xref: /OK3568_Linux_fs/kernel/security/keys/sysctl.c (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-or-later
2*4882a593Smuzhiyun /* Key management controls
3*4882a593Smuzhiyun  *
4*4882a593Smuzhiyun  * Copyright (C) 2008 Red Hat, Inc. All Rights Reserved.
5*4882a593Smuzhiyun  * Written by David Howells (dhowells@redhat.com)
6*4882a593Smuzhiyun  */
7*4882a593Smuzhiyun 
8*4882a593Smuzhiyun #include <linux/key.h>
9*4882a593Smuzhiyun #include <linux/sysctl.h>
10*4882a593Smuzhiyun #include "internal.h"
11*4882a593Smuzhiyun 
12*4882a593Smuzhiyun struct ctl_table key_sysctls[] = {
13*4882a593Smuzhiyun 	{
14*4882a593Smuzhiyun 		.procname = "maxkeys",
15*4882a593Smuzhiyun 		.data = &key_quota_maxkeys,
16*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
17*4882a593Smuzhiyun 		.mode = 0644,
18*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
19*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ONE,
20*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
21*4882a593Smuzhiyun 	},
22*4882a593Smuzhiyun 	{
23*4882a593Smuzhiyun 		.procname = "maxbytes",
24*4882a593Smuzhiyun 		.data = &key_quota_maxbytes,
25*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
26*4882a593Smuzhiyun 		.mode = 0644,
27*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
28*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ONE,
29*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
30*4882a593Smuzhiyun 	},
31*4882a593Smuzhiyun 	{
32*4882a593Smuzhiyun 		.procname = "root_maxkeys",
33*4882a593Smuzhiyun 		.data = &key_quota_root_maxkeys,
34*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
35*4882a593Smuzhiyun 		.mode = 0644,
36*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
37*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ONE,
38*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
39*4882a593Smuzhiyun 	},
40*4882a593Smuzhiyun 	{
41*4882a593Smuzhiyun 		.procname = "root_maxbytes",
42*4882a593Smuzhiyun 		.data = &key_quota_root_maxbytes,
43*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
44*4882a593Smuzhiyun 		.mode = 0644,
45*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
46*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ONE,
47*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
48*4882a593Smuzhiyun 	},
49*4882a593Smuzhiyun 	{
50*4882a593Smuzhiyun 		.procname = "gc_delay",
51*4882a593Smuzhiyun 		.data = &key_gc_delay,
52*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
53*4882a593Smuzhiyun 		.mode = 0644,
54*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
55*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ZERO,
56*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
57*4882a593Smuzhiyun 	},
58*4882a593Smuzhiyun #ifdef CONFIG_PERSISTENT_KEYRINGS
59*4882a593Smuzhiyun 	{
60*4882a593Smuzhiyun 		.procname = "persistent_keyring_expiry",
61*4882a593Smuzhiyun 		.data = &persistent_keyring_expiry,
62*4882a593Smuzhiyun 		.maxlen = sizeof(unsigned),
63*4882a593Smuzhiyun 		.mode = 0644,
64*4882a593Smuzhiyun 		.proc_handler = proc_dointvec_minmax,
65*4882a593Smuzhiyun 		.extra1 = (void *) SYSCTL_ZERO,
66*4882a593Smuzhiyun 		.extra2 = (void *) SYSCTL_INT_MAX,
67*4882a593Smuzhiyun 	},
68*4882a593Smuzhiyun #endif
69*4882a593Smuzhiyun 	{ }
70*4882a593Smuzhiyun };
71