2 * Copyright (c) 1988 University of Utah.
3 * Copyright (c) 1991, 1993
4 * The Regents of the University of California. All rights reserved.
6 * This code is derived from software contributed to Berkeley by
7 * the Systems Programming Group of the University of Utah Computer
10 * Redistribution and use in source and binary forms, with or without
11 * modification, are permitted provided that the following conditions
13 * 1. Redistributions of source code must retain the above copyright
14 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in the
17 * documentation and/or other materials provided with the distribution.
18 * 4. Neither the name of the University nor the names of its contributors
19 * may be used to endorse or promote products derived from this software
20 * without specific prior written permission.
22 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * from: Utah $Hdr: vm_mmap.c 1.6 91/10/21$
36 * @(#)vm_mmap.c 8.4 (Berkeley) 1/12/94
40 * Mapped file (mmap) interface to VM
43 #include <sys/cdefs.h>
44 __FBSDID("$FreeBSD$");
46 #include "opt_compat.h"
47 #include "opt_hwpmc_hooks.h"
49 #include <sys/param.h>
50 #include <sys/systm.h>
51 #include <sys/capability.h>
52 #include <sys/kernel.h>
54 #include <sys/mutex.h>
55 #include <sys/sysproto.h>
56 #include <sys/filedesc.h>
59 #include <sys/procctl.h>
60 #include <sys/racct.h>
61 #include <sys/resource.h>
62 #include <sys/resourcevar.h>
63 #include <sys/sysctl.h>
64 #include <sys/vnode.h>
65 #include <sys/fcntl.h>
68 #include <sys/mount.h>
71 #include <sys/syscallsubr.h>
72 #include <sys/sysent.h>
73 #include <sys/vmmeter.h>
75 #include <security/mac/mac_framework.h>
78 #include <vm/vm_param.h>
80 #include <vm/vm_map.h>
81 #include <vm/vm_object.h>
82 #include <vm/vm_page.h>
83 #include <vm/vm_pager.h>
84 #include <vm/vm_pageout.h>
85 #include <vm/vm_extern.h>
86 #include <vm/vm_page.h>
87 #include <vm/vnode_pager.h>
90 #include <sys/pmckern.h>
94 SYSCTL_INT(_vm, OID_AUTO, old_mlock, CTLFLAG_RW | CTLFLAG_TUN, &old_mlock, 0,
95 "Do not apply RLIMIT_MEMLOCK on mlockall");
96 TUNABLE_INT("vm.old_mlock", &old_mlock);
98 #ifndef _SYS_SYSPROTO_H_
104 static int vm_mmap_vnode(struct thread *, vm_size_t, vm_prot_t, vm_prot_t *,
105 int *, struct vnode *, vm_ooffset_t *, vm_object_t *, boolean_t *);
106 static int vm_mmap_cdev(struct thread *, vm_size_t, vm_prot_t, vm_prot_t *,
107 int *, struct cdev *, vm_ooffset_t *, vm_object_t *);
108 static int vm_mmap_shm(struct thread *, vm_size_t, vm_prot_t, vm_prot_t *,
109 int *, struct shmfd *, vm_ooffset_t, vm_object_t *);
118 struct sbrk_args *uap;
120 /* Not yet implemented */
124 #ifndef _SYS_SYSPROTO_H_
137 struct sstk_args *uap;
139 /* Not yet implemented */
143 #if defined(COMPAT_43)
144 #ifndef _SYS_SYSPROTO_H_
145 struct getpagesize_args {
152 ogetpagesize(td, uap)
154 struct getpagesize_args *uap;
157 td->td_retval[0] = PAGE_SIZE;
160 #endif /* COMPAT_43 */
164 * Memory Map (mmap) system call. Note that the file offset
165 * and address are allowed to be NOT page aligned, though if
166 * the MAP_FIXED flag it set, both must have the same remainder
167 * modulo the PAGE_SIZE (POSIX 1003.1b). If the address is not
168 * page-aligned, the actual mapping starts at trunc_page(addr)
169 * and the return value is adjusted up by the page offset.
171 * Generally speaking, only character devices which are themselves
172 * memory-based, such as a video framebuffer, can be mmap'd. Otherwise
173 * there would be no cache coherency between a descriptor and a VM mapping
174 * both to the same character device.
176 #ifndef _SYS_SYSPROTO_H_
194 struct mmap_args *uap;
197 struct pmckern_map_in pkm;
202 vm_size_t size, pageoff;
203 vm_prot_t cap_maxprot, prot, maxprot;
205 objtype_t handle_type;
206 int align, error, flags;
208 struct vmspace *vms = td->td_proc->p_vmspace;
211 addr = (vm_offset_t) uap->addr;
213 prot = uap->prot & VM_PROT_ALL;
220 * Enforce the constraints.
221 * Mapping of length 0 is only allowed for old binaries.
