kernel/sysctl.c: add missing range check in do_proc_dointvec_minmax_conv
[muen/linux.git] / kernel / sysctl.c
1 /*
2  * sysctl.c: General linux system control interface
3  *
4  * Begun 24 March 1995, Stephen Tweedie
5  * Added /proc support, Dec 1995
6  * Added bdflush entry and intvec min/max checking, 2/23/96, Tom Dyas.
7  * Added hooks for /proc/sys/net (minor, minor patch), 96/4/1, Mike Shaver.
8  * Added kernel/java-{interpreter,appletviewer}, 96/5/10, Mike Shaver.
9  * Dynamic registration fixes, Stephen Tweedie.
10  * Added kswapd-interval, ctrl-alt-del, printk stuff, 1/8/97, Chris Horn.
11  * Made sysctl support optional via CONFIG_SYSCTL, 1/10/97, Chris
12  *  Horn.
13  * Added proc_doulongvec_ms_jiffies_minmax, 09/08/99, Carlos H. Bauer.
14  * Added proc_doulongvec_minmax, 09/08/99, Carlos H. Bauer.
15  * Changed linked lists to use list.h instead of lists.h, 02/24/00, Bill
16  *  Wendling.
17  * The list_for_each() macro wasn't appropriate for the sysctl loop.
18  *  Removed it and replaced it with older style, 03/23/00, Bill Wendling
19  */
20
21 #include <linux/module.h>
22 #include <linux/aio.h>
23 #include <linux/mm.h>
24 #include <linux/swap.h>
25 #include <linux/slab.h>
26 #include <linux/sysctl.h>
27 #include <linux/bitmap.h>
28 #include <linux/signal.h>
29 #include <linux/printk.h>
30 #include <linux/proc_fs.h>
31 #include <linux/security.h>
32 #include <linux/ctype.h>
33 #include <linux/kmemleak.h>
34 #include <linux/fs.h>
35 #include <linux/init.h>
36 #include <linux/kernel.h>
37 #include <linux/kobject.h>
38 #include <linux/net.h>
39 #include <linux/sysrq.h>
40 #include <linux/highuid.h>
41 #include <linux/writeback.h>
42 #include <linux/ratelimit.h>
43 #include <linux/compaction.h>
44 #include <linux/hugetlb.h>
45 #include <linux/initrd.h>
46 #include <linux/key.h>
47 #include <linux/times.h>
48 #include <linux/limits.h>
49 #include <linux/dcache.h>
50 #include <linux/dnotify.h>
51 #include <linux/syscalls.h>
52 #include <linux/vmstat.h>
53 #include <linux/nfs_fs.h>
54 #include <linux/acpi.h>
55 #include <linux/reboot.h>
56 #include <linux/ftrace.h>
57 #include <linux/perf_event.h>
58 #include <linux/kprobes.h>
59 #include <linux/pipe_fs_i.h>
60 #include <linux/oom.h>
61 #include <linux/kmod.h>
62 #include <linux/capability.h>
63 #include <linux/binfmts.h>
64 #include <linux/sched/sysctl.h>
65 #include <linux/sched/coredump.h>
66 #include <linux/kexec.h>
67 #include <linux/bpf.h>
68 #include <linux/mount.h>
69
70 #include "../lib/kstrtox.h"
71
72 #include <linux/uaccess.h>
73 #include <asm/processor.h>
74
75 #ifdef CONFIG_X86
76 #include <asm/nmi.h>
77 #include <asm/stacktrace.h>
78 #include <asm/io.h>
79 #endif
80 #ifdef CONFIG_SPARC
81 #include <asm/setup.h>
82 #endif
83 #ifdef CONFIG_BSD_PROCESS_ACCT
84 #include <linux/acct.h>
85 #endif
86 #ifdef CONFIG_RT_MUTEXES
87 #include <linux/rtmutex.h>
88 #endif
89 #if defined(CONFIG_PROVE_LOCKING) || defined(CONFIG_LOCK_STAT)
90 #include <linux/lockdep.h>
91 #endif
92 #ifdef CONFIG_CHR_DEV_SG
93 #include <scsi/sg.h>
94 #endif
95 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
96 #include <linux/stackleak.h>
97 #endif
98 #ifdef CONFIG_LOCKUP_DETECTOR
99 #include <linux/nmi.h>
100 #endif
101
102 #if defined(CONFIG_SYSCTL)
103
104 /* External variables not in a header file. */
105 extern int suid_dumpable;
106 #ifdef CONFIG_COREDUMP
107 extern int core_uses_pid;
108 extern char core_pattern[];
109 extern unsigned int core_pipe_limit;
110 #endif
111 extern int pid_max;
112 extern int pid_max_min, pid_max_max;
113 extern int percpu_pagelist_fraction;
114 extern int latencytop_enabled;
115 extern unsigned int sysctl_nr_open_min, sysctl_nr_open_max;
116 #ifndef CONFIG_MMU
117 extern int sysctl_nr_trim_pages;
118 #endif
119
120 /* Constants used for minimum and  maximum */
121 #ifdef CONFIG_LOCKUP_DETECTOR
122 static int sixty = 60;
123 #endif
124
125 static int __maybe_unused neg_one = -1;
126
127 static int zero;
128 static int __maybe_unused one = 1;
129 static int __maybe_unused two = 2;
130 static int __maybe_unused four = 4;
131 static unsigned long one_ul = 1;
132 static unsigned long long_max = LONG_MAX;
133 static int one_hundred = 100;
134 static int one_thousand = 1000;
135 #ifdef CONFIG_PRINTK
136 static int ten_thousand = 10000;
137 #endif
138 #ifdef CONFIG_PERF_EVENTS
139 static int six_hundred_forty_kb = 640 * 1024;
140 #endif
141
142 /* this is needed for the proc_doulongvec_minmax of vm_dirty_bytes */
143 static unsigned long dirty_bytes_min = 2 * PAGE_SIZE;
144
145 /* this is needed for the proc_dointvec_minmax for [fs_]overflow UID and GID */
146 static int maxolduid = 65535;
147 static int minolduid;
148
149 static int ngroups_max = NGROUPS_MAX;
150 static const int cap_last_cap = CAP_LAST_CAP;
151
152 /*
153  * This is needed for proc_doulongvec_minmax of sysctl_hung_task_timeout_secs
154  * and hung_task_check_interval_secs
155  */
156 #ifdef CONFIG_DETECT_HUNG_TASK
157 static unsigned long hung_task_timeout_max = (LONG_MAX/HZ);
158 #endif
159
160 #ifdef CONFIG_INOTIFY_USER
161 #include <linux/inotify.h>
162 #endif
163 #ifdef CONFIG_SPARC
164 #endif
165
166 #ifdef __hppa__
167 extern int pwrsw_enabled;
168 #endif
169
170 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
171 extern int unaligned_enabled;
172 #endif
173
174 #ifdef CONFIG_IA64
175 extern int unaligned_dump_stack;
176 #endif
177
178 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
179 extern int no_unaligned_warning;
180 #endif
181
182 #ifdef CONFIG_PROC_SYSCTL
183
184 /**
185  * enum sysctl_writes_mode - supported sysctl write modes
186  *
187  * @SYSCTL_WRITES_LEGACY: each write syscall must fully contain the sysctl value
188  *      to be written, and multiple writes on the same sysctl file descriptor
189  *      will rewrite the sysctl value, regardless of file position. No warning
190  *      is issued when the initial position is not 0.
191  * @SYSCTL_WRITES_WARN: same as above but warn when the initial file position is
192  *      not 0.
193  * @SYSCTL_WRITES_STRICT: writes to numeric sysctl entries must always be at
194  *      file position 0 and the value must be fully contained in the buffer
195  *      sent to the write syscall. If dealing with strings respect the file
196  *      position, but restrict this to the max length of the buffer, anything
197  *      passed the max lenght will be ignored. Multiple writes will append
198  *      to the buffer.
199  *
200  * These write modes control how current file position affects the behavior of
201  * updating sysctl values through the proc interface on each write.
202  */
203 enum sysctl_writes_mode {
204         SYSCTL_WRITES_LEGACY            = -1,
205         SYSCTL_WRITES_WARN              = 0,
206         SYSCTL_WRITES_STRICT            = 1,
207 };
208
209 static enum sysctl_writes_mode sysctl_writes_strict = SYSCTL_WRITES_STRICT;
210
211 static int proc_do_cad_pid(struct ctl_table *table, int write,
212                   void __user *buffer, size_t *lenp, loff_t *ppos);
213 static int proc_taint(struct ctl_table *table, int write,
214                                void __user *buffer, size_t *lenp, loff_t *ppos);
215 #endif
216
217 #ifdef CONFIG_PRINTK
218 static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
219                                 void __user *buffer, size_t *lenp, loff_t *ppos);
220 #endif
221
222 static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
223                 void __user *buffer, size_t *lenp, loff_t *ppos);
224 #ifdef CONFIG_COREDUMP
225 static int proc_dostring_coredump(struct ctl_table *table, int write,
226                 void __user *buffer, size_t *lenp, loff_t *ppos);
227 #endif
228 static int proc_dopipe_max_size(struct ctl_table *table, int write,
229                 void __user *buffer, size_t *lenp, loff_t *ppos);
230 #ifdef CONFIG_BPF_SYSCALL
231 static int proc_dointvec_minmax_bpf_stats(struct ctl_table *table, int write,
232                                           void __user *buffer, size_t *lenp,
233                                           loff_t *ppos);
234 #endif
235
236 #ifdef CONFIG_MAGIC_SYSRQ
237 /* Note: sysrq code uses its own private copy */
238 static int __sysrq_enabled = CONFIG_MAGIC_SYSRQ_DEFAULT_ENABLE;
239
240 static int sysrq_sysctl_handler(struct ctl_table *table, int write,
241                                 void __user *buffer, size_t *lenp,
242                                 loff_t *ppos)
243 {
244         int error;
245
246         error = proc_dointvec(table, write, buffer, lenp, ppos);
247         if (error)
248                 return error;
249
250         if (write)
251                 sysrq_toggle_support(__sysrq_enabled);
252
253         return 0;
254 }
255
256 #endif
257
258 static struct ctl_table kern_table[];
259 static struct ctl_table vm_table[];
260 static struct ctl_table fs_table[];
261 static struct ctl_table debug_table[];
262 static struct ctl_table dev_table[];
263 extern struct ctl_table random_table[];
264 #ifdef CONFIG_EPOLL
265 extern struct ctl_table epoll_table[];
266 #endif
267
268 #ifdef CONFIG_FW_LOADER_USER_HELPER
269 extern struct ctl_table firmware_config_table[];
270 #endif
271
272 #ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
273 int sysctl_legacy_va_layout;
274 #endif
275
276 /* The default sysctl tables: */
277
278 static struct ctl_table sysctl_base_table[] = {
279         {
280                 .procname       = "kernel",
281                 .mode           = 0555,
282                 .child          = kern_table,
283         },
284         {
285                 .procname       = "vm",
286                 .mode           = 0555,
287                 .child          = vm_table,
288         },
289         {
290                 .procname       = "fs",
291                 .mode           = 0555,
292                 .child          = fs_table,
293         },
294         {
295                 .procname       = "debug",
296                 .mode           = 0555,
297                 .child          = debug_table,
298         },
299         {
300                 .procname       = "dev",
301                 .mode           = 0555,
302                 .child          = dev_table,
303         },
304         { }
305 };
306
307 #ifdef CONFIG_SCHED_DEBUG
308 static int min_sched_granularity_ns = 100000;           /* 100 usecs */
309 static int max_sched_granularity_ns = NSEC_PER_SEC;     /* 1 second */
310 static int min_wakeup_granularity_ns;                   /* 0 usecs */
311 static int max_wakeup_granularity_ns = NSEC_PER_SEC;    /* 1 second */
312 #ifdef CONFIG_SMP
313 static int min_sched_tunable_scaling = SCHED_TUNABLESCALING_NONE;
314 static int max_sched_tunable_scaling = SCHED_TUNABLESCALING_END-1;
315 #endif /* CONFIG_SMP */
316 #endif /* CONFIG_SCHED_DEBUG */
317
318 #ifdef CONFIG_COMPACTION
319 static int min_extfrag_threshold;
320 static int max_extfrag_threshold = 1000;
321 #endif
322
323 static struct ctl_table kern_table[] = {
324         {
325                 .procname       = "sched_child_runs_first",
326                 .data           = &sysctl_sched_child_runs_first,
327                 .maxlen         = sizeof(unsigned int),
328                 .mode           = 0644,
329                 .proc_handler   = proc_dointvec,
330         },
331 #ifdef CONFIG_SCHED_DEBUG
332         {
333                 .procname       = "sched_min_granularity_ns",
334                 .data           = &sysctl_sched_min_granularity,
335                 .maxlen         = sizeof(unsigned int),
336                 .mode           = 0644,
337                 .proc_handler   = sched_proc_update_handler,
338                 .extra1         = &min_sched_granularity_ns,
339                 .extra2         = &max_sched_granularity_ns,
340         },
341         {
342                 .procname       = "sched_latency_ns",
343                 .data           = &sysctl_sched_latency,
344                 .maxlen         = sizeof(unsigned int),
345                 .mode           = 0644,
346                 .proc_handler   = sched_proc_update_handler,
347                 .extra1         = &min_sched_granularity_ns,
348                 .extra2         = &max_sched_granularity_ns,
349         },
350         {
351                 .procname       = "sched_wakeup_granularity_ns",
352                 .data           = &sysctl_sched_wakeup_granularity,
353                 .maxlen         = sizeof(unsigned int),
354                 .mode           = 0644,
355                 .proc_handler   = sched_proc_update_handler,
356                 .extra1         = &min_wakeup_granularity_ns,
357                 .extra2         = &max_wakeup_granularity_ns,
358         },
359 #ifdef CONFIG_SMP
360         {
361                 .procname       = "sched_tunable_scaling",
362                 .data           = &sysctl_sched_tunable_scaling,
363                 .maxlen         = sizeof(enum sched_tunable_scaling),
364                 .mode           = 0644,
365                 .proc_handler   = sched_proc_update_handler,
366                 .extra1         = &min_sched_tunable_scaling,
367                 .extra2         = &max_sched_tunable_scaling,
368         },
369         {
370                 .procname       = "sched_migration_cost_ns",
371                 .data           = &sysctl_sched_migration_cost,
372                 .maxlen         = sizeof(unsigned int),
373                 .mode           = 0644,
374                 .proc_handler   = proc_dointvec,
375         },
376         {
377                 .procname       = "sched_nr_migrate",
378                 .data           = &sysctl_sched_nr_migrate,
379                 .maxlen         = sizeof(unsigned int),
380                 .mode           = 0644,
381                 .proc_handler   = proc_dointvec,
382         },
383 #ifdef CONFIG_SCHEDSTATS
384         {
385                 .procname       = "sched_schedstats",
386                 .data           = NULL,
387                 .maxlen         = sizeof(unsigned int),
388                 .mode           = 0644,
389                 .proc_handler   = sysctl_schedstats,
390                 .extra1         = &zero,
391                 .extra2         = &one,
392         },
393 #endif /* CONFIG_SCHEDSTATS */
394 #endif /* CONFIG_SMP */
395 #ifdef CONFIG_NUMA_BALANCING
396         {
397                 .procname       = "numa_balancing_scan_delay_ms",
398                 .data           = &sysctl_numa_balancing_scan_delay,
399                 .maxlen         = sizeof(unsigned int),
400                 .mode           = 0644,
401                 .proc_handler   = proc_dointvec,
402         },
403         {
404                 .procname       = "numa_balancing_scan_period_min_ms",
405                 .data           = &sysctl_numa_balancing_scan_period_min,
406                 .maxlen         = sizeof(unsigned int),
407                 .mode           = 0644,
408                 .proc_handler   = proc_dointvec,
409         },
410         {
411                 .procname       = "numa_balancing_scan_period_max_ms",
412                 .data           = &sysctl_numa_balancing_scan_period_max,
413                 .maxlen         = sizeof(unsigned int),
414                 .mode           = 0644,
415                 .proc_handler   = proc_dointvec,
