[linux-block.git] / arch / s390 / mm / mmap.c

// SPDX-License-Identifier: GPL-2.0+
/*
 *  flexible mmap layout support
 *
 * Copyright 2003-2004 Red Hat Inc., Durham, North Carolina.
 * All Rights Reserved.
 *
 * Started by Ingo Molnar <mingo@elte.hu>
 */

#include <linux/elf-randomize.h>
#include <linux/personality.h>
#include <linux/mm.h>
#include <linux/mman.h>
#include <linux/sched/signal.h>
#include <linux/sched/mm.h>
#include <linux/random.h>
#include <linux/compat.h>
#include <linux/security.h>
#include <asm/elf.h>

static unsigned long stack_maxrandom_size(void)
{
	if (!(current->flags & PF_RANDOMIZE))
		return 0;
	return STACK_RND_MASK << PAGE_SHIFT;
}

static inline int mmap_is_legacy(struct rlimit *rlim_stack)
{
	if (current->personality & ADDR_COMPAT_LAYOUT)
		return 1;
	if (rlim_stack->rlim_cur == RLIM_INFINITY)
		return 1;
	return sysctl_legacy_va_layout;
}

unsigned long arch_mmap_rnd(void)
{
	return (get_random_u32() & MMAP_RND_MASK) << PAGE_SHIFT;
}

static unsigned long mmap_base_legacy(unsigned long rnd)
{
	return TASK_UNMAPPED_BASE + rnd;
}

static inline unsigned long mmap_base(unsigned long rnd,
				      struct rlimit *rlim_stack)
{
	unsigned long gap = rlim_stack->rlim_cur;
	unsigned long pad = stack_maxrandom_size() + stack_guard_gap;
	unsigned long gap_min, gap_max;

	/* Values close to RLIM_INFINITY can overflow. */
	if (gap + pad > gap)
		gap += pad;

	/*
	 * Top of mmap area (just below the process stack).
	 * Leave at least a ~128 MB hole.
	 */
	gap_min = SZ_128M;
	gap_max = (STACK_TOP / 6) * 5;

	if (gap < gap_min)
		gap = gap_min;
	else if (gap > gap_max)
		gap = gap_max;

	return PAGE_ALIGN(STACK_TOP - gap - rnd);
}

unsigned long arch_get_unmapped_area(struct file *filp, unsigned long addr,
				     unsigned long len, unsigned long pgoff,
				     unsigned long flags)
{
	struct mm_struct *mm = current->mm;
	struct vm_area_struct *vma;
	struct vm_unmapped_area_info info;

	if (len > TASK_SIZE - mmap_min_addr)
		return -ENOMEM;

	if (flags & MAP_FIXED)
		goto check_asce_limit;

	if (addr) {
		addr = PAGE_ALIGN(addr);
		vma = find_vma(mm, addr);
		if (TASK_SIZE - len >= addr && addr >= mmap_min_addr &&
		    (!vma || addr + len <= vm_start_gap(vma)))
			goto check_asce_limit;
	}

	info.flags = 0;
	info.length = len;
	info.low_limit = mm->mmap_base;
	info.high_limit = TASK_SIZE;
	if (filp || (flags & MAP_SHARED))
		info.align_mask = MMAP_ALIGN_MASK << PAGE_SHIFT;
	else
		info.align_mask = 0;
	info.align_offset = pgoff << PAGE_SHIFT;
	addr = vm_unmapped_area(&info);
	if (offset_in_page(addr))
		return addr;

check_asce_limit:
	return check_asce_limit(mm, addr, len);
}

unsigned long arch_get_unmapped_area_topdown(struct file *filp, unsigned long addr,
					     unsigned long len, unsigned long pgoff,
					     unsigned long flags)
{
	struct vm_area_struct *vma;
	struct mm_struct *mm = current->mm;
	struct vm_unmapped_area_info info;

	/* requested length too big for entire address space */
	if (len > TASK_SIZE - mmap_min_addr)
		return -ENOMEM;

	if (flags & MAP_FIXED)
		goto check_asce_limit;

	/* requesting a specific address */
	if (addr) {
		addr = PAGE_ALIGN(addr);
		vma = find_vma(mm, addr);
		if (TASK_SIZE - len >= addr && addr >= mmap_min_addr &&
				(!vma || addr + len <= vm_start_gap(vma)))
			goto check_asce_limit;
	}

	info.flags = VM_UNMAPPED_AREA_TOPDOWN;
	info.length = len;
	info.low_limit = max(PAGE_SIZE, mmap_min_addr);
	info.high_limit = mm->mmap_base;
	if (filp || (flags & MAP_SHARED))
		info.align_mask = MMAP_ALIGN_MASK << PAGE_SHIFT;
	else
		info.align_mask = 0;
	info.align_offset = pgoff << PAGE_SHIFT;
	addr = vm_unmapped_area(&info);