222 * Anonymous mapping shall specify -1 as filedescriptor and
223 * zero position for new code. Be nice to ancient a.out
224 * binaries and correct pos for anonymous mapping, since old
225 * ld.so sometimes issues anonymous map requests with non-zero
228 if (!SV_CURPROC_FLAG(SV_AOUT)) {
229 if ((uap->len == 0 && curproc->p_osrel >= P_OSREL_MAP_ANON) ||
230 ((flags & MAP_ANON) != 0 && (uap->fd != -1 || pos != 0)))
233 if ((flags & MAP_ANON) != 0)
237 if (flags & MAP_STACK) {
238 if ((uap->fd != -1) ||
239 ((prot & (PROT_READ | PROT_WRITE)) != (PROT_READ | PROT_WRITE)))
246 * Align the file position to a page boundary,
247 * and save its page offset component.
249 pageoff = (pos & PAGE_MASK);
252 /* Adjust size for rounding (on both ends). */
253 size += pageoff; /* low end... */
254 size = (vm_size_t) round_page(size); /* hi end */
256 /* Ensure alignment is at least a page and fits in a pointer. */
257 align = flags & MAP_ALIGNMENT_MASK;
258 if (align != 0 && align != MAP_ALIGNED_SUPER &&
259 (align >> MAP_ALIGNMENT_SHIFT >= sizeof(void *) * NBBY ||
260 align >> MAP_ALIGNMENT_SHIFT < PAGE_SHIFT))
264 * Check for illegal addresses. Watch out for address wrap... Note
265 * that VM_*_ADDRESS are not constants due to casts (argh).
267 if (flags & MAP_FIXED) {
269 * The specified address must have the same remainder
270 * as the file offset taken modulo PAGE_SIZE, so it
271 * should be aligned after adjustment by pageoff.
274 if (addr & PAGE_MASK)
277 /* Address range must be all in user VM space. */
278 if (addr < vm_map_min(&vms->vm_map) ||
279 addr + size > vm_map_max(&vms->vm_map))
281 if (addr + size < addr)
285 * XXX for non-fixed mappings where no hint is provided or
286 * the hint would fall in the potential heap space,
287 * place it after the end of the largest possible heap.
289 * There should really be a pmap call to determine a reasonable
292 PROC_LOCK(td->td_proc);
294 (addr >= round_page((vm_offset_t)vms->vm_taddr) &&
295 addr < round_page((vm_offset_t)vms->vm_daddr +
296 lim_max(td->td_proc, RLIMIT_DATA))))
297 addr = round_page((vm_offset_t)vms->vm_daddr +
298 lim_max(td->td_proc, RLIMIT_DATA));
299 PROC_UNLOCK(td->td_proc);
301 if (flags & MAP_ANON) {
303 * Mapping blank space is trivial.
306 handle_type = OBJT_DEFAULT;
307 maxprot = VM_PROT_ALL;
308 cap_maxprot = VM_PROT_ALL;
311 * Mapping file, get fp for validation and don't let the
312 * descriptor disappear on us if we block. Check capability
313 * rights, but also return the maximum rights to be combined
314 * with maxprot later.
317 if (prot & PROT_READ)
319 if ((flags & MAP_SHARED) != 0) {
320 if (prot & PROT_WRITE)
323 if (prot & PROT_EXEC)
324 rights |= CAP_MAPEXEC;
325 if ((error = fget_mmap(td, uap->fd, rights, &cap_maxprot,
328 if (fp->f_type == DTYPE_SHM) {
330 handle_type = OBJT_SWAP;
331 maxprot = VM_PROT_NONE;
333 /* FREAD should always be set. */
334 if (fp->f_flag & FREAD)
335 maxprot |= VM_PROT_EXECUTE | VM_PROT_READ;
336 if (fp->f_flag & FWRITE)
337 maxprot |= VM_PROT_WRITE;
340 if (fp->f_type != DTYPE_VNODE) {
344 #if defined(COMPAT_FREEBSD7) || defined(COMPAT_FREEBSD6) || \
345 defined(COMPAT_FREEBSD5) || defined(COMPAT_FREEBSD4)
347 * POSIX shared-memory objects are defined to have
348 * kernel persistence, and are not defined to support
349 * read(2)/write(2) -- or even open(2). Thus, we can
350 * use MAP_ASYNC to trade on-disk coherence for speed.
351 * The shm_open(3) library routine turns on the FPOSIXSHM
352 * flag to request this behavior.
354 if (fp->f_flag & FPOSIXSHM)
359 * Ensure that file and memory protections are
360 * compatible. Note that we only worry about
361 * writability if mapping is shared; in this case,
362 * current and max prot are dictated by the open file.
363 * XXX use the vnode instead? Problem is: what
364 * credentials do we use for determination? What if
365 * proc does a setuid?
