xref: /openbmc/linux/kernel/sysctl.c (revision b8d312aa)
1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3  * sysctl.c: General linux system control interface
4  *
5  * Begun 24 March 1995, Stephen Tweedie
6  * Added /proc support, Dec 1995
7  * Added bdflush entry and intvec min/max checking, 2/23/96, Tom Dyas.
8  * Added hooks for /proc/sys/net (minor, minor patch), 96/4/1, Mike Shaver.
9  * Added kernel/java-{interpreter,appletviewer}, 96/5/10, Mike Shaver.
10  * Dynamic registration fixes, Stephen Tweedie.
11  * Added kswapd-interval, ctrl-alt-del, printk stuff, 1/8/97, Chris Horn.
12  * Made sysctl support optional via CONFIG_SYSCTL, 1/10/97, Chris
13  *  Horn.
14  * Added proc_doulongvec_ms_jiffies_minmax, 09/08/99, Carlos H. Bauer.
15  * Added proc_doulongvec_minmax, 09/08/99, Carlos H. Bauer.
16  * Changed linked lists to use list.h instead of lists.h, 02/24/00, Bill
17  *  Wendling.
18  * The list_for_each() macro wasn't appropriate for the sysctl loop.
19  *  Removed it and replaced it with older style, 03/23/00, Bill Wendling
20  */
21 
22 #include <linux/module.h>
23 #include <linux/aio.h>
24 #include <linux/mm.h>
25 #include <linux/swap.h>
26 #include <linux/slab.h>
27 #include <linux/sysctl.h>
28 #include <linux/bitmap.h>
29 #include <linux/signal.h>
30 #include <linux/printk.h>
31 #include <linux/proc_fs.h>
32 #include <linux/security.h>
33 #include <linux/ctype.h>
34 #include <linux/kmemleak.h>
35 #include <linux/fs.h>
36 #include <linux/init.h>
37 #include <linux/kernel.h>
38 #include <linux/kobject.h>
39 #include <linux/net.h>
40 #include <linux/sysrq.h>
41 #include <linux/highuid.h>
42 #include <linux/writeback.h>
43 #include <linux/ratelimit.h>
44 #include <linux/compaction.h>
45 #include <linux/hugetlb.h>
46 #include <linux/initrd.h>
47 #include <linux/key.h>
48 #include <linux/times.h>
49 #include <linux/limits.h>
50 #include <linux/dcache.h>
51 #include <linux/dnotify.h>
52 #include <linux/syscalls.h>
53 #include <linux/vmstat.h>
54 #include <linux/nfs_fs.h>
55 #include <linux/acpi.h>
56 #include <linux/reboot.h>
57 #include <linux/ftrace.h>
58 #include <linux/perf_event.h>
59 #include <linux/kprobes.h>
60 #include <linux/pipe_fs_i.h>
61 #include <linux/oom.h>
62 #include <linux/kmod.h>
63 #include <linux/capability.h>
64 #include <linux/binfmts.h>
65 #include <linux/sched/sysctl.h>
66 #include <linux/sched/coredump.h>
67 #include <linux/kexec.h>
68 #include <linux/bpf.h>
69 #include <linux/mount.h>
70 #include <linux/userfaultfd_k.h>
71 
72 #include "../lib/kstrtox.h"
73 
74 #include <linux/uaccess.h>
75 #include <asm/processor.h>
76 
77 #ifdef CONFIG_X86
78 #include <asm/nmi.h>
79 #include <asm/stacktrace.h>
80 #include <asm/io.h>
81 #endif
82 #ifdef CONFIG_SPARC
83 #include <asm/setup.h>
84 #endif
85 #ifdef CONFIG_BSD_PROCESS_ACCT
86 #include <linux/acct.h>
87 #endif
88 #ifdef CONFIG_RT_MUTEXES
89 #include <linux/rtmutex.h>
90 #endif
91 #if defined(CONFIG_PROVE_LOCKING) || defined(CONFIG_LOCK_STAT)
92 #include <linux/lockdep.h>
93 #endif
94 #ifdef CONFIG_CHR_DEV_SG
95 #include <scsi/sg.h>
96 #endif
97 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
98 #include <linux/stackleak.h>
99 #endif
100 #ifdef CONFIG_LOCKUP_DETECTOR
101 #include <linux/nmi.h>
102 #endif
103 
104 #if defined(CONFIG_SYSCTL)
105 
106 /* External variables not in a header file. */
107 extern int suid_dumpable;
108 #ifdef CONFIG_COREDUMP
109 extern int core_uses_pid;
110 extern char core_pattern[];
111 extern unsigned int core_pipe_limit;
112 #endif
113 extern int pid_max;
114 extern int pid_max_min, pid_max_max;
115 extern int percpu_pagelist_fraction;
116 extern int latencytop_enabled;
117 extern unsigned int sysctl_nr_open_min, sysctl_nr_open_max;
118 #ifndef CONFIG_MMU
119 extern int sysctl_nr_trim_pages;
120 #endif
121 
122 /* Constants used for minimum and  maximum */
123 #ifdef CONFIG_LOCKUP_DETECTOR
124 static int sixty = 60;
125 #endif
126 
127 static int __maybe_unused neg_one = -1;
128 static int __maybe_unused two = 2;
129 static int __maybe_unused four = 4;
130 static unsigned long zero_ul;
131 static unsigned long one_ul = 1;
132 static unsigned long long_max = LONG_MAX;
133 static int one_hundred = 100;
134 static int one_thousand = 1000;
135 #ifdef CONFIG_PRINTK
136 static int ten_thousand = 10000;
137 #endif
138 #ifdef CONFIG_PERF_EVENTS
139 static int six_hundred_forty_kb = 640 * 1024;
140 #endif
141 
142 /* this is needed for the proc_doulongvec_minmax of vm_dirty_bytes */
143 static unsigned long dirty_bytes_min = 2 * PAGE_SIZE;
144 
145 /* this is needed for the proc_dointvec_minmax for [fs_]overflow UID and GID */
146 static int maxolduid = 65535;
147 static int minolduid;
148 
149 static int ngroups_max = NGROUPS_MAX;
150 static const int cap_last_cap = CAP_LAST_CAP;
151 
152 /*
153  * This is needed for proc_doulongvec_minmax of sysctl_hung_task_timeout_secs
154  * and hung_task_check_interval_secs
155  */
156 #ifdef CONFIG_DETECT_HUNG_TASK
157 static unsigned long hung_task_timeout_max = (LONG_MAX/HZ);
158 #endif
159 
160 #ifdef CONFIG_INOTIFY_USER
161 #include <linux/inotify.h>
162 #endif
163 #ifdef CONFIG_SPARC
164 #endif
165 
166 #ifdef __hppa__
167 extern int pwrsw_enabled;
168 #endif
169 
170 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
171 extern int unaligned_enabled;
172 #endif
173 
174 #ifdef CONFIG_IA64
175 extern int unaligned_dump_stack;
176 #endif
177 
178 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
179 extern int no_unaligned_warning;
180 #endif
181 
182 #ifdef CONFIG_PROC_SYSCTL
183 
184 /**
185  * enum sysctl_writes_mode - supported sysctl write modes
186  *
187  * @SYSCTL_WRITES_LEGACY: each write syscall must fully contain the sysctl value
188  *	to be written, and multiple writes on the same sysctl file descriptor
189  *	will rewrite the sysctl value, regardless of file position. No warning
190  *	is issued when the initial position is not 0.
191  * @SYSCTL_WRITES_WARN: same as above but warn when the initial file position is
192  *	not 0.
193  * @SYSCTL_WRITES_STRICT: writes to numeric sysctl entries must always be at
194  *	file position 0 and the value must be fully contained in the buffer
195  *	sent to the write syscall. If dealing with strings respect the file
196  *	position, but restrict this to the max length of the buffer, anything
197  *	passed the max length will be ignored. Multiple writes will append
198  *	to the buffer.
199  *
200  * These write modes control how current file position affects the behavior of
201  * updating sysctl values through the proc interface on each write.
202  */
203 enum sysctl_writes_mode {
204 	SYSCTL_WRITES_LEGACY		= -1,
205 	SYSCTL_WRITES_WARN		= 0,
206 	SYSCTL_WRITES_STRICT		= 1,
207 };
208 
209 static enum sysctl_writes_mode sysctl_writes_strict = SYSCTL_WRITES_STRICT;
210 
211 static int proc_do_cad_pid(struct ctl_table *table, int write,
212 		  void __user *buffer, size_t *lenp, loff_t *ppos);
213 static int proc_taint(struct ctl_table *table, int write,
214 			       void __user *buffer, size_t *lenp, loff_t *ppos);
215 #endif
216 
217 #ifdef CONFIG_PRINTK
218 static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
219 				void __user *buffer, size_t *lenp, loff_t *ppos);
220 #endif
221 
222 static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
223 		void __user *buffer, size_t *lenp, loff_t *ppos);
224 #ifdef CONFIG_COREDUMP
225 static int proc_dostring_coredump(struct ctl_table *table, int write,
226 		void __user *buffer, size_t *lenp, loff_t *ppos);
227 #endif
228 static int proc_dopipe_max_size(struct ctl_table *table, int write,
229 		void __user *buffer, size_t *lenp, loff_t *ppos);
230 
231 #ifdef CONFIG_MAGIC_SYSRQ
232 /* Note: sysrq code uses its own private copy */
233 static int __sysrq_enabled = CONFIG_MAGIC_SYSRQ_DEFAULT_ENABLE;
234 
235 static int sysrq_sysctl_handler(struct ctl_table *table, int write,
236 				void __user *buffer, size_t *lenp,
237 				loff_t *ppos)
238 {
239 	int error;
240 
241 	error = proc_dointvec(table, write, buffer, lenp, ppos);
242 	if (error)
243 		return error;
244 
245 	if (write)
246 		sysrq_toggle_support(__sysrq_enabled);
247 
248 	return 0;
249 }
250 
251 #endif
252 
253 static struct ctl_table kern_table[];
254 static struct ctl_table vm_table[];
255 static struct ctl_table fs_table[];
256 static struct ctl_table debug_table[];
257 static struct ctl_table dev_table[];
258 extern struct ctl_table random_table[];
259 #ifdef CONFIG_EPOLL
260 extern struct ctl_table epoll_table[];
261 #endif
262 
263 #ifdef CONFIG_FW_LOADER_USER_HELPER
264 extern struct ctl_table firmware_config_table[];
265 #endif
266 
267 #ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
268 int sysctl_legacy_va_layout;
269 #endif
270 
271 /* The default sysctl tables: */
272 
273 static struct ctl_table sysctl_base_table[] = {
274 	{
275 		.procname	= "kernel",
276 		.mode		= 0555,
277 		.child		= kern_table,
278 	},
279 	{
280 		.procname	= "vm",
281 		.mode		= 0555,
282 		.child		= vm_table,
283 	},
284 	{
285 		.procname	= "fs",
286 		.mode		= 0555,
287 		.child		= fs_table,
288 	},
289 	{
290 		.procname	= "debug",
291 		.mode		= 0555,
292 		.child		= debug_table,
293 	},
294 	{
295 		.procname	= "dev",
296 		.mode		= 0555,
297 		.child		= dev_table,
298 	},
299 	{ }
300 };
301 
302 #ifdef CONFIG_SCHED_DEBUG
303 static int min_sched_granularity_ns = 100000;		/* 100 usecs */
304 static int max_sched_granularity_ns = NSEC_PER_SEC;	/* 1 second */
305 static int min_wakeup_granularity_ns;			/* 0 usecs */
306 static int max_wakeup_granularity_ns = NSEC_PER_SEC;	/* 1 second */
307 #ifdef CONFIG_SMP
308 static int min_sched_tunable_scaling = SCHED_TUNABLESCALING_NONE;
309 static int max_sched_tunable_scaling = SCHED_TUNABLESCALING_END-1;
310 #endif /* CONFIG_SMP */
311 #endif /* CONFIG_SCHED_DEBUG */
312 
313 #ifdef CONFIG_COMPACTION
314 static int min_extfrag_threshold;
315 static int max_extfrag_threshold = 1000;
316 #endif
317 
318 static struct ctl_table kern_table[] = {
319 	{
320 		.procname	= "sched_child_runs_first",
321 		.data		= &sysctl_sched_child_runs_first,
322 		.maxlen		= sizeof(unsigned int),
323 		.mode		= 0644,
324 		.proc_handler	= proc_dointvec,
325 	},
326 #ifdef CONFIG_SCHED_DEBUG
327 	{
328 		.procname	= "sched_min_granularity_ns",
329 		.data		= &sysctl_sched_min_granularity,
330 		.maxlen		= sizeof(unsigned int),
331 		.mode		= 0644,
332 		.proc_handler	= sched_proc_update_handler,
333 		.extra1		= &min_sched_granularity_ns,
334 		.extra2		= &max_sched_granularity_ns,
335 	},
336 	{
337 		.procname	= "sched_latency_ns",
338 		.data		= &sysctl_sched_latency,
339 		.maxlen		= sizeof(unsigned int),
340 		.mode		= 0644,
341 		.proc_handler	= sched_proc_update_handler,
342 		.extra1		= &min_sched_granularity_ns,
343 		.extra2		= &max_sched_granularity_ns,
344 	},
345 	{
346 		.procname	= "sched_wakeup_granularity_ns",
347 		.data		= &sysctl_sched_wakeup_granularity,
348 		.maxlen		= sizeof(unsigned int),
349 		.mode		= 0644,
350 		.proc_handler	= sched_proc_update_handler,
