28898e260a
The security keys sysctls are already declared on its own file, just move the sysctl registration to its own file to help avoid merge conflicts on sysctls.c, and help with clearing up sysctl.c further. This creates a small penalty of 23 bytes: ./scripts/bloat-o-meter vmlinux.1 vmlinux.2 add/remove: 2/0 grow/shrink: 0/1 up/down: 49/-26 (23) Function old new delta init_security_keys_sysctls - 33 +33 __pfx_init_security_keys_sysctls - 16 +16 sysctl_init_bases 85 59 -26 Total: Before=21256937, After=21256960, chg +0.00% But soon we'll be saving tons of bytes anyway, as we modify the sysctl registrations to use ARRAY_SIZE and so we get rid of all the empty array elements so let's just clean this up now. Reviewed-by: Paul Moore <paul@paul-moore.com> Acked-by: Jarkko Sakkinen <jarkko@kernel.org> Acked-by: David Howells <dhowells@redhat.com> Signed-off-by: Luis Chamberlain <mcgrof@kernel.org>
78 lines
1.8 KiB
C
78 lines
1.8 KiB
C
// SPDX-License-Identifier: GPL-2.0-or-later
|
|
/* Key management controls
|
|
*
|
|
* Copyright (C) 2008 Red Hat, Inc. All Rights Reserved.
|
|
* Written by David Howells (dhowells@redhat.com)
|
|
*/
|
|
|
|
#include <linux/key.h>
|
|
#include <linux/sysctl.h>
|
|
#include "internal.h"
|
|
|
|
struct ctl_table key_sysctls[] = {
|
|
{
|
|
.procname = "maxkeys",
|
|
.data = &key_quota_maxkeys,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ONE,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
{
|
|
.procname = "maxbytes",
|
|
.data = &key_quota_maxbytes,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ONE,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
{
|
|
.procname = "root_maxkeys",
|
|
.data = &key_quota_root_maxkeys,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ONE,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
{
|
|
.procname = "root_maxbytes",
|
|
.data = &key_quota_root_maxbytes,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ONE,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
{
|
|
.procname = "gc_delay",
|
|
.data = &key_gc_delay,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ZERO,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
#ifdef CONFIG_PERSISTENT_KEYRINGS
|
|
{
|
|
.procname = "persistent_keyring_expiry",
|
|
.data = &persistent_keyring_expiry,
|
|
.maxlen = sizeof(unsigned),
|
|
.mode = 0644,
|
|
.proc_handler = proc_dointvec_minmax,
|
|
.extra1 = (void *) SYSCTL_ZERO,
|
|
.extra2 = (void *) SYSCTL_INT_MAX,
|
|
},
|
|
#endif
|
|
{ }
|
|
};
|
|
|
|
static int __init init_security_keys_sysctls(void)
|
|
{
|
|
register_sysctl_init("kernel/keys", key_sysctls);
|
|
return 0;
|
|
}
|
|
early_initcall(init_security_keys_sysctls);
|