EINVAL;
650 *lenp -= left;
651out:
652 *ppos += *lenp;
653 return err;
654}
655
656static int do_proc_dointvec(struct ctl_table *table, int write,
657 void *buffer, size_t *lenp, loff_t *ppos,
658 int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
659 int write, void *data),
660 void *data)
661{
662 return __do_proc_dointvec(table->data, table, write,
663 buffer, lenp, ppos, conv, data);
664}
665
666static int do_proc_douintvec_w(unsigned int *tbl_data,
667 struct ctl_table *table,
668 void *buffer,
669 size_t *lenp, loff_t *ppos,
670 int (*conv)(unsigned long *lvalp,
671 unsigned int *valp,
672 int write, void *data),
673 void *data)
674{
675 unsigned long lval;
676 int err = 0;
677 size_t left;
678 bool neg;
679 char *p = buffer;
680
681 left = *lenp;
682
683 if (proc_first_pos_non_zero_ignore(ppos, table))
684 goto bail_early;
685
686 if (left > PAGE_SIZE - 1)
687 left = PAGE_SIZE - 1;
688
689 left -= proc_skip_spaces(&p);
690 if (!left) {
691 err = -EINVAL;
692 goto out_free;
693 }
694
695 err = proc_get_long(&p, &left, &lval, &neg,
696 proc_wspace_sep,
697 sizeof(proc_wspace_sep), NULL);
698 if (err || neg) {
699 err = -EINVAL;
700 goto out_free;
701 }
702
703 if (conv(&lval, tbl_data, 1, data)) {
704 err = -EINVAL;
705 goto out_free;
706 }
707
708 if (!err && left)
709 left -= proc_skip_spaces(&p);
710
711out_free:
712 if (err)
713 return -EINVAL;
714
715 return 0;
716
717 /* This is in keeping with old __do_proc_dointvec() */
718bail_early:
719 *ppos += *lenp;
720 return err;
721}
722
723static int do_proc_douintvec_r(unsigned int *tbl_data, void *buffer,
724 size_t *lenp, loff_t *ppos,
725 int (*conv)(unsigned long *lvalp,
726 unsigned int *valp,
727 int write, void *data),
728 void *data)
729{
730 unsigned long lval;
731 int err = 0;
732 size_t left;
733
734 left = *lenp;
735
736 if (conv(&lval, tbl_data, 0, data)) {
737 err = -EINVAL;
738 goto out;
739 }
740
741 proc_put_long(&buffer, &left, lval, false);
742 if (!left)
743 goto out;
744
745 proc_put_char(&buffer, &left, '\n');
746
747out:
748 *lenp -= left;
749 *ppos += *lenp;
750
751 return err;
752}
753
754static int __do_proc_douintvec(void *tbl_data, struct ctl_table *table,
755 int write, void *buffer,
756 size_t *lenp, loff_t *ppos,
757 int (*conv)(unsigned long *lvalp,
758 unsigned int *valp,
759 int write, void *data),
760 void *data)
761{
762 unsigned int *i, vleft;
763
764 if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
765 *lenp = 0;
766 return 0;
767 }
768
769 i = (unsigned int *) tbl_data;
770 vleft = table->maxlen / sizeof(*i);
771
772 /*
773 * Arrays are not supported, keep this simple. *Do not* add
774 * support for them.
775 */
776 if (vleft != 1) {
777 *lenp = 0;
778 return -EINVAL;
779 }
780
781 if (!conv)
782 conv = do_proc_douintvec_conv;
783
784 if (write)
785 return do_proc_douintvec_w(i, table, buffer, lenp, ppos,
786 conv, data);
787 return do_proc_douintvec_r(i, buffer, lenp, ppos, conv, data);
788}
789
790static int do_proc_douintvec(struct ctl_table *table, int write,
791 void *buffer, size_t *lenp, loff_t *ppos,
792 int (*conv)(unsigned long *lvalp,
793 unsigned int *valp,
794 int write, void *data),
795 void *data)
796{
797 return __do_proc_douintvec(table->data, table, write,
798 buffer, lenp, ppos, conv, data);
799}
800
801/**
802 * proc_dointvec - read a vector of integers
803 * @table: the sysctl table
804 * @write: %TRUE if this is a write to the sysctl file
805 * @buffer: the user buffer
806 * @lenp: the size of the user buffer
807 * @ppos: file position
808 *
809 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
810 * values from/to the user buffer, treated as an ASCII string.
811 *
812 * Returns 0 on success.
813 */
814int proc_dointvec(struct ctl_table *table, int write, void *buffer,
815 size_t *lenp, loff_t *ppos)
816{
817 return do_proc_dointvec(table, write, buffer, lenp, ppos, NULL, NULL);
818}
819
820#ifdef CONFIG_COMPACTION
821static int proc_dointvec_minmax_warn_RT_change(struct ctl_table *table,
822 int write, void *buffer, size_t *lenp, loff_t *ppos)
823{
824 int ret, old;
825
826 if (!IS_ENABLED(CONFIG_PREEMPT_RT) || !write)
827 return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
828
829 old = *(int *)table->data;
830 ret = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
831 if (ret)
832 return ret;
833 if (old != *(int *)table->data)
834 pr_warn_once("sysctl attribute %s changed by %s[%d]\n",
835 table->procname, current->comm,
836 task_pid_nr(current));
837 return ret;
838}
839#endif
840
841/**
842 * proc_douintvec - read a vector of unsigned integers
843 * @table: the sysctl table
844 * @write: %TRUE if this is a write to the sysctl file
845 * @buffer: the user buffer
846 * @lenp: the size of the user buffer
847 * @ppos: file position
848 *
849 * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
850 * values from/to the user buffer, treated as an ASCII string.
851 *
852 * Returns 0 on success.
853 */
854int proc_douintvec(struct ctl_table *table, int write, void *buffer,
855 size_t *lenp, loff_t *ppos)
856{
857 return do_proc_douintvec(table, write, buffer, lenp, ppos,
858 do_proc_douintvec_conv, NULL);
859}
860
861/*
862 * Taint values can only be increased
863 * This means we can safely use a temporary.
864 */
865static int proc_taint(struct ctl_table *table, int write,
866 void *buffer, size_t *lenp, loff_t *ppos)
867{
868 struct ctl_table t;
869 unsigned long tmptaint = get_taint();
870 int err;
871
872 if (write && !capable(CAP_SYS_ADMIN))
873 return -EPERM;
874
875 t = *table;
876 t.data = &tmptaint;
877 err = proc_doulongvec_minmax(&t, write, buffer, lenp, ppos);
878 if (err < 0)
879 return err;
880
881 if (write) {
882 int i;
883
884 /*
885 * If we are relying on panic_on_taint not producing
886 * false positives due to userspace input, bail out
887 * before setting the requested taint flags.
888 */
889 if (panic_on_taint_nousertaint && (tmptaint & panic_on_taint))
890 return -EINVAL;
891
892 /*
893 * Poor man's atomic or. Not worth adding a primitive
894 * to everyone's atomic.h for this
895 */
896 for (i = 0; i < TAINT_FLAGS_COUNT; i++)
897 if ((1UL << i) & tmptaint)
898 add_taint(i, LOCKDEP_STILL_OK);
899 }
900
901 return err;
902}
903
904#ifdef CONFIG_PRINTK
905static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
906 void *buffer, size_t *lenp, loff_t *ppos)
907{
908 if (write && !capable(CAP_SYS_ADMIN))
909 return -EPERM;
910
911 return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
912}
913#endif
914
915/**
916 * struct do_proc_dointvec_minmax_conv_param - proc_dointvec_minmax() range checking structure
917 * @min: pointer to minimum allowable value
918 * @max: pointer to maximum allowable value
919 *
920 * The do_proc_dointvec_minmax_conv_param structure provides the
921 * minimum and maximum values for doing range checking for those sysctl
922 * parameters that use the proc_dointvec_minmax() handler.
923 */
924struct do_proc_dointvec_minmax_conv_param {
925 int *min;
926 int *max;
927};
928
929static int do_proc_dointvec_minmax_conv(bool *negp, unsigned long *lvalp,
930 int *valp,
931 int write, void *data)
932{
933 int tmp, ret;
934 struct do_proc_dointvec_minmax_conv_param *param = data;
935 /*
936 * If writing, first do so via a temporary local int so we can
937 * bounds-check it before touching *valp.
938 */
939 int *ip = write ? &tmp : valp;
940
941 ret = do_proc_dointvec_conv(negp, lvalp, ip, write, data);
942 if (ret)
943 return ret;
944
945 if (write) {
946 if ((param->min && *param->min > tmp) ||
947 (param->max && *param->max < tmp))
948 return -EINVAL;
949 *valp = tmp;
950 }
951
952 return 0;
953}
954
955/**
956 * proc_dointvec_minmax - read a vector of integers with min/max values
957 * @table: the sysctl table
958 * @write: %TRUE if this is a write to the sysctl file
959 * @buffer: the user buffer
960 * @lenp: the size of the user buffer
961 * @ppos: file position
962 *
963 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
964 * values from/to the user buffer, treated as an ASCII string.
965 *
966 * This routine will ensure the values are within the range specified by
967 * table->extra1 (min) and table->extra2 (max).
968 *
969 * Returns 0 on success or -EINVAL on write when the range check fails.
970 */
971int proc_dointvec_minmax(struct ctl_table *table, int write,
972 void *buffer, size_t *lenp, loff_t *ppos)
973{
974 struct do_proc_dointvec_minmax_conv_param param = {
975 .min = (int *) table->extra1,
976 .max = (int *) table->extra2,
977 };
978 return do_proc_dointvec(table, write, buffer, lenp, ppos,
979 do_proc_dointvec_minmax_conv, ¶m);
980}
981
982/**
983 * struct do_proc_douintvec_minmax_conv_param - proc_douintvec_minmax() range checking structure
984 * @min: pointer to minimum allowable value
985 * @max: pointer to maximum allowable value
986 *
987 * The do_proc_douintvec_minmax_conv_param structure provides the
988 * minimum and maximum values for doing range checking for those sysctl
989 * parameters that use the proc_douintvec_minmax() handler.
990 */
991struct do_proc_douintvec_minmax_conv_param {
992 unsigned int *min;
993 unsigned int *max;
994};
995
996static int do_proc_douintvec_minmax_conv(unsigned long *lvalp,
997 unsigned int *valp,
998 int write, void *data)
999{
1000 int ret;
1001 unsigned int tmp;
1002 struct do_proc_douintvec_minmax_conv_param *param = data;
1003 /* write via temporary local uint for bounds-checking */
1004 unsigned int *up = write ? &tmp : valp;
1005
1006 ret = do_proc_douintvec_conv(lvalp, up, write, data);
1007 if (ret)
1008 return ret;
1009
1010 if (write) {
1011 if ((param->min && *param->min > tmp) ||
1012 (param->max && *param->max < tmp))
1013 return -ERANGE;
1014
1015 *valp = tmp;
1016 }
1017
1018 return 0;
1019}
1020
1021/**
1022 * proc_douintvec_minmax - read a vector of unsigned ints with min/max values
1023 * @table: the sysctl table
1024 * @write: %TRUE if this is a write to the sysctl file
1025 * @buffer: the user buffer
1026 * @lenp: the size of the user buffer
1027 * @ppos: file position
1028 *
1029 * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
1030 * values from/to the user buffer, treated as an ASCII string. Negative
1031 * strings are not allowed.
1032 *
1033 * This routine will ensure the values are within the range specified by
1034 * table->extra1 (min) and table->extra2 (max). There is a final sanity
1035 * check for UINT_MAX to avoid having to support wrap around uses from
1036 * userspace.
1037 *
1038 * Returns 0 on success or -ERANGE on write when the range check fails.
1039 */
1040int proc_douintvec_minmax(struct ctl_table *table, int write,
1041 void *buffer, size_t *lenp, loff_t *ppos)
1042{
1043 struct do_proc_douintvec_minmax_conv_param param = {
1044 .min = (unsigned int *) table->extra1,
1045 .max = (unsigned int *) table->extra2,
1046 };
1047 return do_proc_douintvec(table, write, buffer, lenp, ppos,
1048 do_proc_douintvec_minmax_conv, ¶m);
1049}
1050
1051/**
1052 * proc_dou8vec_minmax - read a vector of unsigned chars with min/max values
1053 * @table: the sysctl table
1054 * @write: %TRUE if this is a write to the sysctl file
1055 * @buffer: the user buffer
1056 * @lenp: the size of the user buffer
1057 * @ppos: file position
1058 *
1059 * Reads/writes up to table->maxlen/sizeof(u8) unsigned chars
1060 * values from/to the user buffer, treated as an ASCII string. Negative
1061 * strings are not allowed.