351 		.extra1		= &min_wakeup_granularity_ns,
352 		.extra2		= &max_wakeup_granularity_ns,
353 	},
354 #ifdef CONFIG_SMP
355 	{
356 		.procname	= "sched_tunable_scaling",
357 		.data		= &sysctl_sched_tunable_scaling,
358 		.maxlen		= sizeof(enum sched_tunable_scaling),
359 		.mode		= 0644,
360 		.proc_handler	= sched_proc_update_handler,
361 		.extra1		= &min_sched_tunable_scaling,
362 		.extra2		= &max_sched_tunable_scaling,
363 	},
364 	{
365 		.procname	= "sched_migration_cost_ns",
366 		.data		= &sysctl_sched_migration_cost,
367 		.maxlen		= sizeof(unsigned int),
368 		.mode		= 0644,
369 		.proc_handler	= proc_dointvec,
370 	},
371 	{
372 		.procname	= "sched_nr_migrate",
373 		.data		= &sysctl_sched_nr_migrate,
374 		.maxlen		= sizeof(unsigned int),
375 		.mode		= 0644,
376 		.proc_handler	= proc_dointvec,
377 	},
378 #ifdef CONFIG_SCHEDSTATS
379 	{
380 		.procname	= "sched_schedstats",
381 		.data		= NULL,
382 		.maxlen		= sizeof(unsigned int),
383 		.mode		= 0644,
384 		.proc_handler	= sysctl_schedstats,
385 		.extra1		= SYSCTL_ZERO,
386 		.extra2		= SYSCTL_ONE,
387 	},
388 #endif /* CONFIG_SCHEDSTATS */
389 #endif /* CONFIG_SMP */
390 #ifdef CONFIG_NUMA_BALANCING
391 	{
392 		.procname	= "numa_balancing_scan_delay_ms",
393 		.data		= &sysctl_numa_balancing_scan_delay,
394 		.maxlen		= sizeof(unsigned int),
395 		.mode		= 0644,
396 		.proc_handler	= proc_dointvec,
397 	},
398 	{
399 		.procname	= "numa_balancing_scan_period_min_ms",
400 		.data		= &sysctl_numa_balancing_scan_period_min,
401 		.maxlen		= sizeof(unsigned int),
402 		.mode		= 0644,
403 		.proc_handler	= proc_dointvec,
404 	},
405 	{
406 		.procname	= "numa_balancing_scan_period_max_ms",
407 		.data		= &sysctl_numa_balancing_scan_period_max,
408 		.maxlen		= sizeof(unsigned int),
409 		.mode		= 0644,
410 		.proc_handler	= proc_dointvec,
411 	},
412 	{
413 		.procname	= "numa_balancing_scan_size_mb",
414 		.data		= &sysctl_numa_balancing_scan_size,
415 		.maxlen		= sizeof(unsigned int),
416 		.mode		= 0644,
417 		.proc_handler	= proc_dointvec_minmax,
418 		.extra1		= SYSCTL_ONE,
419 	},
420 	{
421 		.procname	= "numa_balancing",
422 		.data		= NULL, /* filled in by handler */
423 		.maxlen		= sizeof(unsigned int),
424 		.mode		= 0644,
425 		.proc_handler	= sysctl_numa_balancing,
426 		.extra1		= SYSCTL_ZERO,
427 		.extra2		= SYSCTL_ONE,
428 	},
429 #endif /* CONFIG_NUMA_BALANCING */
430 #endif /* CONFIG_SCHED_DEBUG */
431 	{
432 		.procname	= "sched_rt_period_us",
433 		.data		= &sysctl_sched_rt_period,
434 		.maxlen		= sizeof(unsigned int),
435 		.mode		= 0644,
436 		.proc_handler	= sched_rt_handler,
437 	},
438 	{
439 		.procname	= "sched_rt_runtime_us",
440 		.data		= &sysctl_sched_rt_runtime,
441 		.maxlen		= sizeof(int),
442 		.mode		= 0644,
443 		.proc_handler	= sched_rt_handler,
444 	},
445 	{
446 		.procname	= "sched_rr_timeslice_ms",
447 		.data		= &sysctl_sched_rr_timeslice,
448 		.maxlen		= sizeof(int),
449 		.mode		= 0644,
450 		.proc_handler	= sched_rr_handler,
451 	},
452 #ifdef CONFIG_UCLAMP_TASK
453 	{
454 		.procname	= "sched_util_clamp_min",
455 		.data		= &sysctl_sched_uclamp_util_min,
456 		.maxlen		= sizeof(unsigned int),
457 		.mode		= 0644,
458 		.proc_handler	= sysctl_sched_uclamp_handler,
459 	},
460 	{
461 		.procname	= "sched_util_clamp_max",
462 		.data		= &sysctl_sched_uclamp_util_max,
463 		.maxlen		= sizeof(unsigned int),
464 		.mode		= 0644,
465 		.proc_handler	= sysctl_sched_uclamp_handler,
466 	},
467 #endif
468 #ifdef CONFIG_SCHED_AUTOGROUP
469 	{
470 		.procname	= "sched_autogroup_enabled",
471 		.data		= &sysctl_sched_autogroup_enabled,
472 		.maxlen		= sizeof(unsigned int),
473 		.mode		= 0644,
474 		.proc_handler	= proc_dointvec_minmax,
475 		.extra1		= SYSCTL_ZERO,
476 		.extra2		= SYSCTL_ONE,
477 	},
478 #endif
479 #ifdef CONFIG_CFS_BANDWIDTH
480 	{
481 		.procname	= "sched_cfs_bandwidth_slice_us",
482 		.data		= &sysctl_sched_cfs_bandwidth_slice,
483 		.maxlen		= sizeof(unsigned int),
484 		.mode		= 0644,
485 		.proc_handler	= proc_dointvec_minmax,
486 		.extra1		= SYSCTL_ONE,
487 	},
488 #endif
489 #if defined(CONFIG_ENERGY_MODEL) && defined(CONFIG_CPU_FREQ_GOV_SCHEDUTIL)
490 	{
491 		.procname	= "sched_energy_aware",
492 		.data		= &sysctl_sched_energy_aware,
493 		.maxlen		= sizeof(unsigned int),
494 		.mode		= 0644,
495 		.proc_handler	= sched_energy_aware_handler,
496 		.extra1		= SYSCTL_ZERO,
497 		.extra2		= SYSCTL_ONE,
498 	},
499 #endif
500 #ifdef CONFIG_PROVE_LOCKING
501 	{
502 		.procname	= "prove_locking",
503 		.data		= &prove_locking,
504 		.maxlen		= sizeof(int),
505 		.mode		= 0644,
506 		.proc_handler	= proc_dointvec,
507 	},
508 #endif
509 #ifdef CONFIG_LOCK_STAT
510 	{
511 		.procname	= "lock_stat",
512 		.data		= &lock_stat,
513 		.maxlen		= sizeof(int),
514 		.mode		= 0644,
515 		.proc_handler	= proc_dointvec,
516 	},
517 #endif
518 	{
519 		.procname	= "panic",
520 		.data		= &panic_timeout,
521 		.maxlen		= sizeof(int),
522 		.mode		= 0644,
523 		.proc_handler	= proc_dointvec,
524 	},
525 #ifdef CONFIG_COREDUMP
526 	{
527 		.procname	= "core_uses_pid",
528 		.data		= &core_uses_pid,
529 		.maxlen		= sizeof(int),
530 		.mode		= 0644,
531 		.proc_handler	= proc_dointvec,
532 	},
533 	{
534 		.procname	= "core_pattern",
535 		.data		= core_pattern,
536 		.maxlen		= CORENAME_MAX_SIZE,
537 		.mode		= 0644,
538 		.proc_handler	= proc_dostring_coredump,
539 	},
540 	{
541 		.procname	= "core_pipe_limit",
542 		.data		= &core_pipe_limit,
543 		.maxlen		= sizeof(unsigned int),
544 		.mode		= 0644,
545 		.proc_handler	= proc_dointvec,
546 	},
547 #endif
548 #ifdef CONFIG_PROC_SYSCTL
549 	{
550 		.procname	= "tainted",
551 		.maxlen 	= sizeof(long),
552 		.mode		= 0644,
553 		.proc_handler	= proc_taint,
554 	},
555 	{
556 		.procname	= "sysctl_writes_strict",
557 		.data		= &sysctl_writes_strict,
558 		.maxlen		= sizeof(int),
559 		.mode		= 0644,
560 		.proc_handler	= proc_dointvec_minmax,
561 		.extra1		= &neg_one,
562 		.extra2		= SYSCTL_ONE,
563 	},
564 #endif
565 #ifdef CONFIG_LATENCYTOP
566 	{
567 		.procname	= "latencytop",
568 		.data		= &latencytop_enabled,
569 		.maxlen		= sizeof(int),
570 		.mode		= 0644,
571 		.proc_handler	= sysctl_latencytop,
572 	},
573 #endif
574 #ifdef CONFIG_BLK_DEV_INITRD
575 	{
576 		.procname	= "real-root-dev",
577 		.data		= &real_root_dev,
578 		.maxlen		= sizeof(int),
579 		.mode		= 0644,
580 		.proc_handler	= proc_dointvec,
581 	},
582 #endif
583 	{
584 		.procname	= "print-fatal-signals",
585 		.data		= &print_fatal_signals,
586 		.maxlen		= sizeof(int),
587 		.mode		= 0644,
588 		.proc_handler	= proc_dointvec,
589 	},
590 #ifdef CONFIG_SPARC
591 	{
592 		.procname	= "reboot-cmd",
593 		.data		= reboot_command,
594 		.maxlen		= 256,
595 		.mode		= 0644,
596 		.proc_handler	= proc_dostring,
597 	},
598 	{
599 		.procname	= "stop-a",
600 		.data		= &stop_a_enabled,
601 		.maxlen		= sizeof (int),
602 		.mode		= 0644,
603 		.proc_handler	= proc_dointvec,
604 	},
605 	{
606 		.procname	= "scons-poweroff",
607 		.data		= &scons_pwroff,
608 		.maxlen		= sizeof (int),
609 		.mode		= 0644,
610 		.proc_handler	= proc_dointvec,
611 	},
612 #endif
613 #ifdef CONFIG_SPARC64
614 	{
615 		.procname	= "tsb-ratio",
616 		.data		= &sysctl_tsb_ratio,
617 		.maxlen		= sizeof (int),
618 		.mode		= 0644,
619 		.proc_handler	= proc_dointvec,
620 	},
621 #endif
622 #ifdef __hppa__
623 	{
624 		.procname	= "soft-power",
625 		.data		= &pwrsw_enabled,
626 		.maxlen		= sizeof (int),
627 	 	.mode		= 0644,
628 		.proc_handler	= proc_dointvec,
629 	},
630 #endif
631 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
632 	{
633 		.procname	= "unaligned-trap",
634 		.data		= &unaligned_enabled,
635 		.maxlen		= sizeof (int),
636 		.mode		= 0644,
637 		.proc_handler	= proc_dointvec,
638 	},
639 #endif
640 	{
641 		.procname	= "ctrl-alt-del",
642 		.data		= &C_A_D,
643 		.maxlen		= sizeof(int),
644 		.mode		= 0644,
645 		.proc_handler	= proc_dointvec,
646 	},
647 #ifdef CONFIG_FUNCTION_TRACER
648 	{
649 		.procname	= "ftrace_enabled",
650 		.data		= &ftrace_enabled,
651 		.maxlen		= sizeof(int),
652 		.mode		= 0644,
653 		.proc_handler	= ftrace_enable_sysctl,
654 	},
655 #endif
656 #ifdef CONFIG_STACK_TRACER
657 	{
658 		.procname	= "stack_tracer_enabled",
659 		.data		= &stack_tracer_enabled,
660 		.maxlen		= sizeof(int),
661 		.mode		= 0644,
662 		.proc_handler	= stack_trace_sysctl,
663 	},
664 #endif
665 #ifdef CONFIG_TRACING
666 	{
667 		.procname	= "ftrace_dump_on_oops",
668 		.data		= &ftrace_dump_on_oops,
669 		.maxlen		= sizeof(int),
670 		.mode		= 0644,
671 		.proc_handler	= proc_dointvec,
672 	},
673 	{
674 		.procname	= "traceoff_on_warning",
675 		.data		= &__disable_trace_on_warning,
676 		.maxlen		= sizeof(__disable_trace_on_warning),
677 		.mode		= 0644,
678 		.proc_handler	= proc_dointvec,
679 	},
680 	{
681 		.procname	= "tracepoint_printk",
682 		.data		= &tracepoint_printk,
683 		.maxlen		= sizeof(tracepoint_printk),
684 		.mode		= 0644,
685 		.proc_handler	= tracepoint_printk_sysctl,
686 	},
687 #endif
688 #ifdef CONFIG_KEXEC_CORE
689 	{
690 		.procname	= "kexec_load_disabled",
691 		.data		= &kexec_load_disabled,
692 		.maxlen		= sizeof(int),
693 		.mode		= 0644,
694 		/* only handle a transition from default "0" to "1" */
695 		.proc_handler	= proc_dointvec_minmax,
696 		.extra1		= SYSCTL_ONE,
697 		.extra2		= SYSCTL_ONE,
698 	},
699 #endif
700 #ifdef CONFIG_MODULES
701 	{
702 		.procname	= "modprobe",
703 		.data		= &modprobe_path,
704 		.maxlen		= KMOD_PATH_LEN,
705 		.mode		= 0644,
706 		.proc_handler	= proc_dostring,
707 	},
708 	{
709 		.procname	= "modules_disabled",
710 		.data		= &modules_disabled,
711 		.maxlen		= sizeof(int),
712 		.mode		= 0644,
713 		/* only handle a transition from default "0" to "1" */
714 		.proc_handler	= proc_dointvec_minmax,
715 		.extra1		= SYSCTL_ONE,
716 		.extra2		= SYSCTL_ONE,
717 	},
718 #endif
719 #ifdef CONFIG_UEVENT_HELPER
720 	{
721 		.procname	= "hotplug",
722 		.data		= &uevent_helper,
723 		.maxlen		= UEVENT_HELPER_PATH_LEN,
724 		.mode		= 0644,
725 		.proc_handler	= proc_dostring,
726 	},
727 #endif
728 #ifdef CONFIG_CHR_DEV_SG
729 	{
730 		.procname	= "sg-big-buff",
731 		.data		= &sg_big_buff,
732 		.maxlen		= sizeof (int),
733 		.mode		= 0444,
734 		.proc_handler	= proc_dointvec,
735 	},
736 #endif
737 #ifdef CONFIG_BSD_PROCESS_ACCT
738 	{
739 		.procname	= "acct",
740 		.data		= &acct_parm,
741 		.maxlen		= 3*sizeof(int),
742 		.mode		= 0644,
743 		.proc_handler	= proc_dointvec,
744 	},
745 #endif
746 #ifdef CONFIG_MAGIC_SYSRQ
747 	{
748 		.procname	= "sysrq",
749 		.data		= &__sysrq_enabled,
750 		.maxlen		= sizeof (int),
751 		.mode		= 0644,
752 		.proc_handler	= sysrq_sysctl_handler,
753 	},
754 #endif
755 #ifdef CONFIG_PROC_SYSCTL
756 	{
757 		.procname	= "cad_pid",
758 		.data		= NULL,
759 		.maxlen		= sizeof (int),
760 		.mode		= 0600,
761 		.proc_handler	= proc_do_cad_pid,
762 	},
763 #endif
764 	{
765 		.procname	= "threads-max",
766 		.data		= NULL,
767 		.maxlen		= sizeof(int),
768 		.mode		= 0644,