367 if (vp->v_mount != NULL && vp->v_mount->mnt_flag & MNT_NOEXEC)
368 maxprot = VM_PROT_NONE;
370 maxprot = VM_PROT_EXECUTE;
371 if (fp->f_flag & FREAD) {
372 maxprot |= VM_PROT_READ;
373 } else if (prot & PROT_READ) {
378 * If we are sharing potential changes (either via
379 * MAP_SHARED or via the implicit sharing of character
380 * device mappings), and we are trying to get write
381 * permission although we opened it without asking
384 if ((flags & MAP_SHARED) != 0) {
385 if ((fp->f_flag & FWRITE) != 0) {
386 maxprot |= VM_PROT_WRITE;
387 } else if ((prot & PROT_WRITE) != 0) {
391 } else if (vp->v_type != VCHR || (fp->f_flag & FWRITE) != 0) {
392 maxprot |= VM_PROT_WRITE;
393 cap_maxprot |= VM_PROT_WRITE;
396 handle_type = OBJT_VNODE;
400 maxprot &= cap_maxprot;
401 error = vm_mmap(&vms->vm_map, &addr, size, prot, maxprot,
402 flags, handle_type, handle, pos);
405 /* inform hwpmc(4) if an executable is being mapped */
406 if (error == 0 && handle_type == OBJT_VNODE &&
407 (prot & PROT_EXEC)) {
408 pkm.pm_file = handle;
409 pkm.pm_address = (uintptr_t) addr;
410 PMC_CALL_HOOK(td, PMC_FN_MMAP, (void *) &pkm);
414 td->td_retval[0] = (register_t) (addr + pageoff);
423 freebsd6_mmap(struct thread *td, struct freebsd6_mmap_args *uap)
425 struct mmap_args oargs;
427 oargs.addr = uap->addr;
428 oargs.len = uap->len;
429 oargs.prot = uap->prot;
430 oargs.flags = uap->flags;
432 oargs.pos = uap->pos;
433 return (sys_mmap(td, &oargs));
437 #ifndef _SYS_SYSPROTO_H_
450 struct ommap_args *uap;
452 struct mmap_args nargs;
453 static const char cvtbsdprot[8] = {
457 PROT_EXEC | PROT_WRITE,
459 PROT_EXEC | PROT_READ,
460 PROT_WRITE | PROT_READ,
461 PROT_EXEC | PROT_WRITE | PROT_READ,
464 #define OMAP_ANON 0x0002
465 #define OMAP_COPY 0x0020
466 #define OMAP_SHARED 0x0010
467 #define OMAP_FIXED 0x0100
469 nargs.addr = uap->addr;
470 nargs.len = uap->len;
471 nargs.prot = cvtbsdprot[uap->prot & 0x7];
472 #ifdef COMPAT_FREEBSD32
473 #if defined(__amd64__) || defined(__ia64__)
474 if (i386_read_exec && SV_PROC_FLAG(td->td_proc, SV_ILP32) &&
476 nargs.prot |= PROT_EXEC;
480 if (uap->flags & OMAP_ANON)
481 nargs.flags |= MAP_ANON;
482 if (uap->flags & OMAP_COPY)
483 nargs.flags |= MAP_COPY;
484 if (uap->flags & OMAP_SHARED)
485 nargs.flags |= MAP_SHARED;
487 nargs.flags |= MAP_PRIVATE;
488 if (uap->flags & OMAP_FIXED)
489 nargs.flags |= MAP_FIXED;
491 nargs.pos = uap->pos;
492 return (sys_mmap(td, &nargs));
494 #endif /* COMPAT_43 */
497 #ifndef _SYS_SYSPROTO_H_
510 struct msync_args *uap;
513 vm_size_t size, pageoff;
518 addr = (vm_offset_t) uap->addr;
522 pageoff = (addr & PAGE_MASK);
525 size = (vm_size_t) round_page(size);
526 if (addr + size < addr)
529 if ((flags & (MS_ASYNC|MS_INVALIDATE)) == (MS_ASYNC|MS_INVALIDATE))
532 map = &td->td_proc->p_vmspace->vm_map;
535 * Clean the pages and interpret the return value.
537 rv = vm_map_sync(map, addr, addr + size, (flags & MS_ASYNC) == 0,
538 (flags & MS_INVALIDATE) != 0);
542 case KERN_INVALID_ADDRESS:
544 case KERN_INVALID_ARGUMENT:
553 #ifndef _SYS_SYSPROTO_H_
565 struct munmap_args *uap;
568 struct pmckern_map_out pkm;
569 vm_map_entry_t entry;
572 vm_size_t size, pageoff;
575 addr = (vm_offset_t) uap->addr;
580 pageoff = (addr & PAGE_MASK);
583 size = (vm_size_t) round_page(size);
584 if (addr + size < addr)
588 * Check for illegal addresses. Watch out for address wrap...
590 map = &td->td_proc->p_vmspace->vm_map;
591 if (addr < vm_map_min(map) || addr + size > vm_map_max(map))
596 * Inform hwpmc if the address range being unmapped contains
597 * an executable region.