1062 *
1063 * This routine will ensure the values are within the range specified by
1064 * table->extra1 (min) and table->extra2 (max).
1065 *
1066 * Returns 0 on success or an error on write when the range check fails.
1067 */
1068int proc_dou8vec_minmax(struct ctl_table *table, int write,
1069 void *buffer, size_t *lenp, loff_t *ppos)
1070{
1071 struct ctl_table tmp;
1072 unsigned int min = 0, max = 255U, val;
1073 u8 *data = table->data;
1074 struct do_proc_douintvec_minmax_conv_param param = {
1075 .min = &min,
1076 .max = &max,
1077 };
1078 int res;
1079
1080 /* Do not support arrays yet. */
1081 if (table->maxlen != sizeof(u8))
1082 return -EINVAL;
1083
1084 if (table->extra1) {
1085 min = *(unsigned int *) table->extra1;
1086 if (min > 255U)
1087 return -EINVAL;
1088 }
1089 if (table->extra2) {
1090 max = *(unsigned int *) table->extra2;
1091 if (max > 255U)
1092 return -EINVAL;
1093 }
1094
1095 tmp = *table;
1096
1097 tmp.maxlen = sizeof(val);
1098 tmp.data = &val;
1099 val = *data;
1100 res = do_proc_douintvec(&tmp, write, buffer, lenp, ppos,
1101 do_proc_douintvec_minmax_conv, ¶m);
1102 if (res)
1103 return res;
1104 if (write)
1105 *data = val;
1106 return 0;
1107}
1108EXPORT_SYMBOL_GPL(proc_dou8vec_minmax);
1109
1110static int do_proc_dopipe_max_size_conv(unsigned long *lvalp,
1111 unsigned int *valp,
1112 int write, void *data)
1113{
1114 if (write) {
1115 unsigned int val;
1116
1117 val = round_pipe_size(*lvalp);
1118 if (val == 0)
1119 return -EINVAL;
1120
1121 *valp = val;
1122 } else {
1123 unsigned int val = *valp;
1124 *lvalp = (unsigned long) val;
1125 }
1126
1127 return 0;
1128}
1129
1130static int proc_dopipe_max_size(struct ctl_table *table, int write,
1131 void *buffer, size_t *lenp, loff_t *ppos)
1132{
1133 return do_proc_douintvec(table, write, buffer, lenp, ppos,
1134 do_proc_dopipe_max_size_conv, NULL);
1135}
1136
1137static void validate_coredump_safety(void)
1138{
1139#ifdef CONFIG_COREDUMP
1140 if (suid_dumpable == SUID_DUMP_ROOT &&
1141 core_pattern[0] != '/' && core_pattern[0] != '|') {
1142 printk(KERN_WARNING
1143"Unsafe core_pattern used with fs.suid_dumpable=2.\n"
1144"Pipe handler or fully qualified core dump path required.\n"
1145"Set kernel.core_pattern before fs.suid_dumpable.\n"
1146 );
1147 }
1148#endif
1149}
1150
1151static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
1152 void *buffer, size_t *lenp, loff_t *ppos)
1153{
1154 int error = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
1155 if (!error)
1156 validate_coredump_safety();
1157 return error;
1158}
1159
1160#ifdef CONFIG_COREDUMP
1161static int proc_dostring_coredump(struct ctl_table *table, int write,
1162 void *buffer, size_t *lenp, loff_t *ppos)
1163{
1164 int error = proc_dostring(table, write, buffer, lenp, ppos);
1165 if (!error)
1166 validate_coredump_safety();
1167 return error;
1168}
1169#endif
1170
1171#ifdef CONFIG_MAGIC_SYSRQ
1172static int sysrq_sysctl_handler(struct ctl_table *table, int write,
1173 void *buffer, size_t *lenp, loff_t *ppos)
1174{
1175 int tmp, ret;
1176
1177 tmp = sysrq_mask();
1178
1179 ret = __do_proc_dointvec(&tmp, table, write, buffer,
1180 lenp, ppos, NULL, NULL);
1181 if (ret || !write)
1182 return ret;
1183
1184 if (write)
1185 sysrq_toggle_support(tmp);
1186
1187 return 0;
1188}
1189#endif
1190
1191static int __do_proc_doulongvec_minmax(void *data, struct ctl_table *table,
1192 int write, void *buffer, size_t *lenp, loff_t *ppos,
1193 unsigned long convmul, unsigned long convdiv)
1194{
1195 unsigned long *i, *min, *max;
1196 int vleft, first = 1, err = 0;
1197 size_t left;
1198 char *p;
1199
1200 if (!data || !table->maxlen || !*lenp || (*ppos && !write)) {
1201 *lenp = 0;
1202 return 0;
1203 }
1204
1205 i = (unsigned long *) data;
1206 min = (unsigned long *) table->extra1;
1207 max = (unsigned long *) table->extra2;
1208 vleft = table->maxlen / sizeof(unsigned long);
1209 left = *lenp;
1210
1211 if (write) {
1212 if (proc_first_pos_non_zero_ignore(ppos, table))
1213 goto out;
1214
1215 if (left > PAGE_SIZE - 1)
1216 left = PAGE_SIZE - 1;
1217 p = buffer;
1218 }
1219
1220 for (; left && vleft--; i++, first = 0) {
1221 unsigned long val;
1222
1223 if (write) {
1224 bool neg;
1225
1226 left -= proc_skip_spaces(&p);
1227 if (!left)
1228 break;
1229
1230 err = proc_get_long(&p, &left, &val, &neg,
1231 proc_wspace_sep,
1232 sizeof(proc_wspace_sep), NULL);
1233 if (err)
1234 break;
1235 if (neg)
1236 continue;
1237 val = convmul * val / convdiv;
1238 if ((min && val < *min) || (max && val > *max)) {
1239 err = -EINVAL;
1240 break;
1241 }
1242 *i = val;
1243 } else {
1244 val = convdiv * (*i) / convmul;
1245 if (!first)
1246 proc_put_char(&buffer, &left, '\t');
1247 proc_put_long(&buffer, &left, val, false);
1248 }
1249 }
1250
1251 if (!write && !first && left && !err)
1252 proc_put_char(&buffer, &left, '\n');
1253 if (write && !err)
1254 left -= proc_skip_spaces(&p);
1255 if (write && first)
1256 return err ? : -EINVAL;
1257 *lenp -= left;
1258out:
1259 *ppos += *lenp;
1260 return err;
1261}
1262
1263static int do_proc_doulongvec_minmax(struct ctl_table *table, int write,
1264 void *buffer, size_t *lenp, loff_t *ppos, unsigned long convmul,
1265 unsigned long convdiv)
1266{
1267 return __do_proc_doulongvec_minmax(table->data, table, write,
1268 buffer, lenp, ppos, convmul, convdiv);
1269}
1270
1271/**
1272 * proc_doulongvec_minmax - read a vector of long integers with min/max values
1273 * @table: the sysctl table
1274 * @write: %TRUE if this is a write to the sysctl file
1275 * @buffer: the user buffer
1276 * @lenp: the size of the user buffer
1277 * @ppos: file position
1278 *
1279 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
1280 * values from/to the user buffer, treated as an ASCII string.
1281 *
1282 * This routine will ensure the values are within the range specified by
1283 * table->extra1 (min) and table->extra2 (max).
1284 *
1285 * Returns 0 on success.
1286 */
1287int proc_doulongvec_minmax(struct ctl_table *table, int write,
1288 void *buffer, size_t *lenp, loff_t *ppos)
1289{
1290 return do_proc_doulongvec_minmax(table, write, buffer, lenp, ppos, 1l, 1l);
1291}
1292
1293/**
1294 * proc_doulongvec_ms_jiffies_minmax - read a vector of millisecond values with min/max values
1295 * @table: the sysctl table
1296 * @write: %TRUE if this is a write to the sysctl file
1297 * @buffer: the user buffer
1298 * @lenp: the size of the user buffer
1299 * @ppos: file position
1300 *
1301 * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
1302 * values from/to the user buffer, treated as an ASCII string. The values
1303 * are treated as milliseconds, and converted to jiffies when they are stored.
1304 *
1305 * This routine will ensure the values are within the range specified by
1306 * table->extra1 (min) and table->extra2 (max).
1307 *
1308 * Returns 0 on success.
1309 */
1310int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
1311 void *buffer, size_t *lenp, loff_t *ppos)
1312{
1313 return do_proc_doulongvec_minmax(table, write, buffer,
1314 lenp, ppos, HZ, 1000l);
1315}
1316
1317
1318static int do_proc_dointvec_jiffies_conv(bool *negp, unsigned long *lvalp,
1319 int *valp,
1320 int write, void *data)
1321{
1322 if (write) {
1323 if (*lvalp > INT_MAX / HZ)
1324 return 1;
1325 *valp = *negp ? -(*lvalp*HZ) : (*lvalp*HZ);
1326 } else {
1327 int val = *valp;
1328 unsigned long lval;
1329 if (val < 0) {
1330 *negp = true;
1331 lval = -(unsigned long)val;
1332 } else {
1333 *negp = false;
1334 lval = (unsigned long)val;
1335 }
1336 *lvalp = lval / HZ;
1337 }
1338 return 0;
1339}
1340
1341static int do_proc_dointvec_userhz_jiffies_conv(bool *negp, unsigned long *lvalp,
1342 int *valp,
1343 int write, void *data)
1344{
1345 if (write) {
1346 if (USER_HZ < HZ && *lvalp > (LONG_MAX / HZ) * USER_HZ)
1347 return 1;
1348 *valp = clock_t_to_jiffies(*negp ? -*lvalp : *lvalp);
1349 } else {
1350 int val = *valp;
1351 unsigned long lval;
1352 if (val < 0) {
1353 *negp = true;
1354 lval = -(unsigned long)val;
1355 } else {
1356 *negp = false;
1357 lval = (unsigned long)val;
1358 }
1359 *lvalp = jiffies_to_clock_t(lval);
1360 }
1361 return 0;
1362}
1363
1364static int do_proc_dointvec_ms_jiffies_conv(bool *negp, unsigned long *lvalp,
1365 int *valp,
1366 int write, void *data)
1367{
1368 if (write) {
1369 unsigned long jif = msecs_to_jiffies(*negp ? -*lvalp : *lvalp);
1370
1371 if (jif > INT_MAX)
1372 return 1;
1373 *valp = (int)jif;
1374 } else {
1375 int val = *valp;
1376 unsigned long lval;
1377 if (val < 0) {
1378 *negp = true;
1379 lval = -(unsigned long)val;
1380 } else {
1381 *negp = false;
1382 lval = (unsigned long)val;
1383 }
1384 *lvalp = jiffies_to_msecs(lval);
1385 }
1386 return 0;
1387}
1388
1389/**
1390 * proc_dointvec_jiffies - read a vector of integers as seconds
1391 * @table: the sysctl table
1392 * @write: %TRUE if this is a write to the sysctl file
1393 * @buffer: the user buffer
1394 * @lenp: the size of the user buffer
1395 * @ppos: file position
1396 *
1397 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1398 * values from/to the user buffer, treated as an ASCII string.
1399 * The values read are assumed to be in seconds, and are converted into
1400 * jiffies.
1401 *
1402 * Returns 0 on success.
1403 */
1404int proc_dointvec_jiffies(struct ctl_table *table, int write,
1405 void *buffer, size_t *lenp, loff_t *ppos)
1406{
1407 return do_proc_dointvec(table,write,buffer,lenp,ppos,
1408 do_proc_dointvec_jiffies_conv,NULL);
1409}
1410
1411/**
1412 * proc_dointvec_userhz_jiffies - read a vector of integers as 1/USER_HZ seconds
1413 * @table: the sysctl table
1414 * @write: %TRUE if this is a write to the sysctl file
1415 * @buffer: the user buffer
1416 * @lenp: the size of the user buffer
1417 * @ppos: pointer to the file position
1418 *
1419 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1420 * values from/to the user buffer, treated as an ASCII string.