769 		.proc_handler	= sysctl_max_threads,
770 	},
771 	{
772 		.procname	= "random",
773 		.mode		= 0555,
774 		.child		= random_table,
775 	},
776 	{
777 		.procname	= "usermodehelper",
778 		.mode		= 0555,
779 		.child		= usermodehelper_table,
780 	},
781 #ifdef CONFIG_FW_LOADER_USER_HELPER
782 	{
783 		.procname	= "firmware_config",
784 		.mode		= 0555,
785 		.child		= firmware_config_table,
786 	},
787 #endif
788 	{
789 		.procname	= "overflowuid",
790 		.data		= &overflowuid,
791 		.maxlen		= sizeof(int),
792 		.mode		= 0644,
793 		.proc_handler	= proc_dointvec_minmax,
794 		.extra1		= &minolduid,
795 		.extra2		= &maxolduid,
796 	},
797 	{
798 		.procname	= "overflowgid",
799 		.data		= &overflowgid,
800 		.maxlen		= sizeof(int),
801 		.mode		= 0644,
802 		.proc_handler	= proc_dointvec_minmax,
803 		.extra1		= &minolduid,
804 		.extra2		= &maxolduid,
805 	},
806 #ifdef CONFIG_S390
807 #ifdef CONFIG_MATHEMU
808 	{
809 		.procname	= "ieee_emulation_warnings",
810 		.data		= &sysctl_ieee_emulation_warnings,
811 		.maxlen		= sizeof(int),
812 		.mode		= 0644,
813 		.proc_handler	= proc_dointvec,
814 	},
815 #endif
816 	{
817 		.procname	= "userprocess_debug",
818 		.data		= &show_unhandled_signals,
819 		.maxlen		= sizeof(int),
820 		.mode		= 0644,
821 		.proc_handler	= proc_dointvec,
822 	},
823 #endif
824 	{
825 		.procname	= "pid_max",
826 		.data		= &pid_max,
827 		.maxlen		= sizeof (int),
828 		.mode		= 0644,
829 		.proc_handler	= proc_dointvec_minmax,
830 		.extra1		= &pid_max_min,
831 		.extra2		= &pid_max_max,
832 	},
833 	{
834 		.procname	= "panic_on_oops",
835 		.data		= &panic_on_oops,
836 		.maxlen		= sizeof(int),
837 		.mode		= 0644,
838 		.proc_handler	= proc_dointvec,
839 	},
840 	{
841 		.procname	= "panic_print",
842 		.data		= &panic_print,
843 		.maxlen		= sizeof(unsigned long),
844 		.mode		= 0644,
845 		.proc_handler	= proc_doulongvec_minmax,
846 	},
847 #if defined CONFIG_PRINTK
848 	{
849 		.procname	= "printk",
850 		.data		= &console_loglevel,
851 		.maxlen		= 4*sizeof(int),
852 		.mode		= 0644,
853 		.proc_handler	= proc_dointvec,
854 	},
855 	{
856 		.procname	= "printk_ratelimit",
857 		.data		= &printk_ratelimit_state.interval,
858 		.maxlen		= sizeof(int),
859 		.mode		= 0644,
860 		.proc_handler	= proc_dointvec_jiffies,
861 	},
862 	{
863 		.procname	= "printk_ratelimit_burst",
864 		.data		= &printk_ratelimit_state.burst,
865 		.maxlen		= sizeof(int),
866 		.mode		= 0644,
867 		.proc_handler	= proc_dointvec,
868 	},
869 	{
870 		.procname	= "printk_delay",
871 		.data		= &printk_delay_msec,
872 		.maxlen		= sizeof(int),
873 		.mode		= 0644,
874 		.proc_handler	= proc_dointvec_minmax,
875 		.extra1		= SYSCTL_ZERO,
876 		.extra2		= &ten_thousand,
877 	},
878 	{
879 		.procname	= "printk_devkmsg",
880 		.data		= devkmsg_log_str,
881 		.maxlen		= DEVKMSG_STR_MAX_SIZE,
882 		.mode		= 0644,
883 		.proc_handler	= devkmsg_sysctl_set_loglvl,
884 	},
885 	{
886 		.procname	= "dmesg_restrict",
887 		.data		= &dmesg_restrict,
888 		.maxlen		= sizeof(int),
889 		.mode		= 0644,
890 		.proc_handler	= proc_dointvec_minmax_sysadmin,
891 		.extra1		= SYSCTL_ZERO,
892 		.extra2		= SYSCTL_ONE,
893 	},
894 	{
895 		.procname	= "kptr_restrict",
896 		.data		= &kptr_restrict,
897 		.maxlen		= sizeof(int),
898 		.mode		= 0644,
899 		.proc_handler	= proc_dointvec_minmax_sysadmin,
900 		.extra1		= SYSCTL_ZERO,
901 		.extra2		= &two,
902 	},
903 #endif
904 	{
905 		.procname	= "ngroups_max",
906 		.data		= &ngroups_max,
907 		.maxlen		= sizeof (int),
908 		.mode		= 0444,
909 		.proc_handler	= proc_dointvec,
910 	},
911 	{
912 		.procname	= "cap_last_cap",
913 		.data		= (void *)&cap_last_cap,
914 		.maxlen		= sizeof(int),
915 		.mode		= 0444,
916 		.proc_handler	= proc_dointvec,
917 	},
918 #if defined(CONFIG_LOCKUP_DETECTOR)
919 	{
920 		.procname       = "watchdog",
921 		.data		= &watchdog_user_enabled,
922 		.maxlen		= sizeof(int),
923 		.mode		= 0644,
924 		.proc_handler   = proc_watchdog,
925 		.extra1		= SYSCTL_ZERO,
926 		.extra2		= SYSCTL_ONE,
927 	},
928 	{
929 		.procname	= "watchdog_thresh",
930 		.data		= &watchdog_thresh,
931 		.maxlen		= sizeof(int),
932 		.mode		= 0644,
933 		.proc_handler	= proc_watchdog_thresh,
934 		.extra1		= SYSCTL_ZERO,
935 		.extra2		= &sixty,
936 	},
937 	{
938 		.procname       = "nmi_watchdog",
939 		.data		= &nmi_watchdog_user_enabled,
940 		.maxlen		= sizeof(int),
941 		.mode		= NMI_WATCHDOG_SYSCTL_PERM,
942 		.proc_handler   = proc_nmi_watchdog,
943 		.extra1		= SYSCTL_ZERO,
944 		.extra2		= SYSCTL_ONE,
945 	},
946 	{
947 		.procname	= "watchdog_cpumask",
948 		.data		= &watchdog_cpumask_bits,
949 		.maxlen		= NR_CPUS,
950 		.mode		= 0644,
951 		.proc_handler	= proc_watchdog_cpumask,
952 	},
953 #ifdef CONFIG_SOFTLOCKUP_DETECTOR
954 	{
955 		.procname       = "soft_watchdog",
956 		.data		= &soft_watchdog_user_enabled,
957 		.maxlen		= sizeof(int),
958 		.mode		= 0644,
959 		.proc_handler   = proc_soft_watchdog,
960 		.extra1		= SYSCTL_ZERO,
961 		.extra2		= SYSCTL_ONE,
962 	},
963 	{
964 		.procname	= "softlockup_panic",
965 		.data		= &softlockup_panic,
966 		.maxlen		= sizeof(int),
967 		.mode		= 0644,
968 		.proc_handler	= proc_dointvec_minmax,
969 		.extra1		= SYSCTL_ZERO,
970 		.extra2		= SYSCTL_ONE,
971 	},
972 #ifdef CONFIG_SMP
973 	{
974 		.procname	= "softlockup_all_cpu_backtrace",
975 		.data		= &sysctl_softlockup_all_cpu_backtrace,
976 		.maxlen		= sizeof(int),
977 		.mode		= 0644,
978 		.proc_handler	= proc_dointvec_minmax,
979 		.extra1		= SYSCTL_ZERO,
980 		.extra2		= SYSCTL_ONE,
981 	},
982 #endif /* CONFIG_SMP */
983 #endif
984 #ifdef CONFIG_HARDLOCKUP_DETECTOR
985 	{
986 		.procname	= "hardlockup_panic",
987 		.data		= &hardlockup_panic,
988 		.maxlen		= sizeof(int),
989 		.mode		= 0644,
990 		.proc_handler	= proc_dointvec_minmax,
991 		.extra1		= SYSCTL_ZERO,
992 		.extra2		= SYSCTL_ONE,
993 	},
994 #ifdef CONFIG_SMP
995 	{
996 		.procname	= "hardlockup_all_cpu_backtrace",
997 		.data		= &sysctl_hardlockup_all_cpu_backtrace,
998 		.maxlen		= sizeof(int),
999 		.mode		= 0644,
1000 		.proc_handler	= proc_dointvec_minmax,
1001 		.extra1		= SYSCTL_ZERO,
1002 		.extra2		= SYSCTL_ONE,
1003 	},
1004 #endif /* CONFIG_SMP */
1005 #endif
1006 #endif
1007 
1008 #if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86)
1009 	{
1010 		.procname       = "unknown_nmi_panic",
1011 		.data           = &unknown_nmi_panic,
1012 		.maxlen         = sizeof (int),
1013 		.mode           = 0644,
1014 		.proc_handler   = proc_dointvec,
1015 	},
1016 #endif
1017 #if defined(CONFIG_X86)
1018 	{
1019 		.procname	= "panic_on_unrecovered_nmi",
1020 		.data		= &panic_on_unrecovered_nmi,
1021 		.maxlen		= sizeof(int),
1022 		.mode		= 0644,
1023 		.proc_handler	= proc_dointvec,
1024 	},
1025 	{
1026 		.procname	= "panic_on_io_nmi",
1027 		.data		= &panic_on_io_nmi,
1028 		.maxlen		= sizeof(int),
1029 		.mode		= 0644,
1030 		.proc_handler	= proc_dointvec,
1031 	},
1032 #ifdef CONFIG_DEBUG_STACKOVERFLOW
1033 	{
1034 		.procname	= "panic_on_stackoverflow",
1035 		.data		= &sysctl_panic_on_stackoverflow,
1036 		.maxlen		= sizeof(int),
1037 		.mode		= 0644,
1038 		.proc_handler	= proc_dointvec,
1039 	},
1040 #endif
1041 	{
1042 		.procname	= "bootloader_type",
1043 		.data		= &bootloader_type,
1044 		.maxlen		= sizeof (int),
1045 		.mode		= 0444,
1046 		.proc_handler	= proc_dointvec,
1047 	},
1048 	{
1049 		.procname	= "bootloader_version",
1050 		.data		= &bootloader_version,
1051 		.maxlen		= sizeof (int),
1052 		.mode		= 0444,
1053 		.proc_handler	= proc_dointvec,
1054 	},
1055 	{
1056 		.procname	= "io_delay_type",
1057 		.data		= &io_delay_type,
1058 		.maxlen		= sizeof(int),
1059 		.mode		= 0644,
1060 		.proc_handler	= proc_dointvec,
1061 	},
1062 #endif
1063 #if defined(CONFIG_MMU)
1064 	{
1065 		.procname	= "randomize_va_space",
1066 		.data		= &randomize_va_space,
1067 		.maxlen		= sizeof(int),
1068 		.mode		= 0644,
1069 		.proc_handler	= proc_dointvec,
1070 	},
1071 #endif
1072 #if defined(CONFIG_S390) && defined(CONFIG_SMP)
1073 	{
1074 		.procname	= "spin_retry",
1075 		.data		= &spin_retry,
1076 		.maxlen		= sizeof (int),
1077 		.mode		= 0644,
1078 		.proc_handler	= proc_dointvec,
1079 	},
1080 #endif
1081 #if	defined(CONFIG_ACPI_SLEEP) && defined(CONFIG_X86)
1082 	{
1083 		.procname	= "acpi_video_flags",
1084 		.data		= &acpi_realmode_flags,
1085 		.maxlen		= sizeof (unsigned long),
1086 		.mode		= 0644,
1087 		.proc_handler	= proc_doulongvec_minmax,
1088 	},
1089 #endif
1090 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
1091 	{
1092 		.procname	= "ignore-unaligned-usertrap",
1093 		.data		= &no_unaligned_warning,
1094 		.maxlen		= sizeof (int),
1095 	 	.mode		= 0644,
1096 		.proc_handler	= proc_dointvec,
1097 	},
1098 #endif
1099 #ifdef CONFIG_IA64
1100 	{
1101 		.procname	= "unaligned-dump-stack",
1102 		.data		= &unaligned_dump_stack,
1103 		.maxlen		= sizeof (int),
1104 		.mode		= 0644,
1105 		.proc_handler	= proc_dointvec,
1106 	},
1107 #endif
1108 #ifdef CONFIG_DETECT_HUNG_TASK
1109 	{
1110 		.procname	= "hung_task_panic",
1111 		.data		= &sysctl_hung_task_panic,
1112 		.maxlen		= sizeof(int),
1113 		.mode		= 0644,
1114 		.proc_handler	= proc_dointvec_minmax,
1115 		.extra1		= SYSCTL_ZERO,
1116 		.extra2		= SYSCTL_ONE,
1117 	},
1118 	{
1119 		.procname	= "hung_task_check_count",
1120 		.data		= &sysctl_hung_task_check_count,
1121 		.maxlen		= sizeof(int),
1122 		.mode		= 0644,
1123 		.proc_handler	= proc_dointvec_minmax,
1124 		.extra1		= SYSCTL_ZERO,
1125 	},
1126 	{
1127 		.procname	= "hung_task_timeout_secs",
1128 		.data		= &sysctl_hung_task_timeout_secs,
1129 		.maxlen		= sizeof(unsigned long),
1130 		.mode		= 0644,
1131 		.proc_handler	= proc_dohung_task_timeout_secs,
1132 		.extra2		= &hung_task_timeout_max,
1133 	},
1134 	{
1135 		.procname	= "hung_task_check_interval_secs",
1136 		.data		= &sysctl_hung_task_check_interval_secs,
1137 		.maxlen		= sizeof(unsigned long),
1138 		.mode		= 0644,
1139 		.proc_handler	= proc_dohung_task_timeout_secs,
1140 		.extra2		= &hung_task_timeout_max,
1141 	},
1142 	{
1143 		.procname	= "hung_task_warnings",
1144 		.data		= &sysctl_hung_task_warnings,
1145 		.maxlen		= sizeof(int),
1146 		.mode		= 0644,
1147 		.proc_handler	= proc_dointvec_minmax,
1148 		.extra1		= &neg_one,
1149 	},
1150 #endif
1151 #ifdef CONFIG_RT_MUTEXES
1152 	{
1153 		.procname	= "max_lock_depth",
1154 		.data		= &max_lock_depth,
1155 		.maxlen		= sizeof(int),
1156 		.mode		= 0644,
1157 		.proc_handler	= proc_dointvec,
1158 	},
1159 #endif
1160 	{
1161 		.procname	= "poweroff_cmd",
1162 		.data		= &poweroff_cmd,
1163 		.maxlen		= POWEROFF_CMD_PATH_LEN,
1164 		.mode		= 0644,
1165 		.proc_handler	= proc_dostring,
1166 	},
1167 #ifdef CONFIG_KEYS
1168 	{
1169 		.procname	= "keys",
1170 		.mode		= 0555,
1171 		.child		= key_sysctls,
1172 	},
1173 #endif
1174 #ifdef CONFIG_PERF_EVENTS
1175 	/*
1176 	 * User-space scripts rely on the existence of this file
1177 	 * as a feature check for perf_events being enabled.
1178 	 *
1179 	 * So it's an ABI, do not remove!