	/*
	 * A failed mmap() very likely causes application failure,
	 * so fall back to the bottom-up function here. This scenario
	 * can happen with large stack limits and large mmap()
	 * allocations.
	 */
	if (offset_in_page(addr)) {
		VM_BUG_ON(addr != -ENOMEM);
		info.flags = 0;
		info.low_limit = TASK_UNMAPPED_BASE;
		info.high_limit = TASK_SIZE;
		addr = vm_unmapped_area(&info);
		if (offset_in_page(addr))
			return addr;
	}

check_asce_limit:
	return check_asce_limit(mm, addr, len);
}

/*
 * This function, called very early during the creation of a new
 * process VM image, sets up which VM layout function to use:
 */
void arch_pick_mmap_layout(struct mm_struct *mm, struct rlimit *rlim_stack)
{
	unsigned long random_factor = 0UL;

	if (current->flags & PF_RANDOMIZE)
		random_factor = arch_mmap_rnd();

	/*
	 * Fall back to the standard layout if the personality
	 * bit is set, or if the expected stack growth is unlimited:
	 */
	if (mmap_is_legacy(rlim_stack)) {
		mm->mmap_base = mmap_base_legacy(random_factor);
		mm->get_unmapped_area = arch_get_unmapped_area;
	} else {
		mm->mmap_base = mmap_base(random_factor, rlim_stack);
		mm->get_unmapped_area = arch_get_unmapped_area_topdown;
	}
}