599 pkm.pm_address = (uintptr_t) NULL;
600 if (vm_map_lookup_entry(map, addr, &entry)) {
602 entry != &map->header && entry->start < addr + size;
603 entry = entry->next) {
604 if (vm_map_check_protection(map, entry->start,
605 entry->end, VM_PROT_EXECUTE) == TRUE) {
606 pkm.pm_address = (uintptr_t) addr;
607 pkm.pm_size = (size_t) size;
613 vm_map_delete(map, addr, addr + size);
616 /* downgrade the lock to prevent a LOR with the pmc-sx lock */
617 vm_map_lock_downgrade(map);
618 if (pkm.pm_address != (uintptr_t) NULL)
619 PMC_CALL_HOOK(td, PMC_FN_MUNMAP, (void *) &pkm);
620 vm_map_unlock_read(map);
624 /* vm_map_delete returns nothing but KERN_SUCCESS anyway */
628 #ifndef _SYS_SYSPROTO_H_
629 struct mprotect_args {
639 sys_mprotect(td, uap)
641 struct mprotect_args *uap;
644 vm_size_t size, pageoff;
647 addr = (vm_offset_t) uap->addr;
649 prot = uap->prot & VM_PROT_ALL;
651 pageoff = (addr & PAGE_MASK);
654 size = (vm_size_t) round_page(size);
655 if (addr + size < addr)
658 switch (vm_map_protect(&td->td_proc->p_vmspace->vm_map, addr,
659 addr + size, prot, FALSE)) {
662 case KERN_PROTECTION_FAILURE:
664 case KERN_RESOURCE_SHORTAGE:
670 #ifndef _SYS_SYSPROTO_H_
671 struct minherit_args {
681 sys_minherit(td, uap)
683 struct minherit_args *uap;
686 vm_size_t size, pageoff;
687 vm_inherit_t inherit;
689 addr = (vm_offset_t)uap->addr;
691 inherit = uap->inherit;
693 pageoff = (addr & PAGE_MASK);
696 size = (vm_size_t) round_page(size);
697 if (addr + size < addr)
700 switch (vm_map_inherit(&td->td_proc->p_vmspace->vm_map, addr,
701 addr + size, inherit)) {
704 case KERN_PROTECTION_FAILURE:
710 #ifndef _SYS_SYSPROTO_H_
711 struct madvise_args {
725 struct madvise_args *uap;
727 vm_offset_t start, end;
732 * Check for our special case, advising the swap pager we are
735 if (uap->behav == MADV_PROTECT) {
737 return (kern_procctl(td, P_PID, td->td_proc->p_pid,
738 PROC_SPROTECT, &flags));
742 * Check for illegal behavior
744 if (uap->behav < 0 || uap->behav > MADV_CORE)
747 * Check for illegal addresses. Watch out for address wrap... Note
748 * that VM_*_ADDRESS are not constants due to casts (argh).
750 map = &td->td_proc->p_vmspace->vm_map;
751 if ((vm_offset_t)uap->addr < vm_map_min(map) ||
752 (vm_offset_t)uap->addr + uap->len > vm_map_max(map))
754 if (((vm_offset_t) uap->addr + uap->len) < (vm_offset_t) uap->addr)
758 * Since this routine is only advisory, we default to conservative
761 start = trunc_page((vm_offset_t) uap->addr);
762 end = round_page((vm_offset_t) uap->addr + uap->len);
764 if (vm_map_madvise(map, start, end, uap->behav))
769 #ifndef _SYS_SYSPROTO_H_
770 struct mincore_args {
784 struct mincore_args *uap;
786 vm_offset_t addr, first_addr;
787 vm_offset_t end, cend;
792 int vecindex, lastvecindex;
793 vm_map_entry_t current;
794 vm_map_entry_t entry;
796 vm_paddr_t locked_pa;
800 unsigned int timestamp;
804 * Make sure that the addresses presented are valid for user
807 first_addr = addr = trunc_page((vm_offset_t) uap->addr);
808 end = addr + (vm_size_t)round_page(uap->len);
809 map = &td->td_proc->p_vmspace->vm_map;
810 if (end > vm_map_max(map) || end < addr)
814 * Address of byte vector
818 pmap = vmspace_pmap(td->td_proc->p_vmspace);
820 vm_map_lock_read(map);
822 timestamp = map->timestamp;
824 if (!vm_map_lookup_entry(map, addr, &entry)) {
825 vm_map_unlock_read(map);
830 * Do this on a map entry basis so that if the pages are not
831 * in the current processes address space, we can easily look
832 * up the pages elsewhere.
835 for (current = entry;
836 (current != &map->header) && (current->start < end);
837 current = current->next) {
840 * check for contiguity
842 if (current->end < end &&
843 (entry->next == &map->header ||
844 current->next->start > current->end)) {
845 vm_map_unlock_read(map);
850 * ignore submaps (for now) or null objects
852 if ((current->eflags & MAP_ENTRY_IS_SUB_MAP) ||
853 current->object.vm_object == NULL)
857 * limit this scan to the current map entry and the
858 * limits for the mincore call
860 if (addr < current->start)
861 addr = current->start;
867 * scan this entry one page at a time
869 while (addr < cend) {
871 * Check pmap first, it is likely faster, also
872 * it can provide info as to whether we are the
873 * one referencing or modifying the page.
