1/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
2#ifndef _LINUX_PRCTL_H
3#define _LINUX_PRCTL_H
4
5#include <linux/types.h>
6
7/* Values to pass as first argument to prctl() */
8
9#define PR_SET_PDEATHSIG 1 /* Second arg is a signal */
10#define PR_GET_PDEATHSIG 2 /* Second arg is a ptr to return the signal */
11
12/* Get/set current->mm->dumpable */
13#define PR_GET_DUMPABLE 3
14#define PR_SET_DUMPABLE 4
15
16/* Get/set unaligned access control bits (if meaningful) */
17#define PR_GET_UNALIGN 5
18#define PR_SET_UNALIGN 6
19# define PR_UNALIGN_NOPRINT 1 /* silently fix up unaligned user accesses */
20# define PR_UNALIGN_SIGBUS 2 /* generate SIGBUS on unaligned user access */
21
22/* Get/set whether or not to drop capabilities on setuid() away from
23 * uid 0 (as per security/commoncap.c) */
24#define PR_GET_KEEPCAPS 7
25#define PR_SET_KEEPCAPS 8
26
27/* Get/set floating-point emulation control bits (if meaningful) */
28#define PR_GET_FPEMU 9
29#define PR_SET_FPEMU 10
30# define PR_FPEMU_NOPRINT 1 /* silently emulate fp operations accesses */
31# define PR_FPEMU_SIGFPE 2 /* don't emulate fp operations, send SIGFPE instead */
32
33/* Get/set floating-point exception mode (if meaningful) */
34#define PR_GET_FPEXC 11
35#define PR_SET_FPEXC 12
36# define PR_FP_EXC_SW_ENABLE 0x80 /* Use FPEXC for FP exception enables */
37# define PR_FP_EXC_DIV 0x010000 /* floating point divide by zero */
38# define PR_FP_EXC_OVF 0x020000 /* floating point overflow */
39# define PR_FP_EXC_UND 0x040000 /* floating point underflow */
40# define PR_FP_EXC_RES 0x080000 /* floating point inexact result */
41# define PR_FP_EXC_INV 0x100000 /* floating point invalid operation */
42# define PR_FP_EXC_DISABLED 0 /* FP exceptions disabled */
43# define PR_FP_EXC_NONRECOV 1 /* async non-recoverable exc. mode */
44# define PR_FP_EXC_ASYNC 2 /* async recoverable exception mode */
45# define PR_FP_EXC_PRECISE 3 /* precise exception mode */
46
47/* Get/set whether we use statistical process timing or accurate timestamp
48 * based process timing */
49#define PR_GET_TIMING 13
50#define PR_SET_TIMING 14
51# define PR_TIMING_STATISTICAL 0 /* Normal, traditional,
52 statistical process timing */
53# define PR_TIMING_TIMESTAMP 1 /* Accurate timestamp based
54 process timing */
55
56#define PR_SET_NAME 15 /* Set process name */
57#define PR_GET_NAME 16 /* Get process name */
58
59/* Get/set process endian */
60#define PR_GET_ENDIAN 19
61#define PR_SET_ENDIAN 20
62# define PR_ENDIAN_BIG 0
63# define PR_ENDIAN_LITTLE 1 /* True little endian mode */
64# define PR_ENDIAN_PPC_LITTLE 2 /* "PowerPC" pseudo little endian */
65
66/* Get/set process seccomp mode */
67#define PR_GET_SECCOMP 21
68#define PR_SET_SECCOMP 22
69
70/* Get/set the capability bounding set (as per security/commoncap.c) */
71#define PR_CAPBSET_READ 23
72#define PR_CAPBSET_DROP 24
73
74/* Get/set the process' ability to use the timestamp counter instruction */
75#define PR_GET_TSC 25
76#define PR_SET_TSC 26
77# define PR_TSC_ENABLE 1 /* allow the use of the timestamp counter */
78# define PR_TSC_SIGSEGV 2 /* throw a SIGSEGV instead of reading the TSC */
79
80/* Get/set securebits (as per security/commoncap.c) */
81#define PR_GET_SECUREBITS 27
82#define PR_SET_SECUREBITS 28
83
84/*
85 * Get/set the timerslack as used by poll/select/nanosleep
86 * A value of 0 means "use default"
87 */
88#define PR_SET_TIMERSLACK 29
89#define PR_GET_TIMERSLACK 30
90
91#define PR_TASK_PERF_EVENTS_DISABLE 31
92#define PR_TASK_PERF_EVENTS_ENABLE 32
93
94/*
95 * Set early/late kill mode for hwpoison memory corruption.
96 * This influences when the process gets killed on a memory corruption.
97 */
98#define PR_MCE_KILL 33
99# define PR_MCE_KILL_CLEAR 0
100# define PR_MCE_KILL_SET 1
101
102# define PR_MCE_KILL_LATE 0
103# define PR_MCE_KILL_EARLY 1
104# define PR_MCE_KILL_DEFAULT 2
105
106#define PR_MCE_KILL_GET 34
107
108/*
109 * Tune up process memory map specifics.
