NAME¶
/proc/sys/kernel/ - control a range of kernel parameters
DESCRIPTION¶
- /proc/sys/kernel/
- This directory contains files controlling a range of kernel parameters, as
described below.
- /proc/sys/kernel/acct
- This file contains three numbers: highwater, lowwater, and
frequency. If BSD-style process accounting is enabled, these values
control its behavior. If free space on filesystem where the log lives goes
below lowwater percent, accounting suspends. If free space gets
above highwater percent, accounting resumes. frequency
determines how often the kernel checks the amount of free space (value is
in seconds). Default values are 4, 2, and 30. That is, suspend accounting
if 2% or less space is free; resume it if 4% or more space is free;
consider information about amount of free space valid for 30 seconds.
- /proc/sys/kernel/auto_msgmni (Linux 2.6.27 to Linux 3.18)
- From Linux 2.6.27 to Linux 3.18, this file was used to control recomputing
of the value in /proc/sys/kernel/msgmni upon the addition or
removal of memory or upon IPC namespace creation/removal. Echoing
"1" into this file enabled msgmni automatic recomputing
(and triggered a recomputation of msgmni based on the current
amount of available memory and number of IPC namespaces). Echoing
"0" disabled automatic recomputing. (Automatic recomputing was
also disabled if a value was explicitly assigned to
/proc/sys/kernel/msgmni.) The default value in auto_msgmni
was 1.
- Since Linux 3.19, the content of this file has no effect (because
msgmni defaults to near the maximum value possible), and reads from
this file always return the value "0".
- /proc/sys/kernel/cap_last_cap (since Linux 3.2)
- See capabilities(7).
- /proc/sys/kernel/cap-bound (from Linux 2.2 to Linux 2.6.24)
- This file holds the value of the kernel capability bounding set
(expressed as a signed decimal number). This set is ANDed against the
capabilities permitted to a process during execve(2). Starting with
Linux 2.6.25, the system-wide capability bounding set disappeared, and was
replaced by a per-thread bounding set; see capabilities(7).
- /proc/sys/kernel/core_pattern
- See core(5).
- /proc/sys/kernel/core_pipe_limit
- See core(5).
- /proc/sys/kernel/core_uses_pid
- See core(5).
- /proc/sys/kernel/ctrl-alt-del
- This file controls the handling of Ctrl-Alt-Del from the keyboard. When
the value in this file is 0, Ctrl-Alt-Del is trapped and sent to the
init(1) program to handle a graceful restart. When the value is
greater than zero, Linux's reaction to a Vulcan Nerve Pinch (tm) will be
an immediate reboot, without even syncing its dirty buffers. Note: when a
program (like dosemu) has the keyboard in "raw" mode, the
Ctrl-Alt-Del is intercepted by the program before it ever reaches the
kernel tty layer, and it's up to the program to decide what to do with
it.
- /proc/sys/kernel/dmesg_restrict (since Linux 2.6.37)
- The value in this file determines who can see kernel syslog contents. A
value of 0 in this file imposes no restrictions. If the value is 1, only
privileged users can read the kernel syslog. (See syslog(2) for
more details.) Since Linux 3.4, only users with the CAP_SYS_ADMIN
capability may change the value in this file.
- /proc/sys/kernel/domainname and
/proc/sys/kernel/hostname
- can be used to set the NIS/YP domainname and the hostname of your box in
exactly the same way as the commands domainname(1) and
hostname(1), that is:
-
# echo 'darkstar' > /proc/sys/kernel/hostname
# echo 'mydomain' > /proc/sys/kernel/domainname
- has the same effect as
-
# hostname 'darkstar'
# domainname 'mydomain'
- Note, however, that the classic darkstar.frop.org has the hostname
"darkstar" and DNS (Internet Domain Name Server) domainname
"frop.org", not to be confused with the NIS (Network Information
Service) or YP (Yellow Pages) domainname. These two domain names are in
general different. For a detailed discussion see the hostname(1)
man page.
- /proc/sys/kernel/hotplug
- This file contains the pathname for the hotplug policy agent. The default
value in this file is /sbin/hotplug.
- /proc/sys/kernel/htab-reclaim (before Linux 2.4.9.2)
- (PowerPC only) If this file is set to a nonzero value, the PowerPC htab
(see kernel file Documentation/powerpc/ppc_htab.txt) is pruned each
time the system hits the idle loop.