879 mincoreinfo = pmap_mincore(pmap, addr, &locked_pa);
880 if (locked_pa != 0) {
882 * The page is mapped by this process but not
883 * both accessed and modified. It is also
884 * managed. Acquire the object lock so that
885 * other mappings might be examined.
887 m = PHYS_TO_VM_PAGE(locked_pa);
888 if (m->object != object) {
890 VM_OBJECT_UNLOCK(object);
892 locked = VM_OBJECT_TRYLOCK(object);
895 VM_OBJECT_LOCK(object);
901 KASSERT(m->valid == VM_PAGE_BITS_ALL,
902 ("mincore: page %p is mapped but invalid",
904 } else if (mincoreinfo == 0) {
906 * The page is not mapped by this process. If
907 * the object implements managed pages, then
908 * determine if the page is resident so that
909 * the mappings might be examined.
911 if (current->object.vm_object != object) {
913 VM_OBJECT_UNLOCK(object);
914 object = current->object.vm_object;
915 VM_OBJECT_LOCK(object);
917 if (object->type == OBJT_DEFAULT ||
918 object->type == OBJT_SWAP ||
919 object->type == OBJT_VNODE) {
920 pindex = OFF_TO_IDX(current->offset +
921 (addr - current->start));
922 m = vm_page_lookup(object, pindex);
924 vm_page_is_cached(object, pindex))
925 mincoreinfo = MINCORE_INCORE;
926 if (m != NULL && m->valid == 0)
929 mincoreinfo = MINCORE_INCORE;
933 /* Examine other mappings to the page. */
934 if (m->dirty == 0 && pmap_is_modified(m))
937 mincoreinfo |= MINCORE_MODIFIED_OTHER;
939 * The first test for PGA_REFERENCED is an
940 * optimization. The second test is
941 * required because a concurrent pmap
942 * operation could clear the last reference
943 * and set PGA_REFERENCED before the call to
944 * pmap_is_referenced().
946 if ((m->aflags & PGA_REFERENCED) != 0 ||
947 pmap_is_referenced(m) ||
948 (m->aflags & PGA_REFERENCED) != 0)
949 mincoreinfo |= MINCORE_REFERENCED_OTHER;
952 VM_OBJECT_UNLOCK(object);
955 * subyte may page fault. In case it needs to modify
956 * the map, we release the lock.
958 vm_map_unlock_read(map);
961 * calculate index into user supplied byte vector
963 vecindex = OFF_TO_IDX(addr - first_addr);
966 * If we have skipped map entries, we need to make sure that
967 * the byte vector is zeroed for those skipped entries.
969 while ((lastvecindex + 1) < vecindex) {
971 error = subyte(vec + lastvecindex, 0);
979 * Pass the page information to the user
981 error = subyte(vec + vecindex, mincoreinfo);
988 * If the map has changed, due to the subyte, the previous
989 * output may be invalid.
991 vm_map_lock_read(map);
992 if (timestamp != map->timestamp)
995 lastvecindex = vecindex;
1001 * subyte may page fault. In case it needs to modify
1002 * the map, we release the lock.
1004 vm_map_unlock_read(map);
1007 * Zero the last entries in the byte vector.
1009 vecindex = OFF_TO_IDX(end - first_addr);
1010 while ((lastvecindex + 1) < vecindex) {
1012 error = subyte(vec + lastvecindex, 0);
1020 * If the map has changed, due to the subyte, the previous
1021 * output may be invalid.
1023 vm_map_lock_read(map);
1024 if (timestamp != map->timestamp)
1026 vm_map_unlock_read(map);
1031 #ifndef _SYS_SYSPROTO_H_
1043 struct mlock_args *uap;
1046 vm_offset_t addr, end, last, start;
1047 vm_size_t npages, size;
1049 unsigned long nsize;
1052 error = priv_check(td, PRIV_VM_MLOCK);
1055 addr = (vm_offset_t)uap->addr;
1058 start = trunc_page(addr);
1059 end = round_page(last);
1060 if (last < addr || end < addr)
1062 npages = atop(end - start);
1063 if (npages > vm_page_max_wired)
1066 map = &proc->p_vmspace->vm_map;
1068 nsize = ptoa(npages + pmap_wired_count(map->pmap));
1069 if (nsize > lim_cur(proc, RLIMIT_MEMLOCK)) {
1074 if (npages + cnt.v_wire_count > vm_page_max_wired)
1078 error = racct_set(proc, RACCT_MEMLOCK, nsize);
1083 error = vm_map_wire(map, start, end,
1084 VM_MAP_WIRE_USER | VM_MAP_WIRE_NOHOLES);
1086 if (error != KERN_SUCCESS) {
1088 racct_set(proc, RACCT_MEMLOCK,
1089 ptoa(pmap_wired_count(map->pmap)));
1093 return (error == KERN_SUCCESS ? 0 : ENOMEM);
1096 #ifndef _SYS_SYSPROTO_H_
1097 struct mlockall_args {
1106 sys_mlockall(td, uap)
1108 struct mlockall_args *uap;
1113 map = &td->td_proc->p_vmspace->vm_map;
1114 error = priv_check(td, PRIV_VM_MLOCK);
1118 if ((uap->how == 0) || ((uap->how & ~(MCL_CURRENT|MCL_FUTURE)) != 0))
1122 * If wiring all pages in the process would cause it to exceed
1123 * a hard resource limit, return ENOMEM.
