4 * Replacement code for mm functions to support CPU's that don't
5 * have any form of memory management unit (thus no virtual memory).
7 * See Documentation/nommu-mmap.txt
9 * Copyright (c) 2004-2008 David Howells <dhowells@redhat.com>
10 * Copyright (c) 2000-2003 David McCullough <davidm@snapgear.com>
11 * Copyright (c) 2000-2001 D Jeff Dionne <jeff@uClinux.org>
12 * Copyright (c) 2002 Greg Ungerer <gerg@snapgear.com>
13 * Copyright (c) 2007-2010 Paul Mundt <lethal@linux-sh.org>
16 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
18 #define __DISABLE_GUP_DEPRECATED
20 #include <linux/export.h>
22 #include <linux/vmacache.h>
23 #include <linux/mman.h>
24 #include <linux/swap.h>
25 #include <linux/file.h>
26 #include <linux/highmem.h>
27 #include <linux/pagemap.h>
28 #include <linux/slab.h>
29 #include <linux/vmalloc.h>
30 #include <linux/blkdev.h>
31 #include <linux/backing-dev.h>
32 #include <linux/compiler.h>
33 #include <linux/mount.h>
34 #include <linux/personality.h>
35 #include <linux/security.h>
36 #include <linux/syscalls.h>
37 #include <linux/audit.h>
38 #include <linux/sched/sysctl.h>
39 #include <linux/printk.h>
41 #include <asm/uaccess.h>
43 #include <asm/tlbflush.h>
44 #include <asm/mmu_context.h>
48 EXPORT_SYMBOL(high_memory);
50 unsigned long max_mapnr;
51 EXPORT_SYMBOL(max_mapnr);
52 unsigned long highest_memmap_pfn;
53 struct percpu_counter vm_committed_as;
54 int sysctl_overcommit_memory = OVERCOMMIT_GUESS; /* heuristic overcommit */
55 int sysctl_overcommit_ratio = 50; /* default is 50% */
56 unsigned long sysctl_overcommit_kbytes __read_mostly;
57 int sysctl_max_map_count = DEFAULT_MAX_MAP_COUNT;
58 int sysctl_nr_trim_pages = CONFIG_NOMMU_INITIAL_TRIM_EXCESS;
59 unsigned long sysctl_user_reserve_kbytes __read_mostly = 1UL << 17; /* 128MB */
60 unsigned long sysctl_admin_reserve_kbytes __read_mostly = 1UL << 13; /* 8MB */
61 int heap_stack_gap = 0;
63 atomic_long_t mmap_pages_allocated;
66 * The global memory commitment made in the system can be a metric
67 * that can be used to drive ballooning decisions when Linux is hosted
68 * as a guest. On Hyper-V, the host implements a policy engine for dynamically
69 * balancing memory across competing virtual machines that are hosted.
70 * Several metrics drive this policy engine including the guest reported
73 unsigned long vm_memory_committed(void)
75 return percpu_counter_read_positive(&vm_committed_as);
78 EXPORT_SYMBOL_GPL(vm_memory_committed);
80 EXPORT_SYMBOL(mem_map);
82 /* list of mapped, potentially shareable regions */
83 static struct kmem_cache *vm_region_jar;
84 struct rb_root nommu_region_tree = RB_ROOT;
85 DECLARE_RWSEM(nommu_region_sem);
87 const struct vm_operations_struct generic_file_vm_ops = {
91 * Return the total memory allocated for this pointer, not
92 * just what the caller asked for.
94 * Doesn't have to be accurate, i.e. may have races.
96 unsigned int kobjsize(const void *objp)
101 * If the object we have should not have ksize performed on it,
104 if (!objp || !virt_addr_valid(objp))
107 page = virt_to_head_page(objp);
110 * If the allocator sets PageSlab, we know the pointer came from
117 * If it's not a compound page, see if we have a matching VMA
118 * region. This test is intentionally done in reverse order,
119 * so if there's no VMA, we still fall through and hand back
120 * PAGE_SIZE for 0-order pages.
122 if (!PageCompound(page)) {
123 struct vm_area_struct *vma;
125 vma = find_vma(current->mm, (unsigned long)objp);
127 return vma->vm_end - vma->vm_start;
131 * The ksize() function is only guaranteed to work for pointers
132 * returned by kmalloc(). So handle arbitrary pointers here.
134 return PAGE_SIZE << compound_order(page);
137 long __get_user_pages(struct task_struct *tsk, struct mm_struct *mm,
138 unsigned long start, unsigned long nr_pages,
139 unsigned int foll_flags, struct page **pages,
140 struct vm_area_struct **vmas, int *nonblocking)
142 struct vm_area_struct *vma;
143 unsigned long vm_flags;
146 /* calculate required read or write permissions.
147 * If FOLL_FORCE is set, we only require the "MAY" flags.
149 vm_flags = (foll_flags & FOLL_WRITE) ?
150 (VM_WRITE | VM_MAYWRITE) : (VM_READ | VM_MAYREAD);
151 vm_flags &= (foll_flags & FOLL_FORCE) ?
152 (VM_MAYREAD | VM_MAYWRITE) : (VM_READ | VM_WRITE);
154 for (i = 0; i < nr_pages; i++) {
155 vma = find_vma(mm, start);
157 goto finish_or_fault;
159 /* protect what we can, including chardevs */
160 if ((vma->vm_flags & (VM_IO | VM_PFNMAP)) ||
161 !(vm_flags & vma->vm_flags))
162 goto finish_or_fault;
165 pages[i] = virt_to_page(start);
167 page_cache_get(pages[i]);
171 start = (start + PAGE_SIZE) & PAGE_MASK;
177 return i ? : -EFAULT;
181 * get a list of pages in an address range belonging to the specified process
182 * and indicate the VMA that covers each page
183 * - this is potentially dodgy as we may end incrementing the page count of a
184 * slab page or a secondary page from a compound page
185 * - don't permit access to VMAs that don't support it, such as I/O mappings
187 long get_user_pages6(unsigned long start, unsigned long nr_pages,
188 int write, int force, struct page **pages,
189 struct vm_area_struct **vmas)
198 return __get_user_pages(current, current->mm, start, nr_pages, flags,
201 EXPORT_SYMBOL(get_user_pages6);
203 long get_user_pages_locked6(unsigned long start, unsigned long nr_pages,
204 int write, int force, struct page **pages,
207 return get_user_pages6(start, nr_pages, write, force, pages, NULL);
209 EXPORT_SYMBOL(get_user_pages_locked6);
211 long __get_user_pages_unlocked(struct task_struct *tsk, struct mm_struct *mm,
212 unsigned long start, unsigned long nr_pages,
213 int write, int force, struct page **pages,
214 unsigned int gup_flags)
217 down_read(&mm->mmap_sem);
218 ret = __get_user_pages(tsk, mm, start, nr_pages, gup_flags, pages,
220 up_read(&mm->mmap_sem);
223 EXPORT_SYMBOL(__get_user_pages_unlocked);
225 long get_user_pages_unlocked5(unsigned long start, unsigned long nr_pages,
226 int write, int force, struct page **pages)
228 return __get_user_pages_unlocked(current, current->mm, start, nr_pages,
229 write, force, pages, 0);
231 EXPORT_SYMBOL(get_user_pages_unlocked5);
234 * follow_pfn - look up PFN at a user virtual address
235 * @vma: memory mapping
236 * @address: user virtual address
237 * @pfn: location to store found PFN
239 * Only IO mappings and raw PFN mappings are allowed.