416         },
417         {
418                 .procname       = "numa_balancing_scan_size_mb",
419                 .data           = &sysctl_numa_balancing_scan_size,
420                 .maxlen         = sizeof(unsigned int),
421                 .mode           = 0644,
422                 .proc_handler   = proc_dointvec_minmax,
423                 .extra1         = &one,
424         },
425         {
426                 .procname       = "numa_balancing",
427                 .data           = NULL, /* filled in by handler */
428                 .maxlen         = sizeof(unsigned int),
429                 .mode           = 0644,
430                 .proc_handler   = sysctl_numa_balancing,
431                 .extra1         = &zero,
432                 .extra2         = &one,
433         },
434 #endif /* CONFIG_NUMA_BALANCING */
435 #endif /* CONFIG_SCHED_DEBUG */
436         {
437                 .procname       = "sched_rt_period_us",
438                 .data           = &sysctl_sched_rt_period,
439                 .maxlen         = sizeof(unsigned int),
440                 .mode           = 0644,
441                 .proc_handler   = sched_rt_handler,
442         },
443         {
444                 .procname       = "sched_rt_runtime_us",
445                 .data           = &sysctl_sched_rt_runtime,
446                 .maxlen         = sizeof(int),
447                 .mode           = 0644,
448                 .proc_handler   = sched_rt_handler,
449         },
450         {
451                 .procname       = "sched_rr_timeslice_ms",
452                 .data           = &sysctl_sched_rr_timeslice,
453                 .maxlen         = sizeof(int),
454                 .mode           = 0644,
455                 .proc_handler   = sched_rr_handler,
456         },
457 #ifdef CONFIG_SCHED_AUTOGROUP
458         {
459                 .procname       = "sched_autogroup_enabled",
460                 .data           = &sysctl_sched_autogroup_enabled,
461                 .maxlen         = sizeof(unsigned int),
462                 .mode           = 0644,
463                 .proc_handler   = proc_dointvec_minmax,
464                 .extra1         = &zero,
465                 .extra2         = &one,
466         },
467 #endif
468 #ifdef CONFIG_CFS_BANDWIDTH
469         {
470                 .procname       = "sched_cfs_bandwidth_slice_us",
471                 .data           = &sysctl_sched_cfs_bandwidth_slice,
472                 .maxlen         = sizeof(unsigned int),
473                 .mode           = 0644,
474                 .proc_handler   = proc_dointvec_minmax,
475                 .extra1         = &one,
476         },
477 #endif
478 #if defined(CONFIG_ENERGY_MODEL) && defined(CONFIG_CPU_FREQ_GOV_SCHEDUTIL)
479         {
480                 .procname       = "sched_energy_aware",
481                 .data           = &sysctl_sched_energy_aware,
482                 .maxlen         = sizeof(unsigned int),
483                 .mode           = 0644,
484                 .proc_handler   = sched_energy_aware_handler,
485                 .extra1         = &zero,
486                 .extra2         = &one,
487         },
488 #endif
489 #ifdef CONFIG_PROVE_LOCKING
490         {
491                 .procname       = "prove_locking",
492                 .data           = &prove_locking,
493                 .maxlen         = sizeof(int),
494                 .mode           = 0644,
495                 .proc_handler   = proc_dointvec,
496         },
497 #endif
498 #ifdef CONFIG_LOCK_STAT
499         {
500                 .procname       = "lock_stat",
501                 .data           = &lock_stat,
502                 .maxlen         = sizeof(int),
503                 .mode           = 0644,
504                 .proc_handler   = proc_dointvec,
505         },
506 #endif
507         {
508                 .procname       = "panic",
509                 .data           = &panic_timeout,
510                 .maxlen         = sizeof(int),
511                 .mode           = 0644,
512                 .proc_handler   = proc_dointvec,
513         },
514 #ifdef CONFIG_COREDUMP
515         {
516                 .procname       = "core_uses_pid",
517                 .data           = &core_uses_pid,
518                 .maxlen         = sizeof(int),
519                 .mode           = 0644,
520                 .proc_handler   = proc_dointvec,
521         },
522         {
523                 .procname       = "core_pattern",
524                 .data           = core_pattern,
525                 .maxlen         = CORENAME_MAX_SIZE,
526                 .mode           = 0644,
527                 .proc_handler   = proc_dostring_coredump,
528         },
529         {
530                 .procname       = "core_pipe_limit",
531                 .data           = &core_pipe_limit,
532                 .maxlen         = sizeof(unsigned int),
533                 .mode           = 0644,
534                 .proc_handler   = proc_dointvec,
535         },
536 #endif
537 #ifdef CONFIG_PROC_SYSCTL
538         {
539                 .procname       = "tainted",
540                 .maxlen         = sizeof(long),
541                 .mode           = 0644,
542                 .proc_handler   = proc_taint,
543         },
544         {
545                 .procname       = "sysctl_writes_strict",
546                 .data           = &sysctl_writes_strict,
547                 .maxlen         = sizeof(int),
548                 .mode           = 0644,
549                 .proc_handler   = proc_dointvec_minmax,
550                 .extra1         = &neg_one,
551                 .extra2         = &one,
552         },
553 #endif
554 #ifdef CONFIG_LATENCYTOP
555         {
556                 .procname       = "latencytop",
557                 .data           = &latencytop_enabled,
558                 .maxlen         = sizeof(int),
559                 .mode           = 0644,
560                 .proc_handler   = sysctl_latencytop,
561         },
562 #endif
563 #ifdef CONFIG_BLK_DEV_INITRD
564         {
565                 .procname       = "real-root-dev",
566                 .data           = &real_root_dev,
567                 .maxlen         = sizeof(int),
568                 .mode           = 0644,
569                 .proc_handler   = proc_dointvec,
570         },
571 #endif
572         {
573                 .procname       = "print-fatal-signals",
574                 .data           = &print_fatal_signals,
575                 .maxlen         = sizeof(int),
576                 .mode           = 0644,
577                 .proc_handler   = proc_dointvec,
578         },
579 #ifdef CONFIG_SPARC
580         {
581                 .procname       = "reboot-cmd",
582                 .data           = reboot_command,
583                 .maxlen         = 256,
584                 .mode           = 0644,
585                 .proc_handler   = proc_dostring,
586         },
587         {
588                 .procname       = "stop-a",
589                 .data           = &stop_a_enabled,
590                 .maxlen         = sizeof (int),
591                 .mode           = 0644,
592                 .proc_handler   = proc_dointvec,
593         },
594         {
595                 .procname       = "scons-poweroff",
596                 .data           = &scons_pwroff,
597                 .maxlen         = sizeof (int),
598                 .mode           = 0644,
599                 .proc_handler   = proc_dointvec,
600         },
601 #endif
602 #ifdef CONFIG_SPARC64
603         {
604                 .procname       = "tsb-ratio",
605                 .data           = &sysctl_tsb_ratio,
606                 .maxlen         = sizeof (int),
607                 .mode           = 0644,
608                 .proc_handler   = proc_dointvec,
609         },
610 #endif
611 #ifdef __hppa__
612         {
613                 .procname       = "soft-power",
614                 .data           = &pwrsw_enabled,
615                 .maxlen         = sizeof (int),
616                 .mode           = 0644,
617                 .proc_handler   = proc_dointvec,
618         },
619 #endif
620 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_ALLOW
621         {
622                 .procname       = "unaligned-trap",
623                 .data           = &unaligned_enabled,
624                 .maxlen         = sizeof (int),
625                 .mode           = 0644,
626                 .proc_handler   = proc_dointvec,
627         },
628 #endif
629         {
630                 .procname       = "ctrl-alt-del",
631                 .data           = &C_A_D,
632                 .maxlen         = sizeof(int),
633                 .mode           = 0644,
634                 .proc_handler   = proc_dointvec,
635         },
636 #ifdef CONFIG_FUNCTION_TRACER
637         {
638                 .procname       = "ftrace_enabled",
639                 .data           = &ftrace_enabled,
640                 .maxlen         = sizeof(int),
641                 .mode           = 0644,
642                 .proc_handler   = ftrace_enable_sysctl,
643         },
644 #endif
645 #ifdef CONFIG_STACK_TRACER
646         {
647                 .procname       = "stack_tracer_enabled",
648                 .data           = &stack_tracer_enabled,
649                 .maxlen         = sizeof(int),
650                 .mode           = 0644,
651                 .proc_handler   = stack_trace_sysctl,
652         },
653 #endif
654 #ifdef CONFIG_TRACING
655         {
656                 .procname       = "ftrace_dump_on_oops",
657                 .data           = &ftrace_dump_on_oops,
658                 .maxlen         = sizeof(int),
659                 .mode           = 0644,
660                 .proc_handler   = proc_dointvec,
661         },
662         {
663                 .procname       = "traceoff_on_warning",
664                 .data           = &__disable_trace_on_warning,
665                 .maxlen         = sizeof(__disable_trace_on_warning),
666                 .mode           = 0644,
667                 .proc_handler   = proc_dointvec,
668         },
669         {
670                 .procname       = "tracepoint_printk",
671                 .data           = &tracepoint_printk,
672                 .maxlen         = sizeof(tracepoint_printk),
673                 .mode           = 0644,
674                 .proc_handler   = tracepoint_printk_sysctl,
675         },
676 #endif
677 #ifdef CONFIG_KEXEC_CORE
678         {
679                 .procname       = "kexec_load_disabled",
680                 .data           = &kexec_load_disabled,
681                 .maxlen         = sizeof(int),
682                 .mode           = 0644,
683                 /* only handle a transition from default "0" to "1" */
684                 .proc_handler   = proc_dointvec_minmax,
685                 .extra1         = &one,
686                 .extra2         = &one,
687         },
688 #endif
689 #ifdef CONFIG_MODULES
690         {
691                 .procname       = "modprobe",
692                 .data           = &modprobe_path,
693                 .maxlen         = KMOD_PATH_LEN,
694                 .mode           = 0644,
695                 .proc_handler   = proc_dostring,
696         },
697         {
698                 .procname       = "modules_disabled",
699                 .data           = &modules_disabled,
700                 .maxlen         = sizeof(int),
701                 .mode           = 0644,
702                 /* only handle a transition from default "0" to "1" */
703                 .proc_handler   = proc_dointvec_minmax,
704                 .extra1         = &one,
705                 .extra2         = &one,
706         },
707 #endif
708 #ifdef CONFIG_UEVENT_HELPER
709         {
710                 .procname       = "hotplug",
711                 .data           = &uevent_helper,
712                 .maxlen         = UEVENT_HELPER_PATH_LEN,
713                 .mode           = 0644,
714                 .proc_handler   = proc_dostring,
715         },
716 #endif
717 #ifdef CONFIG_CHR_DEV_SG
718         {
719                 .procname       = "sg-big-buff",
720                 .data           = &sg_big_buff,
721                 .maxlen         = sizeof (int),
722                 .mode           = 0444,
723                 .proc_handler   = proc_dointvec,
724         },
725 #endif
726 #ifdef CONFIG_BSD_PROCESS_ACCT
727         {
728                 .procname       = "acct",
729                 .data           = &acct_parm,
730                 .maxlen         = 3*sizeof(int),
731                 .mode           = 0644,
732                 .proc_handler   = proc_dointvec,
733         },
734 #endif
735 #ifdef CONFIG_MAGIC_SYSRQ
736         {
737                 .procname       = "sysrq",
738                 .data           = &__sysrq_enabled,
739                 .maxlen         = sizeof (int),
740                 .mode           = 0644,
741                 .proc_handler   = sysrq_sysctl_handler,
742         },
743 #endif
744 #ifdef CONFIG_PROC_SYSCTL
745         {
746                 .procname       = "cad_pid",
747                 .data           = NULL,
748                 .maxlen         = sizeof (int),
749                 .mode           = 0600,
750                 .proc_handler   = proc_do_cad_pid,
751         },
752 #endif
753         {
754                 .procname       = "threads-max",
755                 .data           = NULL,
756                 .maxlen         = sizeof(int),
757                 .mode           = 0644,
758                 .proc_handler   = sysctl_max_threads,
759         },
760         {
761                 .procname       = "random",
762                 .mode           = 0555,
763                 .child          = random_table,
764         },
765         {
766                 .procname       = "usermodehelper",
767                 .mode           = 0555,
768                 .child          = usermodehelper_table,
769         },
770 #ifdef CONFIG_FW_LOADER_USER_HELPER
771         {
772                 .procname       = "firmware_config",
773                 .mode           = 0555,
774                 .child          = firmware_config_table,
775         },
776 #endif
777         {
778                 .procname       = "overflowuid",
779                 .data           = &overflowuid,
780                 .maxlen         = sizeof(int),
781                 .mode           = 0644,
782                 .proc_handler   = proc_dointvec_minmax,
783                 .extra1         = &minolduid,
784                 .extra2         = &maxolduid,
785         },
786         {
787                 .procname       = "overflowgid",
788                 .data           = &overflowgid,
789                 .maxlen         = sizeof(int),
790                 .mode           = 0644,
791                 .proc_handler   = proc_dointvec_minmax,
792                 .extra1         = &minolduid,
793                 .extra2         = &maxolduid,
794         },
795 #ifdef CONFIG_S390
796 #ifdef CONFIG_MATHEMU
797         {
798                 .procname       = "ieee_emulation_warnings",
799                 .data           = &sysctl_ieee_emulation_warnings,
800                 .maxlen         = sizeof(int),
801                 .mode           = 0644,