1421 * The values read are assumed to be in 1/USER_HZ seconds, and
1422 * are converted into jiffies.
1423 *
1424 * Returns 0 on success.
1425 */
1426int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
1427 void *buffer, size_t *lenp, loff_t *ppos)
1428{
1429 return do_proc_dointvec(table,write,buffer,lenp,ppos,
1430 do_proc_dointvec_userhz_jiffies_conv,NULL);
1431}
1432
1433/**
1434 * proc_dointvec_ms_jiffies - read a vector of integers as 1 milliseconds
1435 * @table: the sysctl table
1436 * @write: %TRUE if this is a write to the sysctl file
1437 * @buffer: the user buffer
1438 * @lenp: the size of the user buffer
1439 * @ppos: file position
1440 * @ppos: the current position in the file
1441 *
1442 * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
1443 * values from/to the user buffer, treated as an ASCII string.
1444 * The values read are assumed to be in 1/1000 seconds, and
1445 * are converted into jiffies.
1446 *
1447 * Returns 0 on success.
1448 */
1449int proc_dointvec_ms_jiffies(struct ctl_table *table, int write, void *buffer,
1450 size_t *lenp, loff_t *ppos)
1451{
1452 return do_proc_dointvec(table, write, buffer, lenp, ppos,
1453 do_proc_dointvec_ms_jiffies_conv, NULL);
1454}
1455
1456static int proc_do_cad_pid(struct ctl_table *table, int write, void *buffer,
1457 size_t *lenp, loff_t *ppos)
1458{
1459 struct pid *new_pid;
1460 pid_t tmp;
1461 int r;
1462
1463 tmp = pid_vnr(cad_pid);
1464
1465 r = __do_proc_dointvec(&tmp, table, write, buffer,
1466 lenp, ppos, NULL, NULL);
1467 if (r || !write)
1468 return r;
1469
1470 new_pid = find_get_pid(tmp);
1471 if (!new_pid)
1472 return -ESRCH;
1473
1474 put_pid(xchg(&cad_pid, new_pid));
1475 return 0;
1476}
1477
1478/**
1479 * proc_do_large_bitmap - read/write from/to a large bitmap
1480 * @table: the sysctl table
1481 * @write: %TRUE if this is a write to the sysctl file
1482 * @buffer: the user buffer
1483 * @lenp: the size of the user buffer
1484 * @ppos: file position
1485 *
1486 * The bitmap is stored at table->data and the bitmap length (in bits)
1487 * in table->maxlen.
1488 *
1489 * We use a range comma separated format (e.g. 1,3-4,10-10) so that
1490 * large bitmaps may be represented in a compact manner. Writing into
1491 * the file will clear the bitmap then update it with the given input.
1492 *
1493 * Returns 0 on success.
1494 */
1495int proc_do_large_bitmap(struct ctl_table *table, int write,
1496 void *buffer, size_t *lenp, loff_t *ppos)
1497{
1498 int err = 0;
1499 size_t left = *lenp;
1500 unsigned long bitmap_len = table->maxlen;
1501 unsigned long *bitmap = *(unsigned long **) table->data;
1502 unsigned long *tmp_bitmap = NULL;
1503 char tr_a[] = { '-', ',', '\n' }, tr_b[] = { ',', '\n', 0 }, c;
1504
1505 if (!bitmap || !bitmap_len || !left || (*ppos && !write)) {
1506 *lenp = 0;
1507 return 0;
1508 }
1509
1510 if (write) {
1511 char *p = buffer;
1512 size_t skipped = 0;
1513
1514 if (left > PAGE_SIZE - 1) {
1515 left = PAGE_SIZE - 1;
1516 /* How much of the buffer we'll skip this pass */
1517 skipped = *lenp - left;
1518 }
1519
1520 tmp_bitmap = bitmap_zalloc(bitmap_len, GFP_KERNEL);
1521 if (!tmp_bitmap)
1522 return -ENOMEM;
1523 proc_skip_char(&p, &left, '\n');
1524 while (!err && left) {
1525 unsigned long val_a, val_b;
1526 bool neg;
1527 size_t saved_left;
1528
1529 /* In case we stop parsing mid-number, we can reset */
1530 saved_left = left;
1531 err = proc_get_long(&p, &left, &val_a, &neg, tr_a,
1532 sizeof(tr_a), &c);
1533 /*
1534 * If we consumed the entirety of a truncated buffer or
1535 * only one char is left (may be a "-"), then stop here,
1536 * reset, & come back for more.
1537 */
1538 if ((left <= 1) && skipped) {
1539 left = saved_left;
1540 break;
1541 }
1542
1543 if (err)
1544 break;
1545 if (val_a >= bitmap_len || neg) {
1546 err = -EINVAL;
1547 break;
1548 }
1549
1550 val_b = val_a;
1551 if (left) {
1552 p++;
1553 left--;
1554 }
1555
1556 if (c == '-') {
1557 err = proc_get_long(&p, &left, &val_b,
1558 &neg, tr_b, sizeof(tr_b),
1559 &c);
1560 /*
1561 * If we consumed all of a truncated buffer or
1562 * then stop here, reset, & come back for more.
1563 */
1564 if (!left && skipped) {
1565 left = saved_left;
1566 break;
1567 }
1568
1569 if (err)
1570 break;
1571 if (val_b >= bitmap_len || neg ||
1572 val_a > val_b) {
1573 err = -EINVAL;
1574 break;
1575 }
1576 if (left) {
1577 p++;
1578 left--;
1579 }
1580 }
1581
1582 bitmap_set(tmp_bitmap, val_a, val_b - val_a + 1);
1583 proc_skip_char(&p, &left, '\n');
1584 }
1585 left += skipped;
1586 } else {
1587 unsigned long bit_a, bit_b = 0;
1588 bool first = 1;
1589
1590 while (left) {
1591 bit_a = find_next_bit(bitmap, bitmap_len, bit_b);
1592 if (bit_a >= bitmap_len)
1593 break;
1594 bit_b = find_next_zero_bit(bitmap, bitmap_len,
1595 bit_a + 1) - 1;
1596
1597 if (!first)
1598 proc_put_char(&buffer, &left, ',');
1599 proc_put_long(&buffer, &left, bit_a, false);
1600 if (bit_a != bit_b) {
1601 proc_put_char(&buffer, &left, '-');
1602 proc_put_long(&buffer, &left, bit_b, false);
1603 }
1604
1605 first = 0; bit_b++;
1606 }
1607 proc_put_char(&buffer, &left, '\n');
1608 }
1609
1610 if (!err) {
1611 if (write) {
1612 if (*ppos)
1613 bitmap_or(bitmap, bitmap, tmp_bitmap, bitmap_len);
1614 else
1615 bitmap_copy(bitmap, tmp_bitmap, bitmap_len);
1616 }
1617 *lenp -= left;
1618 *ppos += *lenp;
1619 }
1620
1621 bitmap_free(tmp_bitmap);
1622 return err;
1623}
1624
1625#else /* CONFIG_PROC_SYSCTL */
1626
1627int proc_dostring(struct ctl_table *table, int write,
1628 void *buffer, size_t *lenp, loff_t *ppos)
1629{
1630 return -ENOSYS;
1631}
1632
1633int proc_dointvec(struct ctl_table *table, int write,
1634 void *buffer, size_t *lenp, loff_t *ppos)
1635{
1636 return -ENOSYS;
1637}
1638
1639int proc_douintvec(struct ctl_table *table, int write,
1640 void *buffer, size_t *lenp, loff_t *ppos)
1641{
1642 return -ENOSYS;
1643}
1644
1645int proc_dointvec_minmax(struct ctl_table *table, int write,
1646 void *buffer, size_t *lenp, loff_t *ppos)
1647{
1648 return -ENOSYS;
1649}
1650
1651int proc_douintvec_minmax(struct ctl_table *table, int write,
1652 void *buffer, size_t *lenp, loff_t *ppos)
1653{
1654 return -ENOSYS;
1655}
1656
1657int proc_dou8vec_minmax(struct ctl_table *table, int write,
1658 void *buffer, size_t *lenp, loff_t *ppos)
1659{
1660 return -ENOSYS;
1661}
1662
1663int proc_dointvec_jiffies(struct ctl_table *table, int write,
1664 void *buffer, size_t *lenp, loff_t *ppos)
1665{
1666 return -ENOSYS;
1667}
1668
1669int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
1670 void *buffer, size_t *lenp, loff_t *ppos)
1671{
1672 return -ENOSYS;
1673}
1674
1675int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
1676 void *buffer, size_t *lenp, loff_t *ppos)
1677{
1678 return -ENOSYS;
1679}
1680
1681int proc_doulongvec_minmax(struct ctl_table *table, int write,
1682 void *buffer, size_t *lenp, loff_t *ppos)
1683{
1684 return -ENOSYS;
1685}
1686
1687int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
1688 void *buffer, size_t *lenp, loff_t *ppos)
1689{
1690 return -ENOSYS;
1691}
1692
1693int proc_do_large_bitmap(struct ctl_table *table, int write,
1694 void *buffer, size_t *lenp, loff_t *ppos)
1695{
1696 return -ENOSYS;
1697}
1698
1699#endif /* CONFIG_PROC_SYSCTL */
1700
1701#if defined(CONFIG_SYSCTL)
1702int proc_do_static_key(struct ctl_table *table, int write,
1703 void *buffer, size_t *lenp, loff_t *ppos)
1704{
1705 struct static_key *key = (struct static_key *)table->data;
1706 static DEFINE_MUTEX(static_key_mutex);
1707 int val, ret;
1708 struct ctl_table tmp = {
1709 .data = &val,
1710 .maxlen = sizeof(val),
1711 .mode = table->mode,
1712 .extra1 = SYSCTL_ZERO,
1713 .extra2 = SYSCTL_ONE,
1714 };
1715
1716 if (write && !capable(CAP_SYS_ADMIN))
1717 return -EPERM;
1718
1719 mutex_lock(&static_key_mutex);
1720 val = static_key_enabled(key);
1721 ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
1722 if (write && !ret) {
1723 if (val)
1724 static_key_enable(key);
1725 else
1726 static_key_disable(key);
1727 }
1728 mutex_unlock(&static_key_mutex);
1729 return ret;
1730}
1731
1732static struct ctl_table kern_table[] = {
1733 {
1734 .procname = "sched_child_runs_first",
1735 .data = &sysctl_sched_child_runs_first,
1736 .maxlen = sizeof(unsigned int),
1737 .mode = 0644,
1738 .proc_handler = proc_dointvec,
1739 },
1740#ifdef CONFIG_SCHEDSTATS
1741 {
1742 .procname = "sched_schedstats",
1743 .data = NULL,
1744 .maxlen = sizeof(unsigned int),
1745 .mode = 0644,
1746 .proc_handler = sysctl_schedstats,
1747 .extra1 = SYSCTL_ZERO,
1748 .extra2 = SYSCTL_ONE,
1749 },
1750#endif /* CONFIG_SCHEDSTATS */
1751#ifdef CONFIG_TASK_DELAY_ACCT
1752 {
1753 .procname = "task_delayacct",
1754 .data = NULL,
1755 .maxlen = sizeof(unsigned int),
1756 .mode = 0644,
1757 .proc_handler = sysctl_delayacct,
1758 .extra1 = SYSCTL_ZERO,
1759 .extra2 = SYSCTL_ONE,
1760 },
1761#endif /* CONFIG_TASK_DELAY_ACCT */
1762#ifdef CONFIG_NUMA_BALANCING
1763 {
1764 .procname = "numa_balancing",
1765 .data = NULL, /* filled in by handler */
1766 .maxlen = sizeof(unsigned int),
1767 .mode = 0644,
1768 .proc_handler = sysctl_numa_balancing,
1769 .extra1 = SYSCTL_ZERO,
1770 .extra2 = SYSCTL_ONE,
1771 },
1772#endif /* CONFIG_NUMA_BALANCING */
1773 {
1774 .procname = "sched_rt_period_us",
1775 .data = &sysctl_sched_rt_period,
1776 .maxlen = sizeof(unsigned int),
1777 .mode = 0644,
1778 .proc_handler = sched_rt_handler,
1779 },
1780 {
1781 .procname = "sched_rt_runtime_us",
1782 .data = &sysctl_sched_rt_runtime,
1783 .maxlen = sizeof(int),
1784 .mode = 0644,
1785 .proc_handler = sched_rt_handler,
1786 },
1787 {