1180 	 */
1181 	{
1182 		.procname	= "perf_event_paranoid",
1183 		.data		= &sysctl_perf_event_paranoid,
1184 		.maxlen		= sizeof(sysctl_perf_event_paranoid),
1185 		.mode		= 0644,
1186 		.proc_handler	= proc_dointvec,
1187 	},
1188 	{
1189 		.procname	= "perf_event_mlock_kb",
1190 		.data		= &sysctl_perf_event_mlock,
1191 		.maxlen		= sizeof(sysctl_perf_event_mlock),
1192 		.mode		= 0644,
1193 		.proc_handler	= proc_dointvec,
1194 	},
1195 	{
1196 		.procname	= "perf_event_max_sample_rate",
1197 		.data		= &sysctl_perf_event_sample_rate,
1198 		.maxlen		= sizeof(sysctl_perf_event_sample_rate),
1199 		.mode		= 0644,
1200 		.proc_handler	= perf_proc_update_handler,
1201 		.extra1		= SYSCTL_ONE,
1202 	},
1203 	{
1204 		.procname	= "perf_cpu_time_max_percent",
1205 		.data		= &sysctl_perf_cpu_time_max_percent,
1206 		.maxlen		= sizeof(sysctl_perf_cpu_time_max_percent),
1207 		.mode		= 0644,
1208 		.proc_handler	= perf_cpu_time_max_percent_handler,
1209 		.extra1		= SYSCTL_ZERO,
1210 		.extra2		= &one_hundred,
1211 	},
1212 	{
1213 		.procname	= "perf_event_max_stack",
1214 		.data		= &sysctl_perf_event_max_stack,
1215 		.maxlen		= sizeof(sysctl_perf_event_max_stack),
1216 		.mode		= 0644,
1217 		.proc_handler	= perf_event_max_stack_handler,
1218 		.extra1		= SYSCTL_ZERO,
1219 		.extra2		= &six_hundred_forty_kb,
1220 	},
1221 	{
1222 		.procname	= "perf_event_max_contexts_per_stack",
1223 		.data		= &sysctl_perf_event_max_contexts_per_stack,
1224 		.maxlen		= sizeof(sysctl_perf_event_max_contexts_per_stack),
1225 		.mode		= 0644,
1226 		.proc_handler	= perf_event_max_stack_handler,
1227 		.extra1		= SYSCTL_ZERO,
1228 		.extra2		= &one_thousand,
1229 	},
1230 #endif
1231 	{
1232 		.procname	= "panic_on_warn",
1233 		.data		= &panic_on_warn,
1234 		.maxlen		= sizeof(int),
1235 		.mode		= 0644,
1236 		.proc_handler	= proc_dointvec_minmax,
1237 		.extra1		= SYSCTL_ZERO,
1238 		.extra2		= SYSCTL_ONE,
1239 	},
1240 #if defined(CONFIG_SMP) && defined(CONFIG_NO_HZ_COMMON)
1241 	{
1242 		.procname	= "timer_migration",
1243 		.data		= &sysctl_timer_migration,
1244 		.maxlen		= sizeof(unsigned int),
1245 		.mode		= 0644,
1246 		.proc_handler	= timer_migration_handler,
1247 		.extra1		= SYSCTL_ZERO,
1248 		.extra2		= SYSCTL_ONE,
1249 	},
1250 #endif
1251 #ifdef CONFIG_BPF_SYSCALL
1252 	{
1253 		.procname	= "unprivileged_bpf_disabled",
1254 		.data		= &sysctl_unprivileged_bpf_disabled,
1255 		.maxlen		= sizeof(sysctl_unprivileged_bpf_disabled),
1256 		.mode		= 0644,
1257 		/* only handle a transition from default "0" to "1" */
1258 		.proc_handler	= proc_dointvec_minmax,
1259 		.extra1		= SYSCTL_ONE,
1260 		.extra2		= SYSCTL_ONE,
1261 	},
1262 	{
1263 		.procname	= "bpf_stats_enabled",
1264 		.data		= &bpf_stats_enabled_key.key,
1265 		.maxlen		= sizeof(bpf_stats_enabled_key),
1266 		.mode		= 0644,
1267 		.proc_handler	= proc_do_static_key,
1268 	},
1269 #endif
1270 #if defined(CONFIG_TREE_RCU) || defined(CONFIG_PREEMPT_RCU)
1271 	{
1272 		.procname	= "panic_on_rcu_stall",
1273 		.data		= &sysctl_panic_on_rcu_stall,
1274 		.maxlen		= sizeof(sysctl_panic_on_rcu_stall),
1275 		.mode		= 0644,
1276 		.proc_handler	= proc_dointvec_minmax,
1277 		.extra1		= SYSCTL_ZERO,
1278 		.extra2		= SYSCTL_ONE,
1279 	},
1280 #endif
1281 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
1282 	{
1283 		.procname	= "stack_erasing",
1284 		.data		= NULL,
1285 		.maxlen		= sizeof(int),
1286 		.mode		= 0600,
1287 		.proc_handler	= stack_erasing_sysctl,
1288 		.extra1		= SYSCTL_ZERO,
1289 		.extra2		= SYSCTL_ONE,
1290 	},
1291 #endif
1292 	{ }
1293 };
1294 
1295 static struct ctl_table vm_table[] = {
1296 	{
1297 		.procname	= "overcommit_memory",
1298 		.data		= &sysctl_overcommit_memory,
1299 		.maxlen		= sizeof(sysctl_overcommit_memory),
1300 		.mode		= 0644,
1301 		.proc_handler	= proc_dointvec_minmax,
1302 		.extra1		= SYSCTL_ZERO,
1303 		.extra2		= &two,
1304 	},
1305 	{
1306 		.procname	= "panic_on_oom",
1307 		.data		= &sysctl_panic_on_oom,
1308 		.maxlen		= sizeof(sysctl_panic_on_oom),
1309 		.mode		= 0644,
1310 		.proc_handler	= proc_dointvec_minmax,
1311 		.extra1		= SYSCTL_ZERO,
1312 		.extra2		= &two,
1313 	},
1314 	{
1315 		.procname	= "oom_kill_allocating_task",
1316 		.data		= &sysctl_oom_kill_allocating_task,
1317 		.maxlen		= sizeof(sysctl_oom_kill_allocating_task),
1318 		.mode		= 0644,
1319 		.proc_handler	= proc_dointvec,
1320 	},
1321 	{
1322 		.procname	= "oom_dump_tasks",
1323 		.data		= &sysctl_oom_dump_tasks,
1324 		.maxlen		= sizeof(sysctl_oom_dump_tasks),
1325 		.mode		= 0644,
1326 		.proc_handler	= proc_dointvec,
1327 	},
1328 	{
1329 		.procname	= "overcommit_ratio",
1330 		.data		= &sysctl_overcommit_ratio,
1331 		.maxlen		= sizeof(sysctl_overcommit_ratio),
1332 		.mode		= 0644,
1333 		.proc_handler	= overcommit_ratio_handler,
1334 	},
1335 	{
1336 		.procname	= "overcommit_kbytes",
1337 		.data		= &sysctl_overcommit_kbytes,
1338 		.maxlen		= sizeof(sysctl_overcommit_kbytes),
1339 		.mode		= 0644,
1340 		.proc_handler	= overcommit_kbytes_handler,
1341 	},
1342 	{
1343 		.procname	= "page-cluster",
1344 		.data		= &page_cluster,
1345 		.maxlen		= sizeof(int),
1346 		.mode		= 0644,
1347 		.proc_handler	= proc_dointvec_minmax,
1348 		.extra1		= SYSCTL_ZERO,
1349 	},
1350 	{
1351 		.procname	= "dirty_background_ratio",
1352 		.data		= &dirty_background_ratio,
1353 		.maxlen		= sizeof(dirty_background_ratio),
1354 		.mode		= 0644,
1355 		.proc_handler	= dirty_background_ratio_handler,
1356 		.extra1		= SYSCTL_ZERO,
1357 		.extra2		= &one_hundred,
1358 	},
1359 	{
1360 		.procname	= "dirty_background_bytes",
1361 		.data		= &dirty_background_bytes,
1362 		.maxlen		= sizeof(dirty_background_bytes),
1363 		.mode		= 0644,
1364 		.proc_handler	= dirty_background_bytes_handler,
1365 		.extra1		= &one_ul,
1366 	},
1367 	{
1368 		.procname	= "dirty_ratio",
1369 		.data		= &vm_dirty_ratio,
1370 		.maxlen		= sizeof(vm_dirty_ratio),
1371 		.mode		= 0644,
1372 		.proc_handler	= dirty_ratio_handler,
1373 		.extra1		= SYSCTL_ZERO,
1374 		.extra2		= &one_hundred,
1375 	},
1376 	{
1377 		.procname	= "dirty_bytes",
1378 		.data		= &vm_dirty_bytes,
1379 		.maxlen		= sizeof(vm_dirty_bytes),
1380 		.mode		= 0644,
1381 		.proc_handler	= dirty_bytes_handler,
1382 		.extra1		= &dirty_bytes_min,
1383 	},
1384 	{
1385 		.procname	= "dirty_writeback_centisecs",
1386 		.data		= &dirty_writeback_interval,
1387 		.maxlen		= sizeof(dirty_writeback_interval),
1388 		.mode		= 0644,
1389 		.proc_handler	= dirty_writeback_centisecs_handler,
1390 	},
1391 	{
1392 		.procname	= "dirty_expire_centisecs",
1393 		.data		= &dirty_expire_interval,
1394 		.maxlen		= sizeof(dirty_expire_interval),
1395 		.mode		= 0644,
1396 		.proc_handler	= proc_dointvec_minmax,
1397 		.extra1		= SYSCTL_ZERO,
1398 	},
1399 	{
1400 		.procname	= "dirtytime_expire_seconds",
1401 		.data		= &dirtytime_expire_interval,
1402 		.maxlen		= sizeof(dirtytime_expire_interval),
1403 		.mode		= 0644,
1404 		.proc_handler	= dirtytime_interval_handler,
1405 		.extra1		= SYSCTL_ZERO,
1406 	},
1407 	{
1408 		.procname	= "swappiness",
1409 		.data		= &vm_swappiness,
1410 		.maxlen		= sizeof(vm_swappiness),
1411 		.mode		= 0644,
1412 		.proc_handler	= proc_dointvec_minmax,
1413 		.extra1		= SYSCTL_ZERO,
1414 		.extra2		= &one_hundred,
1415 	},
1416 #ifdef CONFIG_HUGETLB_PAGE
1417 	{
1418 		.procname	= "nr_hugepages",
1419 		.data		= NULL,
1420 		.maxlen		= sizeof(unsigned long),
1421 		.mode		= 0644,
1422 		.proc_handler	= hugetlb_sysctl_handler,
1423 	},
1424 #ifdef CONFIG_NUMA
1425 	{
1426 		.procname       = "nr_hugepages_mempolicy",
1427 		.data           = NULL,
1428 		.maxlen         = sizeof(unsigned long),
1429 		.mode           = 0644,
1430 		.proc_handler   = &hugetlb_mempolicy_sysctl_handler,
1431 	},
1432 	{
1433 		.procname		= "numa_stat",
1434 		.data			= &sysctl_vm_numa_stat,
1435 		.maxlen			= sizeof(int),
1436 		.mode			= 0644,
1437 		.proc_handler	= sysctl_vm_numa_stat_handler,
1438 		.extra1			= SYSCTL_ZERO,
1439 		.extra2			= SYSCTL_ONE,
1440 	},
1441 #endif
1442 	 {
1443 		.procname	= "hugetlb_shm_group",
1444 		.data		= &sysctl_hugetlb_shm_group,
1445 		.maxlen		= sizeof(gid_t),
1446 		.mode		= 0644,
1447 		.proc_handler	= proc_dointvec,
1448 	 },
1449 	{
1450 		.procname	= "nr_overcommit_hugepages",
1451 		.data		= NULL,
1452 		.maxlen		= sizeof(unsigned long),
1453 		.mode		= 0644,
1454 		.proc_handler	= hugetlb_overcommit_handler,
1455 	},
1456 #endif
1457 	{
1458 		.procname	= "lowmem_reserve_ratio",
1459 		.data		= &sysctl_lowmem_reserve_ratio,
1460 		.maxlen		= sizeof(sysctl_lowmem_reserve_ratio),
1461 		.mode		= 0644,
1462 		.proc_handler	= lowmem_reserve_ratio_sysctl_handler,
1463 	},
1464 	{
1465 		.procname	= "drop_caches",
1466 		.data		= &sysctl_drop_caches,
1467 		.maxlen		= sizeof(int),
1468 		.mode		= 0644,
1469 		.proc_handler	= drop_caches_sysctl_handler,
1470 		.extra1		= SYSCTL_ONE,
1471 		.extra2		= &four,
1472 	},
1473 #ifdef CONFIG_COMPACTION
1474 	{
1475 		.procname	= "compact_memory",
1476 		.data		= &sysctl_compact_memory,
1477 		.maxlen		= sizeof(int),
1478 		.mode		= 0200,
1479 		.proc_handler	= sysctl_compaction_handler,
1480 	},
1481 	{
1482 		.procname	= "extfrag_threshold",
1483 		.data		= &sysctl_extfrag_threshold,
1484 		.maxlen		= sizeof(int),
1485 		.mode		= 0644,
1486 		.proc_handler	= proc_dointvec_minmax,
1487 		.extra1		= &min_extfrag_threshold,
1488 		.extra2		= &max_extfrag_threshold,
1489 	},
1490 	{
1491 		.procname	= "compact_unevictable_allowed",
1492 		.data		= &sysctl_compact_unevictable_allowed,
1493 		.maxlen		= sizeof(int),
1494 		.mode		= 0644,
1495 		.proc_handler	= proc_dointvec,
1496 		.extra1		= SYSCTL_ZERO,
1497 		.extra2		= SYSCTL_ONE,
1498 	},
1499 
1500 #endif /* CONFIG_COMPACTION */
1501 	{
1502 		.procname	= "min_free_kbytes",
1503 		.data		= &min_free_kbytes,
1504 		.maxlen		= sizeof(min_free_kbytes),
1505 		.mode		= 0644,
1506 		.proc_handler	= min_free_kbytes_sysctl_handler,
1507 		.extra1		= SYSCTL_ZERO,
1508 	},
1509 	{
1510 		.procname	= "watermark_boost_factor",
1511 		.data		= &watermark_boost_factor,
1512 		.maxlen		= sizeof(watermark_boost_factor),
1513 		.mode		= 0644,
1514 		.proc_handler	= watermark_boost_factor_sysctl_handler,
1515 		.extra1		= SYSCTL_ZERO,
1516 	},
1517 	{
1518 		.procname	= "watermark_scale_factor",
1519 		.data		= &watermark_scale_factor,
1520 		.maxlen		= sizeof(watermark_scale_factor),
1521 		.mode		= 0644,
1522 		.proc_handler	= watermark_scale_factor_sysctl_handler,
1523 		.extra1		= SYSCTL_ONE,
1524 		.extra2		= &one_thousand,
1525 	},
1526 	{
1527 		.procname	= "percpu_pagelist_fraction",
1528 		.data		= &percpu_pagelist_fraction,
1529 		.maxlen		= sizeof(percpu_pagelist_fraction),
1530 		.mode		= 0644,
1531 		.proc_handler	= percpu_pagelist_fraction_sysctl_handler,
1532 		.extra1		= SYSCTL_ZERO,
1533 	},
1534 #ifdef CONFIG_MMU
1535 	{
1536 		.procname	= "max_map_count",
1537 		.data		= &sysctl_max_map_count,
1538 		.maxlen		= sizeof(sysctl_max_map_count),
1539 		.mode		= 0644,
1540 		.proc_handler	= proc_dointvec_minmax,
1541 		.extra1		= SYSCTL_ZERO,
1542 	},
1543 #else
1544 	{
1545 		.procname	= "nr_trim_pages",
1546 		.data		= &sysctl_nr_trim_pages,
1547 		.maxlen		= sizeof(sysctl_nr_trim_pages),
1548 		.mode		= 0644,
1549 		.proc_handler	= proc_dointvec_minmax,
1550 		.extra1		= SYSCTL_ZERO,
1551 	},
1552 #endif
1553 	{
1554 		.procname	= "laptop_mode",
1555 		.data		= &laptop_mode,
1556 		.maxlen		= sizeof(laptop_mode),
1557 		.mode		= 0644,
1558 		.proc_handler	= proc_dointvec_jiffies,
1559 	},
1560 	{
1561 		.procname	= "block_dump",
1562 		.data		= &block_dump,
1563 		.maxlen		= sizeof(block_dump),
1564 		.mode		= 0644,
1565 		.proc_handler	= proc_dointvec,
1566 		.extra1		= SYSCTL_ZERO,
1567 	},
1568 	{
1569 		.procname	= "vfs_cache_pressure",
1570 		.data		= &sysctl_vfs_cache_pressure,
1571 		.maxlen		= sizeof(sysctl_vfs_cache_pressure),
1572 		.mode		= 0644,
1573 		.proc_handler	= proc_dointvec,
1574 		.extra1		= SYSCTL_ZERO,
1575 	},
1576 #ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
1577 	{
1578 		.procname	= "legacy_va_layout",
1579 		.data		= &sysctl_legacy_va_layout,
1580 		.maxlen		= sizeof(sysctl_legacy_va_layout),
1581 		.mode		= 0644,
1582 		.proc_handler	= proc_dointvec,
1583 		.extra1		= SYSCTL_ZERO,
1584 	},
1585 #endif
1586 #ifdef CONFIG_NUMA
1587 	{
1588 		.procname	= "zone_reclaim_mode",
1589 		.data		= &node_reclaim_mode,
1590 		.maxlen		= sizeof(node_reclaim_mode),
1591 		.mode		= 0644,
1592 		.proc_handler	= proc_dointvec,
1593 		.extra1		= SYSCTL_ZERO,
1594 	},
1595 	{
1596 		.procname	= "min_unmapped_ratio",
1597 		.data		= &sysctl_min_unmapped_ratio,
1598 		.maxlen		= sizeof(sysctl_min_unmapped_ratio),
1599 		.mode		= 0644,
1600 		.proc_handler	= sysctl_min_unmapped_ratio_sysctl_handler,
1601 		.extra1		= SYSCTL_ZERO,
1602 		.extra2		= &one_hundred,
1603 	},
1604 	{