802                 .proc_handler   = proc_dointvec,
803         },
804 #endif
805         {
806                 .procname       = "userprocess_debug",
807                 .data           = &show_unhandled_signals,
808                 .maxlen         = sizeof(int),
809                 .mode           = 0644,
810                 .proc_handler   = proc_dointvec,
811         },
812 #endif
813         {
814                 .procname       = "pid_max",
815                 .data           = &pid_max,
816                 .maxlen         = sizeof (int),
817                 .mode           = 0644,
818                 .proc_handler   = proc_dointvec_minmax,
819                 .extra1         = &pid_max_min,
820                 .extra2         = &pid_max_max,
821         },
822         {
823                 .procname       = "panic_on_oops",
824                 .data           = &panic_on_oops,
825                 .maxlen         = sizeof(int),
826                 .mode           = 0644,
827                 .proc_handler   = proc_dointvec,
828         },
829         {
830                 .procname       = "panic_print",
831                 .data           = &panic_print,
832                 .maxlen         = sizeof(unsigned long),
833                 .mode           = 0644,
834                 .proc_handler   = proc_doulongvec_minmax,
835         },
836 #if defined CONFIG_PRINTK
837         {
838                 .procname       = "printk",
839                 .data           = &console_loglevel,
840                 .maxlen         = 4*sizeof(int),
841                 .mode           = 0644,
842                 .proc_handler   = proc_dointvec,
843         },
844         {
845                 .procname       = "printk_ratelimit",
846                 .data           = &printk_ratelimit_state.interval,
847                 .maxlen         = sizeof(int),
848                 .mode           = 0644,
849                 .proc_handler   = proc_dointvec_jiffies,
850         },
851         {
852                 .procname       = "printk_ratelimit_burst",
853                 .data           = &printk_ratelimit_state.burst,
854                 .maxlen         = sizeof(int),
855                 .mode           = 0644,
856                 .proc_handler   = proc_dointvec,
857         },
858         {
859                 .procname       = "printk_delay",
860                 .data           = &printk_delay_msec,
861                 .maxlen         = sizeof(int),
862                 .mode           = 0644,
863                 .proc_handler   = proc_dointvec_minmax,
864                 .extra1         = &zero,
865                 .extra2         = &ten_thousand,
866         },
867         {
868                 .procname       = "printk_devkmsg",
869                 .data           = devkmsg_log_str,
870                 .maxlen         = DEVKMSG_STR_MAX_SIZE,
871                 .mode           = 0644,
872                 .proc_handler   = devkmsg_sysctl_set_loglvl,
873         },
874         {
875                 .procname       = "dmesg_restrict",
876                 .data           = &dmesg_restrict,
877                 .maxlen         = sizeof(int),
878                 .mode           = 0644,
879                 .proc_handler   = proc_dointvec_minmax_sysadmin,
880                 .extra1         = &zero,
881                 .extra2         = &one,
882         },
883         {
884                 .procname       = "kptr_restrict",
885                 .data           = &kptr_restrict,
886                 .maxlen         = sizeof(int),
887                 .mode           = 0644,
888                 .proc_handler   = proc_dointvec_minmax_sysadmin,
889                 .extra1         = &zero,
890                 .extra2         = &two,
891         },
892 #endif
893         {
894                 .procname       = "ngroups_max",
895                 .data           = &ngroups_max,
896                 .maxlen         = sizeof (int),
897                 .mode           = 0444,
898                 .proc_handler   = proc_dointvec,
899         },
900         {
901                 .procname       = "cap_last_cap",
902                 .data           = (void *)&cap_last_cap,
903                 .maxlen         = sizeof(int),
904                 .mode           = 0444,
905                 .proc_handler   = proc_dointvec,
906         },
907 #if defined(CONFIG_LOCKUP_DETECTOR)
908         {
909                 .procname       = "watchdog",
910                 .data           = &watchdog_user_enabled,
911                 .maxlen         = sizeof(int),
912                 .mode           = 0644,
913                 .proc_handler   = proc_watchdog,
914                 .extra1         = &zero,
915                 .extra2         = &one,
916         },
917         {
918                 .procname       = "watchdog_thresh",
919                 .data           = &watchdog_thresh,
920                 .maxlen         = sizeof(int),
921                 .mode           = 0644,
922                 .proc_handler   = proc_watchdog_thresh,
923                 .extra1         = &zero,
924                 .extra2         = &sixty,
925         },
926         {
927                 .procname       = "nmi_watchdog",
928                 .data           = &nmi_watchdog_user_enabled,
929                 .maxlen         = sizeof(int),
930                 .mode           = NMI_WATCHDOG_SYSCTL_PERM,
931                 .proc_handler   = proc_nmi_watchdog,
932                 .extra1         = &zero,
933                 .extra2         = &one,
934         },
935         {
936                 .procname       = "watchdog_cpumask",
937                 .data           = &watchdog_cpumask_bits,
938                 .maxlen         = NR_CPUS,
939                 .mode           = 0644,
940                 .proc_handler   = proc_watchdog_cpumask,
941         },
942 #ifdef CONFIG_SOFTLOCKUP_DETECTOR
943         {
944                 .procname       = "soft_watchdog",
945                 .data           = &soft_watchdog_user_enabled,
946                 .maxlen         = sizeof(int),
947                 .mode           = 0644,
948                 .proc_handler   = proc_soft_watchdog,
949                 .extra1         = &zero,
950                 .extra2         = &one,
951         },
952         {
953                 .procname       = "softlockup_panic",
954                 .data           = &softlockup_panic,
955                 .maxlen         = sizeof(int),
956                 .mode           = 0644,
957                 .proc_handler   = proc_dointvec_minmax,
958                 .extra1         = &zero,
959                 .extra2         = &one,
960         },
961 #ifdef CONFIG_SMP
962         {
963                 .procname       = "softlockup_all_cpu_backtrace",
964                 .data           = &sysctl_softlockup_all_cpu_backtrace,
965                 .maxlen         = sizeof(int),
966                 .mode           = 0644,
967                 .proc_handler   = proc_dointvec_minmax,
968                 .extra1         = &zero,
969                 .extra2         = &one,
970         },
971 #endif /* CONFIG_SMP */
972 #endif
973 #ifdef CONFIG_HARDLOCKUP_DETECTOR
974         {
975                 .procname       = "hardlockup_panic",
976                 .data           = &hardlockup_panic,
977                 .maxlen         = sizeof(int),
978                 .mode           = 0644,
979                 .proc_handler   = proc_dointvec_minmax,
980                 .extra1         = &zero,
981                 .extra2         = &one,
982         },
983 #ifdef CONFIG_SMP
984         {
985                 .procname       = "hardlockup_all_cpu_backtrace",
986                 .data           = &sysctl_hardlockup_all_cpu_backtrace,
987                 .maxlen         = sizeof(int),
988                 .mode           = 0644,
989                 .proc_handler   = proc_dointvec_minmax,
990                 .extra1         = &zero,
991                 .extra2         = &one,
992         },
993 #endif /* CONFIG_SMP */
994 #endif
995 #endif
996
997 #if defined(CONFIG_X86_LOCAL_APIC) && defined(CONFIG_X86)
998         {
999                 .procname       = "unknown_nmi_panic",
1000                 .data           = &unknown_nmi_panic,
1001                 .maxlen         = sizeof (int),
1002                 .mode           = 0644,
1003                 .proc_handler   = proc_dointvec,
1004         },
1005 #endif
1006 #if defined(CONFIG_X86)
1007         {
1008                 .procname       = "panic_on_unrecovered_nmi",
1009                 .data           = &panic_on_unrecovered_nmi,
1010                 .maxlen         = sizeof(int),
1011                 .mode           = 0644,
1012                 .proc_handler   = proc_dointvec,
1013         },
1014         {
1015                 .procname       = "panic_on_io_nmi",
1016                 .data           = &panic_on_io_nmi,
1017                 .maxlen         = sizeof(int),
1018                 .mode           = 0644,
1019                 .proc_handler   = proc_dointvec,
1020         },
1021 #ifdef CONFIG_DEBUG_STACKOVERFLOW
1022         {
1023                 .procname       = "panic_on_stackoverflow",
1024                 .data           = &sysctl_panic_on_stackoverflow,
1025                 .maxlen         = sizeof(int),
1026                 .mode           = 0644,
1027                 .proc_handler   = proc_dointvec,
1028         },
1029 #endif
1030         {
1031                 .procname       = "bootloader_type",
1032                 .data           = &bootloader_type,
1033                 .maxlen         = sizeof (int),
1034                 .mode           = 0444,
1035                 .proc_handler   = proc_dointvec,
1036         },
1037         {
1038                 .procname       = "bootloader_version",
1039                 .data           = &bootloader_version,
1040                 .maxlen         = sizeof (int),
1041                 .mode           = 0444,
1042                 .proc_handler   = proc_dointvec,
1043         },
1044         {
1045                 .procname       = "io_delay_type",
1046                 .data           = &io_delay_type,
1047                 .maxlen         = sizeof(int),
1048                 .mode           = 0644,
1049                 .proc_handler   = proc_dointvec,
1050         },
1051 #endif
1052 #if defined(CONFIG_MMU)
1053         {
1054                 .procname       = "randomize_va_space",
1055                 .data           = &randomize_va_space,
1056                 .maxlen         = sizeof(int),
1057                 .mode           = 0644,
1058                 .proc_handler   = proc_dointvec,
1059         },
1060 #endif
1061 #if defined(CONFIG_S390) && defined(CONFIG_SMP)
1062         {
1063                 .procname       = "spin_retry",
1064                 .data           = &spin_retry,
1065                 .maxlen         = sizeof (int),
1066                 .mode           = 0644,
1067                 .proc_handler   = proc_dointvec,
1068         },
1069 #endif
1070 #if     defined(CONFIG_ACPI_SLEEP) && defined(CONFIG_X86)
1071         {
1072                 .procname       = "acpi_video_flags",
1073                 .data           = &acpi_realmode_flags,
1074                 .maxlen         = sizeof (unsigned long),
1075                 .mode           = 0644,
1076                 .proc_handler   = proc_doulongvec_minmax,
1077         },
1078 #endif
1079 #ifdef CONFIG_SYSCTL_ARCH_UNALIGN_NO_WARN
1080         {
1081                 .procname       = "ignore-unaligned-usertrap",
1082                 .data           = &no_unaligned_warning,
1083                 .maxlen         = sizeof (int),
1084                 .mode           = 0644,
1085                 .proc_handler   = proc_dointvec,
1086         },
1087 #endif
1088 #ifdef CONFIG_IA64
1089         {
1090                 .procname       = "unaligned-dump-stack",
1091                 .data           = &unaligned_dump_stack,
1092                 .maxlen         = sizeof (int),
1093                 .mode           = 0644,
1094                 .proc_handler   = proc_dointvec,
1095         },
1096 #endif
1097 #ifdef CONFIG_DETECT_HUNG_TASK
1098         {
1099                 .procname       = "hung_task_panic",
1100                 .data           = &sysctl_hung_task_panic,
1101                 .maxlen         = sizeof(int),
1102                 .mode           = 0644,
1103                 .proc_handler   = proc_dointvec_minmax,
1104                 .extra1         = &zero,
1105                 .extra2         = &one,
1106         },
1107         {
1108                 .procname       = "hung_task_check_count",
1109                 .data           = &sysctl_hung_task_check_count,
1110                 .maxlen         = sizeof(int),
1111                 .mode           = 0644,
1112                 .proc_handler   = proc_dointvec_minmax,
1113                 .extra1         = &zero,
1114         },
1115         {
1116                 .procname       = "hung_task_timeout_secs",
1117                 .data           = &sysctl_hung_task_timeout_secs,
1118                 .maxlen         = sizeof(unsigned long),
1119                 .mode           = 0644,
1120                 .proc_handler   = proc_dohung_task_timeout_secs,
1121                 .extra2         = &hung_task_timeout_max,
1122         },
1123         {
1124                 .procname       = "hung_task_check_interval_secs",
1125                 .data           = &sysctl_hung_task_check_interval_secs,
1126                 .maxlen         = sizeof(unsigned long),
1127                 .mode           = 0644,
1128                 .proc_handler   = proc_dohung_task_timeout_secs,
1129                 .extra2         = &hung_task_timeout_max,
1130         },
1131         {
1132                 .procname       = "hung_task_warnings",
1133                 .data           = &sysctl_hung_task_warnings,
1134                 .maxlen         = sizeof(int),
1135                 .mode           = 0644,
1136                 .proc_handler   = proc_dointvec_minmax,
1137                 .extra1         = &neg_one,
1138         },
1139 #endif
1140 #ifdef CONFIG_RT_MUTEXES
1141         {
1142                 .procname       = "max_lock_depth",
1143                 .data           = &max_lock_depth,
1144                 .maxlen         = sizeof(int),
1145                 .mode           = 0644,
1146                 .proc_handler   = proc_dointvec,
1147         },
1148 #endif
1149         {
1150                 .procname       = "poweroff_cmd",
1151                 .data           = &poweroff_cmd,
1152                 .maxlen         = POWEROFF_CMD_PATH_LEN,
1153                 .mode           = 0644,
1154                 .proc_handler   = proc_dostring,
1155         },
1156 #ifdef CONFIG_KEYS
1157         {
1158                 .procname       = "keys",
1159                 .mode           = 0555,
1160                 .child          = key_sysctls,
1161         },
1162 #endif
1163 #ifdef CONFIG_PERF_EVENTS
1164         /*
1165          * User-space scripts rely on the existence of this file
1166          * as a feature check for perf_events being enabled.
1167          *
1168          * So it's an ABI, do not remove!