- /proc/sys/kernel/keys/
- This directory contains various files that define parameters and limits
for the key-management facility. These files are described in
keyrings(7).
- /proc/sys/kernel/kptr_restrict (since Linux 2.6.38)
- The value in this file determines whether kernel addresses are exposed via
/proc files and other interfaces. A value of 0 in this file imposes
no restrictions. If the value is 1, kernel pointers printed using the
%pK format specifier will be replaced with zeros unless the user
has the CAP_SYSLOG capability. If the value is 2, kernel pointers
printed using the %pK format specifier will be replaced with zeros
regardless of the user's capabilities. The initial default value for this
file was 1, but the default was changed to 0 in Linux 2.6.39. Since Linux
3.4, only users with the CAP_SYS_ADMIN capability can change the
value in this file.
- /proc/sys/kernel/l2cr
- (PowerPC only) This file contains a flag that controls the L2 cache of G3
processor boards. If 0, the cache is disabled. Enabled if nonzero.
- /proc/sys/kernel/modprobe
- This file contains the pathname for the kernel module loader. The default
value is /sbin/modprobe. The file is present only if the kernel is
built with the CONFIG_MODULES (CONFIG_KMOD in Linux 2.6.26
and earlier) option enabled. It is described by the Linux kernel source
file Documentation/kmod.txt (present only in Linux 2.4 and
earlier).
- /proc/sys/kernel/modules_disabled (since Linux 2.6.31)
- A toggle value indicating if modules are allowed to be loaded in an
otherwise modular kernel. This toggle defaults to off (0), but can be set
true (1). Once true, modules can be neither loaded nor unloaded, and the
toggle cannot be set back to false. The file is present only if the kernel
is built with the CONFIG_MODULES option enabled.
- /proc/sys/kernel/msgmax (since Linux 2.2)
- This file defines a system-wide limit specifying the maximum number of
bytes in a single message written on a System V message queue.
- /proc/sys/kernel/msgmni (since Linux 2.4)
- This file defines the system-wide limit on the number of message queue
identifiers. See also /proc/sys/kernel/auto_msgmni.
- /proc/sys/kernel/msgmnb (since Linux 2.2)
- This file defines a system-wide parameter used to initialize the
msg_qbytes setting for subsequently created message queues. The
msg_qbytes setting specifies the maximum number of bytes that may
be written to the message queue.
- /proc/sys/kernel/ngroups_max (since Linux 2.6.4)
- This is a read-only file that displays the upper limit on the number of a
process's group memberships.
- /proc/sys/kernel/ns_last_pid (since Linux 3.3)
- See pid_namespaces(7).
- /proc/sys/kernel/ostype and /proc/sys/kernel/osrelease
- These files give substrings of /proc/version.
- /proc/sys/kernel/overflowgid and
/proc/sys/kernel/overflowuid
- These files duplicate the files /proc/sys/fs/overflowgid and
/proc/sys/fs/overflowuid.
- /proc/sys/kernel/panic
- This file gives read/write access to the kernel variable
panic_timeout. If this is zero, the kernel will loop on a panic; if
nonzero, it indicates that the kernel should autoreboot after this number
of seconds. When you use the software watchdog device driver, the
recommended setting is 60.
- /proc/sys/kernel/panic_on_oops (since Linux 2.5.68)
- This file controls the kernel's behavior when an oops or BUG is
encountered. If this file contains 0, then the system tries to continue
operation. If it contains 1, then the system delays a few seconds (to give
klogd time to record the oops output) and then panics. If the
/proc/sys/kernel/panic file is also nonzero, then the machine will
be rebooted.
- /proc/sys/kernel/pid_max (since Linux 2.5.34)
- This file specifies the value at which PIDs wrap around (i.e., the value
in this file is one greater than the maximum PID). PIDs greater than this
value are not allocated; thus, the value in this file also acts as a
system-wide limit on the total number of processes and threads. The
default value for this file, 32768, results in the same range of PIDs as
on earlier kernels. On 32-bit platforms, 32768 is the maximum value for
pid_max. On 64-bit systems, pid_max can be set to any value
up to 2^22 (PID_MAX_LIMIT, approximately 4 million).
- /proc/sys/kernel/powersave-nap (PowerPC only)
- This file contains a flag. If set, Linux-PPC will use the "nap"
mode of powersaving, otherwise the "doze" mode will be
used.