241 * Returns zero and the pfn at @pfn on success, -ve otherwise.
243 int follow_pfn(struct vm_area_struct *vma, unsigned long address,
246 if (!(vma->vm_flags & (VM_IO | VM_PFNMAP)))
249 *pfn = address >> PAGE_SHIFT;
252 EXPORT_SYMBOL(follow_pfn);
254 LIST_HEAD(vmap_area_list);
256 void vfree(const void *addr)
260 EXPORT_SYMBOL(vfree);
262 void *__vmalloc(unsigned long size, gfp_t gfp_mask, pgprot_t prot)
265 * You can't specify __GFP_HIGHMEM with kmalloc() since kmalloc()
266 * returns only a logical address.
268 return kmalloc(size, (gfp_mask | __GFP_COMP) & ~__GFP_HIGHMEM);
270 EXPORT_SYMBOL(__vmalloc);
272 void *vmalloc_user(unsigned long size)
276 ret = __vmalloc(size, GFP_KERNEL | __GFP_HIGHMEM | __GFP_ZERO,
279 struct vm_area_struct *vma;
281 down_write(¤t->mm->mmap_sem);
282 vma = find_vma(current->mm, (unsigned long)ret);
284 vma->vm_flags |= VM_USERMAP;
285 up_write(¤t->mm->mmap_sem);
290 EXPORT_SYMBOL(vmalloc_user);
292 struct page *vmalloc_to_page(const void *addr)
294 return virt_to_page(addr);
296 EXPORT_SYMBOL(vmalloc_to_page);
298 unsigned long vmalloc_to_pfn(const void *addr)
300 return page_to_pfn(virt_to_page(addr));
302 EXPORT_SYMBOL(vmalloc_to_pfn);
304 long vread(char *buf, char *addr, unsigned long count)
306 /* Don't allow overflow */
307 if ((unsigned long) buf + count < count)
308 count = -(unsigned long) buf;
310 memcpy(buf, addr, count);
314 long vwrite(char *buf, char *addr, unsigned long count)
316 /* Don't allow overflow */
317 if ((unsigned long) addr + count < count)
318 count = -(unsigned long) addr;
320 memcpy(addr, buf, count);
325 * vmalloc - allocate virtually contiguous memory
327 * @size: allocation size
329 * Allocate enough pages to cover @size from the page level
330 * allocator and map them into contiguous kernel virtual space.
332 * For tight control over page level allocator and protection flags
333 * use __vmalloc() instead.
335 void *vmalloc(unsigned long size)
337 return __vmalloc(size, GFP_KERNEL | __GFP_HIGHMEM, PAGE_KERNEL);
339 EXPORT_SYMBOL(vmalloc);
342 * vzalloc - allocate virtually contiguous memory with zero fill
344 * @size: allocation size
346 * Allocate enough pages to cover @size from the page level
347 * allocator and map them into contiguous kernel virtual space.
348 * The memory allocated is set to zero.
350 * For tight control over page level allocator and protection flags
351 * use __vmalloc() instead.
353 void *vzalloc(unsigned long size)
355 return __vmalloc(size, GFP_KERNEL | __GFP_HIGHMEM | __GFP_ZERO,
358 EXPORT_SYMBOL(vzalloc);
361 * vmalloc_node - allocate memory on a specific node
362 * @size: allocation size
365 * Allocate enough pages to cover @size from the page level
366 * allocator and map them into contiguous kernel virtual space.
368 * For tight control over page level allocator and protection flags
369 * use __vmalloc() instead.
371 void *vmalloc_node(unsigned long size, int node)
373 return vmalloc(size);
375 EXPORT_SYMBOL(vmalloc_node);
378 * vzalloc_node - allocate memory on a specific node with zero fill
379 * @size: allocation size
382 * Allocate enough pages to cover @size from the page level
383 * allocator and map them into contiguous kernel virtual space.
384 * The memory allocated is set to zero.
386 * For tight control over page level allocator and protection flags
387 * use __vmalloc() instead.
389 void *vzalloc_node(unsigned long size, int node)
391 return vzalloc(size);
393 EXPORT_SYMBOL(vzalloc_node);
395 #ifndef PAGE_KERNEL_EXEC
396 # define PAGE_KERNEL_EXEC PAGE_KERNEL
400 * vmalloc_exec - allocate virtually contiguous, executable memory
401 * @size: allocation size
403 * Kernel-internal function to allocate enough pages to cover @size
404 * the page level allocator and map them into contiguous and
405 * executable kernel virtual space.
407 * For tight control over page level allocator and protection flags
408 * use __vmalloc() instead.
411 void *vmalloc_exec(unsigned long size)
413 return __vmalloc(size, GFP_KERNEL | __GFP_HIGHMEM, PAGE_KERNEL_EXEC);
417 * vmalloc_32 - allocate virtually contiguous memory (32bit addressable)
418 * @size: allocation size
420 * Allocate enough 32bit PA addressable pages to cover @size from the
421 * page level allocator and map them into contiguous kernel virtual space.
423 void *vmalloc_32(unsigned long size)
425 return __vmalloc(size, GFP_KERNEL, PAGE_KERNEL);
427 EXPORT_SYMBOL(vmalloc_32);
430 * vmalloc_32_user - allocate zeroed virtually contiguous 32bit memory
431 * @size: allocation size
433 * The resulting memory area is 32bit addressable and zeroed so it can be
434 * mapped to userspace without leaking data.
436 * VM_USERMAP is set on the corresponding VMA so that subsequent calls to
437 * remap_vmalloc_range() are permissible.
439 void *vmalloc_32_user(unsigned long size)
442 * We'll have to sort out the ZONE_DMA bits for 64-bit,
443 * but for now this can simply use vmalloc_user() directly.
445 return vmalloc_user(size);
447 EXPORT_SYMBOL(vmalloc_32_user);
449 void *vmap(struct page **pages, unsigned int count, unsigned long flags, pgprot_t prot)
456 void vunmap(const void *addr)
460 EXPORT_SYMBOL(vunmap);
462 void *vm_map_ram(struct page **pages, unsigned int count, int node, pgprot_t prot)
467 EXPORT_SYMBOL(vm_map_ram);
469 void vm_unmap_ram(const void *mem, unsigned int count)
473 EXPORT_SYMBOL(vm_unmap_ram);
475 void vm_unmap_aliases(void)
478 EXPORT_SYMBOL_GPL(vm_unmap_aliases);
481 * Implement a stub for vmalloc_sync_all() if the architecture chose not to
484 void __weak vmalloc_sync_all(void)
489 * alloc_vm_area - allocate a range of kernel address space
490 * @size: size of the area
492 * Returns: NULL on failure, vm_struct on success
494 * This function reserves a range of kernel address space, and
495 * allocates pagetables to map that range. No actual mappings
496 * are created. If the kernel address space is not shared
497 * between processes, it syncs the pagetable across all
500 struct vm_struct *alloc_vm_area(size_t size, pte_t **ptes)
505 EXPORT_SYMBOL_GPL(alloc_vm_area);
507 void free_vm_area(struct vm_struct *area)
511 EXPORT_SYMBOL_GPL(free_vm_area);
513 int vm_insert_page(struct vm_area_struct *vma, unsigned long addr,
518 EXPORT_SYMBOL(vm_insert_page);
521 * sys_brk() for the most part doesn't need the global kernel
522 * lock, except when an application is doing something nasty
523 * like trying to un-brk an area that has already been mapped
524 * to a regular file. in this case, the unmapping will need
525 * to invoke file system routines that need the global lock.