1169          */
1170         {
1171                 .procname       = "perf_event_paranoid",
1172                 .data           = &sysctl_perf_event_paranoid,
1173                 .maxlen         = sizeof(sysctl_perf_event_paranoid),
1174                 .mode           = 0644,
1175                 .proc_handler   = proc_dointvec,
1176         },
1177         {
1178                 .procname       = "perf_event_mlock_kb",
1179                 .data           = &sysctl_perf_event_mlock,
1180                 .maxlen         = sizeof(sysctl_perf_event_mlock),
1181                 .mode           = 0644,
1182                 .proc_handler   = proc_dointvec,
1183         },
1184         {
1185                 .procname       = "perf_event_max_sample_rate",
1186                 .data           = &sysctl_perf_event_sample_rate,
1187                 .maxlen         = sizeof(sysctl_perf_event_sample_rate),
1188                 .mode           = 0644,
1189                 .proc_handler   = perf_proc_update_handler,
1190                 .extra1         = &one,
1191         },
1192         {
1193                 .procname       = "perf_cpu_time_max_percent",
1194                 .data           = &sysctl_perf_cpu_time_max_percent,
1195                 .maxlen         = sizeof(sysctl_perf_cpu_time_max_percent),
1196                 .mode           = 0644,
1197                 .proc_handler   = perf_cpu_time_max_percent_handler,
1198                 .extra1         = &zero,
1199                 .extra2         = &one_hundred,
1200         },
1201         {
1202                 .procname       = "perf_event_max_stack",
1203                 .data           = &sysctl_perf_event_max_stack,
1204                 .maxlen         = sizeof(sysctl_perf_event_max_stack),
1205                 .mode           = 0644,
1206                 .proc_handler   = perf_event_max_stack_handler,
1207                 .extra1         = &zero,
1208                 .extra2         = &six_hundred_forty_kb,
1209         },
1210         {
1211                 .procname       = "perf_event_max_contexts_per_stack",
1212                 .data           = &sysctl_perf_event_max_contexts_per_stack,
1213                 .maxlen         = sizeof(sysctl_perf_event_max_contexts_per_stack),
1214                 .mode           = 0644,
1215                 .proc_handler   = perf_event_max_stack_handler,
1216                 .extra1         = &zero,
1217                 .extra2         = &one_thousand,
1218         },
1219 #endif
1220         {
1221                 .procname       = "panic_on_warn",
1222                 .data           = &panic_on_warn,
1223                 .maxlen         = sizeof(int),
1224                 .mode           = 0644,
1225                 .proc_handler   = proc_dointvec_minmax,
1226                 .extra1         = &zero,
1227                 .extra2         = &one,
1228         },
1229 #if defined(CONFIG_SMP) && defined(CONFIG_NO_HZ_COMMON)
1230         {
1231                 .procname       = "timer_migration",
1232                 .data           = &sysctl_timer_migration,
1233                 .maxlen         = sizeof(unsigned int),
1234                 .mode           = 0644,
1235                 .proc_handler   = timer_migration_handler,
1236                 .extra1         = &zero,
1237                 .extra2         = &one,
1238         },
1239 #endif
1240 #ifdef CONFIG_BPF_SYSCALL
1241         {
1242                 .procname       = "unprivileged_bpf_disabled",
1243                 .data           = &sysctl_unprivileged_bpf_disabled,
1244                 .maxlen         = sizeof(sysctl_unprivileged_bpf_disabled),
1245                 .mode           = 0644,
1246                 /* only handle a transition from default "0" to "1" */
1247                 .proc_handler   = proc_dointvec_minmax,
1248                 .extra1         = &one,
1249                 .extra2         = &one,
1250         },
1251         {
1252                 .procname       = "bpf_stats_enabled",
1253                 .data           = &sysctl_bpf_stats_enabled,
1254                 .maxlen         = sizeof(sysctl_bpf_stats_enabled),
1255                 .mode           = 0644,
1256                 .proc_handler   = proc_dointvec_minmax_bpf_stats,
1257                 .extra1         = &zero,
1258                 .extra2         = &one,
1259         },
1260 #endif
1261 #if defined(CONFIG_TREE_RCU) || defined(CONFIG_PREEMPT_RCU)
1262         {
1263                 .procname       = "panic_on_rcu_stall",
1264                 .data           = &sysctl_panic_on_rcu_stall,
1265                 .maxlen         = sizeof(sysctl_panic_on_rcu_stall),
1266                 .mode           = 0644,
1267                 .proc_handler   = proc_dointvec_minmax,
1268                 .extra1         = &zero,
1269                 .extra2         = &one,
1270         },
1271 #endif
1272 #ifdef CONFIG_STACKLEAK_RUNTIME_DISABLE
1273         {
1274                 .procname       = "stack_erasing",
1275                 .data           = NULL,
1276                 .maxlen         = sizeof(int),
1277                 .mode           = 0600,
1278                 .proc_handler   = stack_erasing_sysctl,
1279                 .extra1         = &zero,
1280                 .extra2         = &one,
1281         },
1282 #endif
1283         { }
1284 };
1285
1286 static struct ctl_table vm_table[] = {
1287         {
1288                 .procname       = "overcommit_memory",
1289                 .data           = &sysctl_overcommit_memory,
1290                 .maxlen         = sizeof(sysctl_overcommit_memory),
1291                 .mode           = 0644,
1292                 .proc_handler   = proc_dointvec_minmax,
1293                 .extra1         = &zero,
1294                 .extra2         = &two,
1295         },
1296         {
1297                 .procname       = "panic_on_oom",
1298                 .data           = &sysctl_panic_on_oom,
1299                 .maxlen         = sizeof(sysctl_panic_on_oom),
1300                 .mode           = 0644,
1301                 .proc_handler   = proc_dointvec_minmax,
1302                 .extra1         = &zero,
1303                 .extra2         = &two,
1304         },
1305         {
1306                 .procname       = "oom_kill_allocating_task",
1307                 .data           = &sysctl_oom_kill_allocating_task,
1308                 .maxlen         = sizeof(sysctl_oom_kill_allocating_task),
1309                 .mode           = 0644,
1310                 .proc_handler   = proc_dointvec,
1311         },
1312         {
1313                 .procname       = "oom_dump_tasks",
1314                 .data           = &sysctl_oom_dump_tasks,
1315                 .maxlen         = sizeof(sysctl_oom_dump_tasks),
1316                 .mode           = 0644,
1317                 .proc_handler   = proc_dointvec,
1318         },
1319         {
1320                 .procname       = "overcommit_ratio",
1321                 .data           = &sysctl_overcommit_ratio,
1322                 .maxlen         = sizeof(sysctl_overcommit_ratio),
1323                 .mode           = 0644,
1324                 .proc_handler   = overcommit_ratio_handler,
1325         },
1326         {
1327                 .procname       = "overcommit_kbytes",
1328                 .data           = &sysctl_overcommit_kbytes,
1329                 .maxlen         = sizeof(sysctl_overcommit_kbytes),
1330                 .mode           = 0644,
1331                 .proc_handler   = overcommit_kbytes_handler,
1332         },
1333         {
1334                 .procname       = "page-cluster", 
1335                 .data           = &page_cluster,
1336                 .maxlen         = sizeof(int),
1337                 .mode           = 0644,
1338                 .proc_handler   = proc_dointvec_minmax,
1339                 .extra1         = &zero,
1340         },
1341         {
1342                 .procname       = "dirty_background_ratio",
1343                 .data           = &dirty_background_ratio,
1344                 .maxlen         = sizeof(dirty_background_ratio),
1345                 .mode           = 0644,
1346                 .proc_handler   = dirty_background_ratio_handler,
1347                 .extra1         = &zero,
1348                 .extra2         = &one_hundred,
1349         },
1350         {
1351                 .procname       = "dirty_background_bytes",
1352                 .data           = &dirty_background_bytes,
1353                 .maxlen         = sizeof(dirty_background_bytes),
1354                 .mode           = 0644,
1355                 .proc_handler   = dirty_background_bytes_handler,
1356                 .extra1         = &one_ul,
1357         },
1358         {
1359                 .procname       = "dirty_ratio",
1360                 .data           = &vm_dirty_ratio,
1361                 .maxlen         = sizeof(vm_dirty_ratio),
1362                 .mode           = 0644,
1363                 .proc_handler   = dirty_ratio_handler,
1364                 .extra1         = &zero,
1365                 .extra2         = &one_hundred,
1366         },
1367         {
1368                 .procname       = "dirty_bytes",
1369                 .data           = &vm_dirty_bytes,
1370                 .maxlen         = sizeof(vm_dirty_bytes),
1371                 .mode           = 0644,
1372                 .proc_handler   = dirty_bytes_handler,
1373                 .extra1         = &dirty_bytes_min,
1374         },
1375         {
1376                 .procname       = "dirty_writeback_centisecs",
1377                 .data           = &dirty_writeback_interval,
1378                 .maxlen         = sizeof(dirty_writeback_interval),
1379                 .mode           = 0644,
1380                 .proc_handler   = dirty_writeback_centisecs_handler,
1381         },
1382         {
1383                 .procname       = "dirty_expire_centisecs",
1384                 .data           = &dirty_expire_interval,
1385                 .maxlen         = sizeof(dirty_expire_interval),
1386                 .mode           = 0644,
1387                 .proc_handler   = proc_dointvec_minmax,
1388                 .extra1         = &zero,
1389         },
1390         {
1391                 .procname       = "dirtytime_expire_seconds",
1392                 .data           = &dirtytime_expire_interval,
1393                 .maxlen         = sizeof(dirtytime_expire_interval),
1394                 .mode           = 0644,
1395                 .proc_handler   = dirtytime_interval_handler,
1396                 .extra1         = &zero,
1397         },
1398         {
1399                 .procname       = "swappiness",
1400                 .data           = &vm_swappiness,
1401                 .maxlen         = sizeof(vm_swappiness),
1402                 .mode           = 0644,
1403                 .proc_handler   = proc_dointvec_minmax,
1404                 .extra1         = &zero,
1405                 .extra2         = &one_hundred,
1406         },
1407 #ifdef CONFIG_HUGETLB_PAGE
1408         {
1409                 .procname       = "nr_hugepages",
1410                 .data           = NULL,
1411                 .maxlen         = sizeof(unsigned long),
1412                 .mode           = 0644,
1413                 .proc_handler   = hugetlb_sysctl_handler,
1414         },
1415 #ifdef CONFIG_NUMA
1416         {
1417                 .procname       = "nr_hugepages_mempolicy",
1418                 .data           = NULL,
1419                 .maxlen         = sizeof(unsigned long),
1420                 .mode           = 0644,
1421                 .proc_handler   = &hugetlb_mempolicy_sysctl_handler,
1422         },
1423         {
1424                 .procname               = "numa_stat",
1425                 .data                   = &sysctl_vm_numa_stat,
1426                 .maxlen                 = sizeof(int),
1427                 .mode                   = 0644,
1428                 .proc_handler   = sysctl_vm_numa_stat_handler,
1429                 .extra1                 = &zero,
1430                 .extra2                 = &one,
1431         },
1432 #endif
1433          {
1434                 .procname       = "hugetlb_shm_group",
1435                 .data           = &sysctl_hugetlb_shm_group,
1436                 .maxlen         = sizeof(gid_t),
1437                 .mode           = 0644,
1438                 .proc_handler   = proc_dointvec,
1439          },
1440         {
1441                 .procname       = "nr_overcommit_hugepages",
1442                 .data           = NULL,
1443                 .maxlen         = sizeof(unsigned long),
1444                 .mode           = 0644,
1445                 .proc_handler   = hugetlb_overcommit_handler,
1446         },
1447 #endif
1448         {
1449                 .procname       = "lowmem_reserve_ratio",
1450                 .data           = &sysctl_lowmem_reserve_ratio,
1451                 .maxlen         = sizeof(sysctl_lowmem_reserve_ratio),
1452                 .mode           = 0644,
1453                 .proc_handler   = lowmem_reserve_ratio_sysctl_handler,
1454         },
1455         {
1456                 .procname       = "drop_caches",
1457                 .data           = &sysctl_drop_caches,
1458                 .maxlen         = sizeof(int),
1459                 .mode           = 0644,
1460                 .proc_handler   = drop_caches_sysctl_handler,
1461                 .extra1         = &one,
1462                 .extra2         = &four,
1463         },
1464 #ifdef CONFIG_COMPACTION
1465         {
1466                 .procname       = "compact_memory",
1467                 .data           = &sysctl_compact_memory,
1468                 .maxlen         = sizeof(int),
1469                 .mode           = 0200,
1470                 .proc_handler   = sysctl_compaction_handler,
1471         },
1472         {
1473                 .procname       = "extfrag_threshold",
1474                 .data           = &sysctl_extfrag_threshold,
1475                 .maxlen         = sizeof(int),
1476                 .mode           = 0644,
1477                 .proc_handler   = proc_dointvec_minmax,
1478                 .extra1         = &min_extfrag_threshold,
1479                 .extra2         = &max_extfrag_threshold,
1480         },
1481         {
1482                 .procname       = "compact_unevictable_allowed",
1483                 .data           = &sysctl_compact_unevictable_allowed,
1484                 .maxlen         = sizeof(int),
1485                 .mode           = 0644,
1486                 .proc_handler   = proc_dointvec,
1487                 .extra1         = &zero,
1488                 .extra2         = &one,
1489         },
1490
1491 #endif /* CONFIG_COMPACTION */
1492         {
1493                 .procname       = "min_free_kbytes",
1494                 .data           = &min_free_kbytes,
1495                 .maxlen         = sizeof(min_free_kbytes),
1496                 .mode           = 0644,
1497                 .proc_handler   = min_free_kbytes_sysctl_handler,
1498                 .extra1         = &zero,
1499         },
1500         {
1501                 .procname       = "watermark_boost_factor",
1502                 .data           = &watermark_boost_factor,
1503                 .maxlen         = sizeof(watermark_boost_factor),
1504                 .mode           = 0644,
1505                 .proc_handler   = watermark_boost_factor_sysctl_handler,
1506                 .extra1         = &zero,
1507         },
1508         {
1509                 .procname       = "watermark_scale_factor",
1510                 .data           = &watermark_scale_factor,
1511                 .maxlen         = sizeof(watermark_scale_factor),
1512                 .mode           = 0644,
1513                 .proc_handler   = watermark_scale_factor_sysctl_handler,
1514                 .extra1         = &one,
1515                 .extra2         = &one_thousand,
1516         },
1517         {
1518                 .procname       = "percpu_pagelist_fraction",
1519                 .data           = &percpu_pagelist_fraction,
1520                 .maxlen         = sizeof(percpu_pagelist_fraction),
1521                 .mode           = 0644,
1522                 .proc_handler   = percpu_pagelist_fraction_sysctl_handler,
1523                 .extra1         = &zero,
1524         },
1525 #ifdef CONFIG_MMU
1526         {
1527                 .procname       = "max_map_count",
1528                 .data           = &sysctl_max_map_count,
1529                 .maxlen         = sizeof(sysctl_max_map_count),
1530                 .mode           = 0644,
1531                 .proc_handler   = proc_dointvec_minmax,
1532                 .extra1         = &zero,
1533         },
1534 #else
1535         {
1536                 .procname       = "nr_trim_pages",
1537                 .data           = &sysctl_nr_trim_pages,
1538                 .maxlen         = sizeof(sysctl_nr_trim_pages),
1539                 .mode           = 0644,
1540                 .proc_handler   = proc_dointvec_minmax,
1541                 .extra1         = &zero,
1542         },
1543 #endif
1544         {
1545                 .procname       = "laptop_mode",
1546                 .data           = &laptop_mode,
1547                 .maxlen         = sizeof(laptop_mode),
1548                 .mode           = 0644,
1549                 .proc_handler   = proc_dointvec_jiffies,
1550         },
1551         {
1552                 .procname       = "block_dump",
1553                 .data           = &block_dump,
1554                 .maxlen         = sizeof(block_dump),
1555                 .mode           = 0644,
1556                 .proc_handler   = proc_dointvec,
1557                 .extra1         = &zero,
1558         },
1559         {
1560                 .procname       = "vfs_cache_pressure",
1561                 .data           = &sysctl_vfs_cache_pressure,
1562                 .maxlen         = sizeof(sysctl_vfs_cache_pressure),
1563                 .mode           = 0644,
1564                 .proc_handler   = proc_dointvec,
1565                 .extra1         = &zero,
1566         },
1567 #ifdef HAVE_ARCH_PICK_MMAP_LAYOUT
1568         {
1569                 .procname       = "legacy_va_layout",
1570                 .data           = &sysctl_legacy_va_layout,
1571                 .maxlen         = sizeof(sysctl_legacy_va_layout),
1572                 .mode           = 0644,
1573                 .proc_handler   = proc_dointvec,
1574                 .extra1         = &zero,
1575         },
1576 #endif
1577 #ifdef CONFIG_NUMA
1578         {
1579                 .procname       = "zone_reclaim_mode",
1580                 .data           = &node_reclaim_mode,
1581                 .maxlen         = sizeof(node_reclaim_mode),
1582                 .mode           = 0644,
1583                 .proc_handler   = proc_dointvec,
1584                 .extra1         = &zero,
1585         },
1586         {
1587                 .procname       = "min_unmapped_ratio",