static const pgprot_t protection_map[16] = {
	[VM_NONE]					= PAGE_NONE,
	[VM_READ]					= PAGE_RO,
	[VM_WRITE]					= PAGE_RO,
	[VM_WRITE | VM_READ]				= PAGE_RO,
	[VM_EXEC]					= PAGE_RX,
	[VM_EXEC | VM_READ]				= PAGE_RX,
	[VM_EXEC | VM_WRITE]				= PAGE_RX,
	[VM_EXEC | VM_WRITE | VM_READ]			= PAGE_RX,
	[VM_SHARED]					= PAGE_NONE,
	[VM_SHARED | VM_READ]				= PAGE_RO,
	[VM_SHARED | VM_WRITE]				= PAGE_RW,
	[VM_SHARED | VM_WRITE | VM_READ]		= PAGE_RW,
	[VM_SHARED | VM_EXEC]				= PAGE_RX,
	[VM_SHARED | VM_EXEC | VM_READ]			= PAGE_RX,
	[VM_SHARED | VM_EXEC | VM_WRITE]		= PAGE_RWX,
	[VM_SHARED | VM_EXEC | VM_WRITE | VM_READ]	= PAGE_RWX
};
DECLARE_VM_GET_PAGE_PROT
Commit	Line	Data
ac41aaee	1	// SPDX-License-Identifier: GPL-2.0+
1da177e4	2	/*
1da177e4 LT	3	* flexible mmap layout support
	4	*
	5	* Copyright 2003-2004 Red Hat Inc., Durham, North Carolina.
	6	* All Rights Reserved.
	7	*
1da177e4 LT	8	* Started by Ingo Molnar <mingo@elte.hu>
	9	*/
	10
ca21872e	11	#include <linux/elf-randomize.h>
1da177e4 LT	12	#include <linux/personality.h>
1da177e4 LT	13	#include <linux/mm.h>
638ad34a	14	#include <linux/mman.h>
3f07c014	15	#include <linux/sched/signal.h>
01042607	16	#include <linux/sched/mm.h>
df1ca53c	17	#include <linux/random.h>
048cd4e5	18	#include <linux/compat.h>
1f6b83e5	19	#include <linux/security.h>
ff24b07a	20	#include <asm/elf.h>
1da177e4	21
9046e401 HC	22	static unsigned long stack_maxrandom_size(void)
	23	{
	24	if (!(current->flags & PF_RANDOMIZE))
	25	return 0;
9046e401 HC	26	return STACK_RND_MASK << PAGE_SHIFT;
	27	}
	28
8f2af155	29	static inline int mmap_is_legacy(struct rlimit *rlim_stack)
1060f62e HC	30	{
	31	if (current->personality & ADDR_COMPAT_LAYOUT)
	32	return 1;
8f2af155	33	if (rlim_stack->rlim_cur == RLIM_INFINITY)
1060f62e HC	34	return 1;
	35	return sysctl_legacy_va_layout;
	36	}
	37
2b68f6ca	38	unsigned long arch_mmap_rnd(void)
df1ca53c	39	{
a251c17a	40	return (get_random_u32() & MMAP_RND_MASK) << PAGE_SHIFT;
df1ca53c HC	41	}
df1ca53c HC	42
8e89a356	43	static unsigned long mmap_base_legacy(unsigned long rnd)
7aba842f	44	{
8e89a356	45	return TASK_UNMAPPED_BASE + rnd;
7aba842f HC	46	}
7aba842f HC	47
8f2af155 KC	48	static inline unsigned long mmap_base(unsigned long rnd,
8f2af155 KC	49	struct rlimit *rlim_stack)
1da177e4	50	{
8f2af155	51	unsigned long gap = rlim_stack->rlim_cur;
a0308c13 MS	52	unsigned long pad = stack_maxrandom_size() + stack_guard_gap;
	53	unsigned long gap_min, gap_max;
	54
	55	/* Values close to RLIM_INFINITY can overflow. */
	56	if (gap + pad > gap)
	57	gap += pad;
	58
	59	/*
	60	* Top of mmap area (just below the process stack).
f2f47d0e	61	* Leave at least a ~128 MB hole.
a0308c13	62	*/
f2f47d0e	63	gap_min = SZ_128M;
a0308c13 MS	64	gap_max = (STACK_TOP / 6) * 5;
	65
	66	if (gap < gap_min)
	67	gap = gap_min;
	68	else if (gap > gap_max)
	69	gap = gap_max;
1da177e4	70
a0308c13	71	return PAGE_ALIGN(STACK_TOP - gap - rnd);
1da177e4 LT	72	}
1da177e4 LT	73
712fa5f2 AG	74	unsigned long arch_get_unmapped_area(struct file *filp, unsigned long addr,
	75	unsigned long len, unsigned long pgoff,
	76	unsigned long flags)
1f6b83e5 MS	77	{
	78	struct mm_struct *mm = current->mm;
	79	struct vm_area_struct *vma;
	80	struct vm_unmapped_area_info info;
1f6b83e5	81
9b11c791	82	if (len > TASK_SIZE - mmap_min_addr)
1f6b83e5 MS	83	return -ENOMEM;
	84
	85	if (flags & MAP_FIXED)
9b11c791	86	goto check_asce_limit;
1f6b83e5 MS	87
	88	if (addr) {
	89	addr = PAGE_ALIGN(addr);
	90	vma = find_vma(mm, addr);
9b11c791	91	if (TASK_SIZE - len >= addr && addr >= mmap_min_addr &&
1be7107f	92	(!vma \|\| addr + len <= vm_start_gap(vma)))
9b11c791	93	goto check_asce_limit;
1f6b83e5 MS	94	}
1f6b83e5 MS	95
1f6b83e5 MS	96	info.flags = 0;
	97	info.length = len;
	98	info.low_limit = mm->mmap_base;
9b11c791	99	info.high_limit = TASK_SIZE;
c7e8b2c2 MS	100	if (filp \|\| (flags & MAP_SHARED))
	101	info.align_mask = MMAP_ALIGN_MASK << PAGE_SHIFT;
	102	else