527 SYSCALL_DEFINE1(brk, unsigned long, brk)
529 struct mm_struct *mm = current->mm;
531 if (brk < mm->start_brk || brk > mm->context.end_brk)
538 * Always allow shrinking brk
540 if (brk <= mm->brk) {
546 * Ok, looks good - let it rip.
548 flush_icache_range(mm->brk, brk);
549 return mm->brk = brk;
553 * initialise the VMA and region record slabs
555 void __init mmap_init(void)
559 ret = percpu_counter_init(&vm_committed_as, 0, GFP_KERNEL);
561 vm_region_jar = KMEM_CACHE(vm_region, SLAB_PANIC|SLAB_ACCOUNT);
565 * validate the region tree
566 * - the caller must hold the region lock
568 #ifdef CONFIG_DEBUG_NOMMU_REGIONS
569 static noinline void validate_nommu_regions(void)
571 struct vm_region *region, *last;
572 struct rb_node *p, *lastp;
574 lastp = rb_first(&nommu_region_tree);
578 last = rb_entry(lastp, struct vm_region, vm_rb);
579 BUG_ON(last->vm_end <= last->vm_start);
580 BUG_ON(last->vm_top < last->vm_end);
582 while ((p = rb_next(lastp))) {
583 region = rb_entry(p, struct vm_region, vm_rb);
584 last = rb_entry(lastp, struct vm_region, vm_rb);
586 BUG_ON(region->vm_end <= region->vm_start);
587 BUG_ON(region->vm_top < region->vm_end);
588 BUG_ON(region->vm_start < last->vm_top);
594 static void validate_nommu_regions(void)
600 * add a region into the global tree
602 static void add_nommu_region(struct vm_region *region)
604 struct vm_region *pregion;
605 struct rb_node **p, *parent;
607 validate_nommu_regions();
610 p = &nommu_region_tree.rb_node;
613 pregion = rb_entry(parent, struct vm_region, vm_rb);
614 if (region->vm_start < pregion->vm_start)
616 else if (region->vm_start > pregion->vm_start)
618 else if (pregion == region)
624 rb_link_node(®ion->vm_rb, parent, p);
625 rb_insert_color(®ion->vm_rb, &nommu_region_tree);
627 validate_nommu_regions();
631 * delete a region from the global tree
633 static void delete_nommu_region(struct vm_region *region)
635 BUG_ON(!nommu_region_tree.rb_node);
637 validate_nommu_regions();
638 rb_erase(®ion->vm_rb, &nommu_region_tree);
639 validate_nommu_regions();
643 * free a contiguous series of pages
645 static void free_page_series(unsigned long from, unsigned long to)
647 for (; from < to; from += PAGE_SIZE) {
648 struct page *page = virt_to_page(from);
650 atomic_long_dec(&mmap_pages_allocated);
656 * release a reference to a region
657 * - the caller must hold the region semaphore for writing, which this releases
658 * - the region may not have been added to the tree yet, in which case vm_top
659 * will equal vm_start
661 static void __put_nommu_region(struct vm_region *region)
662 __releases(nommu_region_sem)
664 BUG_ON(!nommu_region_tree.rb_node);
666 if (--region->vm_usage == 0) {
667 if (region->vm_top > region->vm_start)
668 delete_nommu_region(region);
669 up_write(&nommu_region_sem);
672 fput(region->vm_file);
674 /* IO memory and memory shared directly out of the pagecache
675 * from ramfs/tmpfs mustn't be released here */
676 if (region->vm_flags & VM_MAPPED_COPY)
677 free_page_series(region->vm_start, region->vm_top);
678 kmem_cache_free(vm_region_jar, region);
680 up_write(&nommu_region_sem);
685 * release a reference to a region
687 static void put_nommu_region(struct vm_region *region)
689 down_write(&nommu_region_sem);
690 __put_nommu_region(region);
694 * update protection on a vma
696 static void protect_vma(struct vm_area_struct *vma, unsigned long flags)
699 struct mm_struct *mm = vma->vm_mm;
700 long start = vma->vm_start & PAGE_MASK;
701 while (start < vma->vm_end) {
702 protect_page(mm, start, flags);
705 update_protections(mm);
710 * add a VMA into a process's mm_struct in the appropriate place in the list
711 * and tree and add to the address space's page tree also if not an anonymous
713 * - should be called with mm->mmap_sem held writelocked
715 static void add_vma_to_mm(struct mm_struct *mm, struct vm_area_struct *vma)
717 struct vm_area_struct *pvma, *prev;
718 struct address_space *mapping;
719 struct rb_node **p, *parent, *rb_prev;
721 BUG_ON(!vma->vm_region);
726 protect_vma(vma, vma->vm_flags);
728 /* add the VMA to the mapping */
730 mapping = vma->vm_file->f_mapping;
732 i_mmap_lock_write(mapping);
733 flush_dcache_mmap_lock(mapping);
734 vma_interval_tree_insert(vma, &mapping->i_mmap);
735 flush_dcache_mmap_unlock(mapping);
736 i_mmap_unlock_write(mapping);
739 /* add the VMA to the tree */
740 parent = rb_prev = NULL;
741 p = &mm->mm_rb.rb_node;
744 pvma = rb_entry(parent, struct vm_area_struct, vm_rb);
746 /* sort by: start addr, end addr, VMA struct addr in that order
747 * (the latter is necessary as we may get identical VMAs) */
748 if (vma->vm_start < pvma->vm_start)
750 else if (vma->vm_start > pvma->vm_start) {
753 } else if (vma->vm_end < pvma->vm_end)
755 else if (vma->vm_end > pvma->vm_end) {
758 } else if (vma < pvma)
760 else if (vma > pvma) {
767 rb_link_node(&vma->vm_rb, parent, p);
768 rb_insert_color(&vma->vm_rb, &mm->mm_rb);
770 /* add VMA to the VMA list also */
773 prev = rb_entry(rb_prev, struct vm_area_struct, vm_rb);
775 __vma_link_list(mm, vma, prev, parent);
779 * delete a VMA from its owning mm_struct and address space
781 static void delete_vma_from_mm(struct vm_area_struct *vma)
784 struct address_space *mapping;
785 struct mm_struct *mm = vma->vm_mm;
786 struct task_struct *curr = current;
791 for (i = 0; i < VMACACHE_SIZE; i++) {
792 /* if the vma is cached, invalidate the entire cache */
793 if (curr->vmacache[i] == vma) {
794 vmacache_invalidate(mm);
799 /* remove the VMA from the mapping */
801 mapping = vma->vm_file->f_mapping;
803 i_mmap_lock_write(mapping);
804 flush_dcache_mmap_lock(mapping);
805 vma_interval_tree_remove(vma, &mapping->i_mmap);
806 flush_dcache_mmap_unlock(mapping);
807 i_mmap_unlock_write(mapping);
810 /* remove from the MM's tree and list */
811 rb_erase(&vma->vm_rb, &mm->mm_rb);
814 vma->vm_prev->vm_next = vma->vm_next;
816 mm->mmap = vma->vm_next;
819 vma->vm_next->vm_prev = vma->vm_prev;