1605 		.procname	= "min_slab_ratio",
1606 		.data		= &sysctl_min_slab_ratio,
1607 		.maxlen		= sizeof(sysctl_min_slab_ratio),
1608 		.mode		= 0644,
1609 		.proc_handler	= sysctl_min_slab_ratio_sysctl_handler,
1610 		.extra1		= SYSCTL_ZERO,
1611 		.extra2		= &one_hundred,
1612 	},
1613 #endif
1614 #ifdef CONFIG_SMP
1615 	{
1616 		.procname	= "stat_interval",
1617 		.data		= &sysctl_stat_interval,
1618 		.maxlen		= sizeof(sysctl_stat_interval),
1619 		.mode		= 0644,
1620 		.proc_handler	= proc_dointvec_jiffies,
1621 	},
1622 	{
1623 		.procname	= "stat_refresh",
1624 		.data		= NULL,
1625 		.maxlen		= 0,
1626 		.mode		= 0600,
1627 		.proc_handler	= vmstat_refresh,
1628 	},
1629 #endif
1630 #ifdef CONFIG_MMU
1631 	{
1632 		.procname	= "mmap_min_addr",
1633 		.data		= &dac_mmap_min_addr,
1634 		.maxlen		= sizeof(unsigned long),
1635 		.mode		= 0644,
1636 		.proc_handler	= mmap_min_addr_handler,
1637 	},
1638 #endif
1639 #ifdef CONFIG_NUMA
1640 	{
1641 		.procname	= "numa_zonelist_order",
1642 		.data		= &numa_zonelist_order,
1643 		.maxlen		= NUMA_ZONELIST_ORDER_LEN,
1644 		.mode		= 0644,
1645 		.proc_handler	= numa_zonelist_order_handler,
1646 	},
1647 #endif
1648 #if (defined(CONFIG_X86_32) && !defined(CONFIG_UML))|| \
1649    (defined(CONFIG_SUPERH) && defined(CONFIG_VSYSCALL))
1650 	{
1651 		.procname	= "vdso_enabled",
1652 #ifdef CONFIG_X86_32
1653 		.data		= &vdso32_enabled,
1654 		.maxlen		= sizeof(vdso32_enabled),
1655 #else
1656 		.data		= &vdso_enabled,
1657 		.maxlen		= sizeof(vdso_enabled),
1658 #endif
1659 		.mode		= 0644,
1660 		.proc_handler	= proc_dointvec,
1661 		.extra1		= SYSCTL_ZERO,
1662 	},
1663 #endif
1664 #ifdef CONFIG_HIGHMEM
1665 	{
1666 		.procname	= "highmem_is_dirtyable",
1667 		.data		= &vm_highmem_is_dirtyable,
1668 		.maxlen		= sizeof(vm_highmem_is_dirtyable),
1669 		.mode		= 0644,
1670 		.proc_handler	= proc_dointvec_minmax,
1671 		.extra1		= SYSCTL_ZERO,
1672 		.extra2		= SYSCTL_ONE,
1673 	},
1674 #endif
1675 #ifdef CONFIG_MEMORY_FAILURE
1676 	{
1677 		.procname	= "memory_failure_early_kill",
1678 		.data		= &sysctl_memory_failure_early_kill,
1679 		.maxlen		= sizeof(sysctl_memory_failure_early_kill),
1680 		.mode		= 0644,
1681 		.proc_handler	= proc_dointvec_minmax,
1682 		.extra1		= SYSCTL_ZERO,
1683 		.extra2		= SYSCTL_ONE,
1684 	},
1685 	{
1686 		.procname	= "memory_failure_recovery",
1687 		.data		= &sysctl_memory_failure_recovery,
1688 		.maxlen		= sizeof(sysctl_memory_failure_recovery),
1689 		.mode		= 0644,
1690 		.proc_handler	= proc_dointvec_minmax,
1691 		.extra1		= SYSCTL_ZERO,
1692 		.extra2		= SYSCTL_ONE,
1693 	},
1694 #endif
1695 	{
1696 		.procname	= "user_reserve_kbytes",
1697 		.data		= &sysctl_user_reserve_kbytes,
1698 		.maxlen		= sizeof(sysctl_user_reserve_kbytes),
1699 		.mode		= 0644,
1700 		.proc_handler	= proc_doulongvec_minmax,
1701 	},
1702 	{
1703 		.procname	= "admin_reserve_kbytes",
1704 		.data		= &sysctl_admin_reserve_kbytes,
1705 		.maxlen		= sizeof(sysctl_admin_reserve_kbytes),
1706 		.mode		= 0644,
1707 		.proc_handler	= proc_doulongvec_minmax,
1708 	},
1709 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_BITS
1710 	{
1711 		.procname	= "mmap_rnd_bits",
1712 		.data		= &mmap_rnd_bits,
1713 		.maxlen		= sizeof(mmap_rnd_bits),
1714 		.mode		= 0600,
1715 		.proc_handler	= proc_dointvec_minmax,
1716 		.extra1		= (void *)&mmap_rnd_bits_min,
1717 		.extra2		= (void *)&mmap_rnd_bits_max,
1718 	},
1719 #endif
1720 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_COMPAT_BITS
1721 	{
1722 		.procname	= "mmap_rnd_compat_bits",
1723 		.data		= &mmap_rnd_compat_bits,
1724 		.maxlen		= sizeof(mmap_rnd_compat_bits),
1725 		.mode		= 0600,
1726 		.proc_handler	= proc_dointvec_minmax,
1727 		.extra1		= (void *)&mmap_rnd_compat_bits_min,
1728 		.extra2		= (void *)&mmap_rnd_compat_bits_max,
1729 	},
1730 #endif
1731 #ifdef CONFIG_USERFAULTFD
1732 	{
1733 		.procname	= "unprivileged_userfaultfd",
1734 		.data		= &sysctl_unprivileged_userfaultfd,
1735 		.maxlen		= sizeof(sysctl_unprivileged_userfaultfd),
1736 		.mode		= 0644,
1737 		.proc_handler	= proc_dointvec_minmax,
1738 		.extra1		= SYSCTL_ZERO,
1739 		.extra2		= SYSCTL_ONE,
1740 	},
1741 #endif
1742 	{ }
1743 };
1744 
1745 static struct ctl_table fs_table[] = {
1746 	{
1747 		.procname	= "inode-nr",
1748 		.data		= &inodes_stat,
1749 		.maxlen		= 2*sizeof(long),
1750 		.mode		= 0444,
1751 		.proc_handler	= proc_nr_inodes,
1752 	},
1753 	{
1754 		.procname	= "inode-state",
1755 		.data		= &inodes_stat,
1756 		.maxlen		= 7*sizeof(long),
1757 		.mode		= 0444,
1758 		.proc_handler	= proc_nr_inodes,
1759 	},
1760 	{
1761 		.procname	= "file-nr",
1762 		.data		= &files_stat,
1763 		.maxlen		= sizeof(files_stat),
1764 		.mode		= 0444,
1765 		.proc_handler	= proc_nr_files,
1766 	},
1767 	{
1768 		.procname	= "file-max",
1769 		.data		= &files_stat.max_files,
1770 		.maxlen		= sizeof(files_stat.max_files),
1771 		.mode		= 0644,
1772 		.proc_handler	= proc_doulongvec_minmax,
1773 		.extra1		= &zero_ul,
1774 		.extra2		= &long_max,
1775 	},
1776 	{
1777 		.procname	= "nr_open",
1778 		.data		= &sysctl_nr_open,
1779 		.maxlen		= sizeof(unsigned int),
1780 		.mode		= 0644,
1781 		.proc_handler	= proc_dointvec_minmax,
1782 		.extra1		= &sysctl_nr_open_min,
1783 		.extra2		= &sysctl_nr_open_max,
1784 	},
1785 	{
1786 		.procname	= "dentry-state",
1787 		.data		= &dentry_stat,
1788 		.maxlen		= 6*sizeof(long),
1789 		.mode		= 0444,
1790 		.proc_handler	= proc_nr_dentry,
1791 	},
1792 	{
1793 		.procname	= "overflowuid",
1794 		.data		= &fs_overflowuid,
1795 		.maxlen		= sizeof(int),
1796 		.mode		= 0644,
1797 		.proc_handler	= proc_dointvec_minmax,
1798 		.extra1		= &minolduid,
1799 		.extra2		= &maxolduid,
1800 	},
1801 	{
1802 		.procname	= "overflowgid",
1803 		.data		= &fs_overflowgid,
1804 		.maxlen		= sizeof(int),
1805 		.mode		= 0644,
1806 		.proc_handler	= proc_dointvec_minmax,
1807 		.extra1		= &minolduid,
1808 		.extra2		= &maxolduid,
1809 	},
1810 #ifdef CONFIG_FILE_LOCKING
1811 	{
1812 		.procname	= "leases-enable",
1813 		.data		= &leases_enable,
1814 		.maxlen		= sizeof(int),
1815 		.mode		= 0644,
1816 		.proc_handler	= proc_dointvec,
1817 	},
1818 #endif
1819 #ifdef CONFIG_DNOTIFY
1820 	{
1821 		.procname	= "dir-notify-enable",
1822 		.data		= &dir_notify_enable,
1823 		.maxlen		= sizeof(int),
1824 		.mode		= 0644,
1825 		.proc_handler	= proc_dointvec,
1826 	},
1827 #endif
1828 #ifdef CONFIG_MMU
1829 #ifdef CONFIG_FILE_LOCKING
1830 	{
1831 		.procname	= "lease-break-time",
1832 		.data		= &lease_break_time,
1833 		.maxlen		= sizeof(int),
1834 		.mode		= 0644,
1835 		.proc_handler	= proc_dointvec,
1836 	},
1837 #endif
1838 #ifdef CONFIG_AIO
1839 	{
1840 		.procname	= "aio-nr",
1841 		.data		= &aio_nr,
1842 		.maxlen		= sizeof(aio_nr),
1843 		.mode		= 0444,
1844 		.proc_handler	= proc_doulongvec_minmax,
1845 	},
1846 	{
1847 		.procname	= "aio-max-nr",
1848 		.data		= &aio_max_nr,
1849 		.maxlen		= sizeof(aio_max_nr),
1850 		.mode		= 0644,
1851 		.proc_handler	= proc_doulongvec_minmax,
1852 	},
1853 #endif /* CONFIG_AIO */
1854 #ifdef CONFIG_INOTIFY_USER
1855 	{
1856 		.procname	= "inotify",
1857 		.mode		= 0555,
1858 		.child		= inotify_table,
1859 	},
1860 #endif
1861 #ifdef CONFIG_EPOLL
1862 	{
1863 		.procname	= "epoll",
1864 		.mode		= 0555,
1865 		.child		= epoll_table,
1866 	},
1867 #endif
1868 #endif
1869 	{
1870 		.procname	= "protected_symlinks",
1871 		.data		= &sysctl_protected_symlinks,
1872 		.maxlen		= sizeof(int),
1873 		.mode		= 0600,
1874 		.proc_handler	= proc_dointvec_minmax,
1875 		.extra1		= SYSCTL_ZERO,
1876 		.extra2		= SYSCTL_ONE,
1877 	},
1878 	{
1879 		.procname	= "protected_hardlinks",
1880 		.data		= &sysctl_protected_hardlinks,
1881 		.maxlen		= sizeof(int),
1882 		.mode		= 0600,
1883 		.proc_handler	= proc_dointvec_minmax,
1884 		.extra1		= SYSCTL_ZERO,
1885 		.extra2		= SYSCTL_ONE,
1886 	},
1887 	{
1888 		.procname	= "protected_fifos",
1889 		.data		= &sysctl_protected_fifos,
1890 		.maxlen		= sizeof(int),
1891 		.mode		= 0600,
1892 		.proc_handler	= proc_dointvec_minmax,
1893 		.extra1		= SYSCTL_ZERO,
1894 		.extra2		= &two,
1895 	},
1896 	{
1897 		.procname	= "protected_regular",
1898 		.data		= &sysctl_protected_regular,
1899 		.maxlen		= sizeof(int),
1900 		.mode		= 0600,
1901 		.proc_handler	= proc_dointvec_minmax,
1902 		.extra1		= SYSCTL_ZERO,
1903 		.extra2		= &two,
1904 	},
1905 	{
1906 		.procname	= "suid_dumpable",
1907 		.data		= &suid_dumpable,
1908 		.maxlen		= sizeof(int),
1909 		.mode		= 0644,
1910 		.proc_handler	= proc_dointvec_minmax_coredump,
1911 		.extra1		= SYSCTL_ZERO,
1912 		.extra2		= &two,
1913 	},
1914 #if defined(CONFIG_BINFMT_MISC) || defined(CONFIG_BINFMT_MISC_MODULE)
1915 	{
1916 		.procname	= "binfmt_misc",
1917 		.mode		= 0555,
1918 		.child		= sysctl_mount_point,
1919 	},
1920 #endif
1921 	{
1922 		.procname	= "pipe-max-size",
1923 		.data		= &pipe_max_size,
1924 		.maxlen		= sizeof(pipe_max_size),
1925 		.mode		= 0644,
1926 		.proc_handler	= proc_dopipe_max_size,
1927 	},
1928 	{
1929 		.procname	= "pipe-user-pages-hard",
1930 		.data		= &pipe_user_pages_hard,
1931 		.maxlen		= sizeof(pipe_user_pages_hard),
1932 		.mode		= 0644,
1933 		.proc_handler	= proc_doulongvec_minmax,
1934 	},
1935 	{
1936 		.procname	= "pipe-user-pages-soft",
1937 		.data		= &pipe_user_pages_soft,
1938 		.maxlen		= sizeof(pipe_user_pages_soft),
1939 		.mode		= 0644,
1940 		.proc_handler	= proc_doulongvec_minmax,
1941 	},
1942 	{
1943 		.procname	= "mount-max",
1944 		.data		= &sysctl_mount_max,
1945 		.maxlen		= sizeof(unsigned int),
1946 		.mode		= 0644,
1947 		.proc_handler	= proc_dointvec_minmax,
1948 		.extra1		= SYSCTL_ONE,
1949 	},
1950 	{ }
1951 };
1952 
1953 static struct ctl_table debug_table[] = {
1954 #ifdef CONFIG_SYSCTL_EXCEPTION_TRACE
1955 	{
1956 		.procname	= "exception-trace",
1957 		.data		= &show_unhandled_signals,
1958 		.maxlen		= sizeof(int),
1959 		.mode		= 0644,
1960 		.proc_handler	= proc_dointvec
1961 	},
1962 #endif
1963 #if defined(CONFIG_OPTPROBES)
1964 	{
1965 		.procname	= "kprobes-optimization",
1966 		.data		= &sysctl_kprobes_optimization,
1967 		.maxlen		= sizeof(int),
1968 		.mode		= 0644,
1969 		.proc_handler	= proc_kprobes_optimization_handler,
1970 		.extra1		= SYSCTL_ZERO,
1971 		.extra2		= SYSCTL_ONE,
1972 	},
1973 #endif
1974 	{ }
1975 };
1976 
1977 static struct ctl_table dev_table[] = {
1978 	{ }
1979 };
1980 
1981 int __init sysctl_init(void)
1982 {
1983 	struct ctl_table_header *hdr;
1984 
1985 	hdr = register_sysctl_table(sysctl_base_table);
1986 	kmemleak_not_leak(hdr);
1987 	return 0;
1988 }
1989 
1990 #endif /* CONFIG_SYSCTL */
1991 
1992 /*
1993  * /proc/sys support
1994  */
1995 
1996 #ifdef CONFIG_PROC_SYSCTL
1997 
1998 static int _proc_do_string(char *data, int maxlen, int write,
1999 			   char __user *buffer,
2000 			   size_t *lenp, loff_t *ppos)
2001 {
2002 	size_t len;
2003 	char __user *p;
2004 	char c;
2005 
2006 	if (!data || !maxlen || !*lenp) {
2007 		*lenp = 0;
2008 		return 0;
2009 	}
2010 
2011 	if (write) {
2012 		if (sysctl_writes_strict == SYSCTL_WRITES_STRICT) {
2013 			/* Only continue writes not past the end of buffer. */
2014 			len = strlen(data);
2015 			if (len > maxlen - 1)
2016 				len = maxlen - 1;
2017 
2018 			if (*ppos > len)
2019 				return 0;
2020 			len = *ppos;
2021 		} else {
2022 			/* Start writing from beginning of buffer. */
2023 			len = 0;
2024 		}
2025 
2026 		*ppos += *lenp;
2027 		p = buffer;
2028 		while ((p - buffer) < *lenp && len < maxlen - 1) {
2029 			if (get_user(c, p++))
2030 				return -EFAULT;
2031 			if (c == 0 || c == '\n')
2032 				break;
2033 			data[len++] = c;
2034 		}
2035 		data[len] = 0;
2036 	} else {
2037 		len = strlen(data);
2038 		if (len > maxlen)
2039 			len = maxlen;
2040 
2041 		if (*ppos > len) {
2042 			*lenp = 0;
2043 			return 0;
2044 		}
2045 
2046 		data += *ppos;
2047 		len  -= *ppos;
2048 
2049 		if (len > *lenp)
2050 			len = *lenp;
2051 		if (len)
2052 			if (copy_to_user(buffer, data, len))
2053 				return -EFAULT;
2054 		if (len < *lenp) {
2055 			if (put_user('\n', buffer + len))
2056 				return -EFAULT;
2057 			len++;
2058 		}
2059 		*lenp = len;
2060 		*ppos += len;
2061 	}
2062 	return 0;
2063 }
2064 
2065 static void warn_sysctl_write(struct ctl_table *table)
2066 {
2067 	pr_warn_once("%s wrote to %s when file position was not 0!\n"
2068 		"This will not be supported in the future. To silence this\n"
2069 		"warning, set kernel.sysctl_writes_strict = -1\n",
2070 		current->comm, table->procname);
2071 }
2072 
2073 /**
2074  * proc_first_pos_non_zero_ignore - check if first position is allowed
2075  * @ppos: file position
2076  * @table: the sysctl table
2077  *
2078  * Returns true if the first position is non-zero and the sysctl_writes_strict
2079  * mode indicates this is not allowed for numeric input types. String proc
2080  * handlers can ignore the return value.