	103	info.align_mask = 0;
1f6b83e5	104	info.align_offset = pgoff << PAGE_SHIFT;
9b11c791	105	addr = vm_unmapped_area(&info);
712fa5f2	106	if (offset_in_page(addr))
9b11c791 MS	107	return addr;
	108
	109	check_asce_limit:
712fa5f2	110	return check_asce_limit(mm, addr, len);
1f6b83e5 MS	111	}
1f6b83e5 MS	112
712fa5f2 AG	113	unsigned long arch_get_unmapped_area_topdown(struct file *filp, unsigned long addr,
	114	unsigned long len, unsigned long pgoff,
	115	unsigned long flags)
1f6b83e5 MS	116	{
	117	struct vm_area_struct *vma;
	118	struct mm_struct *mm = current->mm;
1f6b83e5	119	struct vm_unmapped_area_info info;
1f6b83e5 MS	120
1f6b83e5 MS	121	/* requested length too big for entire address space */
9b11c791	122	if (len > TASK_SIZE - mmap_min_addr)
1f6b83e5 MS	123	return -ENOMEM;
	124
	125	if (flags & MAP_FIXED)
9b11c791	126	goto check_asce_limit;
1f6b83e5 MS	127
	128	/* requesting a specific address */
	129	if (addr) {
	130	addr = PAGE_ALIGN(addr);
	131	vma = find_vma(mm, addr);
9b11c791	132	if (TASK_SIZE - len >= addr && addr >= mmap_min_addr &&
1be7107f	133	(!vma \|\| addr + len <= vm_start_gap(vma)))
9b11c791	134	goto check_asce_limit;
1f6b83e5 MS	135	}
1f6b83e5 MS	136
1f6b83e5 MS	137	info.flags = VM_UNMAPPED_AREA_TOPDOWN;
	138	info.length = len;
	139	info.low_limit = max(PAGE_SIZE, mmap_min_addr);
	140	info.high_limit = mm->mmap_base;
c7e8b2c2 MS	141	if (filp \|\| (flags & MAP_SHARED))
	142	info.align_mask = MMAP_ALIGN_MASK << PAGE_SHIFT;
	143	else
	144	info.align_mask = 0;
1f6b83e5 MS	145	info.align_offset = pgoff << PAGE_SHIFT;
	146	addr = vm_unmapped_area(&info);
	147
	148	/*
	149	* A failed mmap() very likely causes application failure,
	150	* so fall back to the bottom-up function here. This scenario
	151	* can happen with large stack limits and large mmap()
	152	* allocations.
	153	*/
712fa5f2	154	if (offset_in_page(addr)) {
1f6b83e5 MS	155	VM_BUG_ON(addr != -ENOMEM);
	156	info.flags = 0;
	157	info.low_limit = TASK_UNMAPPED_BASE;
9b11c791	158	info.high_limit = TASK_SIZE;
1f6b83e5	159	addr = vm_unmapped_area(&info);
712fa5f2	160	if (offset_in_page(addr))
9b11c791	161	return addr;
1f6b83e5 MS	162	}
1f6b83e5 MS	163
9b11c791	164	check_asce_limit:
712fa5f2	165	return check_asce_limit(mm, addr, len);
6252d702	166	}
9b11c791	167
6252d702 MS	168	/*
	169	* This function, called very early during the creation of a new
	170	* process VM image, sets up which VM layout function to use:
	171	*/
8f2af155	172	void arch_pick_mmap_layout(struct mm_struct mm, struct rlimit rlim_stack)
6252d702	173	{
8e89a356 KC	174	unsigned long random_factor = 0UL;
	175
	176	if (current->flags & PF_RANDOMIZE)
2b68f6ca	177	random_factor = arch_mmap_rnd();
8e89a356	178
6252d702 MS	179	/*
	180	* Fall back to the standard layout if the personality
	181	* bit is set, or if the expected stack growth is unlimited:
	182	*/
8f2af155	183	if (mmap_is_legacy(rlim_stack)) {
8e89a356	184	mm->mmap_base = mmap_base_legacy(random_factor);
9b11c791	185	mm->get_unmapped_area = arch_get_unmapped_area;
6252d702	186	} else {
8f2af155	187	mm->mmap_base = mmap_base(random_factor, rlim_stack);
9b11c791	188	mm->get_unmapped_area = arch_get_unmapped_area_topdown;
6252d702 MS	189	}
6252d702 MS	190	}
fd5d210f AK	191
	192	static const pgprot_t protection_map[16] = {
	193	[VM_NONE] = PAGE_NONE,
	194	[VM_READ] = PAGE_RO,
	195	[VM_WRITE] = PAGE_RO,
	196	[VM_WRITE \| VM_READ] = PAGE_RO,
	197	[VM_EXEC] = PAGE_RX,
	198	[VM_EXEC \| VM_READ] = PAGE_RX,
	199	[VM_EXEC \| VM_WRITE] = PAGE_RX,
	200	[VM_EXEC \| VM_WRITE \| VM_READ] = PAGE_RX,
	201	[VM_SHARED] = PAGE_NONE,
	202	[VM_SHARED \| VM_READ] = PAGE_RO,
	203	[VM_SHARED \| VM_WRITE] = PAGE_RW,
	204	[VM_SHARED \| VM_WRITE \| VM_READ] = PAGE_RW,
	205	[VM_SHARED \| VM_EXEC] = PAGE_RX,
	206	[VM_SHARED \| VM_EXEC \| VM_READ] = PAGE_RX,
	207	[VM_SHARED \| VM_EXEC \| VM_WRITE] = PAGE_RWX,
	208	[VM_SHARED \| VM_EXEC \| VM_WRITE \| VM_READ] = PAGE_RWX
	209	};
	210	DECLARE_VM_GET_PAGE_PROT