823 * destroy a VMA record
825 static void delete_vma(struct mm_struct *mm, struct vm_area_struct *vma)
827 if (vma->vm_ops && vma->vm_ops->close)
828 vma->vm_ops->close(vma);
831 put_nommu_region(vma->vm_region);
832 kmem_cache_free(vm_area_cachep, vma);
836 * look up the first VMA in which addr resides, NULL if none
837 * - should be called with mm->mmap_sem at least held readlocked
839 struct vm_area_struct *find_vma(struct mm_struct *mm, unsigned long addr)
841 struct vm_area_struct *vma;
843 /* check the cache first */
844 vma = vmacache_find(mm, addr);
848 /* trawl the list (there may be multiple mappings in which addr
850 for (vma = mm->mmap; vma; vma = vma->vm_next) {
851 if (vma->vm_start > addr)
853 if (vma->vm_end > addr) {
854 vmacache_update(addr, vma);
861 EXPORT_SYMBOL(find_vma);
865 * - we don't extend stack VMAs under NOMMU conditions
867 struct vm_area_struct *find_extend_vma(struct mm_struct *mm, unsigned long addr)
869 return find_vma(mm, addr);
873 * expand a stack to a given address
874 * - not supported under NOMMU conditions
876 int expand_stack(struct vm_area_struct *vma, unsigned long address)
882 * look up the first VMA exactly that exactly matches addr
883 * - should be called with mm->mmap_sem at least held readlocked
885 static struct vm_area_struct *find_vma_exact(struct mm_struct *mm,
889 struct vm_area_struct *vma;
890 unsigned long end = addr + len;
892 /* check the cache first */
893 vma = vmacache_find_exact(mm, addr, end);
897 /* trawl the list (there may be multiple mappings in which addr
899 for (vma = mm->mmap; vma; vma = vma->vm_next) {
900 if (vma->vm_start < addr)
902 if (vma->vm_start > addr)
904 if (vma->vm_end == end) {
905 vmacache_update(addr, vma);
914 * determine whether a mapping should be permitted and, if so, what sort of
915 * mapping we're capable of supporting
917 static int validate_mmap_request(struct file *file,
923 unsigned long *_capabilities)
925 unsigned long capabilities, rlen;
928 /* do the simple checks first */
929 if (flags & MAP_FIXED)
932 if ((flags & MAP_TYPE) != MAP_PRIVATE &&
933 (flags & MAP_TYPE) != MAP_SHARED)
939 /* Careful about overflows.. */
940 rlen = PAGE_ALIGN(len);
941 if (!rlen || rlen > TASK_SIZE)
944 /* offset overflow? */
945 if ((pgoff + (rlen >> PAGE_SHIFT)) < pgoff)
949 /* files must support mmap */
950 if (!file->f_op->mmap)
953 /* work out if what we've got could possibly be shared
954 * - we support chardevs that provide their own "memory"
955 * - we support files/blockdevs that are memory backed
957 if (file->f_op->mmap_capabilities) {
958 capabilities = file->f_op->mmap_capabilities(file);
960 /* no explicit capabilities set, so assume some
962 switch (file_inode(file)->i_mode & S_IFMT) {
965 capabilities = NOMMU_MAP_COPY;
980 /* eliminate any capabilities that we can't support on this
982 if (!file->f_op->get_unmapped_area)
983 capabilities &= ~NOMMU_MAP_DIRECT;
984 if (!(file->f_mode & FMODE_CAN_READ))
985 capabilities &= ~NOMMU_MAP_COPY;
987 /* The file shall have been opened with read permission. */
988 if (!(file->f_mode & FMODE_READ))
991 if (flags & MAP_SHARED) {
992 /* do checks for writing, appending and locking */
993 if ((prot & PROT_WRITE) &&
994 !(file->f_mode & FMODE_WRITE))
997 if (IS_APPEND(file_inode(file)) &&
998 (file->f_mode & FMODE_WRITE))
1001 if (locks_verify_locked(file))
1004 if (!(capabilities & NOMMU_MAP_DIRECT))
1007 /* we mustn't privatise shared mappings */
1008 capabilities &= ~NOMMU_MAP_COPY;
1010 /* we're going to read the file into private memory we
1012 if (!(capabilities & NOMMU_MAP_COPY))
1015 /* we don't permit a private writable mapping to be
1016 * shared with the backing device */
1017 if (prot & PROT_WRITE)
1018 capabilities &= ~NOMMU_MAP_DIRECT;
1021 if (capabilities & NOMMU_MAP_DIRECT) {
1022 if (((prot & PROT_READ) && !(capabilities & NOMMU_MAP_READ)) ||
1023 ((prot & PROT_WRITE) && !(capabilities & NOMMU_MAP_WRITE)) ||
1024 ((prot & PROT_EXEC) && !(capabilities & NOMMU_MAP_EXEC))
1026 capabilities &= ~NOMMU_MAP_DIRECT;
1027 if (flags & MAP_SHARED) {
1028 pr_warn("MAP_SHARED not completely supported on !MMU\n");
1034 /* handle executable mappings and implied executable
1036 if (path_noexec(&file->f_path)) {
1037 if (prot & PROT_EXEC)
1039 } else if ((prot & PROT_READ) && !(prot & PROT_EXEC)) {
1040 /* handle implication of PROT_EXEC by PROT_READ */
1041 if (current->personality & READ_IMPLIES_EXEC) {
1042 if (capabilities & NOMMU_MAP_EXEC)
1045 } else if ((prot & PROT_READ) &&
1046 (prot & PROT_EXEC) &&
1047 !(capabilities & NOMMU_MAP_EXEC)
1049 /* backing file is not executable, try to copy */
1050 capabilities &= ~NOMMU_MAP_DIRECT;
1053 /* anonymous mappings are always memory backed and can be
1056 capabilities = NOMMU_MAP_COPY;
1058 /* handle PROT_EXEC implication by PROT_READ */
1059 if ((prot & PROT_READ) &&
1060 (current->personality & READ_IMPLIES_EXEC))
1064 /* allow the security API to have its say */
1065 ret = security_mmap_addr(addr);
1070 *_capabilities = capabilities;
1075 * we've determined that we can make the mapping, now translate what we
1076 * now know into VMA flags
1078 static unsigned long determine_vm_flags(struct file *file,
1080 unsigned long flags,
1081 unsigned long capabilities)
1083 unsigned long vm_flags;
1085 vm_flags = calc_vm_prot_bits(prot) | calc_vm_flag_bits(flags);
1086 /* vm_flags |= mm->def_flags; */
1088 if (!(capabilities & NOMMU_MAP_DIRECT)) {
1089 /* attempt to share read-only copies of mapped file chunks */
1090 vm_flags |= VM_MAYREAD | VM_MAYWRITE | VM_MAYEXEC;
1091 if (file && !(prot & PROT_WRITE))
1092 vm_flags |= VM_MAYSHARE;
1094 /* overlay a shareable mapping on the backing device or inode
1095 * if possible - used for chardevs, ramfs/tmpfs/shmfs and
1097 vm_flags |= VM_MAYSHARE | (capabilities & NOMMU_VMFLAGS);
1098 if (flags & MAP_SHARED)
1099 vm_flags |= VM_SHARED;
1102 /* refuse to let anyone share private mappings with this process if