2081  */
2082 static bool proc_first_pos_non_zero_ignore(loff_t *ppos,
2083 					   struct ctl_table *table)
2084 {
2085 	if (!*ppos)
2086 		return false;
2087 
2088 	switch (sysctl_writes_strict) {
2089 	case SYSCTL_WRITES_STRICT:
2090 		return true;
2091 	case SYSCTL_WRITES_WARN:
2092 		warn_sysctl_write(table);
2093 		return false;
2094 	default:
2095 		return false;
2096 	}
2097 }
2098 
2099 /**
2100  * proc_dostring - read a string sysctl
2101  * @table: the sysctl table
2102  * @write: %TRUE if this is a write to the sysctl file
2103  * @buffer: the user buffer
2104  * @lenp: the size of the user buffer
2105  * @ppos: file position
2106  *
2107  * Reads/writes a string from/to the user buffer. If the kernel
2108  * buffer provided is not large enough to hold the string, the
2109  * string is truncated. The copied string is %NULL-terminated.
2110  * If the string is being read by the user process, it is copied
2111  * and a newline '\n' is added. It is truncated if the buffer is
2112  * not large enough.
2113  *
2114  * Returns 0 on success.
2115  */
2116 int proc_dostring(struct ctl_table *table, int write,
2117 		  void __user *buffer, size_t *lenp, loff_t *ppos)
2118 {
2119 	if (write)
2120 		proc_first_pos_non_zero_ignore(ppos, table);
2121 
2122 	return _proc_do_string((char *)(table->data), table->maxlen, write,
2123 			       (char __user *)buffer, lenp, ppos);
2124 }
2125 
2126 static size_t proc_skip_spaces(char **buf)
2127 {
2128 	size_t ret;
2129 	char *tmp = skip_spaces(*buf);
2130 	ret = tmp - *buf;
2131 	*buf = tmp;
2132 	return ret;
2133 }
2134 
2135 static void proc_skip_char(char **buf, size_t *size, const char v)
2136 {
2137 	while (*size) {
2138 		if (**buf != v)
2139 			break;
2140 		(*size)--;
2141 		(*buf)++;
2142 	}
2143 }
2144 
2145 /**
2146  * strtoul_lenient - parse an ASCII formatted integer from a buffer and only
2147  *                   fail on overflow
2148  *
2149  * @cp: kernel buffer containing the string to parse
2150  * @endp: pointer to store the trailing characters
2151  * @base: the base to use
2152  * @res: where the parsed integer will be stored
2153  *
2154  * In case of success 0 is returned and @res will contain the parsed integer,
2155  * @endp will hold any trailing characters.
2156  * This function will fail the parse on overflow. If there wasn't an overflow
2157  * the function will defer the decision what characters count as invalid to the
2158  * caller.
2159  */
2160 static int strtoul_lenient(const char *cp, char **endp, unsigned int base,
2161 			   unsigned long *res)
2162 {
2163 	unsigned long long result;
2164 	unsigned int rv;
2165 
2166 	cp = _parse_integer_fixup_radix(cp, &base);
2167 	rv = _parse_integer(cp, base, &result);
2168 	if ((rv & KSTRTOX_OVERFLOW) || (result != (unsigned long)result))
2169 		return -ERANGE;
2170 
2171 	cp += rv;
2172 
2173 	if (endp)
2174 		*endp = (char *)cp;
2175 
2176 	*res = (unsigned long)result;
2177 	return 0;
2178 }
2179 
2180 #define TMPBUFLEN 22
2181 /**
2182  * proc_get_long - reads an ASCII formatted integer from a user buffer
2183  *
2184  * @buf: a kernel buffer
2185  * @size: size of the kernel buffer
2186  * @val: this is where the number will be stored
2187  * @neg: set to %TRUE if number is negative
2188  * @perm_tr: a vector which contains the allowed trailers
2189  * @perm_tr_len: size of the perm_tr vector
2190  * @tr: pointer to store the trailer character
2191  *
2192  * In case of success %0 is returned and @buf and @size are updated with
2193  * the amount of bytes read. If @tr is non-NULL and a trailing
2194  * character exists (size is non-zero after returning from this
2195  * function), @tr is updated with the trailing character.
2196  */
2197 static int proc_get_long(char **buf, size_t *size,
2198 			  unsigned long *val, bool *neg,
2199 			  const char *perm_tr, unsigned perm_tr_len, char *tr)
2200 {
2201 	int len;
2202 	char *p, tmp[TMPBUFLEN];
2203 
2204 	if (!*size)
2205 		return -EINVAL;
2206 
2207 	len = *size;
2208 	if (len > TMPBUFLEN - 1)
2209 		len = TMPBUFLEN - 1;
2210 
2211 	memcpy(tmp, *buf, len);
2212 
2213 	tmp[len] = 0;
2214 	p = tmp;
2215 	if (*p == '-' && *size > 1) {
2216 		*neg = true;
2217 		p++;
2218 	} else
2219 		*neg = false;
2220 	if (!isdigit(*p))
2221 		return -EINVAL;
2222 
2223 	if (strtoul_lenient(p, &p, 0, val))
2224 		return -EINVAL;
2225 
2226 	len = p - tmp;
2227 
2228 	/* We don't know if the next char is whitespace thus we may accept
2229 	 * invalid integers (e.g. 1234...a) or two integers instead of one
2230 	 * (e.g. 123...1). So lets not allow such large numbers. */
2231 	if (len == TMPBUFLEN - 1)
2232 		return -EINVAL;
2233 
2234 	if (len < *size && perm_tr_len && !memchr(perm_tr, *p, perm_tr_len))
2235 		return -EINVAL;
2236 
2237 	if (tr && (len < *size))
2238 		*tr = *p;
2239 
2240 	*buf += len;
2241 	*size -= len;
2242 
2243 	return 0;
2244 }
2245 
2246 /**
2247  * proc_put_long - converts an integer to a decimal ASCII formatted string
2248  *
2249  * @buf: the user buffer
2250  * @size: the size of the user buffer
2251  * @val: the integer to be converted
2252  * @neg: sign of the number, %TRUE for negative
2253  *
2254  * In case of success %0 is returned and @buf and @size are updated with
2255  * the amount of bytes written.
2256  */
2257 static int proc_put_long(void __user **buf, size_t *size, unsigned long val,
2258 			  bool neg)
2259 {
2260 	int len;
2261 	char tmp[TMPBUFLEN], *p = tmp;
2262 
2263 	sprintf(p, "%s%lu", neg ? "-" : "", val);
2264 	len = strlen(tmp);
2265 	if (len > *size)
2266 		len = *size;
2267 	if (copy_to_user(*buf, tmp, len))
2268 		return -EFAULT;
2269 	*size -= len;
2270 	*buf += len;
2271 	return 0;
2272 }
2273 #undef TMPBUFLEN
2274 
2275 static int proc_put_char(void __user **buf, size_t *size, char c)
2276 {
2277 	if (*size) {
2278 		char __user **buffer = (char __user **)buf;
2279 		if (put_user(c, *buffer))
2280 			return -EFAULT;
2281 		(*size)--, (*buffer)++;
2282 		*buf = *buffer;
2283 	}
2284 	return 0;
2285 }
2286 
2287 static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
2288 				 int *valp,
2289 				 int write, void *data)
2290 {
2291 	if (write) {
2292 		if (*negp) {
2293 			if (*lvalp > (unsigned long) INT_MAX + 1)
2294 				return -EINVAL;
2295 			*valp = -*lvalp;
2296 		} else {
2297 			if (*lvalp > (unsigned long) INT_MAX)
2298 				return -EINVAL;
2299 			*valp = *lvalp;
2300 		}
2301 	} else {
2302 		int val = *valp;
2303 		if (val < 0) {
2304 			*negp = true;
2305 			*lvalp = -(unsigned long)val;
2306 		} else {
2307 			*negp = false;
2308 			*lvalp = (unsigned long)val;
2309 		}
2310 	}
2311 	return 0;
2312 }
2313 
2314 static int do_proc_douintvec_conv(unsigned long *lvalp,
2315 				  unsigned int *valp,
2316 				  int write, void *data)
2317 {
2318 	if (write) {
2319 		if (*lvalp > UINT_MAX)
2320 			return -EINVAL;
2321 		*valp = *lvalp;
2322 	} else {
2323 		unsigned int val = *valp;
2324 		*lvalp = (unsigned long)val;
2325 	}
2326 	return 0;
2327 }
2328 
2329 static const char proc_wspace_sep[] = { ' ', '\t', '\n' };
2330 
2331 static int __do_proc_dointvec(void *tbl_data, struct ctl_table *table,
2332 		  int write, void __user *buffer,
2333 		  size_t *lenp, loff_t *ppos,
2334 		  int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2335 			      int write, void *data),
2336 		  void *data)
2337 {
2338 	int *i, vleft, first = 1, err = 0;
2339 	size_t left;
2340 	char *kbuf = NULL, *p;
2341 
2342 	if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
2343 		*lenp = 0;
2344 		return 0;
2345 	}
2346 
2347 	i = (int *) tbl_data;
2348 	vleft = table->maxlen / sizeof(*i);
2349 	left = *lenp;
2350 
2351 	if (!conv)
2352 		conv = do_proc_dointvec_conv;
2353 
2354 	if (write) {
2355 		if (proc_first_pos_non_zero_ignore(ppos, table))
2356 			goto out;
2357 
2358 		if (left > PAGE_SIZE - 1)
2359 			left = PAGE_SIZE - 1;
2360 		p = kbuf = memdup_user_nul(buffer, left);
2361 		if (IS_ERR(kbuf))
2362 			return PTR_ERR(kbuf);
2363 	}
2364 
2365 	for (; left && vleft--; i++, first=0) {
2366 		unsigned long lval;
2367 		bool neg;
2368 
2369 		if (write) {
2370 			left -= proc_skip_spaces(&p);
2371 
2372 			if (!left)
2373 				break;
2374 			err = proc_get_long(&p, &left, &lval, &neg,
2375 					     proc_wspace_sep,
2376 					     sizeof(proc_wspace_sep), NULL);
2377 			if (err)
2378 				break;
2379 			if (conv(&neg, &lval, i, 1, data)) {
2380 				err = -EINVAL;
2381 				break;
2382 			}
2383 		} else {
2384 			if (conv(&neg, &lval, i, 0, data)) {
2385 				err = -EINVAL;
2386 				break;
2387 			}
2388 			if (!first)
2389 				err = proc_put_char(&buffer, &left, '\t');
2390 			if (err)
2391 				break;
2392 			err = proc_put_long(&buffer, &left, lval, neg);
2393 			if (err)
2394 				break;
2395 		}
2396 	}
2397 
2398 	if (!write && !first && left && !err)
2399 		err = proc_put_char(&buffer, &left, '\n');
2400 	if (write && !err && left)
2401 		left -= proc_skip_spaces(&p);
2402 	if (write) {
2403 		kfree(kbuf);
2404 		if (first)
2405 			return err ? : -EINVAL;
2406 	}
2407 	*lenp -= left;
2408 out:
2409 	*ppos += *lenp;
2410 	return err;
2411 }
2412 
2413 static int do_proc_dointvec(struct ctl_table *table, int write,
2414 		  void __user *buffer, size_t *lenp, loff_t *ppos,
2415 		  int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2416 			      int write, void *data),
2417 		  void *data)
2418 {
2419 	return __do_proc_dointvec(table->data, table, write,
2420 			buffer, lenp, ppos, conv, data);
2421 }
2422 
2423 static int do_proc_douintvec_w(unsigned int *tbl_data,
2424 			       struct ctl_table *table,
2425 			       void __user *buffer,
2426 			       size_t *lenp, loff_t *ppos,
2427 			       int (*conv)(unsigned long *lvalp,
2428 					   unsigned int *valp,
2429 					   int write, void *data),
2430 			       void *data)
2431 {
2432 	unsigned long lval;
2433 	int err = 0;
2434 	size_t left;
2435 	bool neg;
2436 	char *kbuf = NULL, *p;
2437 
2438 	left = *lenp;
2439 
2440 	if (proc_first_pos_non_zero_ignore(ppos, table))
2441 		goto bail_early;
2442 
2443 	if (left > PAGE_SIZE - 1)
2444 		left = PAGE_SIZE - 1;
2445 
2446 	p = kbuf = memdup_user_nul(buffer, left);
2447 	if (IS_ERR(kbuf))
2448 		return -EINVAL;
2449 
2450 	left -= proc_skip_spaces(&p);
2451 	if (!left) {
2452 		err = -EINVAL;
2453 		goto out_free;
2454 	}
2455 
2456 	err = proc_get_long(&p, &left, &lval, &neg,
2457 			     proc_wspace_sep,
2458 			     sizeof(proc_wspace_sep), NULL);
2459 	if (err || neg) {
2460 		err = -EINVAL;
2461 		goto out_free;
2462 	}
2463 
2464 	if (conv(&lval, tbl_data, 1, data)) {
2465 		err = -EINVAL;
2466 		goto out_free;
2467 	}
2468 
2469 	if (!err && left)
2470 		left -= proc_skip_spaces(&p);
2471 
2472 out_free:
2473 	kfree(kbuf);
2474 	if (err)
2475 		return -EINVAL;
2476 
2477 	return 0;
2478 
2479 	/* This is in keeping with old __do_proc_dointvec() */
2480 bail_early:
2481 	*ppos += *lenp;
2482 	return err;
2483 }
2484 
2485 static int do_proc_douintvec_r(unsigned int *tbl_data, void __user *buffer,
2486 			       size_t *lenp, loff_t *ppos,
2487 			       int (*conv)(unsigned long *lvalp,
2488 					   unsigned int *valp,
2489 					   int write, void *data),
2490 			       void *data)
2491 {
2492 	unsigned long lval;
2493 	int err = 0;
2494 	size_t left;
2495 
2496 	left = *lenp;
2497 
2498 	if (conv(&lval, tbl_data, 0, data)) {
2499 		err = -EINVAL;
2500 		goto out;
2501 	}
2502 
2503 	err = proc_put_long(&buffer, &left, lval, false);
2504 	if (err || !left)
2505 		goto out;
2506 
2507 	err = proc_put_char(&buffer, &left, '\n');
2508 
2509 out:
2510 	*lenp -= left;
2511 	*ppos += *lenp;
2512 
2513 	return err;
2514 }
2515 
2516 static int __do_proc_douintvec(void *tbl_data, struct ctl_table *table,
2517 			       int write, void __user *buffer,
2518 			       size_t *lenp, loff_t *ppos,
2519 			       int (*conv)(unsigned long *lvalp,
2520 					   unsigned int *valp,
2521 					   int write, void *data),
2522 			       void *data)
2523 {
2524 	unsigned int *i, vleft;
2525 
2526 	if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
2527 		*lenp = 0;
2528 		return 0;
2529 	}
2530 
2531 	i = (unsigned int *) tbl_data;
2532 	vleft = table->maxlen / sizeof(*i);
2533 
2534 	/*
2535 	 * Arrays are not supported, keep this simple. *Do not* add
2536 	 * support for them.
