diff options
Diffstat (limited to 'Documentation/sysctl/kernel.txt')
| -rw-r--r-- | Documentation/sysctl/kernel.txt | 33 |
1 files changed, 31 insertions, 2 deletions
diff --git a/Documentation/sysctl/kernel.txt b/Documentation/sysctl/kernel.txt index 3894eaa23486..5e7cb39ad195 100644 --- a/Documentation/sysctl/kernel.txt +++ b/Documentation/sysctl/kernel.txt | |||
| @@ -28,11 +28,13 @@ show up in /proc/sys/kernel: | |||
| 28 | - core_uses_pid | 28 | - core_uses_pid |
| 29 | - ctrl-alt-del | 29 | - ctrl-alt-del |
| 30 | - dentry-state | 30 | - dentry-state |
| 31 | - dmesg_restrict | ||
| 31 | - domainname | 32 | - domainname |
| 32 | - hostname | 33 | - hostname |
| 33 | - hotplug | 34 | - hotplug |
| 34 | - java-appletviewer [ binfmt_java, obsolete ] | 35 | - java-appletviewer [ binfmt_java, obsolete ] |
| 35 | - java-interpreter [ binfmt_java, obsolete ] | 36 | - java-interpreter [ binfmt_java, obsolete ] |
| 37 | - kptr_restrict | ||
| 36 | - kstack_depth_to_print [ X86 only ] | 38 | - kstack_depth_to_print [ X86 only ] |
| 37 | - l2cr [ PPC only ] | 39 | - l2cr [ PPC only ] |
| 38 | - modprobe ==> Documentation/debugging-modules.txt | 40 | - modprobe ==> Documentation/debugging-modules.txt |
| @@ -159,7 +161,8 @@ core_pattern is used to specify a core dumpfile pattern name. | |||
| 159 | %s signal number | 161 | %s signal number |
| 160 | %t UNIX time of dump | 162 | %t UNIX time of dump |
| 161 | %h hostname | 163 | %h hostname |
| 162 | %e executable filename | 164 | %e executable filename (may be shortened) |
| 165 | %E executable path | ||
| 163 | %<OTHER> both are dropped | 166 | %<OTHER> both are dropped |
| 164 | . If the first character of the pattern is a '|', the kernel will treat | 167 | . If the first character of the pattern is a '|', the kernel will treat |
| 165 | the rest of the pattern as a command to run. The core dump will be | 168 | the rest of the pattern as a command to run. The core dump will be |
| @@ -213,6 +216,19 @@ to decide what to do with it. | |||
| 213 | 216 | ||
| 214 | ============================================================== | 217 | ============================================================== |
| 215 | 218 | ||
| 219 | dmesg_restrict: | ||
| 220 | |||
| 221 | This toggle indicates whether unprivileged users are prevented from using | ||
| 222 | dmesg(8) to view messages from the kernel's log buffer. When | ||
| 223 | dmesg_restrict is set to (0) there are no restrictions. When | ||
| 224 | dmesg_restrict is set set to (1), users must have CAP_SYSLOG to use | ||
| 225 | dmesg(8). | ||
| 226 | |||
| 227 | The kernel config option CONFIG_SECURITY_DMESG_RESTRICT sets the default | ||
| 228 | value of dmesg_restrict. | ||
| 229 | |||
| 230 | ============================================================== | ||
| 231 | |||
| 216 | domainname & hostname: | 232 | domainname & hostname: |
| 217 | 233 | ||
| 218 | These files can be used to set the NIS/YP domainname and the | 234 | These files can be used to set the NIS/YP domainname and the |
| @@ -247,6 +263,19 @@ This flag controls the L2 cache of G3 processor boards. If | |||
| 247 | 263 | ||
| 248 | ============================================================== | 264 | ============================================================== |
| 249 | 265 | ||
| 266 | kptr_restrict: | ||
| 267 | |||
| 268 | This toggle indicates whether restrictions are placed on | ||
| 269 | exposing kernel addresses via /proc and other interfaces. When | ||
| 270 | kptr_restrict is set to (0), there are no restrictions. When | ||
| 271 | kptr_restrict is set to (1), the default, kernel pointers | ||
| 272 | printed using the %pK format specifier will be replaced with 0's | ||
| 273 | unless the user has CAP_SYSLOG. When kptr_restrict is set to | ||
| 274 | (2), kernel pointers printed using %pK will be replaced with 0's | ||
| 275 | regardless of privileges. | ||
| 276 | |||
| 277 | ============================================================== | ||
| 278 | |||
| 250 | kstack_depth_to_print: (X86 only) | 279 | kstack_depth_to_print: (X86 only) |
| 251 | 280 | ||
| 252 | Controls the number of words to print when dumping the raw | 281 | Controls the number of words to print when dumping the raw |
| @@ -339,7 +368,7 @@ the different loglevels. | |||
| 339 | 368 | ||
| 340 | - console_loglevel: messages with a higher priority than | 369 | - console_loglevel: messages with a higher priority than |
| 341 | this will be printed to the console | 370 | this will be printed to the console |
| 342 | - default_message_level: messages without an explicit priority | 371 | - default_message_loglevel: messages without an explicit priority |
| 343 | will be printed with this priority | 372 | will be printed with this priority |
| 344 | - minimum_console_loglevel: minimum (highest) value to which | 373 | - minimum_console_loglevel: minimum (highest) value to which |
| 345 | console_loglevel can be set | 374 | console_loglevel can be set |