1588                 .data           = &sysctl_min_unmapped_ratio,
1589                 .maxlen         = sizeof(sysctl_min_unmapped_ratio),
1590                 .mode           = 0644,
1591                 .proc_handler   = sysctl_min_unmapped_ratio_sysctl_handler,
1592                 .extra1         = &zero,
1593                 .extra2         = &one_hundred,
1594         },
1595         {
1596                 .procname       = "min_slab_ratio",
1597                 .data           = &sysctl_min_slab_ratio,
1598                 .maxlen         = sizeof(sysctl_min_slab_ratio),
1599                 .mode           = 0644,
1600                 .proc_handler   = sysctl_min_slab_ratio_sysctl_handler,
1601                 .extra1         = &zero,
1602                 .extra2         = &one_hundred,
1603         },
1604 #endif
1605 #ifdef CONFIG_SMP
1606         {
1607                 .procname       = "stat_interval",
1608                 .data           = &sysctl_stat_interval,
1609                 .maxlen         = sizeof(sysctl_stat_interval),
1610                 .mode           = 0644,
1611                 .proc_handler   = proc_dointvec_jiffies,
1612         },
1613         {
1614                 .procname       = "stat_refresh",
1615                 .data           = NULL,
1616                 .maxlen         = 0,
1617                 .mode           = 0600,
1618                 .proc_handler   = vmstat_refresh,
1619         },
1620 #endif
1621 #ifdef CONFIG_MMU
1622         {
1623                 .procname       = "mmap_min_addr",
1624                 .data           = &dac_mmap_min_addr,
1625                 .maxlen         = sizeof(unsigned long),
1626                 .mode           = 0644,
1627                 .proc_handler   = mmap_min_addr_handler,
1628         },
1629 #endif
1630 #ifdef CONFIG_NUMA
1631         {
1632                 .procname       = "numa_zonelist_order",
1633                 .data           = &numa_zonelist_order,
1634                 .maxlen         = NUMA_ZONELIST_ORDER_LEN,
1635                 .mode           = 0644,
1636                 .proc_handler   = numa_zonelist_order_handler,
1637         },
1638 #endif
1639 #if (defined(CONFIG_X86_32) && !defined(CONFIG_UML))|| \
1640    (defined(CONFIG_SUPERH) && defined(CONFIG_VSYSCALL))
1641         {
1642                 .procname       = "vdso_enabled",
1643 #ifdef CONFIG_X86_32
1644                 .data           = &vdso32_enabled,
1645                 .maxlen         = sizeof(vdso32_enabled),
1646 #else
1647                 .data           = &vdso_enabled,
1648                 .maxlen         = sizeof(vdso_enabled),
1649 #endif
1650                 .mode           = 0644,
1651                 .proc_handler   = proc_dointvec,
1652                 .extra1         = &zero,
1653         },
1654 #endif
1655 #ifdef CONFIG_HIGHMEM
1656         {
1657                 .procname       = "highmem_is_dirtyable",
1658                 .data           = &vm_highmem_is_dirtyable,
1659                 .maxlen         = sizeof(vm_highmem_is_dirtyable),
1660                 .mode           = 0644,
1661                 .proc_handler   = proc_dointvec_minmax,
1662                 .extra1         = &zero,
1663                 .extra2         = &one,
1664         },
1665 #endif
1666 #ifdef CONFIG_MEMORY_FAILURE
1667         {
1668                 .procname       = "memory_failure_early_kill",
1669                 .data           = &sysctl_memory_failure_early_kill,
1670                 .maxlen         = sizeof(sysctl_memory_failure_early_kill),
1671                 .mode           = 0644,
1672                 .proc_handler   = proc_dointvec_minmax,
1673                 .extra1         = &zero,
1674                 .extra2         = &one,
1675         },
1676         {
1677                 .procname       = "memory_failure_recovery",
1678                 .data           = &sysctl_memory_failure_recovery,
1679                 .maxlen         = sizeof(sysctl_memory_failure_recovery),
1680                 .mode           = 0644,
1681                 .proc_handler   = proc_dointvec_minmax,
1682                 .extra1         = &zero,
1683                 .extra2         = &one,
1684         },
1685 #endif
1686         {
1687                 .procname       = "user_reserve_kbytes",
1688                 .data           = &sysctl_user_reserve_kbytes,
1689                 .maxlen         = sizeof(sysctl_user_reserve_kbytes),
1690                 .mode           = 0644,
1691                 .proc_handler   = proc_doulongvec_minmax,
1692         },
1693         {
1694                 .procname       = "admin_reserve_kbytes",
1695                 .data           = &sysctl_admin_reserve_kbytes,
1696                 .maxlen         = sizeof(sysctl_admin_reserve_kbytes),
1697                 .mode           = 0644,
1698                 .proc_handler   = proc_doulongvec_minmax,
1699         },
1700 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_BITS
1701         {
1702                 .procname       = "mmap_rnd_bits",
1703                 .data           = &mmap_rnd_bits,
1704                 .maxlen         = sizeof(mmap_rnd_bits),
1705                 .mode           = 0600,
1706                 .proc_handler   = proc_dointvec_minmax,
1707                 .extra1         = (void *)&mmap_rnd_bits_min,
1708                 .extra2         = (void *)&mmap_rnd_bits_max,
1709         },
1710 #endif
1711 #ifdef CONFIG_HAVE_ARCH_MMAP_RND_COMPAT_BITS
1712         {
1713                 .procname       = "mmap_rnd_compat_bits",
1714                 .data           = &mmap_rnd_compat_bits,
1715                 .maxlen         = sizeof(mmap_rnd_compat_bits),
1716                 .mode           = 0600,
1717                 .proc_handler   = proc_dointvec_minmax,
1718                 .extra1         = (void *)&mmap_rnd_compat_bits_min,
1719                 .extra2         = (void *)&mmap_rnd_compat_bits_max,
1720         },
1721 #endif
1722         { }
1723 };
1724
1725 static struct ctl_table fs_table[] = {
1726         {
1727                 .procname       = "inode-nr",
1728                 .data           = &inodes_stat,
1729                 .maxlen         = 2*sizeof(long),
1730                 .mode           = 0444,
1731                 .proc_handler   = proc_nr_inodes,
1732         },
1733         {
1734                 .procname       = "inode-state",
1735                 .data           = &inodes_stat,
1736                 .maxlen         = 7*sizeof(long),
1737                 .mode           = 0444,
1738                 .proc_handler   = proc_nr_inodes,
1739         },
1740         {
1741                 .procname       = "file-nr",
1742                 .data           = &files_stat,
1743                 .maxlen         = sizeof(files_stat),
1744                 .mode           = 0444,
1745                 .proc_handler   = proc_nr_files,
1746         },
1747         {
1748                 .procname       = "file-max",
1749                 .data           = &files_stat.max_files,
1750                 .maxlen         = sizeof(files_stat.max_files),
1751                 .mode           = 0644,
1752                 .proc_handler   = proc_doulongvec_minmax,
1753                 .extra1         = &zero,
1754                 .extra2         = &long_max,
1755         },
1756         {
1757                 .procname       = "nr_open",
1758                 .data           = &sysctl_nr_open,
1759                 .maxlen         = sizeof(unsigned int),
1760                 .mode           = 0644,
1761                 .proc_handler   = proc_dointvec_minmax,
1762                 .extra1         = &sysctl_nr_open_min,
1763                 .extra2         = &sysctl_nr_open_max,
1764         },
1765         {
1766                 .procname       = "dentry-state",
1767                 .data           = &dentry_stat,
1768                 .maxlen         = 6*sizeof(long),
1769                 .mode           = 0444,
1770                 .proc_handler   = proc_nr_dentry,
1771         },
1772         {
1773                 .procname       = "overflowuid",
1774                 .data           = &fs_overflowuid,
1775                 .maxlen         = sizeof(int),
1776                 .mode           = 0644,
1777                 .proc_handler   = proc_dointvec_minmax,
1778                 .extra1         = &minolduid,
1779                 .extra2         = &maxolduid,
1780         },
1781         {
1782                 .procname       = "overflowgid",
1783                 .data           = &fs_overflowgid,
1784                 .maxlen         = sizeof(int),
1785                 .mode           = 0644,
1786                 .proc_handler   = proc_dointvec_minmax,
1787                 .extra1         = &minolduid,
1788                 .extra2         = &maxolduid,
1789         },
1790 #ifdef CONFIG_FILE_LOCKING
1791         {
1792                 .procname       = "leases-enable",
1793                 .data           = &leases_enable,
1794                 .maxlen         = sizeof(int),
1795                 .mode           = 0644,
1796                 .proc_handler   = proc_dointvec,
1797         },
1798 #endif
1799 #ifdef CONFIG_DNOTIFY
1800         {
1801                 .procname       = "dir-notify-enable",
1802                 .data           = &dir_notify_enable,
1803                 .maxlen         = sizeof(int),
1804                 .mode           = 0644,
1805                 .proc_handler   = proc_dointvec,
1806         },
1807 #endif
1808 #ifdef CONFIG_MMU
1809 #ifdef CONFIG_FILE_LOCKING
1810         {
1811                 .procname       = "lease-break-time",
1812                 .data           = &lease_break_time,
1813                 .maxlen         = sizeof(int),
1814                 .mode           = 0644,
1815                 .proc_handler   = proc_dointvec,
1816         },
1817 #endif
1818 #ifdef CONFIG_AIO
1819         {
1820                 .procname       = "aio-nr",
1821                 .data           = &aio_nr,
1822                 .maxlen         = sizeof(aio_nr),
1823                 .mode           = 0444,
1824                 .proc_handler   = proc_doulongvec_minmax,
1825         },
1826         {
1827                 .procname       = "aio-max-nr",
1828                 .data           = &aio_max_nr,
1829                 .maxlen         = sizeof(aio_max_nr),
1830                 .mode           = 0644,
1831                 .proc_handler   = proc_doulongvec_minmax,
1832         },
1833 #endif /* CONFIG_AIO */
1834 #ifdef CONFIG_INOTIFY_USER
1835         {
1836                 .procname       = "inotify",
1837                 .mode           = 0555,
1838                 .child          = inotify_table,
1839         },
1840 #endif  
1841 #ifdef CONFIG_EPOLL
1842         {
1843                 .procname       = "epoll",
1844                 .mode           = 0555,
1845                 .child          = epoll_table,
1846         },
1847 #endif
1848 #endif
1849         {
1850                 .procname       = "protected_symlinks",
1851                 .data           = &sysctl_protected_symlinks,
1852                 .maxlen         = sizeof(int),
1853                 .mode           = 0600,
1854                 .proc_handler   = proc_dointvec_minmax,
1855                 .extra1         = &zero,
1856                 .extra2         = &one,
1857         },
1858         {
1859                 .procname       = "protected_hardlinks",
1860                 .data           = &sysctl_protected_hardlinks,
1861                 .maxlen         = sizeof(int),
1862                 .mode           = 0600,
1863                 .proc_handler   = proc_dointvec_minmax,
1864                 .extra1         = &zero,
1865                 .extra2         = &one,
1866         },
1867         {
1868                 .procname       = "protected_fifos",
1869                 .data           = &sysctl_protected_fifos,
1870                 .maxlen         = sizeof(int),
1871                 .mode           = 0600,
1872                 .proc_handler   = proc_dointvec_minmax,
1873                 .extra1         = &zero,
1874                 .extra2         = &two,
1875         },
1876         {
1877                 .procname       = "protected_regular",
1878                 .data           = &sysctl_protected_regular,
1879                 .maxlen         = sizeof(int),
1880                 .mode           = 0600,
1881                 .proc_handler   = proc_dointvec_minmax,
1882                 .extra1         = &zero,
1883                 .extra2         = &two,
1884         },
1885         {
1886                 .procname       = "suid_dumpable",
1887                 .data           = &suid_dumpable,
1888                 .maxlen         = sizeof(int),
1889                 .mode           = 0644,
1890                 .proc_handler   = proc_dointvec_minmax_coredump,
1891                 .extra1         = &zero,
1892                 .extra2         = &two,
1893         },
1894 #if defined(CONFIG_BINFMT_MISC) || defined(CONFIG_BINFMT_MISC_MODULE)
1895         {
1896                 .procname       = "binfmt_misc",
1897                 .mode           = 0555,
1898                 .child          = sysctl_mount_point,
1899         },
1900 #endif
1901         {
1902                 .procname       = "pipe-max-size",
1903                 .data           = &pipe_max_size,
1904                 .maxlen         = sizeof(pipe_max_size),
1905                 .mode           = 0644,
1906                 .proc_handler   = proc_dopipe_max_size,
1907         },
1908         {
1909                 .procname       = "pipe-user-pages-hard",
1910                 .data           = &pipe_user_pages_hard,
1911                 .maxlen         = sizeof(pipe_user_pages_hard),
1912                 .mode           = 0644,
1913                 .proc_handler   = proc_doulongvec_minmax,
1914         },
1915         {
1916                 .procname       = "pipe-user-pages-soft",
1917                 .data           = &pipe_user_pages_soft,
1918                 .maxlen         = sizeof(pipe_user_pages_soft),
1919                 .mode           = 0644,
1920                 .proc_handler   = proc_doulongvec_minmax,
1921         },
1922         {
1923                 .procname       = "mount-max",
1924                 .data           = &sysctl_mount_max,
1925                 .maxlen         = sizeof(unsigned int),
1926                 .mode           = 0644,
1927                 .proc_handler   = proc_dointvec_minmax,
1928                 .extra1         = &one,
1929         },
1930         { }
1931 };
1932
1933 static struct ctl_table debug_table[] = {
1934 #ifdef CONFIG_SYSCTL_EXCEPTION_TRACE
1935         {
1936                 .procname       = "exception-trace",
1937                 .data           = &show_unhandled_signals,
1938                 .maxlen         = sizeof(int),
1939                 .mode           = 0644,
1940                 .proc_handler   = proc_dointvec
1941         },
1942 #endif
1943 #if defined(CONFIG_OPTPROBES)
1944         {
1945                 .procname       = "kprobes-optimization",
1946                 .data           = &sysctl_kprobes_optimization,
1947                 .maxlen         = sizeof(int),
1948                 .mode           = 0644,
1949                 .proc_handler   = proc_kprobes_optimization_handler,
1950                 .extra1         = &zero,
1951                 .extra2         = &one,
1952         },
1953 #endif
1954         { }
1955 };
1956
1957 static struct ctl_table dev_table[] = {
1958         { }
1959 };
1960
1961 int __init sysctl_init(void)
1962 {
1963         struct ctl_table_header *hdr;
1964
1965         hdr = register_sysctl_table(sysctl_base_table);
1966         kmemleak_not_leak(hdr);
1967         return 0;
1968 }
1969
1970 #endif /* CONFIG_SYSCTL */
1971
1972 /*
1973  * /proc/sys support
1974  */
1975
1976 #ifdef CONFIG_PROC_SYSCTL
1977
1978 static int _proc_do_string(char *data, int maxlen, int write,
1979                            char __user *buffer,
1980                            size_t *lenp, loff_t *ppos)
1981 {
1982         size_t len;
1983         char __user *p;
1984         char c;
1985
1986         if (!data || !maxlen || !*lenp) {
1987                 *lenp = 0;
1988                 return 0;
1989         }
1990
1991         if (write) {
1992                 if (sysctl_writes_strict == SYSCTL_WRITES_STRICT) {
1993                         /* Only continue writes not past the end of buffer. */
1994                         len = strlen(data);
1995                         if (len > maxlen - 1)
1996                                 len = maxlen - 1;
1997
1998                         if (*ppos > len)
1999                                 return 0;
2000                         len = *ppos;
2001                 } else {
2002                         /* Start writing from beginning of buffer. */
2003                         len = 0;
2004                 }
2005
2006                 *ppos += *lenp;
2007                 p = buffer;
2008                 while ((p - buffer) < *lenp && len < maxlen - 1) {
2009                         if (get_user(c, p++))
2010                                 return -EFAULT;
2011                         if (c == 0 || c == '\n')
2012                                 break;
2013                         data[len++] = c;
2014                 }
2015                 data[len] = 0;
2016         } else {
2017                 len = strlen(data);
2018                 if (len > maxlen)
2019                         len = maxlen;
2020
2021                 if (*ppos > len) {
2022                         *lenp = 0;
2023                         return 0;
2024                 }
2025
2026                 data += *ppos;
2027                 len  -= *ppos;
2028
2029                 if (len > *lenp)
2030                         len = *lenp;
2031                 if (len)
2032                         if (copy_to_user(buffer, data, len))
2033                                 return -EFAULT;
2034                 if (len < *lenp) {
2035                         if (put_user('\n', buffer + len))
2036                                 return -EFAULT;
2037                         len++;
2038                 }
2039                 *lenp = len;
2040                 *ppos += len;
2041         }
2042         return 0;
2043 }
2044
2045 static void warn_sysctl_write(struct ctl_table *table)
2046 {
2047         pr_warn_once("%s wrote to %s when file position was not 0!\n"
2048                 "This will not be supported in the future. To silence this\n"
2049                 "warning, set kernel.sysctl_writes_strict = -1\n",
2050                 current->comm, table->procname);
2051 }
2052
2053 /**
2054  * proc_first_pos_non_zero_ignore - check if first position is allowed
2055  * @ppos: file position
2056  * @table: the sysctl table
2057  *
2058  * Returns true if the first position is non-zero and the sysctl_writes_strict
2059  * mode indicates this is not allowed for numeric input types. String proc
2060  * handlers can ignore the return value.