2537 	 */
2538 	if (vleft != 1) {
2539 		*lenp = 0;
2540 		return -EINVAL;
2541 	}
2542 
2543 	if (!conv)
2544 		conv = do_proc_douintvec_conv;
2545 
2546 	if (write)
2547 		return do_proc_douintvec_w(i, table, buffer, lenp, ppos,
2548 					   conv, data);
2549 	return do_proc_douintvec_r(i, buffer, lenp, ppos, conv, data);
2550 }
2551 
2552 static int do_proc_douintvec(struct ctl_table *table, int write,
2553 			     void __user *buffer, size_t *lenp, loff_t *ppos,
2554 			     int (*conv)(unsigned long *lvalp,
2555 					 unsigned int *valp,
2556 					 int write, void *data),
2557 			     void *data)
2558 {
2559 	return __do_proc_douintvec(table->data, table, write,
2560 				   buffer, lenp, ppos, conv, data);
2561 }
2562 
2563 /**
2564  * proc_dointvec - read a vector of integers
2565  * @table: the sysctl table
2566  * @write: %TRUE if this is a write to the sysctl file
2567  * @buffer: the user buffer
2568  * @lenp: the size of the user buffer
2569  * @ppos: file position
2570  *
2571  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2572  * values from/to the user buffer, treated as an ASCII string.
2573  *
2574  * Returns 0 on success.
2575  */
2576 int proc_dointvec(struct ctl_table *table, int write,
2577 		     void __user *buffer, size_t *lenp, loff_t *ppos)
2578 {
2579 	return do_proc_dointvec(table, write, buffer, lenp, ppos, NULL, NULL);
2580 }
2581 
2582 /**
2583  * proc_douintvec - read a vector of unsigned integers
2584  * @table: the sysctl table
2585  * @write: %TRUE if this is a write to the sysctl file
2586  * @buffer: the user buffer
2587  * @lenp: the size of the user buffer
2588  * @ppos: file position
2589  *
2590  * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
2591  * values from/to the user buffer, treated as an ASCII string.
2592  *
2593  * Returns 0 on success.
2594  */
2595 int proc_douintvec(struct ctl_table *table, int write,
2596 		     void __user *buffer, size_t *lenp, loff_t *ppos)
2597 {
2598 	return do_proc_douintvec(table, write, buffer, lenp, ppos,
2599 				 do_proc_douintvec_conv, NULL);
2600 }
2601 
2602 /*
2603  * Taint values can only be increased
2604  * This means we can safely use a temporary.
2605  */
2606 static int proc_taint(struct ctl_table *table, int write,
2607 			       void __user *buffer, size_t *lenp, loff_t *ppos)
2608 {
2609 	struct ctl_table t;
2610 	unsigned long tmptaint = get_taint();
2611 	int err;
2612 
2613 	if (write && !capable(CAP_SYS_ADMIN))
2614 		return -EPERM;
2615 
2616 	t = *table;
2617 	t.data = &tmptaint;
2618 	err = proc_doulongvec_minmax(&t, write, buffer, lenp, ppos);
2619 	if (err < 0)
2620 		return err;
2621 
2622 	if (write) {
2623 		/*
2624 		 * Poor man's atomic or. Not worth adding a primitive
2625 		 * to everyone's atomic.h for this
2626 		 */
2627 		int i;
2628 		for (i = 0; i < BITS_PER_LONG && tmptaint >> i; i++) {
2629 			if ((tmptaint >> i) & 1)
2630 				add_taint(i, LOCKDEP_STILL_OK);
2631 		}
2632 	}
2633 
2634 	return err;
2635 }
2636 
2637 #ifdef CONFIG_PRINTK
2638 static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
2639 				void __user *buffer, size_t *lenp, loff_t *ppos)
2640 {
2641 	if (write && !capable(CAP_SYS_ADMIN))
2642 		return -EPERM;
2643 
2644 	return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2645 }
2646 #endif
2647 
2648 /**
2649  * struct do_proc_dointvec_minmax_conv_param - proc_dointvec_minmax() range checking structure
2650  * @min: pointer to minimum allowable value
2651  * @max: pointer to maximum allowable value
2652  *
2653  * The do_proc_dointvec_minmax_conv_param structure provides the
2654  * minimum and maximum values for doing range checking for those sysctl
2655  * parameters that use the proc_dointvec_minmax() handler.
2656  */
2657 struct do_proc_dointvec_minmax_conv_param {
2658 	int *min;
2659 	int *max;
2660 };
2661 
2662 static int do_proc_dointvec_minmax_conv(bool *negp, unsigned long *lvalp,
2663 					int *valp,
2664 					int write, void *data)
2665 {
2666 	int tmp, ret;
2667 	struct do_proc_dointvec_minmax_conv_param *param = data;
2668 	/*
2669 	 * If writing, first do so via a temporary local int so we can
2670 	 * bounds-check it before touching *valp.
2671 	 */
2672 	int *ip = write ? &tmp : valp;
2673 
2674 	ret = do_proc_dointvec_conv(negp, lvalp, ip, write, data);
2675 	if (ret)
2676 		return ret;
2677 
2678 	if (write) {
2679 		if ((param->min && *param->min > tmp) ||
2680 		    (param->max && *param->max < tmp))
2681 			return -EINVAL;
2682 		*valp = tmp;
2683 	}
2684 
2685 	return 0;
2686 }
2687 
2688 /**
2689  * proc_dointvec_minmax - read a vector of integers with min/max values
2690  * @table: the sysctl table
2691  * @write: %TRUE if this is a write to the sysctl file
2692  * @buffer: the user buffer
2693  * @lenp: the size of the user buffer
2694  * @ppos: file position
2695  *
2696  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2697  * values from/to the user buffer, treated as an ASCII string.
2698  *
2699  * This routine will ensure the values are within the range specified by
2700  * table->extra1 (min) and table->extra2 (max).
2701  *
2702  * Returns 0 on success or -EINVAL on write when the range check fails.
2703  */
2704 int proc_dointvec_minmax(struct ctl_table *table, int write,
2705 		  void __user *buffer, size_t *lenp, loff_t *ppos)
2706 {
2707 	struct do_proc_dointvec_minmax_conv_param param = {
2708 		.min = (int *) table->extra1,
2709 		.max = (int *) table->extra2,
2710 	};
2711 	return do_proc_dointvec(table, write, buffer, lenp, ppos,
2712 				do_proc_dointvec_minmax_conv, &param);
2713 }
2714 
2715 /**
2716  * struct do_proc_douintvec_minmax_conv_param - proc_douintvec_minmax() range checking structure
2717  * @min: pointer to minimum allowable value
2718  * @max: pointer to maximum allowable value
2719  *
2720  * The do_proc_douintvec_minmax_conv_param structure provides the
2721  * minimum and maximum values for doing range checking for those sysctl
2722  * parameters that use the proc_douintvec_minmax() handler.
2723  */
2724 struct do_proc_douintvec_minmax_conv_param {
2725 	unsigned int *min;
2726 	unsigned int *max;
2727 };
2728 
2729 static int do_proc_douintvec_minmax_conv(unsigned long *lvalp,
2730 					 unsigned int *valp,
2731 					 int write, void *data)
2732 {
2733 	int ret;
2734 	unsigned int tmp;
2735 	struct do_proc_douintvec_minmax_conv_param *param = data;
2736 	/* write via temporary local uint for bounds-checking */
2737 	unsigned int *up = write ? &tmp : valp;
2738 
2739 	ret = do_proc_douintvec_conv(lvalp, up, write, data);
2740 	if (ret)
2741 		return ret;
2742 
2743 	if (write) {
2744 		if ((param->min && *param->min > tmp) ||
2745 		    (param->max && *param->max < tmp))
2746 			return -ERANGE;
2747 
2748 		*valp = tmp;
2749 	}
2750 
2751 	return 0;
2752 }
2753 
2754 /**
2755  * proc_douintvec_minmax - read a vector of unsigned ints with min/max values
2756  * @table: the sysctl table
2757  * @write: %TRUE if this is a write to the sysctl file
2758  * @buffer: the user buffer
2759  * @lenp: the size of the user buffer
2760  * @ppos: file position
2761  *
2762  * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
2763  * values from/to the user buffer, treated as an ASCII string. Negative
2764  * strings are not allowed.
2765  *
2766  * This routine will ensure the values are within the range specified by
2767  * table->extra1 (min) and table->extra2 (max). There is a final sanity
2768  * check for UINT_MAX to avoid having to support wrap around uses from
2769  * userspace.
2770  *
2771  * Returns 0 on success or -ERANGE on write when the range check fails.
2772  */
2773 int proc_douintvec_minmax(struct ctl_table *table, int write,
2774 			  void __user *buffer, size_t *lenp, loff_t *ppos)
2775 {
2776 	struct do_proc_douintvec_minmax_conv_param param = {
2777 		.min = (unsigned int *) table->extra1,
2778 		.max = (unsigned int *) table->extra2,
2779 	};
2780 	return do_proc_douintvec(table, write, buffer, lenp, ppos,
2781 				 do_proc_douintvec_minmax_conv, &param);
2782 }
2783 
2784 static int do_proc_dopipe_max_size_conv(unsigned long *lvalp,
2785 					unsigned int *valp,
2786 					int write, void *data)
2787 {
2788 	if (write) {
2789 		unsigned int val;
2790 
2791 		val = round_pipe_size(*lvalp);
2792 		if (val == 0)
2793 			return -EINVAL;
2794 
2795 		*valp = val;
2796 	} else {
2797 		unsigned int val = *valp;
2798 		*lvalp = (unsigned long) val;
2799 	}
2800 
2801 	return 0;
2802 }
2803 
2804 static int proc_dopipe_max_size(struct ctl_table *table, int write,
2805 				void __user *buffer, size_t *lenp, loff_t *ppos)
2806 {
2807 	return do_proc_douintvec(table, write, buffer, lenp, ppos,
2808 				 do_proc_dopipe_max_size_conv, NULL);
2809 }
2810 
2811 static void validate_coredump_safety(void)
2812 {
2813 #ifdef CONFIG_COREDUMP
2814 	if (suid_dumpable == SUID_DUMP_ROOT &&
2815 	    core_pattern[0] != '/' && core_pattern[0] != '|') {
2816 		printk(KERN_WARNING
2817 "Unsafe core_pattern used with fs.suid_dumpable=2.\n"
2818 "Pipe handler or fully qualified core dump path required.\n"
2819 "Set kernel.core_pattern before fs.suid_dumpable.\n"
2820 		);
2821 	}
2822 #endif
2823 }
2824 
2825 static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
2826 		void __user *buffer, size_t *lenp, loff_t *ppos)
2827 {
2828 	int error = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2829 	if (!error)
2830 		validate_coredump_safety();
2831 	return error;
2832 }
2833 
2834 #ifdef CONFIG_COREDUMP
2835 static int proc_dostring_coredump(struct ctl_table *table, int write,
2836 		  void __user *buffer, size_t *lenp, loff_t *ppos)
2837 {
2838 	int error = proc_dostring(table, write, buffer, lenp, ppos);
2839 	if (!error)
2840 		validate_coredump_safety();
2841 	return error;
2842 }
2843 #endif
2844 
2845 static int __do_proc_doulongvec_minmax(void *data, struct ctl_table *table, int write,
2846 				     void __user *buffer,
2847 				     size_t *lenp, loff_t *ppos,
2848 				     unsigned long convmul,
2849 				     unsigned long convdiv)
2850 {
2851 	unsigned long *i, *min, *max;
2852 	int vleft, first = 1, err = 0;
2853 	size_t left;
2854 	char *kbuf = NULL, *p;
2855 
2856 	if (!data || !table->maxlen || !*lenp || (*ppos && !write)) {
2857 		*lenp = 0;
2858 		return 0;
2859 	}
2860 
2861 	i = (unsigned long *) data;
2862 	min = (unsigned long *) table->extra1;
2863 	max = (unsigned long *) table->extra2;
2864 	vleft = table->maxlen / sizeof(unsigned long);
2865 	left = *lenp;
2866 
2867 	if (write) {
2868 		if (proc_first_pos_non_zero_ignore(ppos, table))
2869 			goto out;
2870 
2871 		if (left > PAGE_SIZE - 1)
2872 			left = PAGE_SIZE - 1;
2873 		p = kbuf = memdup_user_nul(buffer, left);
2874 		if (IS_ERR(kbuf))
2875 			return PTR_ERR(kbuf);
2876 	}
2877 
2878 	for (; left && vleft--; i++, first = 0) {
2879 		unsigned long val;
2880 
2881 		if (write) {
2882 			bool neg;
2883 
2884 			left -= proc_skip_spaces(&p);
2885 			if (!left)
2886 				break;
2887 
2888 			err = proc_get_long(&p, &left, &val, &neg,
2889 					     proc_wspace_sep,
2890 					     sizeof(proc_wspace_sep), NULL);
2891 			if (err)
2892 				break;
2893 			if (neg)
2894 				continue;
2895 			val = convmul * val / convdiv;
2896 			if ((min && val < *min) || (max && val > *max)) {
2897 				err = -EINVAL;
2898 				break;
2899 			}
2900 			*i = val;
2901 		} else {
2902 			val = convdiv * (*i) / convmul;
2903 			if (!first) {
2904 				err = proc_put_char(&buffer, &left, '\t');
2905 				if (err)
2906 					break;
2907 			}
2908 			err = proc_put_long(&buffer, &left, val, false);
2909 			if (err)
2910 				break;
2911 		}
2912 	}
2913 
2914 	if (!write && !first && left && !err)
2915 		err = proc_put_char(&buffer, &left, '\n');
2916 	if (write && !err)
2917 		left -= proc_skip_spaces(&p);
2918 	if (write) {
2919 		kfree(kbuf);
2920 		if (first)
2921 			return err ? : -EINVAL;
2922 	}
2923 	*lenp -= left;
2924 out:
2925 	*ppos += *lenp;
2926 	return err;
2927 }
2928 
2929 static int do_proc_doulongvec_minmax(struct ctl_table *table, int write,
2930 				     void __user *buffer,
2931 				     size_t *lenp, loff_t *ppos,
2932 				     unsigned long convmul,
2933 				     unsigned long convdiv)
2934 {
2935 	return __do_proc_doulongvec_minmax(table->data, table, write,
2936 			buffer, lenp, ppos, convmul, convdiv);
2937 }
2938 
2939 /**
2940  * proc_doulongvec_minmax - read a vector of long integers with min/max values
2941  * @table: the sysctl table
2942  * @write: %TRUE if this is a write to the sysctl file
2943  * @buffer: the user buffer
2944  * @lenp: the size of the user buffer
2945  * @ppos: file position
2946  *
2947  * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2948  * values from/to the user buffer, treated as an ASCII string.
2949  *
2950  * This routine will ensure the values are within the range specified by
2951  * table->extra1 (min) and table->extra2 (max).
2952  *
2953  * Returns 0 on success.
2954  */
2955 int proc_doulongvec_minmax(struct ctl_table *table, int write,
2956 			   void __user *buffer, size_t *lenp, loff_t *ppos)
2957 {
2958     return do_proc_doulongvec_minmax(table, write, buffer, lenp, ppos, 1l, 1l);
2959 }
2960 
2961 /**
2962  * proc_doulongvec_ms_jiffies_minmax - read a vector of millisecond values with min/max values
2963  * @table: the sysctl table
2964  * @write: %TRUE if this is a write to the sysctl file
2965  * @buffer: the user buffer
2966  * @lenp: the size of the user buffer
2967  * @ppos: file position
2968  *
2969  * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2970  * values from/to the user buffer, treated as an ASCII string. The values
2971  * are treated as milliseconds, and converted to jiffies when they are stored.
2972  *
2973  * This routine will ensure the values are within the range specified by
2974  * table->extra1 (min) and table->extra2 (max).
2975  *
2976  * Returns 0 on success.