1788 .procname = "sched_deadline_period_max_us",
1789 .data = &sysctl_sched_dl_period_max,
1790 .maxlen = sizeof(unsigned int),
1791 .mode = 0644,
1792 .proc_handler = proc_dointvec,
1793 },
1794 {
1795 .procname = "sched_deadline_period_min_us",
1796 .data = &sysctl_sched_dl_period_min,
1797 .maxlen = sizeof(unsigned int),
1798 .mode = 0644,
1799 .proc_handler = proc_dointvec,
1800 },
1801 {
1802 .procname = "sched_rr_timeslice_ms",
1803 .data = &sysctl_sched_rr_timeslice,
1804 .maxlen = sizeof(int),
1805 .mode = 0644,
1806 .proc_handler = sched_rr_handler,
1807 },
1808#ifdef CONFIG_UCLAMP_TASK
1809 {
1810 .procname = "sched_util_clamp_min",
1811 .data = &sysctl_sched_uclamp_util_min,
1812 .maxlen = sizeof(unsigned int),
1813 .mode = 0644,
1814 .proc_handler = sysctl_sched_uclamp_handler,
1815 },
1816 {
1817 .procname = "sched_util_clamp_max",
1818 .data = &sysctl_sched_uclamp_util_max,
1819 .maxlen = sizeof(unsigned int),
1820 .mode = 0644,
1821 .proc_handler = sysctl_sched_uclamp_handler,
1822 },
1823 {
1824 .procname = "sched_util_clamp_min_rt_default",
1825 .data = &sysctl_sched_uclamp_util_min_rt_default,
1826 .maxlen = sizeof(unsigned int),
1827 .mode = 0644,
1828 .proc_handler = sysctl_sched_uclamp_handler,
1829 },
1830#endif
1831#ifdef CONFIG_SCHED_AUTOGROUP
1832 {
1833 .procname = "sched_autogroup_enabled",
1834 .data = &sysctl_sched_autogroup_enabled,
1835 .maxlen = sizeof(unsigned int),
1836 .mode = 0644,
1837 .proc_handler = proc_dointvec_minmax,
1838 .extra1 = SYSCTL_ZERO,
1839 .extra2 = SYSCTL_ONE,
1840 },
1841#endif
1842#ifdef CONFIG_CFS_BANDWIDTH
1843 {
1844 .procname = "sched_cfs_bandwidth_slice_us",
1845 .data = &sysctl_sched_cfs_bandwidth_slice,
1846 .maxlen = sizeof(unsigned int),
1847 .mode = 0644,
1848 .proc_handler = proc_dointvec_minmax,
1849 .extra1 = SYSCTL_ONE,
1850 },
1851#endif
1852#if defined(CONFIG_ENERGY_MODEL) && defined(CONFIG_CPU_FREQ_GOV_SCHEDUTIL)
1853 {
1854 .procname = "sched_energy_aware",
1855 .data = &sysctl_sched_energy_aware,
1856 .maxlen = sizeof(unsigned int),
1857 .mode = 0644,
1858 .proc_handler = sched_energy_aware_handler,
1859 .extra1 = SYSCTL_ZERO,
1860 .extra2 = SYSCTL_ONE,
1861 },
1862#endif
1863#ifdef CONFIG_PROVE_LOCKING
1864 {
1865 .procname = "prove_locking",
1866 .data = &prove_locking,
1867 .maxlen = sizeof(int),
1868 .mode = 0644,
1869 .proc_handler = proc_dointvec,
1870 },
1871#endif
1872#ifdef CONFIG_LOCK_STAT
1873 {
1874 .procname = "lock_stat",
1875 .data = &lock_stat,
1876 .maxlen = sizeof(int),
1877 .mode = 0644,
1878 .proc_handler = proc_dointvec,
1879 },
1880#endif
1881 {
1882 .procname = "panic",
1883 .data = &panic_timeout,
1884 .maxlen = sizeof(int),
1885 .mode = 0644,
1886 .proc_handler = proc_dointvec,
1887 },
1888#ifdef CONFIG_COREDUMP
1889 {
1890 .procname = "core_uses_pid",
1891 .data = &core_uses_pid,
1892 .maxlen = sizeof(int),
1893 .mode = 0644,
1894 .proc_handler = proc_dointvec,
1895 },
1896 {
1897 .procname = "core_pattern",
1898 .data = core_pattern,
1899 .maxlen = CORENAME_MAX_SIZE,
1900 .mode = 0644,
1901 .proc_handler = proc_dostring_coredump,
1902 },
1903 {
1904 .procname = "core_pipe_limit",
1905 .data = &core_pipe_limit,
1906 .maxlen = sizeof(unsigned int),
1907 .mode = 0644,
1908 .proc_handler = proc_dointvec,
1909 },
1910#endif
1911#ifdef CONFIG_PROC_SYSCTL
1912 {
1913 .procname = "tainted",
1914 .maxlen = sizeof(long),
1915 .mode = 0644,
1916 .proc_handler = proc_taint,
1917 },
1918 {
1919 .procname = "sysctl_writes_strict",
1920 .data = &sysctl_writes_strict,
1921 .maxlen = sizeof(int),
1922 .mode = 0644,
1923 .proc_handler = proc_dointvec_minmax,
1924 .extra1 = &neg_one,
1925 .extra2 = SYSCTL_ONE,
1926 },
1927#endif
1928#ifdef CONFIG_LATENCYTOP
1929 {
1930 .procname = "latencytop",
1931 .data = &latencytop_enabled,
1932 .maxlen = sizeof(int),
1933 .mode = 0644,
1934 .proc_handler = sysctl_latencytop,
1935 },
1936#endif
1937#ifdef CONFIG_BLK_DEV_INITRD
1938 {
1939 .procname = "real-root-dev",
1940 .data = &real_root_dev,
1941 .maxlen = sizeof(int),
1942 .mode = 0644,
1943 .proc_handler = proc_dointvec,
1944 },
1945#endif
1946 {
1947 .procname = "print-fatal-signals",
1948 .data = &print_fatal_signals,
1949 .maxlen = sizeof(int),
1950 .mode = 0644,
1951 .proc_handler = proc_dointvec,
1952 },
1953#ifdef CONFIG_SPARC
1954 {
1955 .procname = "reboot-cmd",
1956 .data = reboot_command,
1957 .maxlen = 256,
1958 .mode = 0644,
1959 .proc_handler = proc_dostring,
1960 },
1961 {
1962 .procname = "stop-a",
1963 .data = &stop_a_enabled,
1964 .maxlen = sizeof (int),
1965 .mode = 0644,
1966 .proc_handler = proc_dointvec,
1967 },
1968 {
1969 .procname = "scons-poweroff",
1970 .data = &scons_pwroff,
1971 .maxlen = sizeof (int),
1972 .mode = 0644,
1973 .proc_handler = proc_dointvec,
1974 },
1975#endif
1976#ifdef CONFIG_SPARC64
1977 {
1978 .procname = "tsb-ratio",
1979 .data = &sysctl_tsb_ratio,
1980 .maxlen = sizeof (int),
1981 .mode = 0644,
1982 .proc_handler = proc_dointvec,
1983 },
1984#endif
1985#ifdef CONFIG_PARISC
1986 {
1987 .procname = "soft-power",
1988 .data = &pwrsw_enabled,
1989 .maxlen = sizeof (int),
1990 .mode = 0644,
1991 .proc_handler = proc_dointvec,
1992 },
1993#endif
1994#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
1995 {
1996 .procname = "unaligned-trap",
1997 .data = &unaligned_enabled,
1998 .maxlen = sizeof (int),
1999 .mode = 0644,
2000 .proc_handler = proc_dointvec,
2001 },
2002#endif
2003 {
2004 .procname = "ctrl-alt-del",
2005 .data = &C_A_D,
2006 .maxlen = sizeof(int),
2007 .mode = 0644,
2008 .proc_handler = proc_dointvec,
2009 },
2010#ifdef CONFIG_FUNCTION_TRACER
2011 {
2012 .procname = "ftrace_enabled",
2013 .data = &ftrace_enabled,
2014 .maxlen = sizeof(int),
2015 .mode = 0644,
2016 .proc_handler = ftrace_enable_sysctl,
2017 },
2018#endif
2019#ifdef CONFIG_STACK_TRACER
2020 {
2021 .procname = "stack_tracer_enabled",
2022 .data = &stack_tracer_enabled,
2023 .maxlen = sizeof(int),
2024 .mode = 0644,
2025 .proc_handler = stack_trace_sysctl,
2026 },
2027#endif
2028#ifdef CONFIG_TRACING
2029 {
2030 .procname = "ftrace_dump_on_oops",
2031 .data = &ftrace_dump_on_oops,
2032 .maxlen = sizeof(int),
2033 .mode = 0644,
2034 .proc_handler = proc_dointvec,
2035 },
2036 {
2037 .procname = "traceoff_on_warning",
2038 .data = &__disable_trace_on_warning,
2039 .maxlen = sizeof(__disable_trace_on_warning),
2040 .mode = 0644,
2041 .proc_handler = proc_dointvec,
2042 },
2043 {
2044 .procname = "tracepoint_printk",
2045 .data = &tracepoint_printk,
2046 .maxlen = sizeof(tracepoint_printk),
2047 .mode = 0644,
2048 .proc_handler = tracepoint_printk_sysctl,
2049 },
2050#endif
2051#ifdef CONFIG_KEXEC_CORE
2052 {
2053 .procname = "kexec_load_disabled",
2054 .data = &kexec_load_disabled,
2055 .maxlen = sizeof(int),
2056 .mode = 0644,
2057 /* only handle a transition from default "0" to "1" */
2058 .proc_handler = proc_dointvec_minmax,
2059 .extra1 = SYSCTL_ONE,
2060 .extra2 = SYSCTL_ONE,
2061 },
2062#endif
2063#ifdef CONFIG_MODULES
2064 {
2065 .procname = "modprobe",
2066 .data = &modprobe_path,
2067 .maxlen = KMOD_PATH_LEN,
2068 .mode = 0644,
2069 .proc_handler = proc_dostring,
2070 },
2071 {
2072 .procname = "modules_disabled",
2073 .data = &modules_disabled,
2074 .maxlen = sizeof(int),
2075 .mode = 0644,
2076 /* only handle a transition from default "0" to "1" */
2077 .proc_handler = proc_dointvec_minmax,
2078 .extra1 = SYSCTL_ONE,
2079 .extra2 = SYSCTL_ONE,
2080 },
2081#endif
2082#ifdef CONFIG_UEVENT_HELPER
2083 {
2084 .procname = "hotplug",
2085 .data = &uevent_helper,
2086 .maxlen = UEVENT_HELPER_PATH_LEN,
2087 .mode = 0644,
2088 .proc_handler = proc_dostring,
2089 },
2090#endif
2091#ifdef CONFIG_CHR_DEV_SG
2092 {
2093 .procname = "sg-big-buff",
2094 .data = &sg_big_buff,
2095 .maxlen = sizeof (int),
2096 .mode = 0444,
2097 .proc_handler = proc_dointvec,
2098 },
2099#endif
2100#ifdef CONFIG_BSD_PROCESS_ACCT
2101 {
2102 .procname = "acct",
2103 .data = &acct_parm,
2104 .maxlen = 3*sizeof(int),
2105 .mode = 0644,
2106 .proc_handler = proc_dointvec,
2107 },
2108#endif
2109#ifdef CONFIG_MAGIC_SYSRQ
2110 {
2111 .procname = "sysrq",
2112 .data = NULL,
2113 .maxlen = sizeof (int),
2114 .mode = 0644,
2115 .proc_handler = sysrq_sysctl_handler,
2116 },
2117#endif
2118#ifdef CONFIG_PROC_SYSCTL
2119 {
2120 .procname = "cad_pid",
2121 .data = NULL,
2122 .maxlen = sizeof (int),
2123 .mode = 0600,
2124 .proc_handler = proc_do_cad_pid,
2125 },
2126#endif
2127 {
2128 .procname = "threads-max",
2129 .data = NULL,
2130 .maxlen = sizeof(int),
2131 .mode = 0644,
2132 .proc_handler = sysctl_max_threads,
2133 },
2134 {
2135 .procname = "random",
2136 .mode = 0555,
2137 .child = random_table,
2138 },
2139 {
2140 .procname = "usermodehelper",
2141 .mode = 0555,
2142 .child = usermodehelper_table,
2143 },
2144#ifdef CONFIG_FW_LOADER_USER_HELPER
2145 {
2146 .procname = "firmware_config",
2147 .mode = 0555,
2148 .child = firmware_config_table,
2149 },
2150#endif
2151 {
2152 .procname = "overflowuid",
2153 .data = &overflowuid,
2154 .maxlen = sizeof(int),
2155 .mode = 0644,
2156 .proc_handler = proc_dointvec_minmax,
2157 .extra1 = &minolduid,
2158 .extra2 = &maxolduid,
2159 },
2160 {
2161 .procname = "overflowgid",
2162 .data = &overflowgid,
2163 .maxlen = sizeof(int),
2164 .mode = 0644,
2165 .proc_handler = proc_dointvec_minmax,
2166 .extra1 = &minolduid,
2167 .extra2 = &maxolduid,
2168 },
2169#ifdef CONFIG_S390
2170 {
2171 .procname = "userprocess_debug",
2172 .data = &show_unhandled_signals,
2173 .maxlen = sizeof(int),
2174 .mode = 0644,
2175 .proc_handler = proc_dointvec,
2176 },
2177#endif
2178#ifdef CONFIG_SMP
2179 {
2180 .procname = "oops_all_cpu_backtrace",
2181 .data = &sysctl_oops_all_cpu_backtrace,