2061  */
2062 static bool proc_first_pos_non_zero_ignore(loff_t *ppos,
2063                                            struct ctl_table *table)
2064 {
2065         if (!*ppos)
2066                 return false;
2067
2068         switch (sysctl_writes_strict) {
2069         case SYSCTL_WRITES_STRICT:
2070                 return true;
2071         case SYSCTL_WRITES_WARN:
2072                 warn_sysctl_write(table);
2073                 return false;
2074         default:
2075                 return false;
2076         }
2077 }
2078
2079 /**
2080  * proc_dostring - read a string sysctl
2081  * @table: the sysctl table
2082  * @write: %TRUE if this is a write to the sysctl file
2083  * @buffer: the user buffer
2084  * @lenp: the size of the user buffer
2085  * @ppos: file position
2086  *
2087  * Reads/writes a string from/to the user buffer. If the kernel
2088  * buffer provided is not large enough to hold the string, the
2089  * string is truncated. The copied string is %NULL-terminated.
2090  * If the string is being read by the user process, it is copied
2091  * and a newline '\n' is added. It is truncated if the buffer is
2092  * not large enough.
2093  *
2094  * Returns 0 on success.
2095  */
2096 int proc_dostring(struct ctl_table *table, int write,
2097                   void __user *buffer, size_t *lenp, loff_t *ppos)
2098 {
2099         if (write)
2100                 proc_first_pos_non_zero_ignore(ppos, table);
2101
2102         return _proc_do_string((char *)(table->data), table->maxlen, write,
2103                                (char __user *)buffer, lenp, ppos);
2104 }
2105
2106 static size_t proc_skip_spaces(char **buf)
2107 {
2108         size_t ret;
2109         char *tmp = skip_spaces(*buf);
2110         ret = tmp - *buf;
2111         *buf = tmp;
2112         return ret;
2113 }
2114
2115 static void proc_skip_char(char **buf, size_t *size, const char v)
2116 {
2117         while (*size) {
2118                 if (**buf != v)
2119                         break;
2120                 (*size)--;
2121                 (*buf)++;
2122         }
2123 }
2124
2125 /**
2126  * strtoul_lenient - parse an ASCII formatted integer from a buffer and only
2127  *                   fail on overflow
2128  *
2129  * @cp: kernel buffer containing the string to parse
2130  * @endp: pointer to store the trailing characters
2131  * @base: the base to use
2132  * @res: where the parsed integer will be stored
2133  *
2134  * In case of success 0 is returned and @res will contain the parsed integer,
2135  * @endp will hold any trailing characters.
2136  * This function will fail the parse on overflow. If there wasn't an overflow
2137  * the function will defer the decision what characters count as invalid to the
2138  * caller.
2139  */
2140 static int strtoul_lenient(const char *cp, char **endp, unsigned int base,
2141                            unsigned long *res)
2142 {
2143         unsigned long long result;
2144         unsigned int rv;
2145
2146         cp = _parse_integer_fixup_radix(cp, &base);
2147         rv = _parse_integer(cp, base, &result);
2148         if ((rv & KSTRTOX_OVERFLOW) || (result != (unsigned long)result))
2149                 return -ERANGE;
2150
2151         cp += rv;
2152
2153         if (endp)
2154                 *endp = (char *)cp;
2155
2156         *res = (unsigned long)result;
2157         return 0;
2158 }
2159
2160 #define TMPBUFLEN 22
2161 /**
2162  * proc_get_long - reads an ASCII formatted integer from a user buffer
2163  *
2164  * @buf: a kernel buffer
2165  * @size: size of the kernel buffer
2166  * @val: this is where the number will be stored
2167  * @neg: set to %TRUE if number is negative
2168  * @perm_tr: a vector which contains the allowed trailers
2169  * @perm_tr_len: size of the perm_tr vector
2170  * @tr: pointer to store the trailer character
2171  *
2172  * In case of success %0 is returned and @buf and @size are updated with
2173  * the amount of bytes read. If @tr is non-NULL and a trailing
2174  * character exists (size is non-zero after returning from this
2175  * function), @tr is updated with the trailing character.
2176  */
2177 static int proc_get_long(char **buf, size_t *size,
2178                           unsigned long *val, bool *neg,
2179                           const char *perm_tr, unsigned perm_tr_len, char *tr)
2180 {
2181         int len;
2182         char *p, tmp[TMPBUFLEN];
2183
2184         if (!*size)
2185                 return -EINVAL;
2186
2187         len = *size;
2188         if (len > TMPBUFLEN - 1)
2189                 len = TMPBUFLEN - 1;
2190
2191         memcpy(tmp, *buf, len);
2192
2193         tmp[len] = 0;
2194         p = tmp;
2195         if (*p == '-' && *size > 1) {
2196                 *neg = true;
2197                 p++;
2198         } else
2199                 *neg = false;
2200         if (!isdigit(*p))
2201                 return -EINVAL;
2202
2203         if (strtoul_lenient(p, &p, 0, val))
2204                 return -EINVAL;
2205
2206         len = p - tmp;
2207
2208         /* We don't know if the next char is whitespace thus we may accept
2209          * invalid integers (e.g. 1234...a) or two integers instead of one
2210          * (e.g. 123...1). So lets not allow such large numbers. */
2211         if (len == TMPBUFLEN - 1)
2212                 return -EINVAL;
2213
2214         if (len < *size && perm_tr_len && !memchr(perm_tr, *p, perm_tr_len))
2215                 return -EINVAL;
2216
2217         if (tr && (len < *size))
2218                 *tr = *p;
2219
2220         *buf += len;
2221         *size -= len;
2222
2223         return 0;
2224 }
2225
2226 /**
2227  * proc_put_long - converts an integer to a decimal ASCII formatted string
2228  *
2229  * @buf: the user buffer
2230  * @size: the size of the user buffer
2231  * @val: the integer to be converted
2232  * @neg: sign of the number, %TRUE for negative
2233  *
2234  * In case of success %0 is returned and @buf and @size are updated with
2235  * the amount of bytes written.
2236  */
2237 static int proc_put_long(void __user **buf, size_t *size, unsigned long val,
2238                           bool neg)
2239 {
2240         int len;
2241         char tmp[TMPBUFLEN], *p = tmp;
2242
2243         sprintf(p, "%s%lu", neg ? "-" : "", val);
2244         len = strlen(tmp);
2245         if (len > *size)
2246                 len = *size;
2247         if (copy_to_user(*buf, tmp, len))
2248                 return -EFAULT;
2249         *size -= len;
2250         *buf += len;
2251         return 0;
2252 }
2253 #undef TMPBUFLEN
2254
2255 static int proc_put_char(void __user **buf, size_t *size, char c)
2256 {
2257         if (*size) {
2258                 char __user **buffer = (char __user **)buf;
2259                 if (put_user(c, *buffer))
2260                         return -EFAULT;
2261                 (*size)--, (*buffer)++;
2262                 *buf = *buffer;
2263         }
2264         return 0;
2265 }
2266
2267 static int do_proc_dointvec_conv(bool *negp, unsigned long *lvalp,
2268                                  int *valp,
2269                                  int write, void *data)
2270 {
2271         if (write) {
2272                 if (*negp) {
2273                         if (*lvalp > (unsigned long) INT_MAX + 1)
2274                                 return -EINVAL;
2275                         *valp = -*lvalp;
2276                 } else {
2277                         if (*lvalp > (unsigned long) INT_MAX)
2278                                 return -EINVAL;
2279                         *valp = *lvalp;
2280                 }
2281         } else {
2282                 int val = *valp;
2283                 if (val < 0) {
2284                         *negp = true;
2285                         *lvalp = -(unsigned long)val;
2286                 } else {
2287                         *negp = false;
2288                         *lvalp = (unsigned long)val;
2289                 }
2290         }
2291         return 0;
2292 }
2293
2294 static int do_proc_douintvec_conv(unsigned long *lvalp,
2295                                   unsigned int *valp,
2296                                   int write, void *data)
2297 {
2298         if (write) {
2299                 if (*lvalp > UINT_MAX)
2300                         return -EINVAL;
2301                 *valp = *lvalp;
2302         } else {
2303                 unsigned int val = *valp;
2304                 *lvalp = (unsigned long)val;
2305         }
2306         return 0;
2307 }
2308
2309 static const char proc_wspace_sep[] = { ' ', '\t', '\n' };
2310
2311 static int __do_proc_dointvec(void *tbl_data, struct ctl_table *table,
2312                   int write, void __user *buffer,
2313                   size_t *lenp, loff_t *ppos,
2314                   int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2315                               int write, void *data),
2316                   void *data)
2317 {
2318         int *i, vleft, first = 1, err = 0;
2319         size_t left;
2320         char *kbuf = NULL, *p;
2321         
2322         if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
2323                 *lenp = 0;
2324                 return 0;
2325         }
2326         
2327         i = (int *) tbl_data;
2328         vleft = table->maxlen / sizeof(*i);
2329         left = *lenp;
2330
2331         if (!conv)
2332                 conv = do_proc_dointvec_conv;
2333
2334         if (write) {
2335                 if (proc_first_pos_non_zero_ignore(ppos, table))
2336                         goto out;
2337
2338                 if (left > PAGE_SIZE - 1)
2339                         left = PAGE_SIZE - 1;
2340                 p = kbuf = memdup_user_nul(buffer, left);
2341                 if (IS_ERR(kbuf))
2342                         return PTR_ERR(kbuf);
2343         }
2344
2345         for (; left && vleft--; i++, first=0) {
2346                 unsigned long lval;
2347                 bool neg;
2348
2349                 if (write) {
2350                         left -= proc_skip_spaces(&p);
2351
2352                         if (!left)
2353                                 break;
2354                         err = proc_get_long(&p, &left, &lval, &neg,
2355                                              proc_wspace_sep,
2356                                              sizeof(proc_wspace_sep), NULL);
2357                         if (err)
2358                                 break;
2359                         if (conv(&neg, &lval, i, 1, data)) {
2360                                 err = -EINVAL;
2361                                 break;
2362                         }
2363                 } else {
2364                         if (conv(&neg, &lval, i, 0, data)) {
2365                                 err = -EINVAL;
2366                                 break;
2367                         }
2368                         if (!first)
2369                                 err = proc_put_char(&buffer, &left, '\t');
2370                         if (err)
2371                                 break;
2372                         err = proc_put_long(&buffer, &left, lval, neg);
2373                         if (err)
2374                                 break;
2375                 }
2376         }
2377
2378         if (!write && !first && left && !err)
2379                 err = proc_put_char(&buffer, &left, '\n');
2380         if (write && !err && left)
2381                 left -= proc_skip_spaces(&p);
2382         if (write) {
2383                 kfree(kbuf);
2384                 if (first)
2385                         return err ? : -EINVAL;
2386         }
2387         *lenp -= left;
2388 out:
2389         *ppos += *lenp;
2390         return err;
2391 }
2392
2393 static int do_proc_dointvec(struct ctl_table *table, int write,
2394                   void __user *buffer, size_t *lenp, loff_t *ppos,
2395                   int (*conv)(bool *negp, unsigned long *lvalp, int *valp,
2396                               int write, void *data),
2397                   void *data)
2398 {
2399         return __do_proc_dointvec(table->data, table, write,
2400                         buffer, lenp, ppos, conv, data);
2401 }
2402
2403 static int do_proc_douintvec_w(unsigned int *tbl_data,
2404                                struct ctl_table *table,
2405                                void __user *buffer,
2406                                size_t *lenp, loff_t *ppos,
2407                                int (*conv)(unsigned long *lvalp,
2408                                            unsigned int *valp,
2409                                            int write, void *data),
2410                                void *data)
2411 {
2412         unsigned long lval;
2413         int err = 0;
2414         size_t left;
2415         bool neg;
2416         char *kbuf = NULL, *p;
2417
2418         left = *lenp;
2419
2420         if (proc_first_pos_non_zero_ignore(ppos, table))
2421                 goto bail_early;
2422
2423         if (left > PAGE_SIZE - 1)
2424                 left = PAGE_SIZE - 1;
2425
2426         p = kbuf = memdup_user_nul(buffer, left);
2427         if (IS_ERR(kbuf))
2428                 return -EINVAL;
2429
2430         left -= proc_skip_spaces(&p);
2431         if (!left) {
2432                 err = -EINVAL;
2433                 goto out_free;
2434         }
2435
2436         err = proc_get_long(&p, &left, &lval, &neg,
2437                              proc_wspace_sep,
2438                              sizeof(proc_wspace_sep), NULL);
2439         if (err || neg) {
2440                 err = -EINVAL;
2441                 goto out_free;
2442         }
2443
2444         if (conv(&lval, tbl_data, 1, data)) {
2445                 err = -EINVAL;
2446                 goto out_free;
2447         }
2448
2449         if (!err && left)
2450                 left -= proc_skip_spaces(&p);
2451
2452 out_free:
2453         kfree(kbuf);
2454         if (err)
2455                 return -EINVAL;
2456
2457         return 0;
2458
2459         /* This is in keeping with old __do_proc_dointvec() */
2460 bail_early:
2461         *ppos += *lenp;
2462         return err;
2463 }
2464
2465 static int do_proc_douintvec_r(unsigned int *tbl_data, void __user *buffer,
2466                                size_t *lenp, loff_t *ppos,
2467                                int (*conv)(unsigned long *lvalp,
2468                                            unsigned int *valp,
2469                                            int write, void *data),
2470                                void *data)
2471 {
2472         unsigned long lval;
2473         int err = 0;
2474         size_t left;
2475
2476         left = *lenp;
2477
2478         if (conv(&lval, tbl_data, 0, data)) {
2479                 err = -EINVAL;
2480                 goto out;
2481         }
2482
2483         err = proc_put_long(&buffer, &left, lval, false);
2484         if (err || !left)
2485                 goto out;
2486
2487         err = proc_put_char(&buffer, &left, '\n');
2488
2489 out:
2490         *lenp -= left;
2491         *ppos += *lenp;
2492
2493         return err;
2494 }
2495
2496 static int __do_proc_douintvec(void *tbl_data, struct ctl_table *table,
2497                                int write, void __user *buffer,
2498                                size_t *lenp, loff_t *ppos,
2499                                int (*conv)(unsigned long *lvalp,
2500                                            unsigned int *valp,
2501                                            int write, void *data),
2502                                void *data)
2503 {
2504         unsigned int *i, vleft;
2505
2506         if (!tbl_data || !table->maxlen || !*lenp || (*ppos && !write)) {
2507                 *lenp = 0;
2508                 return 0;
2509         }
2510
2511         i = (unsigned int *) tbl_data;
2512         vleft = table->maxlen / sizeof(*i);
2513
2514         /*
2515          * Arrays are not supported, keep this simple. *Do not* add
2516          * support for them.