1125 if (!old_mlock && uap->how & MCL_CURRENT) {
1126 PROC_LOCK(td->td_proc);
1127 if (map->size > lim_cur(td->td_proc, RLIMIT_MEMLOCK)) {
1128 PROC_UNLOCK(td->td_proc);
1131 PROC_UNLOCK(td->td_proc);
1134 PROC_LOCK(td->td_proc);
1135 error = racct_set(td->td_proc, RACCT_MEMLOCK, map->size);
1136 PROC_UNLOCK(td->td_proc);
1141 if (uap->how & MCL_FUTURE) {
1143 vm_map_modflags(map, MAP_WIREFUTURE, 0);
1148 if (uap->how & MCL_CURRENT) {
1150 * P1003.1-2001 mandates that all currently mapped pages
1151 * will be memory resident and locked (wired) upon return
1152 * from mlockall(). vm_map_wire() will wire pages, by
1153 * calling vm_fault_wire() for each page in the region.
1155 error = vm_map_wire(map, vm_map_min(map), vm_map_max(map),
1156 VM_MAP_WIRE_USER|VM_MAP_WIRE_HOLESOK);
1157 error = (error == KERN_SUCCESS ? 0 : EAGAIN);
1160 if (error != KERN_SUCCESS) {
1161 PROC_LOCK(td->td_proc);
1162 racct_set(td->td_proc, RACCT_MEMLOCK,
1163 ptoa(pmap_wired_count(map->pmap)));
1164 PROC_UNLOCK(td->td_proc);
1171 #ifndef _SYS_SYSPROTO_H_
1172 struct munlockall_args {
1181 sys_munlockall(td, uap)
1183 struct munlockall_args *uap;
1188 map = &td->td_proc->p_vmspace->vm_map;
1189 error = priv_check(td, PRIV_VM_MUNLOCK);
1193 /* Clear the MAP_WIREFUTURE flag from this vm_map. */
1195 vm_map_modflags(map, 0, MAP_WIREFUTURE);
1198 /* Forcibly unwire all pages. */
1199 error = vm_map_unwire(map, vm_map_min(map), vm_map_max(map),
1200 VM_MAP_WIRE_USER|VM_MAP_WIRE_HOLESOK);
1202 if (error == KERN_SUCCESS) {
1203 PROC_LOCK(td->td_proc);
1204 racct_set(td->td_proc, RACCT_MEMLOCK, 0);
1205 PROC_UNLOCK(td->td_proc);
1212 #ifndef _SYS_SYSPROTO_H_
1213 struct munlock_args {
1222 sys_munlock(td, uap)
1224 struct munlock_args *uap;
1226 vm_offset_t addr, end, last, start;
1233 error = priv_check(td, PRIV_VM_MUNLOCK);
1236 addr = (vm_offset_t)uap->addr;
1239 start = trunc_page(addr);
1240 end = round_page(last);
1241 if (last < addr || end < addr)
1243 error = vm_map_unwire(&td->td_proc->p_vmspace->vm_map, start, end,
1244 VM_MAP_WIRE_USER | VM_MAP_WIRE_NOHOLES);
1246 if (error == KERN_SUCCESS) {
1247 PROC_LOCK(td->td_proc);
1248 map = &td->td_proc->p_vmspace->vm_map;
1249 racct_set(td->td_proc, RACCT_MEMLOCK,
1250 ptoa(pmap_wired_count(map->pmap)));
1251 PROC_UNLOCK(td->td_proc);
1254 return (error == KERN_SUCCESS ? 0 : ENOMEM);
1260 * Helper function for vm_mmap. Perform sanity check specific for mmap
1261 * operations on vnodes.
1263 * For VCHR vnodes, the vnode lock is held over the call to
1264 * vm_mmap_cdev() to keep vp->v_rdev valid.