1103 * it's being traced - otherwise breakpoints set in it may interfere
1104 * with another untraced process
1106 if ((flags & MAP_PRIVATE) && current->ptrace)
1107 vm_flags &= ~VM_MAYSHARE;
1113 * set up a shared mapping on a file (the driver or filesystem provides and
1116 static int do_mmap_shared_file(struct vm_area_struct *vma)
1120 ret = vma->vm_file->f_op->mmap(vma->vm_file, vma);
1122 vma->vm_region->vm_top = vma->vm_region->vm_end;
1128 /* getting -ENOSYS indicates that direct mmap isn't possible (as
1129 * opposed to tried but failed) so we can only give a suitable error as
1130 * it's not possible to make a private copy if MAP_SHARED was given */
1135 * set up a private mapping or an anonymous shared mapping
1137 static int do_mmap_private(struct vm_area_struct *vma,
1138 struct vm_region *region,
1140 unsigned long capabilities)
1142 unsigned long total, point;
1146 /* invoke the file's mapping function so that it can keep track of
1147 * shared mappings on devices or memory
1148 * - VM_MAYSHARE will be set if it may attempt to share
1150 if (capabilities & NOMMU_MAP_DIRECT) {
1151 ret = vma->vm_file->f_op->mmap(vma->vm_file, vma);
1153 /* shouldn't return success if we're not sharing */
1154 BUG_ON(!(vma->vm_flags & VM_MAYSHARE));
1155 vma->vm_region->vm_top = vma->vm_region->vm_end;
1161 /* getting an ENOSYS error indicates that direct mmap isn't
1162 * possible (as opposed to tried but failed) so we'll try to
1163 * make a private copy of the data and map that instead */
1167 /* allocate some memory to hold the mapping
1168 * - note that this may not return a page-aligned address if the object
1169 * we're allocating is smaller than a page
1171 order = get_order(len);
1173 point = len >> PAGE_SHIFT;
1175 /* we don't want to allocate a power-of-2 sized page set */
1176 if (sysctl_nr_trim_pages && total - point >= sysctl_nr_trim_pages)
1179 base = alloc_pages_exact(total << PAGE_SHIFT, GFP_KERNEL);
1183 atomic_long_add(total, &mmap_pages_allocated);
1185 region->vm_flags = vma->vm_flags |= VM_MAPPED_COPY;
1186 region->vm_start = (unsigned long) base;
1187 region->vm_end = region->vm_start + len;
1188 region->vm_top = region->vm_start + (total << PAGE_SHIFT);
1190 vma->vm_start = region->vm_start;
1191 vma->vm_end = region->vm_start + len;
1194 /* read the contents of a file into the copy */
1195 mm_segment_t old_fs;
1198 fpos = vma->vm_pgoff;
1199 fpos <<= PAGE_SHIFT;
1203 ret = __vfs_read(vma->vm_file, base, len, &fpos);
1209 /* clear the last little bit */
1211 memset(base + ret, 0, len - ret);
1218 free_page_series(region->vm_start, region->vm_top);
1219 region->vm_start = vma->vm_start = 0;
1220 region->vm_end = vma->vm_end = 0;
1225 pr_err("Allocation of length %lu from process %d (%s) failed\n",
1226 len, current->pid, current->comm);
1232 * handle mapping creation for uClinux
1234 unsigned long do_mmap(struct file *file,
1238 unsigned long flags,
1239 vm_flags_t vm_flags,
1240 unsigned long pgoff,
1241 unsigned long *populate)
1243 struct vm_area_struct *vma;
1244 struct vm_region *region;
1246 unsigned long capabilities, result;
1251 /* decide whether we should attempt the mapping, and if so what sort of
1253 ret = validate_mmap_request(file, addr, len, prot, flags, pgoff,
1258 /* we ignore the address hint */
1260 len = PAGE_ALIGN(len);
1262 /* we've determined that we can make the mapping, now translate what we
1263 * now know into VMA flags */
1264 vm_flags |= determine_vm_flags(file, prot, flags, capabilities);
1266 /* we're going to need to record the mapping */
1267 region = kmem_cache_zalloc(vm_region_jar, GFP_KERNEL);
1269 goto error_getting_region;
1271 vma = kmem_cache_zalloc(vm_area_cachep, GFP_KERNEL);
1273 goto error_getting_vma;
1275 region->vm_usage = 1;
1276 region->vm_flags = vm_flags;
1277 region->vm_pgoff = pgoff;
1279 INIT_LIST_HEAD(&vma->anon_vma_chain);
1280 vma->vm_flags = vm_flags;
1281 vma->vm_pgoff = pgoff;
1284 region->vm_file = get_file(file);
1285 vma->vm_file = get_file(file);
1288 down_write(&nommu_region_sem);
1290 /* if we want to share, we need to check for regions created by other
1291 * mmap() calls that overlap with our proposed mapping
1292 * - we can only share with a superset match on most regular files
1293 * - shared mappings on character devices and memory backed files are
1294 * permitted to overlap inexactly as far as we are concerned for in
1295 * these cases, sharing is handled in the driver or filesystem rather
1298 if (vm_flags & VM_MAYSHARE) {
1299 struct vm_region *pregion;
1300 unsigned long pglen, rpglen, pgend, rpgend, start;
1302 pglen = (len + PAGE_SIZE - 1) >> PAGE_SHIFT;
1303 pgend = pgoff + pglen;
1305 for (rb = rb_first(&nommu_region_tree); rb; rb = rb_next(rb)) {
1306 pregion = rb_entry(rb, struct vm_region, vm_rb);
1308 if (!(pregion->vm_flags & VM_MAYSHARE))
1311 /* search for overlapping mappings on the same file */
1312 if (file_inode(pregion->vm_file) !=
1316 if (pregion->vm_pgoff >= pgend)
1319 rpglen = pregion->vm_end - pregion->vm_start;
1320 rpglen = (rpglen + PAGE_SIZE - 1) >> PAGE_SHIFT;
1321 rpgend = pregion->vm_pgoff + rpglen;
1322 if (pgoff >= rpgend)
1325 /* handle inexactly overlapping matches between
1327 if ((pregion->vm_pgoff != pgoff || rpglen != pglen) &&
1328 !(pgoff >= pregion->vm_pgoff && pgend <= rpgend)) {
1329 /* new mapping is not a subset of the region */
1330 if (!(capabilities & NOMMU_MAP_DIRECT))
1331 goto sharing_violation;
1335 /* we've found a region we can share */
1336 pregion->vm_usage++;
1337 vma->vm_region = pregion;
1338 start = pregion->vm_start;
1339 start += (pgoff - pregion->vm_pgoff) << PAGE_SHIFT;
1340 vma->vm_start = start;
1341 vma->vm_end = start + len;
1343 if (pregion->vm_flags & VM_MAPPED_COPY)
1344 vma->vm_flags |= VM_MAPPED_COPY;
1346 ret = do_mmap_shared_file(vma);
1348 vma->vm_region = NULL;
1351 pregion->vm_usage--;
1353 goto error_just_free;
1356 fput(region->vm_file);
1357 kmem_cache_free(vm_region_jar, region);