2517          */
2518         if (vleft != 1) {
2519                 *lenp = 0;
2520                 return -EINVAL;
2521         }
2522
2523         if (!conv)
2524                 conv = do_proc_douintvec_conv;
2525
2526         if (write)
2527                 return do_proc_douintvec_w(i, table, buffer, lenp, ppos,
2528                                            conv, data);
2529         return do_proc_douintvec_r(i, buffer, lenp, ppos, conv, data);
2530 }
2531
2532 static int do_proc_douintvec(struct ctl_table *table, int write,
2533                              void __user *buffer, size_t *lenp, loff_t *ppos,
2534                              int (*conv)(unsigned long *lvalp,
2535                                          unsigned int *valp,
2536                                          int write, void *data),
2537                              void *data)
2538 {
2539         return __do_proc_douintvec(table->data, table, write,
2540                                    buffer, lenp, ppos, conv, data);
2541 }
2542
2543 /**
2544  * proc_dointvec - read a vector of integers
2545  * @table: the sysctl table
2546  * @write: %TRUE if this is a write to the sysctl file
2547  * @buffer: the user buffer
2548  * @lenp: the size of the user buffer
2549  * @ppos: file position
2550  *
2551  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2552  * values from/to the user buffer, treated as an ASCII string. 
2553  *
2554  * Returns 0 on success.
2555  */
2556 int proc_dointvec(struct ctl_table *table, int write,
2557                      void __user *buffer, size_t *lenp, loff_t *ppos)
2558 {
2559         return do_proc_dointvec(table, write, buffer, lenp, ppos, NULL, NULL);
2560 }
2561
2562 /**
2563  * proc_douintvec - read a vector of unsigned integers
2564  * @table: the sysctl table
2565  * @write: %TRUE if this is a write to the sysctl file
2566  * @buffer: the user buffer
2567  * @lenp: the size of the user buffer
2568  * @ppos: file position
2569  *
2570  * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
2571  * values from/to the user buffer, treated as an ASCII string.
2572  *
2573  * Returns 0 on success.
2574  */
2575 int proc_douintvec(struct ctl_table *table, int write,
2576                      void __user *buffer, size_t *lenp, loff_t *ppos)
2577 {
2578         return do_proc_douintvec(table, write, buffer, lenp, ppos,
2579                                  do_proc_douintvec_conv, NULL);
2580 }
2581
2582 /*
2583  * Taint values can only be increased
2584  * This means we can safely use a temporary.
2585  */
2586 static int proc_taint(struct ctl_table *table, int write,
2587                                void __user *buffer, size_t *lenp, loff_t *ppos)
2588 {
2589         struct ctl_table t;
2590         unsigned long tmptaint = get_taint();
2591         int err;
2592
2593         if (write && !capable(CAP_SYS_ADMIN))
2594                 return -EPERM;
2595
2596         t = *table;
2597         t.data = &tmptaint;
2598         err = proc_doulongvec_minmax(&t, write, buffer, lenp, ppos);
2599         if (err < 0)
2600                 return err;
2601
2602         if (write) {
2603                 /*
2604                  * Poor man's atomic or. Not worth adding a primitive
2605                  * to everyone's atomic.h for this
2606                  */
2607                 int i;
2608                 for (i = 0; i < BITS_PER_LONG && tmptaint >> i; i++) {
2609                         if ((tmptaint >> i) & 1)
2610                                 add_taint(i, LOCKDEP_STILL_OK);
2611                 }
2612         }
2613
2614         return err;
2615 }
2616
2617 #ifdef CONFIG_PRINTK
2618 static int proc_dointvec_minmax_sysadmin(struct ctl_table *table, int write,
2619                                 void __user *buffer, size_t *lenp, loff_t *ppos)
2620 {
2621         if (write && !capable(CAP_SYS_ADMIN))
2622                 return -EPERM;
2623
2624         return proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2625 }
2626 #endif
2627
2628 /**
2629  * struct do_proc_dointvec_minmax_conv_param - proc_dointvec_minmax() range checking structure
2630  * @min: pointer to minimum allowable value
2631  * @max: pointer to maximum allowable value
2632  *
2633  * The do_proc_dointvec_minmax_conv_param structure provides the
2634  * minimum and maximum values for doing range checking for those sysctl
2635  * parameters that use the proc_dointvec_minmax() handler.
2636  */
2637 struct do_proc_dointvec_minmax_conv_param {
2638         int *min;
2639         int *max;
2640 };
2641
2642 static int do_proc_dointvec_minmax_conv(bool *negp, unsigned long *lvalp,
2643                                         int *valp,
2644                                         int write, void *data)
2645 {
2646         struct do_proc_dointvec_minmax_conv_param *param = data;
2647         if (write) {
2648                 int val;
2649                 if (*negp) {
2650                         if (*lvalp > (unsigned long) INT_MAX + 1)
2651                                 return -EINVAL;
2652                         val = -*lvalp;
2653                 } else {
2654                         if (*lvalp > (unsigned long) INT_MAX)
2655                                 return -EINVAL;
2656                         val = *lvalp;
2657                 }
2658                 if ((param->min && *param->min > val) ||
2659                     (param->max && *param->max < val))
2660                         return -EINVAL;
2661                 *valp = val;
2662         } else {
2663                 int val = *valp;
2664                 if (val < 0) {
2665                         *negp = true;
2666                         *lvalp = -(unsigned long)val;
2667                 } else {
2668                         *negp = false;
2669                         *lvalp = (unsigned long)val;
2670                 }
2671         }
2672         return 0;
2673 }
2674
2675 /**
2676  * proc_dointvec_minmax - read a vector of integers with min/max values
2677  * @table: the sysctl table
2678  * @write: %TRUE if this is a write to the sysctl file
2679  * @buffer: the user buffer
2680  * @lenp: the size of the user buffer
2681  * @ppos: file position
2682  *
2683  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
2684  * values from/to the user buffer, treated as an ASCII string.
2685  *
2686  * This routine will ensure the values are within the range specified by
2687  * table->extra1 (min) and table->extra2 (max).
2688  *
2689  * Returns 0 on success or -EINVAL on write when the range check fails.
2690  */
2691 int proc_dointvec_minmax(struct ctl_table *table, int write,
2692                   void __user *buffer, size_t *lenp, loff_t *ppos)
2693 {
2694         struct do_proc_dointvec_minmax_conv_param param = {
2695                 .min = (int *) table->extra1,
2696                 .max = (int *) table->extra2,
2697         };
2698         return do_proc_dointvec(table, write, buffer, lenp, ppos,
2699                                 do_proc_dointvec_minmax_conv, &param);
2700 }
2701
2702 /**
2703  * struct do_proc_douintvec_minmax_conv_param - proc_douintvec_minmax() range checking structure
2704  * @min: pointer to minimum allowable value
2705  * @max: pointer to maximum allowable value
2706  *
2707  * The do_proc_douintvec_minmax_conv_param structure provides the
2708  * minimum and maximum values for doing range checking for those sysctl
2709  * parameters that use the proc_douintvec_minmax() handler.
2710  */
2711 struct do_proc_douintvec_minmax_conv_param {
2712         unsigned int *min;
2713         unsigned int *max;
2714 };
2715
2716 static int do_proc_douintvec_minmax_conv(unsigned long *lvalp,
2717                                          unsigned int *valp,
2718                                          int write, void *data)
2719 {
2720         struct do_proc_douintvec_minmax_conv_param *param = data;
2721
2722         if (write) {
2723                 unsigned int val = *lvalp;
2724
2725                 if (*lvalp > UINT_MAX)
2726                         return -EINVAL;
2727
2728                 if ((param->min && *param->min > val) ||
2729                     (param->max && *param->max < val))
2730                         return -ERANGE;
2731
2732                 *valp = val;
2733         } else {
2734                 unsigned int val = *valp;
2735                 *lvalp = (unsigned long) val;
2736         }
2737
2738         return 0;
2739 }
2740
2741 /**
2742  * proc_douintvec_minmax - read a vector of unsigned ints with min/max values
2743  * @table: the sysctl table
2744  * @write: %TRUE if this is a write to the sysctl file
2745  * @buffer: the user buffer
2746  * @lenp: the size of the user buffer
2747  * @ppos: file position
2748  *
2749  * Reads/writes up to table->maxlen/sizeof(unsigned int) unsigned integer
2750  * values from/to the user buffer, treated as an ASCII string. Negative
2751  * strings are not allowed.
2752  *
2753  * This routine will ensure the values are within the range specified by
2754  * table->extra1 (min) and table->extra2 (max). There is a final sanity
2755  * check for UINT_MAX to avoid having to support wrap around uses from
2756  * userspace.
2757  *
2758  * Returns 0 on success or -ERANGE on write when the range check fails.
2759  */
2760 int proc_douintvec_minmax(struct ctl_table *table, int write,
2761                           void __user *buffer, size_t *lenp, loff_t *ppos)
2762 {
2763         struct do_proc_douintvec_minmax_conv_param param = {
2764                 .min = (unsigned int *) table->extra1,
2765                 .max = (unsigned int *) table->extra2,
2766         };
2767         return do_proc_douintvec(table, write, buffer, lenp, ppos,
2768                                  do_proc_douintvec_minmax_conv, &param);
2769 }
2770
2771 static int do_proc_dopipe_max_size_conv(unsigned long *lvalp,
2772                                         unsigned int *valp,
2773                                         int write, void *data)
2774 {
2775         if (write) {
2776                 unsigned int val;
2777
2778                 val = round_pipe_size(*lvalp);
2779                 if (val == 0)
2780                         return -EINVAL;
2781
2782                 *valp = val;
2783         } else {
2784                 unsigned int val = *valp;
2785                 *lvalp = (unsigned long) val;
2786         }
2787
2788         return 0;
2789 }
2790
2791 static int proc_dopipe_max_size(struct ctl_table *table, int write,
2792                                 void __user *buffer, size_t *lenp, loff_t *ppos)
2793 {
2794         return do_proc_douintvec(table, write, buffer, lenp, ppos,
2795                                  do_proc_dopipe_max_size_conv, NULL);
2796 }
2797
2798 static void validate_coredump_safety(void)
2799 {
2800 #ifdef CONFIG_COREDUMP
2801         if (suid_dumpable == SUID_DUMP_ROOT &&
2802             core_pattern[0] != '/' && core_pattern[0] != '|') {
2803                 printk(KERN_WARNING
2804 "Unsafe core_pattern used with fs.suid_dumpable=2.\n"
2805 "Pipe handler or fully qualified core dump path required.\n"
2806 "Set kernel.core_pattern before fs.suid_dumpable.\n"
2807                 );
2808         }
2809 #endif
2810 }
2811
2812 static int proc_dointvec_minmax_coredump(struct ctl_table *table, int write,
2813                 void __user *buffer, size_t *lenp, loff_t *ppos)
2814 {
2815         int error = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
2816         if (!error)
2817                 validate_coredump_safety();
2818         return error;
2819 }
2820
2821 #ifdef CONFIG_COREDUMP
2822 static int proc_dostring_coredump(struct ctl_table *table, int write,
2823                   void __user *buffer, size_t *lenp, loff_t *ppos)
2824 {
2825         int error = proc_dostring(table, write, buffer, lenp, ppos);
2826         if (!error)
2827                 validate_coredump_safety();
2828         return error;
2829 }
2830 #endif
2831
2832 static int __do_proc_doulongvec_minmax(void *data, struct ctl_table *table, int write,
2833                                      void __user *buffer,
2834                                      size_t *lenp, loff_t *ppos,
2835                                      unsigned long convmul,
2836                                      unsigned long convdiv)
2837 {
2838         unsigned long *i, *min, *max;
2839         int vleft, first = 1, err = 0;
2840         size_t left;
2841         char *kbuf = NULL, *p;
2842
2843         if (!data || !table->maxlen || !*lenp || (*ppos && !write)) {
2844                 *lenp = 0;
2845                 return 0;
2846         }
2847
2848         i = (unsigned long *) data;
2849         min = (unsigned long *) table->extra1;
2850         max = (unsigned long *) table->extra2;
2851         vleft = table->maxlen / sizeof(unsigned long);
2852         left = *lenp;
2853
2854         if (write) {
2855                 if (proc_first_pos_non_zero_ignore(ppos, table))
2856                         goto out;
2857
2858                 if (left > PAGE_SIZE - 1)
2859                         left = PAGE_SIZE - 1;
2860                 p = kbuf = memdup_user_nul(buffer, left);
2861                 if (IS_ERR(kbuf))
2862                         return PTR_ERR(kbuf);
2863         }
2864
2865         for (; left && vleft--; i++, first = 0) {
2866                 unsigned long val;
2867
2868                 if (write) {
2869                         bool neg;
2870
2871                         left -= proc_skip_spaces(&p);
2872                         if (!left)
2873                                 break;
2874
2875                         err = proc_get_long(&p, &left, &val, &neg,
2876                                              proc_wspace_sep,
2877                                              sizeof(proc_wspace_sep), NULL);
2878                         if (err)
2879                                 break;
2880                         if (neg)
2881                                 continue;
2882                         val = convmul * val / convdiv;
2883                         if ((min && val < *min) || (max && val > *max))
2884                                 continue;
2885                         *i = val;
2886                 } else {
2887                         val = convdiv * (*i) / convmul;
2888                         if (!first) {
2889                                 err = proc_put_char(&buffer, &left, '\t');
2890                                 if (err)
2891                                         break;
2892                         }
2893                         err = proc_put_long(&buffer, &left, val, false);
2894                         if (err)
2895                                 break;
2896                 }
2897         }
2898
2899         if (!write && !first && left && !err)
2900                 err = proc_put_char(&buffer, &left, '\n');
2901         if (write && !err)
2902                 left -= proc_skip_spaces(&p);
2903         if (write) {
2904                 kfree(kbuf);
2905                 if (first)
2906                         return err ? : -EINVAL;
2907         }
2908         *lenp -= left;
2909 out:
2910         *ppos += *lenp;
2911         return err;
2912 }
2913
2914 static int do_proc_doulongvec_minmax(struct ctl_table *table, int write,
2915                                      void __user *buffer,
2916                                      size_t *lenp, loff_t *ppos,
2917                                      unsigned long convmul,
2918                                      unsigned long convdiv)
2919 {
2920         return __do_proc_doulongvec_minmax(table->data, table, write,
2921                         buffer, lenp, ppos, convmul, convdiv);
2922 }
2923
2924 /**
2925  * proc_doulongvec_minmax - read a vector of long integers with min/max values
2926  * @table: the sysctl table
2927  * @write: %TRUE if this is a write to the sysctl file
2928  * @buffer: the user buffer
2929  * @lenp: the size of the user buffer
2930  * @ppos: file position
2931  *
2932  * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2933  * values from/to the user buffer, treated as an ASCII string.