1267 vm_mmap_vnode(struct thread *td, vm_size_t objsize,
1268 vm_prot_t prot, vm_prot_t *maxprotp, int *flagsp,
1269 struct vnode *vp, vm_ooffset_t *foffp, vm_object_t *objp,
1270 boolean_t *writecounted)
1277 int error, flags, locktype, vfslocked;
1280 cred = td->td_ucred;
1281 if ((*maxprotp & VM_PROT_WRITE) && (*flagsp & MAP_SHARED))
1282 locktype = LK_EXCLUSIVE;
1284 locktype = LK_SHARED;
1285 vfslocked = VFS_LOCK_GIANT(mp);
1286 if ((error = vget(vp, locktype, td)) != 0) {
1287 VFS_UNLOCK_GIANT(vfslocked);
1293 if (vp->v_type == VREG) {
1295 * Get the proper underlying object
1301 if (obj->handle != vp) {
1303 vp = (struct vnode *)obj->handle;
1305 * Bypass filesystems obey the mpsafety of the
1308 error = vget(vp, locktype, td);
1310 VFS_UNLOCK_GIANT(vfslocked);
1314 if (locktype == LK_EXCLUSIVE) {
1315 *writecounted = TRUE;
1316 vnode_pager_update_writecount(obj, 0, objsize);
1318 } else if (vp->v_type == VCHR) {
1319 error = vm_mmap_cdev(td, objsize, prot, maxprotp, flagsp,
1320 vp->v_rdev, foffp, objp);
1328 if ((error = VOP_GETATTR(vp, &va, cred)))
1331 error = mac_vnode_check_mmap(cred, vp, prot, flags);
1335 if ((flags & MAP_SHARED) != 0) {
1336 if ((va.va_flags & (SF_SNAPSHOT|IMMUTABLE|APPEND)) != 0) {
1337 if (prot & PROT_WRITE) {
1341 *maxprotp &= ~VM_PROT_WRITE;
1345 * If it is a regular file without any references
1346 * we do not need to sync it.
1347 * Adjust object size to be the size of actual file.
1349 objsize = round_page(va.va_size);
1350 if (va.va_nlink == 0)
1351 flags |= MAP_NOSYNC;
1352 obj = vm_pager_allocate(OBJT_VNODE, vp, objsize, prot, foff, cred);
1361 vfs_mark_atime(vp, cred);
1364 if (error != 0 && *writecounted) {
1365 *writecounted = FALSE;
1366 vnode_pager_update_writecount(obj, objsize, 0);
1369 VFS_UNLOCK_GIANT(vfslocked);
1378 * Helper function for vm_mmap. Perform sanity check specific for mmap
1379 * operations on cdevs.
1382 vm_mmap_cdev(struct thread *td, vm_size_t objsize,
1383 vm_prot_t prot, vm_prot_t *maxprotp, int *flagsp,
1384 struct cdev *cdev, vm_ooffset_t *foff, vm_object_t *objp)
1388 int error, flags, ref;
1392 dsw = dev_refthread(cdev, &ref);
1395 if (dsw->d_flags & D_MMAP_ANON) {
1396 dev_relthread(cdev, ref);
1397 *maxprotp = VM_PROT_ALL;
1398 *flagsp |= MAP_ANON;
1402 * cdevs do not provide private mappings of any kind.
1404 if ((*maxprotp & VM_PROT_WRITE) == 0 &&
1405 (prot & PROT_WRITE) != 0) {
1406 dev_relthread(cdev, ref);
1409 if (flags & (MAP_PRIVATE|MAP_COPY)) {
1410 dev_relthread(cdev, ref);
1414 * Force device mappings to be shared.
1416 flags |= MAP_SHARED;
1418 error = mac_cdev_check_mmap(td->td_ucred, cdev, prot);
1420 dev_relthread(cdev, ref);
1425 * First, try d_mmap_single(). If that is not implemented
1426 * (returns ENODEV), fall back to using the device pager.
1427 * Note that d_mmap_single() must return a reference to the
1428 * object (it needs to bump the reference count of the object
1429 * it returns somehow).
1431 * XXX assumes VM_PROT_* == PROT_*
1433 error = dsw->d_mmap_single(cdev, foff, objsize, objp, (int)prot);
1434 dev_relthread(cdev, ref);
1435 if (error != ENODEV)
1437 obj = vm_pager_allocate(OBJT_DEVICE, cdev, objsize, prot, *foff,
1451 * Helper function for vm_mmap. Perform sanity check specific for mmap
1452 * operations on shm file descriptors.
1455 vm_mmap_shm(struct thread *td, vm_size_t objsize,
1456 vm_prot_t prot, vm_prot_t *maxprotp, int *flagsp,
1457 struct shmfd *shmfd, vm_ooffset_t foff, vm_object_t *objp)
1461 if ((*flagsp & MAP_SHARED) != 0 &&
1462 (*maxprotp & VM_PROT_WRITE) == 0 &&
1463 (prot & PROT_WRITE) != 0)
1466 error = mac_posixshm_check_mmap(td->td_ucred, shmfd, prot, *flagsp);
1470 error = shm_mmap(shmfd, objsize, foff, objp);
1481 * Internal version of mmap. Currently used by mmap, exec, and sys5
1482 * shared memory. Handle is either a vnode pointer or NULL for MAP_ANON.