- /proc/sys/kernel/printk
- See syslog(2).
- /proc/sys/kernel/pty (since Linux 2.6.4)
- This directory contains two files relating to the number of UNIX 98
pseudoterminals (see pts(4)) on the system.
- /proc/sys/kernel/pty/max
- This file defines the maximum number of pseudoterminals.
- /proc/sys/kernel/pty/nr
- This read-only file indicates how many pseudoterminals are currently in
use.
- /proc/sys/kernel/random/
- This directory contains various parameters controlling the operation of
the file /dev/random. See random(4) for further
information.
- /proc/sys/kernel/random/uuid (since Linux 2.4)
- Each read from this read-only file returns a randomly generated 128-bit
UUID, as a string in the standard UUID format.
- /proc/sys/kernel/randomize_va_space (since Linux 2.6.12)
- Select the address space layout randomization (ASLR) policy for the system
(on architectures that support ASLR). Three values are supported for this
file:
- 0
- Turn ASLR off. This is the default for architectures that don't support
ASLR, and when the kernel is booted with the norandmaps
parameter.
- 1
- Make the addresses of mmap(2) allocations, the stack, and the VDSO
page randomized. Among other things, this means that shared libraries will
be loaded at randomized addresses. The text segment of PIE-linked binaries
will also be loaded at a randomized address. This value is the default if
the kernel was configured with CONFIG_COMPAT_BRK.
- 2
- (Since Linux 2.6.25) Also support heap randomization. This value is the
default if the kernel was not configured with
CONFIG_COMPAT_BRK.
- /proc/sys/kernel/real-root-dev
- This file is documented in the Linux kernel source file
Documentation/admin-guide/initrd.rst (or
Documentation/initrd.txt before Linux 4.10).
- /proc/sys/kernel/reboot-cmd (Sparc only)
- This file seems to be a way to give an argument to the SPARC ROM/Flash
boot loader. Maybe to tell it what to do after rebooting?
- /proc/sys/kernel/rtsig-max
- (Up to and including Linux 2.6.7; see setrlimit(2)) This file can
be used to tune the maximum number of POSIX real-time (queued) signals
that can be outstanding in the system.
- /proc/sys/kernel/rtsig-nr
- (Up to and including Linux 2.6.7.) This file shows the number of POSIX
real-time signals currently queued.
- /proc/pid/sched_autogroup_enabled (since Linux 2.6.38)
- See sched(7).
- /proc/sys/kernel/sched_child_runs_first (since Linux 2.6.23)
- If this file contains the value zero, then, after a fork(2), the
parent is first scheduled on the CPU. If the file contains a nonzero
value, then the child is scheduled first on the CPU. (Of course, on a
multiprocessor system, the parent and the child might both immediately be
scheduled on a CPU.)
- /proc/sys/kernel/sched_rr_timeslice_ms (since Linux 3.9)
- See sched_rr_get_interval(2).
- /proc/sys/kernel/sched_rt_period_us (since Linux 2.6.25)
- See sched(7).
- /proc/sys/kernel/sched_rt_runtime_us (since Linux 2.6.25)
- See sched(7).
- /proc/sys/kernel/seccomp/ (since Linux 4.14)
- This directory provides additional seccomp information and configuration.
See seccomp(2) for further details.
- /proc/sys/kernel/sem (since Linux 2.4)
- This file contains 4 numbers defining limits for System V IPC semaphores.
These fields are, in order:
- SEMMSL
- The maximum semaphores per semaphore set.
- SEMMNS
- A system-wide limit on the number of semaphores in all semaphore
sets.
- SEMOPM
- The maximum number of operations that may be specified in a
semop(2) call.
- SEMMNI
- A system-wide limit on the maximum number of semaphore identifiers.
- /proc/sys/kernel/sg-big-buff
- This file shows the size of the generic SCSI device (sg) buffer. You can't
tune it just yet, but you could change it at compile time by editing
include/scsi/sg.h and changing the value of SG_BIG_BUFF.
However, there shouldn't be any reason to change this value.
- /proc/sys/kernel/shm_rmid_forced (since Linux 3.1)
- If this file is set to 1, all System V shared memory segments will be
marked for destruction as soon as the number of attached processes falls
to zero; in other words, it is no longer possible to create shared memory
segments that exist independently of any attached process.