1363 /* obtain the address at which to make a shared mapping
1364 * - this is the hook for quasi-memory character devices to
1365 * tell us the location of a shared mapping
1367 if (capabilities & NOMMU_MAP_DIRECT) {
1368 addr = file->f_op->get_unmapped_area(file, addr, len,
1370 if (IS_ERR_VALUE(addr)) {
1373 goto error_just_free;
1375 /* the driver refused to tell us where to site
1376 * the mapping so we'll have to attempt to copy
1379 if (!(capabilities & NOMMU_MAP_COPY))
1380 goto error_just_free;
1382 capabilities &= ~NOMMU_MAP_DIRECT;
1384 vma->vm_start = region->vm_start = addr;
1385 vma->vm_end = region->vm_end = addr + len;
1390 vma->vm_region = region;
1392 /* set up the mapping
1393 * - the region is filled in if NOMMU_MAP_DIRECT is still set
1395 if (file && vma->vm_flags & VM_SHARED)
1396 ret = do_mmap_shared_file(vma);
1398 ret = do_mmap_private(vma, region, len, capabilities);
1400 goto error_just_free;
1401 add_nommu_region(region);
1403 /* clear anonymous mappings that don't ask for uninitialized data */
1404 if (!vma->vm_file && !(flags & MAP_UNINITIALIZED))
1405 memset((void *)region->vm_start, 0,
1406 region->vm_end - region->vm_start);
1408 /* okay... we have a mapping; now we have to register it */
1409 result = vma->vm_start;
1411 current->mm->total_vm += len >> PAGE_SHIFT;
1414 add_vma_to_mm(current->mm, vma);
1416 /* we flush the region from the icache only when the first executable
1417 * mapping of it is made */
1418 if (vma->vm_flags & VM_EXEC && !region->vm_icache_flushed) {
1419 flush_icache_range(region->vm_start, region->vm_end);
1420 region->vm_icache_flushed = true;
1423 up_write(&nommu_region_sem);
1428 up_write(&nommu_region_sem);
1430 if (region->vm_file)
1431 fput(region->vm_file);
1432 kmem_cache_free(vm_region_jar, region);
1435 kmem_cache_free(vm_area_cachep, vma);
1439 up_write(&nommu_region_sem);
1440 pr_warn("Attempt to share mismatched mappings\n");
1445 kmem_cache_free(vm_region_jar, region);
1446 pr_warn("Allocation of vma for %lu byte allocation from process %d failed\n",
1451 error_getting_region:
1452 pr_warn("Allocation of vm region for %lu byte allocation from process %d failed\n",
1458 SYSCALL_DEFINE6(mmap_pgoff, unsigned long, addr, unsigned long, len,
1459 unsigned long, prot, unsigned long, flags,
1460 unsigned long, fd, unsigned long, pgoff)
1462 struct file *file = NULL;
1463 unsigned long retval = -EBADF;
1465 audit_mmap_fd(fd, flags);
1466 if (!(flags & MAP_ANONYMOUS)) {
1472 flags &= ~(MAP_EXECUTABLE | MAP_DENYWRITE);
1474 retval = vm_mmap_pgoff(file, addr, len, prot, flags, pgoff);
1482 #ifdef __ARCH_WANT_SYS_OLD_MMAP
1483 struct mmap_arg_struct {
1487 unsigned long flags;
1489 unsigned long offset;
1492 SYSCALL_DEFINE1(old_mmap, struct mmap_arg_struct __user *, arg)
1494 struct mmap_arg_struct a;
1496 if (copy_from_user(&a, arg, sizeof(a)))
1498 if (offset_in_page(a.offset))
1501 return sys_mmap_pgoff(a.addr, a.len, a.prot, a.flags, a.fd,
1502 a.offset >> PAGE_SHIFT);
1504 #endif /* __ARCH_WANT_SYS_OLD_MMAP */
1507 * split a vma into two pieces at address 'addr', a new vma is allocated either
1508 * for the first part or the tail.
1510 int split_vma(struct mm_struct *mm, struct vm_area_struct *vma,
1511 unsigned long addr, int new_below)
1513 struct vm_area_struct *new;
1514 struct vm_region *region;
1515 unsigned long npages;
1517 /* we're only permitted to split anonymous regions (these should have
1518 * only a single usage on the region) */
1522 if (mm->map_count >= sysctl_max_map_count)
1525 region = kmem_cache_alloc(vm_region_jar, GFP_KERNEL);
1529 new = kmem_cache_alloc(vm_area_cachep, GFP_KERNEL);
1531 kmem_cache_free(vm_region_jar, region);
1535 /* most fields are the same, copy all, and then fixup */
1537 *region = *vma->vm_region;
1538 new->vm_region = region;
1540 npages = (addr - vma->vm_start) >> PAGE_SHIFT;
1543 region->vm_top = region->vm_end = new->vm_end = addr;
1545 region->vm_start = new->vm_start = addr;
1546 region->vm_pgoff = new->vm_pgoff += npages;
1549 if (new->vm_ops && new->vm_ops->open)
1550 new->vm_ops->open(new);
1552 delete_vma_from_mm(vma);
1553 down_write(&nommu_region_sem);
1554 delete_nommu_region(vma->vm_region);
1556 vma->vm_region->vm_start = vma->vm_start = addr;
1557 vma->vm_region->vm_pgoff = vma->vm_pgoff += npages;
1559 vma->vm_region->vm_end = vma->vm_end = addr;
1560 vma->vm_region->vm_top = addr;
1562 add_nommu_region(vma->vm_region);
1563 add_nommu_region(new->vm_region);
1564 up_write(&nommu_region_sem);
1565 add_vma_to_mm(mm, vma);
1566 add_vma_to_mm(mm, new);
1571 * shrink a VMA by removing the specified chunk from either the beginning or
1574 static int shrink_vma(struct mm_struct *mm,
1575 struct vm_area_struct *vma,
1576 unsigned long from, unsigned long to)
1578 struct vm_region *region;
1580 /* adjust the VMA's pointers, which may reposition it in the MM's tree
1582 delete_vma_from_mm(vma);
1583 if (from > vma->vm_start)
1587 add_vma_to_mm(mm, vma);
1589 /* cut the backing region down to size */
1590 region = vma->vm_region;
1591 BUG_ON(region->vm_usage != 1);
1593 down_write(&nommu_region_sem);
1594 delete_nommu_region(region);
1595 if (from > region->vm_start) {
1596 to = region->vm_top;
1597 region->vm_top = region->vm_end = from;
1599 region->vm_start = to;
1601 add_nommu_region(region);
1602 up_write(&nommu_region_sem);
1604 free_page_series(from, to);
1610 * - under NOMMU conditions the chunk to be unmapped must be backed by a single
1611 * VMA, though it need not cover the whole VMA
1613 int do_munmap(struct mm_struct *mm, unsigned long start, size_t len)
1615 struct vm_area_struct *vma;
1619 len = PAGE_ALIGN(len);
1625 /* find the first potentially overlapping VMA */
1626 vma = find_vma(mm, start);
1630 pr_warn("munmap of memory not mmapped by process %d (%s): 0x%lx-0x%lx\n",
1631 current->pid, current->comm,
1632 start, start + len - 1);
1638 /* we're allowed to split an anonymous VMA but not a file-backed one */