2977  */
2978 int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
2979 				      void __user *buffer,
2980 				      size_t *lenp, loff_t *ppos)
2981 {
2982     return do_proc_doulongvec_minmax(table, write, buffer,
2983 				     lenp, ppos, HZ, 1000l);
2984 }
2985 
2986 
2987 static int do_proc_dointvec_jiffies_conv(bool *negp, unsigned long *lvalp,
2988 					 int *valp,
2989 					 int write, void *data)
2990 {
2991 	if (write) {
2992 		if (*lvalp > INT_MAX / HZ)
2993 			return 1;
2994 		*valp = *negp ? -(*lvalp*HZ) : (*lvalp*HZ);
2995 	} else {
2996 		int val = *valp;
2997 		unsigned long lval;
2998 		if (val < 0) {
2999 			*negp = true;
3000 			lval = -(unsigned long)val;
3001 		} else {
3002 			*negp = false;
3003 			lval = (unsigned long)val;
3004 		}
3005 		*lvalp = lval / HZ;
3006 	}
3007 	return 0;
3008 }
3009 
3010 static int do_proc_dointvec_userhz_jiffies_conv(bool *negp, unsigned long *lvalp,
3011 						int *valp,
3012 						int write, void *data)
3013 {
3014 	if (write) {
3015 		if (USER_HZ < HZ && *lvalp > (LONG_MAX / HZ) * USER_HZ)
3016 			return 1;
3017 		*valp = clock_t_to_jiffies(*negp ? -*lvalp : *lvalp);
3018 	} else {
3019 		int val = *valp;
3020 		unsigned long lval;
3021 		if (val < 0) {
3022 			*negp = true;
3023 			lval = -(unsigned long)val;
3024 		} else {
3025 			*negp = false;
3026 			lval = (unsigned long)val;
3027 		}
3028 		*lvalp = jiffies_to_clock_t(lval);
3029 	}
3030 	return 0;
3031 }
3032 
3033 static int do_proc_dointvec_ms_jiffies_conv(bool *negp, unsigned long *lvalp,
3034 					    int *valp,
3035 					    int write, void *data)
3036 {
3037 	if (write) {
3038 		unsigned long jif = msecs_to_jiffies(*negp ? -*lvalp : *lvalp);
3039 
3040 		if (jif > INT_MAX)
3041 			return 1;
3042 		*valp = (int)jif;
3043 	} else {
3044 		int val = *valp;
3045 		unsigned long lval;
3046 		if (val < 0) {
3047 			*negp = true;
3048 			lval = -(unsigned long)val;
3049 		} else {
3050 			*negp = false;
3051 			lval = (unsigned long)val;
3052 		}
3053 		*lvalp = jiffies_to_msecs(lval);
3054 	}
3055 	return 0;
3056 }
3057 
3058 /**
3059  * proc_dointvec_jiffies - read a vector of integers as seconds
3060  * @table: the sysctl table
3061  * @write: %TRUE if this is a write to the sysctl file
3062  * @buffer: the user buffer
3063  * @lenp: the size of the user buffer
3064  * @ppos: file position
3065  *
3066  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3067  * values from/to the user buffer, treated as an ASCII string.
3068  * The values read are assumed to be in seconds, and are converted into
3069  * jiffies.
3070  *
3071  * Returns 0 on success.
3072  */
3073 int proc_dointvec_jiffies(struct ctl_table *table, int write,
3074 			  void __user *buffer, size_t *lenp, loff_t *ppos)
3075 {
3076     return do_proc_dointvec(table,write,buffer,lenp,ppos,
3077 		    	    do_proc_dointvec_jiffies_conv,NULL);
3078 }
3079 
3080 /**
3081  * proc_dointvec_userhz_jiffies - read a vector of integers as 1/USER_HZ seconds
3082  * @table: the sysctl table
3083  * @write: %TRUE if this is a write to the sysctl file
3084  * @buffer: the user buffer
3085  * @lenp: the size of the user buffer
3086  * @ppos: pointer to the file position
3087  *
3088  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3089  * values from/to the user buffer, treated as an ASCII string.
3090  * The values read are assumed to be in 1/USER_HZ seconds, and
3091  * are converted into jiffies.
3092  *
3093  * Returns 0 on success.
3094  */
3095 int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
3096 				 void __user *buffer, size_t *lenp, loff_t *ppos)
3097 {
3098     return do_proc_dointvec(table,write,buffer,lenp,ppos,
3099 		    	    do_proc_dointvec_userhz_jiffies_conv,NULL);
3100 }
3101 
3102 /**
3103  * proc_dointvec_ms_jiffies - read a vector of integers as 1 milliseconds
3104  * @table: the sysctl table
3105  * @write: %TRUE if this is a write to the sysctl file
3106  * @buffer: the user buffer
3107  * @lenp: the size of the user buffer
3108  * @ppos: file position
3109  * @ppos: the current position in the file
3110  *
3111  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3112  * values from/to the user buffer, treated as an ASCII string.
3113  * The values read are assumed to be in 1/1000 seconds, and
3114  * are converted into jiffies.
3115  *
3116  * Returns 0 on success.
3117  */
3118 int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
3119 			     void __user *buffer, size_t *lenp, loff_t *ppos)
3120 {
3121 	return do_proc_dointvec(table, write, buffer, lenp, ppos,
3122 				do_proc_dointvec_ms_jiffies_conv, NULL);
3123 }
3124 
3125 static int proc_do_cad_pid(struct ctl_table *table, int write,
3126 			   void __user *buffer, size_t *lenp, loff_t *ppos)
3127 {
3128 	struct pid *new_pid;
3129 	pid_t tmp;
3130 	int r;
3131 
3132 	tmp = pid_vnr(cad_pid);
3133 
3134 	r = __do_proc_dointvec(&tmp, table, write, buffer,
3135 			       lenp, ppos, NULL, NULL);
3136 	if (r || !write)
3137 		return r;
3138 
3139 	new_pid = find_get_pid(tmp);
3140 	if (!new_pid)
3141 		return -ESRCH;
3142 
3143 	put_pid(xchg(&cad_pid, new_pid));
3144 	return 0;
3145 }
3146 
3147 /**
3148  * proc_do_large_bitmap - read/write from/to a large bitmap
3149  * @table: the sysctl table
3150  * @write: %TRUE if this is a write to the sysctl file
3151  * @buffer: the user buffer
3152  * @lenp: the size of the user buffer
3153  * @ppos: file position
3154  *
3155  * The bitmap is stored at table->data and the bitmap length (in bits)
3156  * in table->maxlen.
3157  *
3158  * We use a range comma separated format (e.g. 1,3-4,10-10) so that
3159  * large bitmaps may be represented in a compact manner. Writing into
3160  * the file will clear the bitmap then update it with the given input.
3161  *
3162  * Returns 0 on success.
3163  */
3164 int proc_do_large_bitmap(struct ctl_table *table, int write,
3165 			 void __user *buffer, size_t *lenp, loff_t *ppos)
3166 {
3167 	int err = 0;
3168 	bool first = 1;
3169 	size_t left = *lenp;
3170 	unsigned long bitmap_len = table->maxlen;
3171 	unsigned long *bitmap = *(unsigned long **) table->data;
3172 	unsigned long *tmp_bitmap = NULL;
3173 	char tr_a[] = { '-', ',', '\n' }, tr_b[] = { ',', '\n', 0 }, c;
3174 
3175 	if (!bitmap || !bitmap_len || !left || (*ppos && !write)) {
3176 		*lenp = 0;
3177 		return 0;
3178 	}
3179 
3180 	if (write) {
3181 		char *kbuf, *p;
3182 		size_t skipped = 0;
3183 
3184 		if (left > PAGE_SIZE - 1) {
3185 			left = PAGE_SIZE - 1;
3186 			/* How much of the buffer we'll skip this pass */
3187 			skipped = *lenp - left;
3188 		}
3189 
3190 		p = kbuf = memdup_user_nul(buffer, left);
3191 		if (IS_ERR(kbuf))
3192 			return PTR_ERR(kbuf);
3193 
3194 		tmp_bitmap = bitmap_zalloc(bitmap_len, GFP_KERNEL);
3195 		if (!tmp_bitmap) {
3196 			kfree(kbuf);
3197 			return -ENOMEM;
3198 		}
3199 		proc_skip_char(&p, &left, '\n');
3200 		while (!err && left) {
3201 			unsigned long val_a, val_b;
3202 			bool neg;
3203 			size_t saved_left;
3204 
3205 			/* In case we stop parsing mid-number, we can reset */
3206 			saved_left = left;
3207 			err = proc_get_long(&p, &left, &val_a, &neg, tr_a,
3208 					     sizeof(tr_a), &c);
3209 			/*
3210 			 * If we consumed the entirety of a truncated buffer or
3211 			 * only one char is left (may be a "-"), then stop here,
3212 			 * reset, & come back for more.
3213 			 */
3214 			if ((left <= 1) && skipped) {
3215 				left = saved_left;
3216 				break;
3217 			}
3218 
3219 			if (err)
3220 				break;
3221 			if (val_a >= bitmap_len || neg) {
3222 				err = -EINVAL;
3223 				break;
3224 			}
3225 
3226 			val_b = val_a;
3227 			if (left) {
3228 				p++;
3229 				left--;
3230 			}
3231 
3232 			if (c == '-') {
3233 				err = proc_get_long(&p, &left, &val_b,
3234 						     &neg, tr_b, sizeof(tr_b),
3235 						     &c);
3236 				/*
3237 				 * If we consumed all of a truncated buffer or
3238 				 * then stop here, reset, & come back for more.
3239 				 */
3240 				if (!left && skipped) {
3241 					left = saved_left;
3242 					break;
3243 				}
3244 
3245 				if (err)
3246 					break;
3247 				if (val_b >= bitmap_len || neg ||
3248 				    val_a > val_b) {
3249 					err = -EINVAL;
3250 					break;
3251 				}
3252 				if (left) {
3253 					p++;
3254 					left--;
3255 				}
3256 			}
3257 
3258 			bitmap_set(tmp_bitmap, val_a, val_b - val_a + 1);
3259 			first = 0;
3260 			proc_skip_char(&p, &left, '\n');
3261 		}
3262 		kfree(kbuf);
3263 		left += skipped;
3264 	} else {
3265 		unsigned long bit_a, bit_b = 0;
3266 
3267 		while (left) {
3268 			bit_a = find_next_bit(bitmap, bitmap_len, bit_b);
3269 			if (bit_a >= bitmap_len)
3270 				break;
3271 			bit_b = find_next_zero_bit(bitmap, bitmap_len,
3272 						   bit_a + 1) - 1;
3273 
3274 			if (!first) {
3275 				err = proc_put_char(&buffer, &left, ',');
3276 				if (err)
3277 					break;
3278 			}
3279 			err = proc_put_long(&buffer, &left, bit_a, false);
3280 			if (err)
3281 				break;
3282 			if (bit_a != bit_b) {
3283 				err = proc_put_char(&buffer, &left, '-');
3284 				if (err)
3285 					break;
3286 				err = proc_put_long(&buffer, &left, bit_b, false);
3287 				if (err)
3288 					break;
3289 			}
3290 
3291 			first = 0; bit_b++;
3292 		}
3293 		if (!err)
3294 			err = proc_put_char(&buffer, &left, '\n');
3295 	}
3296 
3297 	if (!err) {
3298 		if (write) {
3299 			if (*ppos)
3300 				bitmap_or(bitmap, bitmap, tmp_bitmap, bitmap_len);
3301 			else
3302 				bitmap_copy(bitmap, tmp_bitmap, bitmap_len);
3303 		}
3304 		*lenp -= left;
3305 		*ppos += *lenp;
3306 	}
3307 
3308 	bitmap_free(tmp_bitmap);
3309 	return err;
3310 }
3311 
3312 #else /* CONFIG_PROC_SYSCTL */
3313 
3314 int proc_dostring(struct ctl_table *table, int write,
3315 		  void __user *buffer, size_t *lenp, loff_t *ppos)
3316 {
3317 	return -ENOSYS;
3318 }
3319 
3320 int proc_dointvec(struct ctl_table *table, int write,
3321 		  void __user *buffer, size_t *lenp, loff_t *ppos)
3322 {
3323 	return -ENOSYS;
3324 }
3325 
3326 int proc_douintvec(struct ctl_table *table, int write,
3327 		  void __user *buffer, size_t *lenp, loff_t *ppos)
3328 {
3329 	return -ENOSYS;
3330 }
3331 
3332 int proc_dointvec_minmax(struct ctl_table *table, int write,
3333 		    void __user *buffer, size_t *lenp, loff_t *ppos)
3334 {
3335 	return -ENOSYS;
3336 }
3337 
3338 int proc_douintvec_minmax(struct ctl_table *table, int write,
3339 			  void __user *buffer, size_t *lenp, loff_t *ppos)
3340 {
3341 	return -ENOSYS;
3342 }
3343 
3344 int proc_dointvec_jiffies(struct ctl_table *table, int write,
3345 		    void __user *buffer, size_t *lenp, loff_t *ppos)
3346 {
3347 	return -ENOSYS;
3348 }
3349 
3350 int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
3351 		    void __user *buffer, size_t *lenp, loff_t *ppos)
3352 {
3353 	return -ENOSYS;
3354 }
3355 
3356 int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
3357 			     void __user *buffer, size_t *lenp, loff_t *ppos)
3358 {
3359 	return -ENOSYS;
3360 }
3361 
3362 int proc_doulongvec_minmax(struct ctl_table *table, int write,
3363 		    void __user *buffer, size_t *lenp, loff_t *ppos)
3364 {
3365 	return -ENOSYS;
3366 }
3367 
3368 int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
3369 				      void __user *buffer,
3370 				      size_t *lenp, loff_t *ppos)
3371 {
3372     return -ENOSYS;
3373 }
3374 
3375 int proc_do_large_bitmap(struct ctl_table *table, int write,
3376 			 void __user *buffer, size_t *lenp, loff_t *ppos)
3377 {
3378 	return -ENOSYS;
3379 }
3380 
3381 #endif /* CONFIG_PROC_SYSCTL */
3382 
3383 #if defined(CONFIG_SYSCTL)
3384 int proc_do_static_key(struct ctl_table *table, int write,
3385 		       void __user *buffer, size_t *lenp,
3386 		       loff_t *ppos)
3387 {
3388 	struct static_key *key = (struct static_key *)table->data;
3389 	static DEFINE_MUTEX(static_key_mutex);
3390 	int val, ret;
3391 	struct ctl_table tmp = {
3392 		.data   = &val,
3393 		.maxlen = sizeof(val),
3394 		.mode   = table->mode,
3395 		.extra1 = SYSCTL_ZERO,
3396 		.extra2 = SYSCTL_ONE,
3397 	};
3398 
3399 	if (write && !capable(CAP_SYS_ADMIN))
3400 		return -EPERM;
3401 
3402 	mutex_lock(&static_key_mutex);
3403 	val = static_key_enabled(key);
3404 	ret = proc_dointvec_minmax(&tmp, write, buffer, lenp, ppos);
3405 	if (write && !ret) {
3406 		if (val)
3407 			static_key_enable(key);
3408 		else
3409 			static_key_disable(key);
3410 	}
3411 	mutex_unlock(&static_key_mutex);
3412 	return ret;
3413 }
3414 #endif
3415 /*
3416  * No sense putting this after each symbol definition, twice,
3417  * exception granted :-)
3418  */
3419 EXPORT_SYMBOL(proc_dointvec);
3420 EXPORT_SYMBOL(proc_douintvec);
3421 EXPORT_SYMBOL(proc_dointvec_jiffies);
3422 EXPORT_SYMBOL(proc_dointvec_minmax);
3423 EXPORT_SYMBOL_GPL(proc_douintvec_minmax);
3424 EXPORT_SYMBOL(proc_dointvec_userhz_jiffies);
3425 EXPORT_SYMBOL(proc_dointvec_ms_jiffies);
3426 EXPORT_SYMBOL(proc_dostring);
3427 EXPORT_SYMBOL(proc_doulongvec_minmax);
3428 EXPORT_SYMBOL(proc_doulongvec_ms_jiffies_minmax);
3429 EXPORT_SYMBOL(proc_do_large_bitmap);
3430