1485 vm_mmap(vm_map_t map, vm_offset_t *addr, vm_size_t size, vm_prot_t prot,
1486 vm_prot_t maxprot, int flags,
1487 objtype_t handle_type, void *handle,
1491 vm_object_t object = NULL;
1492 struct thread *td = curthread;
1493 int docow, error, findspace, rv;
1494 boolean_t writecounted;
1499 size = round_page(size);
1501 PROC_LOCK(td->td_proc);
1502 if (td->td_proc->p_vmspace->vm_map.size + size >
1503 lim_cur(td->td_proc, RLIMIT_VMEM)) {
1504 if (!old_mlock && map->flags & MAP_WIREFUTURE) {
1505 if (ptoa(pmap_wired_count(map->pmap)) + size >
1506 lim_cur(td->td_proc, RLIMIT_MEMLOCK)) {
1507 racct_set_force(td->td_proc, RACCT_VMEM,
1509 PROC_UNLOCK(td->td_proc);
1512 error = racct_set(td->td_proc, RACCT_MEMLOCK,
1513 ptoa(pmap_wired_count(map->pmap)) + size);
1515 racct_set_force(td->td_proc, RACCT_VMEM,
1517 PROC_UNLOCK(td->td_proc);
1521 PROC_UNLOCK(td->td_proc);
1524 if (racct_set(td->td_proc, RACCT_VMEM,
1525 td->td_proc->p_vmspace->vm_map.size + size)) {
1526 PROC_UNLOCK(td->td_proc);
1529 PROC_UNLOCK(td->td_proc);
1532 * We currently can only deal with page aligned file offsets.
1533 * The check is here rather than in the syscall because the
1534 * kernel calls this function internally for other mmaping
1535 * operations (such as in exec) and non-aligned offsets will
1536 * cause pmap inconsistencies...so we want to be sure to
1537 * disallow this in all cases.
1539 if (foff & PAGE_MASK)
1542 if ((flags & MAP_FIXED) == 0) {
1544 *addr = round_page(*addr);
1546 if (*addr != trunc_page(*addr))
1550 writecounted = FALSE;
1553 * Lookup/allocate object.
1555 switch (handle_type) {
1557 error = vm_mmap_cdev(td, size, prot, &maxprot, &flags,
1558 handle, &foff, &object);
1561 error = vm_mmap_vnode(td, size, prot, &maxprot, &flags,
1562 handle, &foff, &object, &writecounted);
1565 error = vm_mmap_shm(td, size, prot, &maxprot, &flags,
1566 handle, foff, &object);
1569 if (handle == NULL) {
1580 if (flags & MAP_ANON) {
1584 * Unnamed anonymous regions always start at 0.
1588 } else if (flags & MAP_PREFAULT_READ)
1589 docow = MAP_PREFAULT;
1591 docow = MAP_PREFAULT_PARTIAL;
1593 if ((flags & (MAP_ANON|MAP_SHARED)) == 0)
1594 docow |= MAP_COPY_ON_WRITE;
1595 if (flags & MAP_NOSYNC)
1596 docow |= MAP_DISABLE_SYNCER;
1597 if (flags & MAP_NOCORE)
1598 docow |= MAP_DISABLE_COREDUMP;
1599 /* Shared memory is also shared with children. */
1600 if (flags & MAP_SHARED)
1601 docow |= MAP_INHERIT_SHARE;
1603 docow |= MAP_VN_WRITECOUNT;
1605 if (flags & MAP_STACK)
1606 rv = vm_map_stack(map, *addr, size, prot, maxprot,
1607 docow | MAP_STACK_GROWS_DOWN);
1609 if ((flags & MAP_ALIGNMENT_MASK) == MAP_ALIGNED_SUPER)
1610 findspace = VMFS_SUPER_SPACE;
1611 else if ((flags & MAP_ALIGNMENT_MASK) != 0)
1612 findspace = VMFS_ALIGNED_SPACE(flags >>
1613 MAP_ALIGNMENT_SHIFT);
1615 findspace = VMFS_OPTIMAL_SPACE;
1616 rv = vm_map_find(map, object, foff, addr, size, findspace,
1617 prot, maxprot, docow);
1619 rv = vm_map_fixed(map, object, foff, *addr, size,
1620 prot, maxprot, docow);
1622 if (rv == KERN_SUCCESS) {
1624 * If the process has requested that all future mappings
1625 * be wired, then heed this.
1627 if (map->flags & MAP_WIREFUTURE) {
1628 vm_map_wire(map, *addr, *addr + size,
1629 VM_MAP_WIRE_USER | ((flags & MAP_STACK) ?
1630 VM_MAP_WIRE_HOLESOK : VM_MAP_WIRE_NOHOLES));
1634 * If this mapping was accounted for in the vnode's
1635 * writecount, then undo that now.
1638 vnode_pager_release_writecount(object, 0, size);
1640 * Lose the object reference. Will destroy the
1641 * object if it's an unnamed anonymous mapping
1642 * or named anonymous without other references.
1644 vm_object_deallocate(object);
1646 return (vm_mmap_to_errno(rv));
1650 * Translate a Mach VM return code to zero on success or the appropriate errno
1654 vm_mmap_to_errno(int rv)
1660 case KERN_INVALID_ADDRESS:
1663 case KERN_PROTECTION_FAILURE:
projects / FreeBSD / stable / 9.git / blob