1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /* Key management controls
4 * Copyright (C) 2008 Red Hat, Inc. All Rights Reserved.
5 * Written by David Howells (dhowells@redhat.com)
9 #include <linux/sysctl.h>
12 struct ctl_table key_sysctls[] = {
14 .procname = "maxkeys",
15 .data = &key_quota_maxkeys,
16 .maxlen = sizeof(unsigned),
18 .proc_handler = proc_dointvec_minmax,
19 .extra1 = (void *) SYSCTL_ONE,
20 .extra2 = (void *) SYSCTL_INT_MAX,
23 .procname = "maxbytes",
24 .data = &key_quota_maxbytes,
25 .maxlen = sizeof(unsigned),
27 .proc_handler = proc_dointvec_minmax,
28 .extra1 = (void *) SYSCTL_ONE,
29 .extra2 = (void *) SYSCTL_INT_MAX,
32 .procname = "root_maxkeys",
33 .data = &key_quota_root_maxkeys,
34 .maxlen = sizeof(unsigned),
36 .proc_handler = proc_dointvec_minmax,
37 .extra1 = (void *) SYSCTL_ONE,
38 .extra2 = (void *) SYSCTL_INT_MAX,
41 .procname = "root_maxbytes",
42 .data = &key_quota_root_maxbytes,
43 .maxlen = sizeof(unsigned),
45 .proc_handler = proc_dointvec_minmax,
46 .extra1 = (void *) SYSCTL_ONE,
47 .extra2 = (void *) SYSCTL_INT_MAX,
50 .procname = "gc_delay",
51 .data = &key_gc_delay,
52 .maxlen = sizeof(unsigned),
54 .proc_handler = proc_dointvec_minmax,
55 .extra1 = (void *) SYSCTL_ZERO,
56 .extra2 = (void *) SYSCTL_INT_MAX,
58 #ifdef CONFIG_PERSISTENT_KEYRINGS
60 .procname = "persistent_keyring_expiry",
61 .data = &persistent_keyring_expiry,
62 .maxlen = sizeof(unsigned),
64 .proc_handler = proc_dointvec_minmax,
65 .extra1 = (void *) SYSCTL_ZERO,
66 .extra2 = (void *) SYSCTL_INT_MAX,
72 static int __init init_security_keys_sysctls(void)
74 register_sysctl_init("kernel/keys", key_sysctls);
77 early_initcall(init_security_keys_sysctls);