2182 .maxlen = sizeof(int),
2183 .mode = 0644,
2184 .proc_handler = proc_dointvec_minmax,
2185 .extra1 = SYSCTL_ZERO,
2186 .extra2 = SYSCTL_ONE,
2187 },
2188#endif /* CONFIG_SMP */
2189 {
2190 .procname = "pid_max",
2191 .data = &pid_max,
2192 .maxlen = sizeof (int),
2193 .mode = 0644,
2194 .proc_handler = proc_dointvec_minmax,
2195 .extra1 = &pid_max_min,
2196 .extra2 = &pid_max_max,
2197 },
2198 {
2199 .procname = "panic_on_oops",
2200 .data = &panic_on_oops,
2201 .maxlen = sizeof(int),
2202 .mode = 0644,
2203 .proc_handler = proc_dointvec,
2204 },
2205 {
2206 .procname = "panic_print",
2207 .data = &panic_print,
2208 .maxlen = sizeof(unsigned long),
2209 .mode = 0644,
2210 .proc_handler = proc_doulongvec_minmax,
2211 },
2212#if defined CONFIG_PRINTK
2213 {
2214 .procname = "printk",
2215 .data = &console_loglevel,
2216 .maxlen = 4*sizeof(int),
2217 .mode = 0644,
2218 .proc_handler = proc_dointvec,
2219 },
2220 {
2221 .procname = "printk_ratelimit",
2222 .data = &printk_ratelimit_state.interval,
2223 .maxlen = sizeof(int),
2224 .mode = 0644,
2225 .proc_handler = proc_dointvec_jiffies,
2226 },
2227 {
2228 .procname = "printk_ratelimit_burst",
2229 .data = &printk_ratelimit_state.burst,
2230 .maxlen = sizeof(int),
2231 .mode = 0644,
2232 .proc_handler = proc_dointvec,
2233 },
2234 {
2235 .procname = "printk_delay",
2236 .data = &printk_delay_msec,
2237 .maxlen = sizeof(int),
2238 .mode = 0644,
2239 .proc_handler = proc_dointvec_minmax,
2240 .extra1 = SYSCTL_ZERO,
2241 .extra2 = &ten_thousand,
2242 },
2243 {
2244 .procname = "printk_devkmsg",
2245 .data = devkmsg_log_str,
2246 .maxlen = DEVKMSG_STR_MAX_SIZE,
2247 .mode = 0644,
2248 .proc_handler = devkmsg_sysctl_set_loglvl,
2249 },
2250 {
2251 .procname = "dmesg_restrict",
2252 .data = &dmesg_restrict,
2253 .maxlen = sizeof(int),
2254 .mode = 0644,
2255 .proc_handler = proc_dointvec_minmax_sysadmin,
2256 .extra1 = SYSCTL_ZERO,
2257 .extra2 = SYSCTL_ONE,
2258 },
2259 {
2260 .procname = "kptr_restrict",
2261 .data = &kptr_restrict,
2262 .maxlen = sizeof(int),
2263 .mode = 0644,
2264 .proc_handler = proc_dointvec_minmax_sysadmin,
2265 .extra1 = SYSCTL_ZERO,
2266 .extra2 = &two,
2267 },
2268#endif
2269 {
2270 .procname = "ngroups_max",
2271 .data = &ngroups_max,
2272 .maxlen = sizeof (int),
2273 .mode = 0444,
2274 .proc_handler = proc_dointvec,
2275 },
2276 {
2277 .procname = "cap_last_cap",
2278 .data = (void *)&cap_last_cap,
2279 .maxlen = sizeof(int),
2280 .mode = 0444,
2281 .proc_handler = proc_dointvec,
2282 },
2283#if defined(CONFIG_LOCKUP_DETECTOR)
2284 {
2285 .procname = "watchdog",
2286 .data = &watchdog_user_enabled,
2287 .maxlen = sizeof(int),
2288 .mode = 0644,
2289 .proc_handler = proc_watchdog,
2290 .extra1 = SYSCTL_ZERO,
2291 .extra2 = SYSCTL_ONE,
2292 },
2293 {
2294 .procname = "watchdog_thresh",
2295 .data = &watchdog_thresh,
2296 .maxlen = sizeof(int),
2297 .mode = 0644,
2298 .proc_handler = proc_watchdog_thresh,
2299 .extra1 = SYSCTL_ZERO,
2300 .extra2 = &sixty,
2301 },
2302 {
2303 .procname = "nmi_watchdog",
2304 .data = &nmi_watchdog_user_enabled,
2305 .maxlen = sizeof(int),
2306 .mode = NMI_WATCHDOG_SYSCTL_PERM,
2307 .proc_handler = proc_nmi_watchdog,
2308 .extra1 = SYSCTL_ZERO,
2309 .extra2 = SYSCTL_ONE,
2310 },
2311 {
2312 .procname = "watchdog_cpumask",
2313 .data = &watchdog_cpumask_bits,
2314 .maxlen = NR_CPUS,
2315 .mode = 0644,
2316 .proc_handler = proc_watchdog_cpumask,
2317 },
2318#ifdef CONFIG_SOFTLOCKUP_DETECTOR
2319 {
2320 .procname = "soft_watchdog",
2321 .data = &soft_watchdog_user_enabled,
2322 .maxlen = sizeof(int),
2323 .mode = 0644,
2324 .proc_handler = proc_soft_watchdog,
2325 .extra1 = SYSCTL_ZERO,
2326 .extra2 = SYSCTL_ONE,
2327 },
2328 {
2329 .procname = "softlockup_panic",
2330 .data = &softlockup_panic,
2331 .maxlen = sizeof(int),
2332 .mode = 0644,
2333 .proc_handler = proc_dointvec_minmax,
2334 .extra1 = SYSCTL_ZERO,
2335 .extra2 = SYSCTL_ONE,
2336 },
2337#ifdef CONFIG_SMP
2338 {
2339 .procname = "softlockup_all_cpu_backtrace",
2340 .data = &sysctl_softlockup_all_cpu_backtrace,
2341 .maxlen = sizeof(int),
2342 .mode = 0644,
2343 .proc_handler = proc_dointvec_minmax,
2344 .extra1 = SYSCTL_ZERO,
2345 .extra2 = SYSCTL_ONE,
2346 },
2347#endif /* CONFIG_SMP */
2348#endif
2349#ifdef CONFIG_HARDLOCKUP_DETECTOR
2350 {
2351 .procname = "hardlockup_panic",
2352 .data = &hardlockup_panic,
2353 .maxlen = sizeof(int),
2354 .mode = 0644,
2355 .proc_handler = proc_dointvec_minmax,
2356 .extra1 = SYSCTL_ZERO,
2357 .extra2 = SYSCTL_ONE,
2358 },
2359#ifdef CONFIG_SMP
2360 {
2361 .procname = "hardlockup_all_cpu_backtrace",
2362 .data = &sysctl_hardlockup_all_cpu_backtrace,
2363 .maxlen = sizeof(int),
2364 .mode = 0644,
2365 .proc_handler = proc_dointvec_minmax,
2366 .extra1 = SYSCTL_ZERO,
2367 .extra2 = SYSCTL_ONE,
2368 },
2369#endif /* CONFIG_SMP */
2370#endif
2371#endif
2372
2373#if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86)
2374 {
2375 .procname = "unknown_nmi_panic",
2376 .data = &unknown_nmi_panic,
2377 .maxlen = sizeof (int),
2378 .mode = 0644,
2379 .proc_handler = proc_dointvec,
2380 },
2381#endif
2382
2383#if (defined(CONFIG_X86_32) || defined(CONFIG_PARISC)) && \
2384 defined(CONFIG_DEBUG_STACKOVERFLOW)
2385 {
2386 .procname = "panic_on_stackoverflow",
2387 .data = &sysctl_panic_on_stackoverflow,
2388 .maxlen = sizeof(int),
2389 .mode = 0644,
2390 .proc_handler = proc_dointvec,
2391 },
2392#endif
2393#if defined(CONFIG_X86)
2394 {
2395 .procname = "panic_on_unrecovered_nmi",
2396 .data = &panic_on_unrecovered_nmi,
2397 .maxlen = sizeof(int),
2398 .mode = 0644,
2399 .proc_handler = proc_dointvec,
2400 },
2401 {
2402 .procname = "panic_on_io_nmi",
2403 .data = &panic_on_io_nmi,
2404 .maxlen = sizeof(int),
2405 .mode = 0644,
2406 .proc_handler = proc_dointvec,
2407 },
2408 {
2409 .procname = "bootloader_type",
2410 .data = &bootloader_type,
2411 .maxlen = sizeof (int),
2412 .mode = 0444,
2413 .proc_handler = proc_dointvec,
2414 },
2415 {
2416 .procname = "bootloader_version",
2417 .data = &bootloader_version,
2418 .maxlen = sizeof (int),
2419 .mode = 0444,
2420 .proc_handler = proc_dointvec,
2421 },
2422 {
2423 .procname = "io_delay_type",
2424 .data = &io_delay_type,
2425 .maxlen = sizeof(int),
2426 .mode = 0644,
2427 .proc_handler = proc_dointvec,
2428 },
2429#endif
2430#if defined(CONFIG_MMU)
2431 {
2432 .procname = "randomize_va_space",
2433 .data = &randomize_va_space,
2434 .maxlen = sizeof(int),
2435 .mode = 0644,
2436 .proc_handler = proc_dointvec,
2437 },
2438#endif
2439#if defined(CONFIG_S390) && defined(CONFIG_SMP)
2440 {
2441 .procname = "spin_retry",
2442 .data = &spin_retry,
2443 .maxlen = sizeof (int),
2444 .mode = 0644,
2445 .proc_handler = proc_dointvec,
2446 },
2447#endif
2448#if defined(CONFIG_ACPI_SLEEP) && defined(CONFIG_X86)
2449 {
2450 .procname = "acpi_video_flags",
2451 .data = &acpi_realmode_flags,
2452 .maxlen = sizeof (unsigned long),
2453 .mode = 0644,
2454 .proc_handler = proc_doulongvec_minmax,
2455 },
2456#endif
2457#ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
2458 {
2459 .procname = "ignore-unaligned-usertrap",
2460 .data = &no_unaligned_warning,
2461 .maxlen = sizeof (int),
2462 .mode = 0644,
2463 .proc_handler = proc_dointvec,
2464 },
2465#endif
2466#ifdef CONFIG_IA64
2467 {
2468 .procname = "unaligned-dump-stack",
2469 .data = &unaligned_dump_stack,
2470 .maxlen = sizeof (int),
2471 .mode = 0644,
2472 .proc_handler = proc_dointvec,
2473 },
2474#endif
2475#ifdef CONFIG_DETECT_HUNG_TASK
2476#ifdef CONFIG_SMP
2477 {
2478 .procname = "hung_task_all_cpu_backtrace",
2479 .data = &sysctl_hung_task_all_cpu_backtrace,
2480 .maxlen = sizeof(int),
2481 .mode = 0644,
2482 .proc_handler = proc_dointvec_minmax,
2483 .extra1 = SYSCTL_ZERO,
2484 .extra2 = SYSCTL_ONE,
2485 },
2486#endif /* CONFIG_SMP */
2487 {
2488 .procname = "hung_task_panic",
2489 .data = &sysctl_hung_task_panic,
2490 .maxlen = sizeof(int),
2491 .mode = 0644,
2492 .proc_handler = proc_dointvec_minmax,
2493 .extra1 = SYSCTL_ZERO,
2494 .extra2 = SYSCTL_ONE,
2495 },
2496 {
2497 .procname = "hung_task_check_count",
2498 .data = &sysctl_hung_task_check_count,
2499 .maxlen = sizeof(int),
2500 .mode = 0644,
2501 .proc_handler = proc_dointvec_minmax,
2502 .extra1 = SYSCTL_ZERO,
2503 },
2504 {
2505 .procname = "hung_task_timeout_secs",
2506 .data = &sysctl_hung_task_timeout_secs,
2507 .maxlen = sizeof(unsigned long),
2508 .mode = 0644,
2509 .proc_handler = proc_dohung_task_timeout_secs,
2510 .extra2 = &hung_task_timeout_max,
2511 },
2512 {
2513 .procname = "hung_task_check_interval_secs",
2514 .data = &sysctl_hung_task_check_interval_secs,
2515 .maxlen = sizeof(unsigned long),
2516 .mode = 0644,
2517 .proc_handler = proc_dohung_task_timeout_secs,
2518 .extra2 = &hung_task_timeout_max,
2519 },
2520 {
2521 .procname = "hung_task_warnings",
2522 .data = &sysctl_hung_task_warnings,
2523 .maxlen = sizeof(int),
2524 .mode = 0644,
2525 .proc_handler = proc_dointvec_minmax,
2526 .extra1 = &neg_one,
2527 },
2528#endif
2529#ifdef CONFIG_RT_MUTEXES
2530 {
2531 .procname = "max_lock_depth",
2532 .data = &max_lock_depth,
2533 .maxlen = sizeof(int),
2534 .mode = 0644,
2535 .proc_handler = proc_dointvec,
2536 },
2537#endif
2538 {
2539 .procname = "poweroff_cmd",
2540 .data = &poweroff_cmd,
2541 .maxlen = POWEROFF_CMD_PATH_LEN,
2542 .mode = 0644,
2543 .proc_handler = proc_dostring,
2544 },
2545#ifdef CONFIG_KEYS
2546 {
2547 .procname = "keys",
2548 .mode = 0555,
2549 .child = key_sysctls,
2550 },
2551#endif
2552#ifdef CONFIG_PERF_EVENTS
2553 /*
2554 * User-space scripts rely on the existence of this file
2555 * as a feature check for perf_events being enabled.