1641 if (start > vma->vm_start)
1643 if (end == vma->vm_end)
1644 goto erase_whole_vma;
1649 /* the chunk must be a subset of the VMA found */
1650 if (start == vma->vm_start && end == vma->vm_end)
1651 goto erase_whole_vma;
1652 if (start < vma->vm_start || end > vma->vm_end)
1654 if (offset_in_page(start))
1656 if (end != vma->vm_end && offset_in_page(end))
1658 if (start != vma->vm_start && end != vma->vm_end) {
1659 ret = split_vma(mm, vma, start, 1);
1663 return shrink_vma(mm, vma, start, end);
1667 delete_vma_from_mm(vma);
1668 delete_vma(mm, vma);
1671 EXPORT_SYMBOL(do_munmap);
1673 int vm_munmap(unsigned long addr, size_t len)
1675 struct mm_struct *mm = current->mm;
1678 down_write(&mm->mmap_sem);
1679 ret = do_munmap(mm, addr, len);
1680 up_write(&mm->mmap_sem);
1683 EXPORT_SYMBOL(vm_munmap);
1685 SYSCALL_DEFINE2(munmap, unsigned long, addr, size_t, len)
1687 return vm_munmap(addr, len);
1691 * release all the mappings made in a process's VM space
1693 void exit_mmap(struct mm_struct *mm)
1695 struct vm_area_struct *vma;
1702 while ((vma = mm->mmap)) {
1703 mm->mmap = vma->vm_next;
1704 delete_vma_from_mm(vma);
1705 delete_vma(mm, vma);
1710 unsigned long vm_brk(unsigned long addr, unsigned long len)
1716 * expand (or shrink) an existing mapping, potentially moving it at the same
1717 * time (controlled by the MREMAP_MAYMOVE flag and available VM space)
1719 * under NOMMU conditions, we only permit changing a mapping's size, and only
1720 * as long as it stays within the region allocated by do_mmap_private() and the
1721 * block is not shareable
1723 * MREMAP_FIXED is not supported under NOMMU conditions
1725 static unsigned long do_mremap(unsigned long addr,
1726 unsigned long old_len, unsigned long new_len,
1727 unsigned long flags, unsigned long new_addr)
1729 struct vm_area_struct *vma;
1731 /* insanity checks first */
1732 old_len = PAGE_ALIGN(old_len);
1733 new_len = PAGE_ALIGN(new_len);
1734 if (old_len == 0 || new_len == 0)
1735 return (unsigned long) -EINVAL;
1737 if (offset_in_page(addr))
1740 if (flags & MREMAP_FIXED && new_addr != addr)
1741 return (unsigned long) -EINVAL;
1743 vma = find_vma_exact(current->mm, addr, old_len);
1745 return (unsigned long) -EINVAL;
1747 if (vma->vm_end != vma->vm_start + old_len)
1748 return (unsigned long) -EFAULT;
1750 if (vma->vm_flags & VM_MAYSHARE)
1751 return (unsigned long) -EPERM;
1753 if (new_len > vma->vm_region->vm_end - vma->vm_region->vm_start)
1754 return (unsigned long) -ENOMEM;
1756 /* all checks complete - do it */
1757 vma->vm_end = vma->vm_start + new_len;
1758 return vma->vm_start;
1761 SYSCALL_DEFINE5(mremap, unsigned long, addr, unsigned long, old_len,
1762 unsigned long, new_len, unsigned long, flags,
1763 unsigned long, new_addr)
1767 down_write(¤t->mm->mmap_sem);
1768 ret = do_mremap(addr, old_len, new_len, flags, new_addr);
1769 up_write(¤t->mm->mmap_sem);
1773 struct page *follow_page_mask(struct vm_area_struct *vma,
1774 unsigned long address, unsigned int flags,
1775 unsigned int *page_mask)
1781 int remap_pfn_range(struct vm_area_struct *vma, unsigned long addr,
1782 unsigned long pfn, unsigned long size, pgprot_t prot)
1784 if (addr != (pfn << PAGE_SHIFT))
1787 vma->vm_flags |= VM_IO | VM_PFNMAP | VM_DONTEXPAND | VM_DONTDUMP;
1790 EXPORT_SYMBOL(remap_pfn_range);
1792 int vm_iomap_memory(struct vm_area_struct *vma, phys_addr_t start, unsigned long len)
1794 unsigned long pfn = start >> PAGE_SHIFT;
1795 unsigned long vm_len = vma->vm_end - vma->vm_start;
1797 pfn += vma->vm_pgoff;
1798 return io_remap_pfn_range(vma, vma->vm_start, pfn, vm_len, vma->vm_page_prot);
1800 EXPORT_SYMBOL(vm_iomap_memory);
1802 int remap_vmalloc_range(struct vm_area_struct *vma, void *addr,
1803 unsigned long pgoff)
1805 unsigned int size = vma->vm_end - vma->vm_start;
1807 if (!(vma->vm_flags & VM_USERMAP))
1810 vma->vm_start = (unsigned long)(addr + (pgoff << PAGE_SHIFT));
1811 vma->vm_end = vma->vm_start + size;
1815 EXPORT_SYMBOL(remap_vmalloc_range);
1817 unsigned long arch_get_unmapped_area(struct file *file, unsigned long addr,
1818 unsigned long len, unsigned long pgoff, unsigned long flags)
1823 void unmap_mapping_range(struct address_space *mapping,
1824 loff_t const holebegin, loff_t const holelen,
1828 EXPORT_SYMBOL(unmap_mapping_range);
1831 * Check that a process has enough memory to allocate a new virtual
1832 * mapping. 0 means there is enough memory for the allocation to
1833 * succeed and -ENOMEM implies there is not.
1835 * We currently support three overcommit policies, which are set via the
1836 * vm.overcommit_memory sysctl. See Documentation/vm/overcommit-accounting
1838 * Strict overcommit modes added 2002 Feb 26 by Alan Cox.
1839 * Additional code 2002 Jul 20 by Robert Love.
1841 * cap_sys_admin is 1 if the process has admin privileges, 0 otherwise.
1843 * Note this is a helper function intended to be used by LSMs which
1844 * wish to use this logic.
1846 int __vm_enough_memory(struct mm_struct *mm, long pages, int cap_sys_admin)
1848 long free, allowed, reserve;
1850 vm_acct_memory(pages);
1853 * Sometimes we want to use more memory than we have
1855 if (sysctl_overcommit_memory == OVERCOMMIT_ALWAYS)
1858 if (sysctl_overcommit_memory == OVERCOMMIT_GUESS) {
1859 free = global_page_state(NR_FREE_PAGES);
1860 free += global_page_state(NR_FILE_PAGES);
1863 * shmem pages shouldn't be counted as free in this
1864 * case, they can't be purged, only swapped out, and
1865 * that won't affect the overall amount of available
1866 * memory in the system.
1868 free -= global_page_state(NR_SHMEM);
1870 free += get_nr_swap_pages();
1873 * Any slabs which are created with the
1874 * SLAB_RECLAIM_ACCOUNT flag claim to have contents
1875 * which are reclaimable, under pressure. The dentry
1876 * cache and most inode caches should fall into this
1878 free += global_page_state(NR_SLAB_RECLAIMABLE);
1881 * Leave reserved pages. The pages are not for anonymous pages.