110 */
111#define PR_SET_MM 35
112# define PR_SET_MM_START_CODE 1
113# define PR_SET_MM_END_CODE 2
114# define PR_SET_MM_START_DATA 3
115# define PR_SET_MM_END_DATA 4
116# define PR_SET_MM_START_STACK 5
117# define PR_SET_MM_START_BRK 6
118# define PR_SET_MM_BRK 7
119# define PR_SET_MM_ARG_START 8
120# define PR_SET_MM_ARG_END 9
121# define PR_SET_MM_ENV_START 10
122# define PR_SET_MM_ENV_END 11
123# define PR_SET_MM_AUXV 12
124# define PR_SET_MM_EXE_FILE 13
125# define PR_SET_MM_MAP 14
126# define PR_SET_MM_MAP_SIZE 15
127
128/*
129 * This structure provides new memory descriptor
130 * map which mostly modifies /proc/pid/stat[m]
131 * output for a task. This mostly done in a
132 * sake of checkpoint/restore functionality.
133 */
134struct prctl_mm_map {
135 __u64 start_code; /* code section bounds */
136 __u64 end_code;
137 __u64 start_data; /* data section bounds */
138 __u64 end_data;
139 __u64 start_brk; /* heap for brk() syscall */
140 __u64 brk;
141 __u64 start_stack; /* stack starts at */
142 __u64 arg_start; /* command line arguments bounds */
143 __u64 arg_end;
144 __u64 env_start; /* environment variables bounds */
145 __u64 env_end;
146 __u64 *auxv; /* auxiliary vector */
147 __u32 auxv_size; /* vector size */
148 __u32 exe_fd; /* /proc/$pid/exe link file */
149};
150
151/*
152 * Set specific pid that is allowed to ptrace the current task.
153 * A value of 0 mean "no process".
154 */
155#define PR_SET_PTRACER 0x59616d61
156# define PR_SET_PTRACER_ANY ((unsigned long)-1)
157
158#define PR_SET_CHILD_SUBREAPER 36
159#define PR_GET_CHILD_SUBREAPER 37
160
161/*
162 * If no_new_privs is set, then operations that grant new privileges (i.e.
163 * execve) will either fail or not grant them. This affects suid/sgid,
164 * file capabilities, and LSMs.
165 *
166 * Operations that merely manipulate or drop existing privileges (setresuid,
167 * capset, etc.) will still work. Drop those privileges if you want them gone.
168 *
169 * Changing LSM security domain is considered a new privilege. So, for example,
170 * asking selinux for a specific new context (e.g. with runcon) will result
171 * in execve returning -EPERM.
172 *
173 * See Documentation/prctl/no_new_privs.txt for more details.
174 */
175#define PR_SET_NO_NEW_PRIVS 38
176#define PR_GET_NO_NEW_PRIVS 39
177
178#define PR_GET_TID_ADDRESS 40
179
180#define PR_SET_THP_DISABLE 41
181#define PR_GET_THP_DISABLE 42
182
183/*
184 * Tell the kernel to start/stop helping userspace manage bounds tables.
185 */
186#define PR_MPX_ENABLE_MANAGEMENT 43
187#define PR_MPX_DISABLE_MANAGEMENT 44
188
189#define PR_SET_FP_MODE 45
190#define PR_GET_FP_MODE 46
191# define PR_FP_MODE_FR (1 << 0) /* 64b FP registers */
192# define PR_FP_MODE_FRE (1 << 1) /* 32b compatibility */
193
194/* Control the ambient capability set */
195#define PR_CAP_AMBIENT 47
196# define PR_CAP_AMBIENT_IS_SET 1
197# define PR_CAP_AMBIENT_RAISE 2
198# define PR_CAP_AMBIENT_LOWER 3
199# define PR_CAP_AMBIENT_CLEAR_ALL 4
200
201/* arm64 Scalable Vector Extension controls */
202/* Flag values must be kept in sync with ptrace NT_ARM_SVE interface */
203#define PR_SVE_SET_VL 50 /* set task vector length */
204# define PR_SVE_SET_VL_ONEXEC (1 << 18) /* defer effect until exec */
205#define PR_SVE_GET_VL 51 /* get task vector length */
206/* Bits common to PR_SVE_SET_VL and PR_SVE_GET_VL */
207# define PR_SVE_VL_LEN_MASK 0xffff
208# define PR_SVE_VL_INHERIT (1 << 17) /* inherit across exec */
209
210/* Per task speculation control */
211#define PR_GET_SPECULATION_CTRL 52
212#define PR_SET_SPECULATION_CTRL 53
213/* Speculation control variants */
214# define PR_SPEC_STORE_BYPASS 0
215# define PR_SPEC_INDIRECT_BRANCH 1
216/* Return and control values for PR_SET/GET_SPECULATION_CTRL */
217# define PR_SPEC_NOT_AFFECTED 0
218# define PR_SPEC_PRCTL (1UL << 0)
219# define PR_SPEC_ENABLE (1UL << 1)
220# define PR_SPEC_DISABLE (1UL << 2)
221# define PR_SPEC_FORCE_DISABLE (1UL << 3)
222
223/*
224 * Control the LSM specific peer information
225 *
226 * The Ubuntu kernel provides an early preview of LSM Stacking. Use these
227 * PRCTLs at your own risk. Their values are not guaranteed to be stable in the
228 * case of colliding with an upstream PRCTL.
229 */
230#define PR_GET_DISPLAY_LSM 1000000
231#define PR_SET_DISPLAY_LSM 1000001
232
233#endif /* _LINUX_PRCTL_H */
234