2556 *
2557 * So it's an ABI, do not remove!
2558 */
2559 {
2560 .procname = "perf_event_paranoid",
2561 .data = &sysctl_perf_event_paranoid,
2562 .maxlen = sizeof(sysctl_perf_event_paranoid),
2563 .mode = 0644,
2564 .proc_handler = proc_dointvec,
2565 },
2566 {
2567 .procname = "perf_event_mlock_kb",
2568 .data = &sysctl_perf_event_mlock,
2569 .maxlen = sizeof(sysctl_perf_event_mlock),
2570 .mode = 0644,
2571 .proc_handler = proc_dointvec,
2572 },
2573 {
2574 .procname = "perf_event_max_sample_rate",
2575 .data = &sysctl_perf_event_sample_rate,
2576 .maxlen = sizeof(sysctl_perf_event_sample_rate),
2577 .mode = 0644,
2578 .proc_handler = perf_proc_update_handler,
2579 .extra1 = SYSCTL_ONE,
2580 },
2581 {
2582 .procname = "perf_cpu_time_max_percent",
2583 .data = &sysctl_perf_cpu_time_max_percent,
2584 .maxlen = sizeof(sysctl_perf_cpu_time_max_percent),
2585 .mode = 0644,
2586 .proc_handler = perf_cpu_time_max_percent_handler,
2587 .extra1 = SYSCTL_ZERO,
2588 .extra2 = &one_hundred,
2589 },
2590 {
2591 .procname = "perf_event_max_stack",
2592 .data = &sysctl_perf_event_max_stack,
2593 .maxlen = sizeof(sysctl_perf_event_max_stack),
2594 .mode = 0644,
2595 .proc_handler = perf_event_max_stack_handler,
2596 .extra1 = SYSCTL_ZERO,
2597 .extra2 = &six_hundred_forty_kb,
2598 },
2599 {
2600 .procname = "perf_event_max_contexts_per_stack",
2601 .data = &sysctl_perf_event_max_contexts_per_stack,
2602 .maxlen = sizeof(sysctl_perf_event_max_contexts_per_stack),
2603 .mode = 0644,
2604 .proc_handler = perf_event_max_stack_handler,
2605 .extra1 = SYSCTL_ZERO,
2606 .extra2 = &one_thousand,
2607 },
2608#endif
2609 {
2610 .procname = "panic_on_warn",
2611 .data = &panic_on_warn,
2612 .maxlen = sizeof(int),
2613 .mode = 0644,
2614 .proc_handler = proc_dointvec_minmax,
2615 .extra1 = SYSCTL_ZERO,
2616 .extra2 = SYSCTL_ONE,
2617 },
2618#if defined(CONFIG_SMP) && defined(CONFIG_NO_HZ_COMMON)
2619 {
2620 .procname = "timer_migration",
2621 .data = &sysctl_timer_migration,
2622 .maxlen = sizeof(unsigned int),
2623 .mode = 0644,
2624 .proc_handler = timer_migration_handler,
2625 .extra1 = SYSCTL_ZERO,
2626 .extra2 = SYSCTL_ONE,
2627 },
2628#endif
2629#ifdef CONFIG_BPF_SYSCALL
2630 {
2631 .procname = "unprivileged_bpf_disabled",
2632 .data = &sysctl_unprivileged_bpf_disabled,
2633 .maxlen = sizeof(sysctl_unprivileged_bpf_disabled),
2634 .mode = 0644,
2635 .proc_handler = bpf_unpriv_handler,
2636 .extra1 = SYSCTL_ZERO,
2637 .extra2 = &two,
2638 },
2639 {
2640 .procname = "bpf_stats_enabled",
2641 .data = &bpf_stats_enabled_key.key,
2642 .maxlen = sizeof(bpf_stats_enabled_key),
2643 .mode = 0644,
2644 .proc_handler = bpf_stats_handler,
2645 },
2646#endif
2647#if defined(CONFIG_TREE_RCU)
2648 {
2649 .procname = "panic_on_rcu_stall",
2650 .data = &sysctl_panic_on_rcu_stall,
2651 .maxlen = sizeof(sysctl_panic_on_rcu_stall),
2652 .mode = 0644,
2653 .proc_handler = proc_dointvec_minmax,
2654 .extra1 = SYSCTL_ZERO,
2655 .extra2 = SYSCTL_ONE,
2656 },
2657#endif
2658#if defined(CONFIG_TREE_RCU)
2659 {
2660 .procname = "max_rcu_stall_to_panic",
2661 .data = &sysctl_max_rcu_stall_to_panic,
2662 .maxlen = sizeof(sysctl_max_rcu_stall_to_panic),
2663 .mode = 0644,
2664 .proc_handler = proc_dointvec_minmax,
2665 .extra1 = SYSCTL_ONE,
2666 .extra2 = SYSCTL_INT_MAX,
2667 },
2668#endif
2669#ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
2670 {
2671 .procname = "stack_erasing",
2672 .data = NULL,
2673 .maxlen = sizeof(int),
2674 .mode = 0600,
2675 .proc_handler = stack_erasing_sysctl,
2676 .extra1 = SYSCTL_ZERO,
2677 .extra2 = SYSCTL_ONE,
2678 },
2679#endif
2680 { }
2681};
2682
2683static struct ctl_table vm_table[] = {
2684 {
2685 .procname = "overcommit_memory",
2686 .data = &sysctl_overcommit_memory,
2687 .maxlen = sizeof(sysctl_overcommit_memory),
2688 .mode = 0644,
2689 .proc_handler = overcommit_policy_handler,
2690 .extra1 = SYSCTL_ZERO,
2691 .extra2 = &two,
2692 },
2693 {
2694 .procname = "panic_on_oom",
2695 .data = &sysctl_panic_on_oom,
2696 .maxlen = sizeof(sysctl_panic_on_oom),
2697 .mode = 0644,
2698 .proc_handler = proc_dointvec_minmax,
2699 .extra1 = SYSCTL_ZERO,
2700 .extra2 = &two,
2701 },
2702 {
2703 .procname = "oom_kill_allocating_task",
2704 .data = &sysctl_oom_kill_allocating_task,
2705 .maxlen = sizeof(sysctl_oom_kill_allocating_task),
2706 .mode = 0644,
2707 .proc_handler = proc_dointvec,
2708 },
2709 {
2710 .procname = "oom_dump_tasks",
2711 .data = &sysctl_oom_dump_tasks,
2712 .maxlen = sizeof(sysctl_oom_dump_tasks),
2713 .mode = 0644,
2714 .proc_handler = proc_dointvec,
2715 },
2716 {
2717 .procname = "overcommit_ratio",
2718 .data = &sysctl_overcommit_ratio,
2719 .maxlen = sizeof(sysctl_overcommit_ratio),
2720 .mode = 0644,
2721 .proc_handler = overcommit_ratio_handler,
2722 },
2723 {
2724 .procname = "overcommit_kbytes",
2725 .data = &sysctl_overcommit_kbytes,
2726 .maxlen = sizeof(sysctl_overcommit_kbytes),
2727 .mode = 0644,
2728 .proc_handler = overcommit_kbytes_handler,
2729 },
2730 {
2731 .procname = "page-cluster",
2732 .data = &page_cluster,
2733 .maxlen = sizeof(int),
2734 .mode = 0644,
2735 .proc_handler = proc_dointvec_minmax,
2736 .extra1 = SYSCTL_ZERO,
2737 },
2738 {
2739 .procname = "dirty_background_ratio",
2740 .data = &dirty_background_ratio,
2741 .maxlen = sizeof(dirty_background_ratio),
2742 .mode = 0644,
2743 .proc_handler = dirty_background_ratio_handler,
2744 .extra1 = SYSCTL_ZERO,
2745 .extra2 = &one_hundred,
2746 },
2747 {
2748 .procname = "dirty_background_bytes",
2749 .data = &dirty_background_bytes,
2750 .maxlen = sizeof(dirty_background_bytes),
2751 .mode = 0644,
2752 .proc_handler = dirty_background_bytes_handler,
2753 .extra1 = &one_ul,
2754 },
2755 {
2756 .procname = "dirty_ratio",
2757 .data = &vm_dirty_ratio,
2758 .maxlen = sizeof(vm_dirty_ratio),
2759 .mode = 0644,
2760 .proc_handler = dirty_ratio_handler,
2761 .extra1 = SYSCTL_ZERO,
2762 .extra2 = &one_hundred,
2763 },
2764 {
2765 .procname = "dirty_bytes",
2766 .data = &vm_dirty_bytes,
2767 .maxlen = sizeof(vm_dirty_bytes),
2768 .mode = 0644,
2769 .proc_handler = dirty_bytes_handler,
2770 .extra1 = &dirty_bytes_min,
2771 },
2772 {
2773 .procname = "dirty_writeback_centisecs",
2774 .data = &dirty_writeback_interval,
2775 .maxlen = sizeof(dirty_writeback_interval),
2776 .mode = 0644,
2777 .proc_handler = dirty_writeback_centisecs_handler,
2778 },
2779 {
2780 .procname = "dirty_expire_centisecs",
2781 .data = &dirty_expire_interval,
2782 .maxlen = sizeof(dirty_expire_interval),
2783 .mode = 0644,
2784 .proc_handler = proc_dointvec_minmax,
2785 .extra1 = SYSCTL_ZERO,
2786 },
2787 {
2788 .procname = "dirtytime_expire_seconds",
2789 .data = &dirtytime_expire_interval,
2790 .maxlen = sizeof(dirtytime_expire_interval),
2791 .mode = 0644,
2792 .proc_handler = dirtytime_interval_handler,
2793 .extra1 = SYSCTL_ZERO,
2794 },
2795 {
2796 .procname = "swappiness",
2797 .data = &vm_swappiness,
2798 .maxlen = sizeof(vm_swappiness),
2799 .mode = 0644,
2800 .proc_handler = proc_dointvec_minmax,
2801 .extra1 = SYSCTL_ZERO,
2802 .extra2 = &two_hundred,
2803 },
2804#ifdef CONFIG_HUGETLB_PAGE
2805 {
2806 .procname = "nr_hugepages",
2807 .data = NULL,
2808 .maxlen = sizeof(unsigned long),
2809 .mode = 0644,
2810 .proc_handler = hugetlb_sysctl_handler,
2811 },
2812#ifdef CONFIG_NUMA
2813 {
2814 .procname = "nr_hugepages_mempolicy",
2815 .data = NULL,
2816 .maxlen = sizeof(unsigned long),
2817 .mode = 0644,
2818 .proc_handler = &hugetlb_mempolicy_sysctl_handler,
2819 },
2820 {
2821 .procname = "numa_stat",
2822 .data = &sysctl_vm_numa_stat,
2823 .maxlen = sizeof(int),
2824 .mode = 0644,
2825 .proc_handler = sysctl_vm_numa_stat_handler,
2826 .extra1 = SYSCTL_ZERO,
2827 .extra2 = SYSCTL_ONE,
2828 },
2829#endif
2830 {
2831 .procname = "hugetlb_shm_group",
2832 .data = &sysctl_hugetlb_shm_group,
2833 .maxlen = sizeof(gid_t),
2834 .mode = 0644,
2835 .proc_handler = proc_dointvec,