1883 if (free <= totalreserve_pages)
1886 free -= totalreserve_pages;
1889 * Reserve some for root
1892 free -= sysctl_admin_reserve_kbytes >> (PAGE_SHIFT - 10);
1900 allowed = vm_commit_limit();
1902 * Reserve some 3% for root
1905 allowed -= sysctl_admin_reserve_kbytes >> (PAGE_SHIFT - 10);
1908 * Don't let a single process grow so big a user can't recover
1911 reserve = sysctl_user_reserve_kbytes >> (PAGE_SHIFT - 10);
1912 allowed -= min_t(long, mm->total_vm / 32, reserve);
1915 if (percpu_counter_read_positive(&vm_committed_as) < allowed)
1919 vm_unacct_memory(pages);
1924 int filemap_fault(struct vm_area_struct *vma, struct vm_fault *vmf)
1929 EXPORT_SYMBOL(filemap_fault);
1931 void filemap_map_pages(struct vm_area_struct *vma, struct vm_fault *vmf)
1935 EXPORT_SYMBOL(filemap_map_pages);
1937 static int __access_remote_vm(struct task_struct *tsk, struct mm_struct *mm,
1938 unsigned long addr, void *buf, int len, int write)
1940 struct vm_area_struct *vma;
1942 down_read(&mm->mmap_sem);
1944 /* the access must start within one of the target process's mappings */
1945 vma = find_vma(mm, addr);
1947 /* don't overrun this mapping */
1948 if (addr + len >= vma->vm_end)
1949 len = vma->vm_end - addr;
1951 /* only read or write mappings where it is permitted */
1952 if (write && vma->vm_flags & VM_MAYWRITE)
1953 copy_to_user_page(vma, NULL, addr,
1954 (void *) addr, buf, len);
1955 else if (!write && vma->vm_flags & VM_MAYREAD)
1956 copy_from_user_page(vma, NULL, addr,
1957 buf, (void *) addr, len);
1964 up_read(&mm->mmap_sem);
1970 * @access_remote_vm - access another process' address space
1971 * @mm: the mm_struct of the target address space
1972 * @addr: start address to access
1973 * @buf: source or destination buffer
1974 * @len: number of bytes to transfer
1975 * @write: whether the access is a write
1977 * The caller must hold a reference on @mm.
1979 int access_remote_vm(struct mm_struct *mm, unsigned long addr,
1980 void *buf, int len, int write)
1982 return __access_remote_vm(NULL, mm, addr, buf, len, write);
1986 * Access another process' address space.
1987 * - source/target buffer must be kernel space
1989 int access_process_vm(struct task_struct *tsk, unsigned long addr, void *buf, int len, int write)
1991 struct mm_struct *mm;
1993 if (addr + len < addr)
1996 mm = get_task_mm(tsk);
2000 len = __access_remote_vm(tsk, mm, addr, buf, len, write);
2007 * nommu_shrink_inode_mappings - Shrink the shared mappings on an inode
2008 * @inode: The inode to check
2009 * @size: The current filesize of the inode
2010 * @newsize: The proposed filesize of the inode
2012 * Check the shared mappings on an inode on behalf of a shrinking truncate to
2013 * make sure that that any outstanding VMAs aren't broken and then shrink the
2014 * vm_regions that extend that beyond so that do_mmap_pgoff() doesn't
2015 * automatically grant mappings that are too large.
2017 int nommu_shrink_inode_mappings(struct inode *inode, size_t size,
2020 struct vm_area_struct *vma;
2021 struct vm_region *region;
2023 size_t r_size, r_top;
2025 low = newsize >> PAGE_SHIFT;
2026 high = (size + PAGE_SIZE - 1) >> PAGE_SHIFT;
2028 down_write(&nommu_region_sem);
2029 i_mmap_lock_read(inode->i_mapping);
2031 /* search for VMAs that fall within the dead zone */
2032 vma_interval_tree_foreach(vma, &inode->i_mapping->i_mmap, low, high) {
2033 /* found one - only interested if it's shared out of the page
2035 if (vma->vm_flags & VM_SHARED) {
2036 i_mmap_unlock_read(inode->i_mapping);
2037 up_write(&nommu_region_sem);
2038 return -ETXTBSY; /* not quite true, but near enough */
2042 /* reduce any regions that overlap the dead zone - if in existence,
2043 * these will be pointed to by VMAs that don't overlap the dead zone
2045 * we don't check for any regions that start beyond the EOF as there
2048 vma_interval_tree_foreach(vma, &inode->i_mapping->i_mmap, 0, ULONG_MAX) {
2049 if (!(vma->vm_flags & VM_SHARED))
2052 region = vma->vm_region;
2053 r_size = region->vm_top - region->vm_start;
2054 r_top = (region->vm_pgoff << PAGE_SHIFT) + r_size;
2056 if (r_top > newsize) {
2057 region->vm_top -= r_top - newsize;
2058 if (region->vm_end > region->vm_top)
2059 region->vm_end = region->vm_top;
2063 i_mmap_unlock_read(inode->i_mapping);
2064 up_write(&nommu_region_sem);
2069 * Initialise sysctl_user_reserve_kbytes.
2071 * This is intended to prevent a user from starting a single memory hogging
2072 * process, such that they cannot recover (kill the hog) in OVERCOMMIT_NEVER
2075 * The default value is min(3% of free memory, 128MB)
2076 * 128MB is enough to recover with sshd/login, bash, and top/kill.
2078 static int __meminit init_user_reserve(void)
2080 unsigned long free_kbytes;
2082 free_kbytes = global_page_state(NR_FREE_PAGES) << (PAGE_SHIFT - 10);
2084 sysctl_user_reserve_kbytes = min(free_kbytes / 32, 1UL << 17);
2087 subsys_initcall(init_user_reserve);
2090 * Initialise sysctl_admin_reserve_kbytes.
2092 * The purpose of sysctl_admin_reserve_kbytes is to allow the sys admin
2093 * to log in and kill a memory hogging process.
2095 * Systems with more than 256MB will reserve 8MB, enough to recover
2096 * with sshd, bash, and top in OVERCOMMIT_GUESS. Smaller systems will
2097 * only reserve 3% of free pages by default.
2099 static int __meminit init_admin_reserve(void)
2101 unsigned long free_kbytes;
2103 free_kbytes = global_page_state(NR_FREE_PAGES) << (PAGE_SHIFT - 10);
2105 sysctl_admin_reserve_kbytes = min(free_kbytes / 32, 1UL << 13);
2108 subsys_initcall(init_admin_reserve);
2110 long get_user_pages8(struct task_struct *tsk, struct mm_struct *mm,
2111 unsigned long start, unsigned long nr_pages,
2112 int write, int force, struct page **pages,
2113 struct vm_area_struct **vmas)
2115 return get_user_pages6(start, nr_pages, write, force, pages, vmas);
2117 EXPORT_SYMBOL(get_user_pages8);
2119 long get_user_pages_locked8(struct task_struct *tsk, struct mm_struct *mm,
2120 unsigned long start, unsigned long nr_pages,
2121 int write, int force, struct page **pages,
2124 return get_user_pages_locked6(start, nr_pages, write,
2125 force, pages, locked);
2127 EXPORT_SYMBOL(get_user_pages_locked8);
2129 long get_user_pages_unlocked7(struct task_struct *tsk, struct mm_struct *mm,
2130 unsigned long start, unsigned long nr_pages,
2131 int write, int force, struct page **pages)
2133 return get_user_pages_unlocked5(start, nr_pages, write, force, pages);
2135 EXPORT_SYMBOL(get_user_pages_unlocked7);
projects / cascardo / linux.git / blob