- The effect is as though a shmctl(2) IPC_RMID is performed on
all existing segments as well as all segments created in the future (until
this file is reset to 0). Note that existing segments that are attached to
no process will be immediately destroyed when this file is set to 1.
Setting this option will also destroy segments that were created, but
never attached, upon termination of the process that created the segment
with shmget(2).
- Setting this file to 1 provides a way of ensuring that all System V shared
memory segments are counted against the resource usage and resource limits
(see the description of RLIMIT_AS in getrlimit(2)) of at
least one process.
- Because setting this file to 1 produces behavior that is nonstandard and
could also break existing applications, the default value in this file is
0. Set this file to 1 only if you have a good understanding of the
semantics of the applications using System V shared memory on your
system.
- /proc/sys/kernel/shmall (since Linux 2.2)
- This file contains the system-wide limit on the total number of pages of
System V shared memory.
- /proc/sys/kernel/shmmax (since Linux 2.2)
- This file can be used to query and set the run-time limit on the maximum
(System V IPC) shared memory segment size that can be created. Shared
memory segments up to 1 GB are now supported in the kernel. This value
defaults to SHMMAX.
- /proc/sys/kernel/shmmni (since Linux 2.4)
- This file specifies the system-wide maximum number of System V shared
memory segments that can be created.
- /proc/sys/kernel/sysctl_writes_strict (since Linux 3.16)
- The value in this file determines how the file offset affects the behavior
of updating entries in files under /proc/sys. The file has three
possible values:
- -1
- This provides legacy handling, with no printk warnings. Each
write(2) must fully contain the value to be written, and multiple
writes on the same file descriptor will overwrite the entire value,
regardless of the file position.
- 0
- (default) This provides the same behavior as for -1, but printk warnings
are written for processes that perform writes when the file offset is not
0.
- 1
- Respect the file offset when writing strings into /proc/sys files.
Multiple writes will append to the value buffer. Anything written
beyond the maximum length of the value buffer will be ignored. Writes to
numeric /proc/sys entries must always be at file offset 0 and the
value must be fully contained in the buffer provided to
write(2).
- /proc/sys/kernel/sysrq
- This file controls the functions allowed to be invoked by the SysRq key.
By default, the file contains 1 meaning that every possible SysRq request
is allowed (in older kernel versions, SysRq was disabled by default, and
you were required to specifically enable it at run-time, but this is not
the case any more). Possible values in this file are:
- 0
- Disable sysrq completely
- 1
- Enable all functions of sysrq
- > 1
- Bit mask of allowed sysrq functions, as follows:
- 2
- Enable control of console logging level
- 4
- Enable control of keyboard (SAK, unraw)
- 8
- Enable debugging dumps of processes etc.
- 16
- Enable sync command
- 32
- Enable remount read-only
- 64
- Enable signaling of processes (term, kill, oom-kill)
- 128
- Allow reboot/poweroff
- 256
- Allow nicing of all real-time tasks
- This file is present only if the CONFIG_MAGIC_SYSRQ kernel
configuration option is enabled. For further details see the Linux kernel
source file Documentation/admin-guide/sysrq.rst (or
Documentation/sysrq.txt before Linux 4.10).
- /proc/sys/kernel/version
- This file contains a string such as:
-
#5 Wed Feb 25 21:49:24 MET 1998
- The "#5" means that this is the fifth kernel built from this
source base and the date following it indicates the time the kernel was
built.
- /proc/sys/kernel/threads-max (since Linux 2.3.11)
- This file specifies the system-wide limit on the number of threads (tasks)
that can be created on the system.
- Since Linux 4.1, the value that can be written to threads-max is
bounded. The minimum value that can be written is 20. The maximum value
that can be written is given by the constant FUTEX_TID_MASK
(0x3fffffff). If a value outside of this range is written to
threads-max, the error EINVAL occurs.
- The value written is checked against the available RAM pages. If the
thread structures would occupy too much (more than 1/8th) of the available
RAM pages, threads-max is reduced accordingly.
- /proc/sys/kernel/yama/ptrace_scope (since Linux 3.5)
- See ptrace(2).
- /proc/sys/kernel/zero-paged (PowerPC only)
- This file contains a flag. When enabled (nonzero), Linux-PPC will pre-zero
pages in the idle loop, possibly speeding up get_free_pages.