1 files changed, 20 insertions, 0 deletions
diff --git a/Documentation/sysctl/kernel.txt b/Documentation/sysctl/kernel.txt
index 35159176997b..9f11d36a8c10 100644
--- a/Documentation/sysctl/kernel.txt
+++ b/Documentation/sysctl/kernel.txt
@@ -49,6 +49,7 @@ show up in /proc/sys/kernel:
 - shmmax                      [ sysv ipc ]
 - shmmni
 - stop-a                      [ SPARC only ]
+- suid_dumpable
 - sysrq                       ==> Documentation/sysrq.txt
 - tainted
 - threads-max
@@ -300,6 +301,25 @@ kernel.  This value defaults to SHMMAX.
 ==============================================================
+suid_dumpable:
+This value can be used to query and set the core dump mode for setuid
+or otherwise protected/tainted binaries. The modes are
+0 - (default) - traditional behaviour. Any process which has changed
+        privilege levels or is execute only will not be dumped
+1 - (debug) - all processes dump core when possible. The core dump is
+        owned by the current user and no security is applied. This is
+        intended for system debugging situations only. Ptrace is unchecked.
+2 - (suidsafe) - any binary which normally would not be dumped is dumped
+        readable by root only. This allows the end user to remove
+        such a dump but not access it directly. For security reasons
+        core dumps in this mode will not overwrite one another or
+        other files. This mode is appropriate when adminstrators are
+        attempting to debug problems in a normal environment.
+==============================================================
 tainted: 
 Non-zero if the kernel has been tainted.  Numeric values, which

diff --git a/Documentation/sysctl/kernel.txt b/Documentation/sysctl/kernel.txt index 35159176997b..9f11d36a8c10 100644 --- a/Documentation/sysctl/kernel.txt +++ b/Documentation/sysctl/kernel.txt
@@ -49,6 +49,7 @@ show up in /proc/sys/kernel:
49	- shmmax [ sysv ipc ]	49	- shmmax [ sysv ipc ]
50	- shmmni	50	- shmmni
51	- stop-a [ SPARC only ]	51	- stop-a [ SPARC only ]
		52	- suid_dumpable
52	- sysrq ==> Documentation/sysrq.txt	53	- sysrq ==> Documentation/sysrq.txt
53	- tainted	54	- tainted
54	- threads-max	55	- threads-max
@@ -300,6 +301,25 @@ kernel. This value defaults to SHMMAX.
300		301
301	==============================================================	302	==============================================================
302		303
		304	suid_dumpable:
		305
		306	This value can be used to query and set the core dump mode for setuid
		307	or otherwise protected/tainted binaries. The modes are
		308
		309	0 - (default) - traditional behaviour. Any process which has changed
		310	privilege levels or is execute only will not be dumped
		311	1 - (debug) - all processes dump core when possible. The core dump is
		312	owned by the current user and no security is applied. This is
		313	intended for system debugging situations only. Ptrace is unchecked.
		314	2 - (suidsafe) - any binary which normally would not be dumped is dumped
		315	readable by root only. This allows the end user to remove
		316	such a dump but not access it directly. For security reasons
		317	core dumps in this mode will not overwrite one another or
		318	other files. This mode is appropriate when adminstrators are
		319	attempting to debug problems in a normal environment.
		320
		321	==============================================================
		322
303	tainted:	323	tainted:
304		324
305	Non-zero if the kernel has been tainted. Numeric values, which	325	Non-zero if the kernel has been tainted. Numeric values, which