2836 },
2837 {
2838 .procname = "nr_overcommit_hugepages",
2839 .data = NULL,
2840 .maxlen = sizeof(unsigned long),
2841 .mode = 0644,
2842 .proc_handler = hugetlb_overcommit_handler,
2843 },
2844#endif
2845 {
2846 .procname = "lowmem_reserve_ratio",
2847 .data = &sysctl_lowmem_reserve_ratio,
2848 .maxlen = sizeof(sysctl_lowmem_reserve_ratio),
2849 .mode = 0644,
2850 .proc_handler = lowmem_reserve_ratio_sysctl_handler,
2851 },
2852 {
2853 .procname = "drop_caches",
2854 .data = &sysctl_drop_caches,
2855 .maxlen = sizeof(int),
2856 .mode = 0200,
2857 .proc_handler = drop_caches_sysctl_handler,
2858 .extra1 = SYSCTL_ONE,
2859 .extra2 = &four,
2860 },
2861#ifdef CONFIG_COMPACTION
2862 {
2863 .procname = "compact_memory",
2864 .data = NULL,
2865 .maxlen = sizeof(int),
2866 .mode = 0200,
2867 .proc_handler = sysctl_compaction_handler,
2868 },
2869 {
2870 .procname = "compaction_proactiveness",
2871 .data = &sysctl_compaction_proactiveness,
2872 .maxlen = sizeof(sysctl_compaction_proactiveness),
2873 .mode = 0644,
2874 .proc_handler = proc_dointvec_minmax,
2875 .extra1 = SYSCTL_ZERO,
2876 .extra2 = &one_hundred,
2877 },
2878 {
2879 .procname = "extfrag_threshold",
2880 .data = &sysctl_extfrag_threshold,
2881 .maxlen = sizeof(int),
2882 .mode = 0644,
2883 .proc_handler = proc_dointvec_minmax,
2884 .extra1 = &min_extfrag_threshold,
2885 .extra2 = &max_extfrag_threshold,
2886 },
2887 {
2888 .procname = "compact_unevictable_allowed",
2889 .data = &sysctl_compact_unevictable_allowed,
2890 .maxlen = sizeof(int),
2891 .mode = 0644,
2892 .proc_handler = proc_dointvec_minmax_warn_RT_change,
2893 .extra1 = SYSCTL_ZERO,
2894 .extra2 = SYSCTL_ONE,
2895 },
2896
2897#endif /* CONFIG_COMPACTION */
2898 {
2899 .procname = "min_free_kbytes",
2900 .data = &min_free_kbytes,
2901 .maxlen = sizeof(min_free_kbytes),
2902 .mode = 0644,
2903 .proc_handler = min_free_kbytes_sysctl_handler,
2904 .extra1 = SYSCTL_ZERO,
2905 },
2906 {
2907 .procname = "watermark_boost_factor",
2908 .data = &watermark_boost_factor,
2909 .maxlen = sizeof(watermark_boost_factor),
2910 .mode = 0644,
2911 .proc_handler = proc_dointvec_minmax,
2912 .extra1 = SYSCTL_ZERO,
2913 },
2914 {
2915 .procname = "watermark_scale_factor",
2916 .data = &watermark_scale_factor,
2917 .maxlen = sizeof(watermark_scale_factor),
2918 .mode = 0644,
2919 .proc_handler = watermark_scale_factor_sysctl_handler,
2920 .extra1 = SYSCTL_ONE,
2921 .extra2 = &one_thousand,
2922 },
2923 {
2924 .procname = "percpu_pagelist_high_fraction",
2925 .data = &percpu_pagelist_high_fraction,
2926 .maxlen = sizeof(percpu_pagelist_high_fraction),
2927 .mode = 0644,
2928 .proc_handler = percpu_pagelist_high_fraction_sysctl_handler,
2929 .extra1 = SYSCTL_ZERO,
2930 },
2931 {
2932 .procname = "page_lock_unfairness",
2933 .data = &sysctl_page_lock_unfairness,
2934 .maxlen = sizeof(sysctl_page_lock_unfairness),
2935 .mode = 0644,
2936 .proc_handler = proc_dointvec_minmax,
2937 .extra1 = SYSCTL_ZERO,
2938 },
2939#ifdef CONFIG_MMU
2940 {
2941 .procname = "max_map_count",
2942 .data = &sysctl_max_map_count,
2943 .maxlen = sizeof(sysctl_max_map_count),
2944 .mode = 0644,
2945 .proc_handler = proc_dointvec_minmax,
2946 .extra1 = SYSCTL_ZERO,
2947 },
2948#else
2949 {
2950 .procname = "nr_trim_pages",
2951 .data = &sysctl_nr_trim_pages,
2952 .maxlen = sizeof(sysctl_nr_trim_pages),
2953 .mode = 0644,
2954 .proc_handler = proc_dointvec_minmax,
2955 .extra1 = SYSCTL_ZERO,
2956 },
2957#endif
2958 {
2959 .procname = "laptop_mode",
2960 .data = &laptop_mode,
2961 .maxlen = sizeof(laptop_mode),
2962 .mode = 0644,
2963 .proc_handler = proc_dointvec_jiffies,
2964 },
2965 {
2966 .procname = "vfs_cache_pressure",
2967 .data = &sysctl_vfs_cache_pressure,
2968 .maxlen = sizeof(sysctl_vfs_cache_pressure),
2969 .mode = 0644,
2970 .proc_handler = proc_dointvec_minmax,
2971 .extra1 = SYSCTL_ZERO,
2972 },
2973#if defined(HAVE_ARCH_PICK_MMAP_LAYOUT) || \
2974 defined(CONFIG_ARCH_WANT_DEFAULT_TOPDOWN_MMAP_LAYOUT)
2975 {
2976 .procname = "legacy_va_layout",
2977 .data = &sysctl_legacy_va_layout,
2978 .maxlen = sizeof(sysctl_legacy_va_layout),
2979 .mode = 0644,
2980 .proc_handler = proc_dointvec_minmax,
2981 .extra1 = SYSCTL_ZERO,
2982 },
2983#endif
2984#ifdef CONFIG_NUMA
2985 {
2986 .procname = "zone_reclaim_mode",
2987 .data = &node_reclaim_mode,
2988 .maxlen = sizeof(node_reclaim_mode),
2989 .mode = 0644,
2990 .proc_handler = proc_dointvec_minmax,
2991 .extra1 = SYSCTL_ZERO,
2992 },
2993 {
2994 .procname = "min_unmapped_ratio",
2995 .data = &sysctl_min_unmapped_ratio,
2996 .maxlen = sizeof(sysctl_min_unmapped_ratio),
2997 .mode = 0644,
2998 .proc_handler = sysctl_min_unmapped_ratio_sysctl_handler,
2999 .extra1 = SYSCTL_ZERO,
3000 .extra2 = &one_hundred,
3001 },
3002 {
3003 .procname = "min_slab_ratio",
3004 .data = &sysctl_min_slab_ratio,
3005 .maxlen = sizeof(sysctl_min_slab_ratio),
3006 .mode = 0644,
3007 .proc_handler = sysctl_min_slab_ratio_sysctl_handler,
3008 .extra1 = SYSCTL_ZERO,
3009 .extra2 = &one_hundred,
3010 },
3011#endif
3012#ifdef CONFIG_SMP
3013 {
3014 .procname = "stat_interval",
3015 .data = &sysctl_stat_interval,
3016 .maxlen = sizeof(sysctl_stat_interval),
3017 .mode = 0644,
3018 .proc_handler = proc_dointvec_jiffies,
3019 },
3020 {
3021 .procname = "stat_refresh",
3022 .data = NULL,
3023 .maxlen = 0,
3024 .mode = 0600,
3025 .proc_handler = vmstat_refresh,
3026 },
3027#endif
3028#ifdef CONFIG_MMU
3029 {
3030 .procname = "mmap_min_addr",
3031 .data = &dac_mmap_min_addr,
3032 .maxlen = sizeof(unsigned long),
3033 .mode = 0644,
3034 .proc_handler = mmap_min_addr_handler,
3035 },
3036#endif
3037#ifdef CONFIG_NUMA
3038 {
3039 .procname = "numa_zonelist_order",
3040 .data = &numa_zonelist_order,
3041 .maxlen = NUMA_ZONELIST_ORDER_LEN,
3042 .mode = 0644,
3043 .proc_handler = numa_zonelist_order_handler,
3044 },
3045#endif
3046#if (defined(CONFIG_X86_32) && !defined(CONFIG_UML))|| \
3047 (defined(CONFIG_SUPERH) && defined(CONFIG_VSYSCALL))
3048 {
3049 .procname = "vdso_enabled",
3050#ifdef CONFIG_X86_32
3051 .data = &vdso32_enabled,
3052 .maxlen = sizeof(vdso32_enabled),
3053#else
3054 .data = &vdso_enabled,
3055 .maxlen = sizeof(vdso_enabled),
3056#endif
3057 .mode = 0644,
3058 .proc_handler = proc_dointvec,
3059 .extra1 = SYSCTL_ZERO,
3060 },
3061#endif
3062#ifdef CONFIG_HIGHMEM
3063 {
3064 .procname = "highmem_is_dirtyable",
3065 .data = &vm_highmem_is_dirtyable,
3066 .maxlen = sizeof(vm_highmem_is_dirtyable),
3067 .mode = 0644,
3068 .proc_handler = proc_dointvec_minmax,
3069 .extra1 = SYSCTL_ZERO,
3070 .extra2 = SYSCTL_ONE,
3071 },
3072#endif
3073#ifdef CONFIG_MEMORY_FAILURE
3074 {
3075 .procname = "memory_failure_early_kill",
3076 .data = &sysctl_memory_failure_early_kill,
3077 .maxlen = sizeof(sysctl_memory_failure_early_kill),
3078 .mode = 0644,
3079 .proc_handler = proc_dointvec_minmax,
3080 .extra1 = SYSCTL_ZERO,
3081 .extra2 = SYSCTL_ONE,
3082 },
3083 {
3084 .procname = "memory_failure_recovery",
3085 .data = &sysctl_memory_failure_recovery,
3086 .maxlen = sizeof(sysctl_memory_failure_recovery),
3087 .mode = 0644,
3088 .proc_handler = proc_dointvec_minmax,
3089 .extra1 = SYSCTL_ZERO,
3090 .extra2 = SYSCTL_ONE,
3091 },
3092#endif
3093 {
3094 .procname = "user_reserve_kbytes",
3095 .data = &sysctl_user_reserve_kbytes,
3096 .maxlen = sizeof(sysctl_user_reserve_kbytes),
3097 .mode = 0644,
3098 .proc_handler = proc_doulongvec_minmax,
3099 },
3100 {
3101 .procname = "admin_reserve_kbytes",
3102 .data = &sysctl_admin_reserve_kbytes,
3103 .maxlen = sizeof(sysctl_admin_reserve_kbytes),
3104 .mode = 0644,
3105 .proc_handler = proc_doulongvec_minmax,
3106 },
3107#ifdef CONFIG_HAVE_ARCH_MMAP_RND_BITS
3108 {
3109 .procname = "mmap_rnd_bits",
3110 .data = &mmap_rnd_bits,
3111 .maxlen = sizeof(mmap_rnd_bits),
3112 .mode = 0600,
3113 .proc_handler = proc_dointvec_minmax,
3114 .extra1 = (void *)&mmap_rnd_bits_min,