2934  *
2935  * This routine will ensure the values are within the range specified by
2936  * table->extra1 (min) and table->extra2 (max).
2937  *
2938  * Returns 0 on success.
2939  */
2940 int proc_doulongvec_minmax(struct ctl_table *table, int write,
2941                            void __user *buffer, size_t *lenp, loff_t *ppos)
2942 {
2943     return do_proc_doulongvec_minmax(table, write, buffer, lenp, ppos, 1l, 1l);
2944 }
2945
2946 /**
2947  * proc_doulongvec_ms_jiffies_minmax - read a vector of millisecond values with min/max values
2948  * @table: the sysctl table
2949  * @write: %TRUE if this is a write to the sysctl file
2950  * @buffer: the user buffer
2951  * @lenp: the size of the user buffer
2952  * @ppos: file position
2953  *
2954  * Reads/writes up to table->maxlen/sizeof(unsigned long) unsigned long
2955  * values from/to the user buffer, treated as an ASCII string. The values
2956  * are treated as milliseconds, and converted to jiffies when they are stored.
2957  *
2958  * This routine will ensure the values are within the range specified by
2959  * table->extra1 (min) and table->extra2 (max).
2960  *
2961  * Returns 0 on success.
2962  */
2963 int proc_doulongvec_ms_jiffies_minmax(struct ctl_table *table, int write,
2964                                       void __user *buffer,
2965                                       size_t *lenp, loff_t *ppos)
2966 {
2967     return do_proc_doulongvec_minmax(table, write, buffer,
2968                                      lenp, ppos, HZ, 1000l);
2969 }
2970
2971
2972 static int do_proc_dointvec_jiffies_conv(bool *negp, unsigned long *lvalp,
2973                                          int *valp,
2974                                          int write, void *data)
2975 {
2976         if (write) {
2977                 if (*lvalp > INT_MAX / HZ)
2978                         return 1;
2979                 *valp = *negp ? -(*lvalp*HZ) : (*lvalp*HZ);
2980         } else {
2981                 int val = *valp;
2982                 unsigned long lval;
2983                 if (val < 0) {
2984                         *negp = true;
2985                         lval = -(unsigned long)val;
2986                 } else {
2987                         *negp = false;
2988                         lval = (unsigned long)val;
2989                 }
2990                 *lvalp = lval / HZ;
2991         }
2992         return 0;
2993 }
2994
2995 static int do_proc_dointvec_userhz_jiffies_conv(bool *negp, unsigned long *lvalp,
2996                                                 int *valp,
2997                                                 int write, void *data)
2998 {
2999         if (write) {
3000                 if (USER_HZ < HZ && *lvalp > (LONG_MAX / HZ) * USER_HZ)
3001                         return 1;
3002                 *valp = clock_t_to_jiffies(*negp ? -*lvalp : *lvalp);
3003         } else {
3004                 int val = *valp;
3005                 unsigned long lval;
3006                 if (val < 0) {
3007                         *negp = true;
3008                         lval = -(unsigned long)val;
3009                 } else {
3010                         *negp = false;
3011                         lval = (unsigned long)val;
3012                 }
3013                 *lvalp = jiffies_to_clock_t(lval);
3014         }
3015         return 0;
3016 }
3017
3018 static int do_proc_dointvec_ms_jiffies_conv(bool *negp, unsigned long *lvalp,
3019                                             int *valp,
3020                                             int write, void *data)
3021 {
3022         if (write) {
3023                 unsigned long jif = msecs_to_jiffies(*negp ? -*lvalp : *lvalp);
3024
3025                 if (jif > INT_MAX)
3026                         return 1;
3027                 *valp = (int)jif;
3028         } else {
3029                 int val = *valp;
3030                 unsigned long lval;
3031                 if (val < 0) {
3032                         *negp = true;
3033                         lval = -(unsigned long)val;
3034                 } else {
3035                         *negp = false;
3036                         lval = (unsigned long)val;
3037                 }
3038                 *lvalp = jiffies_to_msecs(lval);
3039         }
3040         return 0;
3041 }
3042
3043 /**
3044  * proc_dointvec_jiffies - read a vector of integers as seconds
3045  * @table: the sysctl table
3046  * @write: %TRUE if this is a write to the sysctl file
3047  * @buffer: the user buffer
3048  * @lenp: the size of the user buffer
3049  * @ppos: file position
3050  *
3051  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3052  * values from/to the user buffer, treated as an ASCII string. 
3053  * The values read are assumed to be in seconds, and are converted into
3054  * jiffies.
3055  *
3056  * Returns 0 on success.
3057  */
3058 int proc_dointvec_jiffies(struct ctl_table *table, int write,
3059                           void __user *buffer, size_t *lenp, loff_t *ppos)
3060 {
3061     return do_proc_dointvec(table,write,buffer,lenp,ppos,
3062                             do_proc_dointvec_jiffies_conv,NULL);
3063 }
3064
3065 /**
3066  * proc_dointvec_userhz_jiffies - read a vector of integers as 1/USER_HZ seconds
3067  * @table: the sysctl table
3068  * @write: %TRUE if this is a write to the sysctl file
3069  * @buffer: the user buffer
3070  * @lenp: the size of the user buffer
3071  * @ppos: pointer to the file position
3072  *
3073  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3074  * values from/to the user buffer, treated as an ASCII string. 
3075  * The values read are assumed to be in 1/USER_HZ seconds, and 
3076  * are converted into jiffies.
3077  *
3078  * Returns 0 on success.
3079  */
3080 int proc_dointvec_userhz_jiffies(struct ctl_table *table, int write,
3081                                  void __user *buffer, size_t *lenp, loff_t *ppos)
3082 {
3083     return do_proc_dointvec(table,write,buffer,lenp,ppos,
3084                             do_proc_dointvec_userhz_jiffies_conv,NULL);
3085 }
3086
3087 /**
3088  * proc_dointvec_ms_jiffies - read a vector of integers as 1 milliseconds
3089  * @table: the sysctl table
3090  * @write: %TRUE if this is a write to the sysctl file
3091  * @buffer: the user buffer
3092  * @lenp: the size of the user buffer
3093  * @ppos: file position
3094  * @ppos: the current position in the file
3095  *
3096  * Reads/writes up to table->maxlen/sizeof(unsigned int) integer
3097  * values from/to the user buffer, treated as an ASCII string. 
3098  * The values read are assumed to be in 1/1000 seconds, and 
3099  * are converted into jiffies.
3100  *
3101  * Returns 0 on success.
3102  */
3103 int proc_dointvec_ms_jiffies(struct ctl_table *table, int write,
3104                              void __user *buffer, size_t *lenp, loff_t *ppos)
3105 {
3106         return do_proc_dointvec(table, write, buffer, lenp, ppos,
3107                                 do_proc_dointvec_ms_jiffies_conv, NULL);
3108 }
3109
3110 static int proc_do_cad_pid(struct ctl_table *table, int write,
3111                            void __user *buffer, size_t *lenp, loff_t *ppos)
3112 {
3113         struct pid *new_pid;
3114         pid_t tmp;
3115         int r;
3116
3117         tmp = pid_vnr(cad_pid);
3118
3119         r = __do_proc_dointvec(&tmp, table, write, buffer,
3120                                lenp, ppos, NULL, NULL);
3121         if (r || !write)
3122                 return r;
3123
3124         new_pid = find_get_pid(tmp);
3125         if (!new_pid)
3126                 return -ESRCH;
3127
3128         put_pid(xchg(&cad_pid, new_pid));
3129         return 0;
3130 }
3131
3132 /**
3133  * proc_do_large_bitmap - read/write from/to a large bitmap
3134  * @table: the sysctl table
3135  * @write: %TRUE if this is a write to the sysctl file
3136  * @buffer: the user buffer
3137  * @lenp: the size of the user buffer
3138  * @ppos: file position
3139  *
3140  * The bitmap is stored at table->data and the bitmap length (in bits)
3141  * in table->maxlen.
3142  *
3143  * We use a range comma separated format (e.g. 1,3-4,10-10) so that
3144  * large bitmaps may be represented in a compact manner. Writing into
3145  * the file will clear the bitmap then update it with the given input.
3146  *
3147  * Returns 0 on success.
3148  */
3149 int proc_do_large_bitmap(struct ctl_table *table, int write,
3150                          void __user *buffer, size_t *lenp, loff_t *ppos)
3151 {
3152         int err = 0;
3153         bool first = 1;
3154         size_t left = *lenp;
3155         unsigned long bitmap_len = table->maxlen;
3156         unsigned long *bitmap = *(unsigned long **) table->data;
3157         unsigned long *tmp_bitmap = NULL;
3158         char tr_a[] = { '-', ',', '\n' }, tr_b[] = { ',', '\n', 0 }, c;
3159
3160         if (!bitmap || !bitmap_len || !left || (*ppos && !write)) {
3161                 *lenp = 0;
3162                 return 0;
3163         }
3164
3165         if (write) {
3166                 char *kbuf, *p;
3167
3168                 if (left > PAGE_SIZE - 1)
3169                         left = PAGE_SIZE - 1;
3170
3171                 p = kbuf = memdup_user_nul(buffer, left);
3172                 if (IS_ERR(kbuf))
3173                         return PTR_ERR(kbuf);
3174
3175                 tmp_bitmap = kcalloc(BITS_TO_LONGS(bitmap_len),
3176                                      sizeof(unsigned long),
3177                                      GFP_KERNEL);
3178                 if (!tmp_bitmap) {
3179                         kfree(kbuf);
3180                         return -ENOMEM;
3181                 }
3182                 proc_skip_char(&p, &left, '\n');
3183                 while (!err && left) {
3184                         unsigned long val_a, val_b;
3185                         bool neg;
3186
3187                         err = proc_get_long(&p, &left, &val_a, &neg, tr_a,
3188                                              sizeof(tr_a), &c);
3189                         if (err)
3190                                 break;
3191                         if (val_a >= bitmap_len || neg) {
3192                                 err = -EINVAL;
3193                                 break;
3194                         }
3195
3196                         val_b = val_a;
3197                         if (left) {
3198                                 p++;
3199                                 left--;
3200                         }
3201
3202                         if (c == '-') {
3203                                 err = proc_get_long(&p, &left, &val_b,
3204                                                      &neg, tr_b, sizeof(tr_b),
3205                                                      &c);
3206                                 if (err)
3207                                         break;
3208                                 if (val_b >= bitmap_len || neg ||
3209                                     val_a > val_b) {
3210                                         err = -EINVAL;
3211                                         break;
3212                                 }
3213                                 if (left) {
3214                                         p++;
3215                                         left--;
3216                                 }
3217                         }
3218
3219                         bitmap_set(tmp_bitmap, val_a, val_b - val_a + 1);
3220                         first = 0;
3221                         proc_skip_char(&p, &left, '\n');
3222                 }
3223                 kfree(kbuf);
3224         } else {
3225                 unsigned long bit_a, bit_b = 0;
3226
3227                 while (left) {
3228                         bit_a = find_next_bit(bitmap, bitmap_len, bit_b);
3229                         if (bit_a >= bitmap_len)
3230                                 break;
3231                         bit_b = find_next_zero_bit(bitmap, bitmap_len,
3232                                                    bit_a + 1) - 1;
3233
3234                         if (!first) {
3235                                 err = proc_put_char(&buffer, &left, ',');
3236                                 if (err)
3237                                         break;
3238                         }
3239                         err = proc_put_long(&buffer, &left, bit_a, false);
3240                         if (err)
3241                                 break;
3242                         if (bit_a != bit_b) {
3243                                 err = proc_put_char(&buffer, &left, '-');
3244                                 if (err)
3245                                         break;
3246                                 err = proc_put_long(&buffer, &left, bit_b, false);
3247                                 if (err)
3248                                         break;
3249                         }
3250
3251                         first = 0; bit_b++;
3252                 }
3253                 if (!err)
3254                         err = proc_put_char(&buffer, &left, '\n');
3255         }
3256
3257         if (!err) {
3258                 if (write) {
3259                         if (*ppos)
3260                                 bitmap_or(bitmap, bitmap, tmp_bitmap, bitmap_len);
3261                         else
3262                                 bitmap_copy(bitmap, tmp_bitmap, bitmap_len);
3263                 }
3264                 *lenp -= left;
3265                 *ppos += *lenp;
3266         }
3267
3268         kfree(tmp_bitmap);
3269         return err;
3270 }
3271
3272 #else /* CONFIG_PROC_SYSCTL */
3273
3274 int proc_dostring(struct ctl_table *table, int write,
3275                   void __user *buffer, size_t *lenp, loff_t *ppos)
3276 {
3277         return -ENOSYS;
3278 }
3279
3280 int proc_dointvec(struct ctl_table *table, int write,
3281                   void __user *buffer, size_t *lenp, loff_t *ppos)
3282 {
3283         return -ENOSYS;
3284 }
3285
3286 int proc_douintvec(struct ctl_table *table, int write,
3287                   void __user *buffer, size_t *lenp, loff_t *ppos)
3288 {
3289         return -ENOSYS;
3290 }
3291
3292 int proc_dointvec_minmax(struct ctl_table *table, int write,
3293                     void __user *buffer, size_t *lenp, loff_t *ppos)
3294 {
3295         return -ENOSYS;