diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2009-06-11 13:01:41 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2009-06-11 13:01:41 -0400 |
| commit | 3296ca27f50ecbd71db1d808c7a72d311027f919 (patch) | |
| tree | 833eaa58b2013bda86d4bd95faf6efad7a2d5ca4 /kernel/sysctl.c | |
| parent | e893123c7378192c094747dadec326b7c000c190 (diff) | |
| parent | 73fbad283cfbbcf02939bdbda31fc4a30e729cca (diff) | |
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6
* 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6: (44 commits)
nommu: Provide mmap_min_addr definition.
TOMOYO: Add description of lists and structures.
TOMOYO: Remove unused field.
integrity: ima audit dentry_open failure
TOMOYO: Remove unused parameter.
security: use mmap_min_addr indepedently of security models
TOMOYO: Simplify policy reader.
TOMOYO: Remove redundant markers.
SELinux: define audit permissions for audit tree netlink messages
TOMOYO: Remove unused mutex.
tomoyo: avoid get+put of task_struct
smack: Remove redundant initialization.
integrity: nfsd imbalance bug fix
rootplug: Remove redundant initialization.
smack: do not beyond ARRAY_SIZE of data
integrity: move ima_counts_get
integrity: path_check update
IMA: Add __init notation to ima functions
IMA: Minimal IMA policy and boot param for TCB IMA policy
selinux: remove obsolete read buffer limit from sel_read_bool
...
Diffstat (limited to 'kernel/sysctl.c')
| -rw-r--r-- | kernel/sysctl.c | 14 |
1 files changed, 12 insertions, 2 deletions
diff --git a/kernel/sysctl.c b/kernel/sysctl.c index 6a463716ecb..944ba03cae1 100644 --- a/kernel/sysctl.c +++ b/kernel/sysctl.c | |||
| @@ -114,6 +114,7 @@ static int ngroups_max = NGROUPS_MAX; | |||
| 114 | 114 | ||
| 115 | #ifdef CONFIG_MODULES | 115 | #ifdef CONFIG_MODULES |
| 116 | extern char modprobe_path[]; | 116 | extern char modprobe_path[]; |
| 117 | extern int modules_disabled; | ||
| 117 | #endif | 118 | #endif |
| 118 | #ifdef CONFIG_CHR_DEV_SG | 119 | #ifdef CONFIG_CHR_DEV_SG |
| 119 | extern int sg_big_buff; | 120 | extern int sg_big_buff; |
| @@ -534,6 +535,17 @@ static struct ctl_table kern_table[] = { | |||
| 534 | .proc_handler = &proc_dostring, | 535 | .proc_handler = &proc_dostring, |
| 535 | .strategy = &sysctl_string, | 536 | .strategy = &sysctl_string, |
| 536 | }, | 537 | }, |
| 538 | { | ||
| 539 | .ctl_name = CTL_UNNUMBERED, | ||
| 540 | .procname = "modules_disabled", | ||
| 541 | .data = &modules_disabled, | ||
| 542 | .maxlen = sizeof(int), | ||
| 543 | .mode = 0644, | ||
| 544 | /* only handle a transition from default "0" to "1" */ | ||
| 545 | .proc_handler = &proc_dointvec_minmax, | ||
| 546 | .extra1 = &one, | ||
| 547 | .extra2 = &one, | ||
| 548 | }, | ||
| 537 | #endif | 549 | #endif |
| 538 | #if defined(CONFIG_HOTPLUG) && defined(CONFIG_NET) | 550 | #if defined(CONFIG_HOTPLUG) && defined(CONFIG_NET) |
| 539 | { | 551 | { |
| @@ -1233,7 +1245,6 @@ static struct ctl_table vm_table[] = { | |||
| 1233 | .strategy = &sysctl_jiffies, | 1245 | .strategy = &sysctl_jiffies, |
| 1234 | }, | 1246 | }, |
| 1235 | #endif | 1247 | #endif |
| 1236 | #ifdef CONFIG_SECURITY | ||
| 1237 | { | 1248 | { |
| 1238 | .ctl_name = CTL_UNNUMBERED, | 1249 | .ctl_name = CTL_UNNUMBERED, |
| 1239 | .procname = "mmap_min_addr", | 1250 | .procname = "mmap_min_addr", |
| @@ -1242,7 +1253,6 @@ static struct ctl_table vm_table[] = { | |||
| 1242 | .mode = 0644, | 1253 | .mode = 0644, |
| 1243 | .proc_handler = &proc_doulongvec_minmax, | 1254 | .proc_handler = &proc_doulongvec_minmax, |
| 1244 | }, | 1255 | }, |
| 1245 | #endif | ||
| 1246 | #ifdef CONFIG_NUMA | 1256 | #ifdef CONFIG_NUMA |
| 1247 | { | 1257 | { |
| 1248 | .ctl_name = CTL_UNNUMBERED, | 1258 | .ctl_name = CTL_UNNUMBERED, |