3115 .extra2 = (void *)&mmap_rnd_bits_max,
3116 },
3117#endif
3118#ifdef CONFIG_HAVE_ARCH_MMAP_RND_COMPAT_BITS
3119 {
3120 .procname = "mmap_rnd_compat_bits",
3121 .data = &mmap_rnd_compat_bits,
3122 .maxlen = sizeof(mmap_rnd_compat_bits),
3123 .mode = 0600,
3124 .proc_handler = proc_dointvec_minmax,
3125 .extra1 = (void *)&mmap_rnd_compat_bits_min,
3126 .extra2 = (void *)&mmap_rnd_compat_bits_max,
3127 },
3128#endif
3129#ifdef CONFIG_USERFAULTFD
3130 {
3131 .procname = "unprivileged_userfaultfd",
3132 .data = &sysctl_unprivileged_userfaultfd,
3133 .maxlen = sizeof(sysctl_unprivileged_userfaultfd),
3134 .mode = 0644,
3135 .proc_handler = proc_dointvec_minmax,
3136 .extra1 = SYSCTL_ZERO,
3137 .extra2 = SYSCTL_ONE,
3138 },
3139#endif
3140 { }
3141};
3142
3143static struct ctl_table fs_table[] = {
3144 {
3145 .procname = "inode-nr",
3146 .data = &inodes_stat,
3147 .maxlen = 2*sizeof(long),
3148 .mode = 0444,
3149 .proc_handler = proc_nr_inodes,
3150 },
3151 {
3152 .procname = "inode-state",
3153 .data = &inodes_stat,
3154 .maxlen = 7*sizeof(long),
3155 .mode = 0444,
3156 .proc_handler = proc_nr_inodes,
3157 },
3158 {
3159 .procname = "file-nr",
3160 .data = &files_stat,
3161 .maxlen = sizeof(files_stat),
3162 .mode = 0444,
3163 .proc_handler = proc_nr_files,
3164 },
3165 {
3166 .procname = "file-max",
3167 .data = &files_stat.max_files,
3168 .maxlen = sizeof(files_stat.max_files),
3169 .mode = 0644,
3170 .proc_handler = proc_doulongvec_minmax,
3171 .extra1 = &zero_ul,
3172 .extra2 = &long_max,
3173 },
3174 {
3175 .procname = "nr_open",
3176 .data = &sysctl_nr_open,
3177 .maxlen = sizeof(unsigned int),
3178 .mode = 0644,
3179 .proc_handler = proc_dointvec_minmax,
3180 .extra1 = &sysctl_nr_open_min,
3181 .extra2 = &sysctl_nr_open_max,
3182 },
3183 {
3184 .procname = "dentry-state",
3185 .data = &dentry_stat,
3186 .maxlen = 6*sizeof(long),
3187 .mode = 0444,
3188 .proc_handler = proc_nr_dentry,
3189 },
3190 {
3191 .procname = "overflowuid",
3192 .data = &fs_overflowuid,
3193 .maxlen = sizeof(int),
3194 .mode = 0644,
3195 .proc_handler = proc_dointvec_minmax,
3196 .extra1 = &minolduid,
3197 .extra2 = &maxolduid,
3198 },
3199 {
3200 .procname = "overflowgid",
3201 .data = &fs_overflowgid,
3202 .maxlen = sizeof(int),
3203 .mode = 0644,
3204 .proc_handler = proc_dointvec_minmax,
3205 .extra1 = &minolduid,
3206 .extra2 = &maxolduid,
3207 },
3208#ifdef CONFIG_FILE_LOCKING
3209 {
3210 .procname = "leases-enable",
3211 .data = &leases_enable,
3212 .maxlen = sizeof(int),
3213 .mode = 0644,
3214 .proc_handler = proc_dointvec,
3215 },
3216#endif
3217#ifdef CONFIG_DNOTIFY
3218 {
3219 .procname = "dir-notify-enable",
3220 .data = &dir_notify_enable,
3221 .maxlen = sizeof(int),
3222 .mode = 0644,
3223 .proc_handler = proc_dointvec,
3224 },
3225#endif
3226#ifdef CONFIG_MMU
3227#ifdef CONFIG_FILE_LOCKING
3228 {
3229 .procname = "lease-break-time",
3230 .data = &lease_break_time,
3231 .maxlen = sizeof(int),
3232 .mode = 0644,
3233 .proc_handler = proc_dointvec,
3234 },
3235#endif
3236#ifdef CONFIG_AIO
3237 {
3238 .procname = "aio-nr",
3239 .data = &aio_nr,
3240 .maxlen = sizeof(aio_nr),
3241 .mode = 0444,
3242 .proc_handler = proc_doulongvec_minmax,
3243 },
3244 {
3245 .procname = "aio-max-nr",
3246 .data = &aio_max_nr,
3247 .maxlen = sizeof(aio_max_nr),
3248 .mode = 0644,
3249 .proc_handler = proc_doulongvec_minmax,
3250 },
3251#endif /* CONFIG_AIO */
3252#ifdef CONFIG_INOTIFY_USER
3253 {
3254 .procname = "inotify",
3255 .mode = 0555,
3256 .child = inotify_table,
3257 },
3258#endif
3259#ifdef CONFIG_FANOTIFY
3260 {
3261 .procname = "fanotify",
3262 .mode = 0555,
3263 .child = fanotify_table,
3264 },
3265#endif
3266#ifdef CONFIG_EPOLL
3267 {
3268 .procname = "epoll",
3269 .mode = 0555,
3270 .child = epoll_table,
3271 },
3272#endif
3273#endif
3274 {
3275 .procname = "protected_symlinks",
3276 .data = &sysctl_protected_symlinks,
3277 .maxlen = sizeof(int),
3278 .mode = 0600,
3279 .proc_handler = proc_dointvec_minmax,
3280 .extra1 = SYSCTL_ZERO,
3281 .extra2 = SYSCTL_ONE,
3282 },
3283 {
3284 .procname = "protected_hardlinks",
3285 .data = &sysctl_protected_hardlinks,
3286 .maxlen = sizeof(int),
3287 .mode = 0600,
3288 .proc_handler = proc_dointvec_minmax,
3289 .extra1 = SYSCTL_ZERO,
3290 .extra2 = SYSCTL_ONE,
3291 },
3292 {
3293 .procname = "protected_fifos",
3294 .data = &sysctl_protected_fifos,
3295 .maxlen = sizeof(int),
3296 .mode = 0600,
3297 .proc_handler = proc_dointvec_minmax,
3298 .extra1 = SYSCTL_ZERO,
3299 .extra2 = &two,
3300 },
3301 {
3302 .procname = "protected_regular",
3303 .data = &sysctl_protected_regular,
3304 .maxlen = sizeof(int),
3305 .mode = 0600,
3306 .proc_handler = proc_dointvec_minmax,
3307 .extra1 = SYSCTL_ZERO,
3308 .extra2 = &two,
3309 },
3310 {
3311 .procname = "suid_dumpable",
3312 .data = &suid_dumpable,
3313 .maxlen = sizeof(int),
3314 .mode = 0644,
3315 .proc_handler = proc_dointvec_minmax_coredump,
3316 .extra1 = SYSCTL_ZERO,
3317 .extra2 = &two,
3318 },
3319#if defined(CONFIG_BINFMT_MISC) || defined(CONFIG_BINFMT_MISC_MODULE)
3320 {
3321 .procname = "binfmt_misc",
3322 .mode = 0555,
3323 .child = sysctl_mount_point,
3324 },
3325#endif
3326 {
3327 .procname = "pipe-max-size",
3328 .data = &pipe_max_size,
3329 .maxlen = sizeof(pipe_max_size),
3330 .mode = 0644,
3331 .proc_handler = proc_dopipe_max_size,
3332 },
3333 {
3334 .procname = "pipe-user-pages-hard",
3335 .data = &pipe_user_pages_hard,
3336 .maxlen = sizeof(pipe_user_pages_hard),
3337 .mode = 0644,
3338 .proc_handler = proc_doulongvec_minmax,
3339 },
3340 {
3341 .procname = "pipe-user-pages-soft",
3342 .data = &pipe_user_pages_soft,
3343 .maxlen = sizeof(pipe_user_pages_soft),
3344 .mode = 0644,
3345 .proc_handler = proc_doulongvec_minmax,
3346 },
3347 {
3348 .procname = "mount-max",
3349 .data = &sysctl_mount_max,
3350 .maxlen = sizeof(unsigned int),
3351 .mode = 0644,
3352 .proc_handler = proc_dointvec_minmax,
3353 .extra1 = SYSCTL_ONE,
3354 },
3355 { }
3356};
3357
3358static struct ctl_table debug_table[] = {
3359#ifdef CONFIG_SYSCTL_EXCEPTION_TRACE
3360 {
3361 .procname = "exception-trace",
3362 .data = &show_unhandled_signals,
3363 .maxlen = sizeof(int),
3364 .mode = 0644,
3365 .proc_handler = proc_dointvec
3366 },
3367#endif
3368#if defined(CONFIG_OPTPROBES)
3369 {
3370 .procname = "kprobes-optimization",
3371 .data = &sysctl_kprobes_optimization,
3372 .maxlen = sizeof(int),
3373 .mode = 0644,
3374 .proc_handler = proc_kprobes_optimization_handler,
3375 .extra1 = SYSCTL_ZERO,
3376 .extra2 = SYSCTL_ONE,
3377 },
3378#endif
3379 { }
3380};
3381
3382static struct ctl_table dev_table[] = {
3383 { }
3384};
3385
3386static struct ctl_table sysctl_base_table[] = {
3387 {
3388 .procname = "kernel",
3389 .mode = 0555,
3390 .child = kern_table,
3391 },
3392 {
3393 .procname = "vm",
3394 .mode = 0555,
3395 .child = vm_table,
3396 },
3397 {
3398 .procname = "fs",
3399 .mode = 0555,
3400 .child = fs_table,
3401 },
3402 {
3403 .procname = "debug",
3404 .mode = 0555,
3405 .child = debug_table,
3406 },
3407 {
3408 .procname = "dev",
3409 .mode = 0555,
3410 .child = dev_table,
3411 },
3412 { }
3413};
3414
3415int __init sysctl_init(void)
3416{
3417 struct ctl_table_header *hdr;
3418
3419 hdr = register_sysctl_table(sysctl_base_table);
3420 kmemleak_not_leak(hdr);
3421 return 0;
3422}
3423#endif /* CONFIG_SYSCTL */
3424/*
3425 * No sense putting this after each symbol definition, twice,
3426 * exception granted :-)
3427 */
3428EXPORT_SYMBOL(proc_dointvec);
3429EXPORT_SYMBOL(proc_douintvec);
3430EXPORT_SYMBOL(proc_dointvec_jiffies);
3431EXPORT_SYMBOL(proc_dointvec_minmax);
3432EXPORT_SYMBOL_GPL(proc_douintvec_minmax);
3433EXPORT_SYMBOL(proc_dointvec_userhz_jiffies);
3434EXPORT_SYMBOL(proc_dointvec_ms_jiffies);
3435EXPORT_SYMBOL(proc_dostring);
3436EXPORT_SYMBOL(proc_doulongvec_minmax);
3437EXPORT_SYMBOL(proc_doulongvec_ms_jiffies_minmax);
3438EXPORT_SYMBOL(proc_do_large_bitmap);