Skip to content

Commit

Permalink
slub: Extend init_on_alloc to slab caches with constructors
Browse files Browse the repository at this point in the history
Signed-off-by: Thibaut Sautereau <[email protected]>
Signed-off-by: Levente Polyak <[email protected]>
  • Loading branch information
tsautereau-anssi authored and anthraxx committed Sep 7, 2020
1 parent 6ef79c8 commit 97f22a7
Show file tree
Hide file tree
Showing 2 changed files with 20 additions and 5 deletions.
2 changes: 2 additions & 0 deletions mm/slab.h
Original file line number Diff line number Diff line change
Expand Up @@ -614,8 +614,10 @@ static inline void cache_random_seq_destroy(struct kmem_cache *cachep) { }
static inline bool slab_want_init_on_alloc(gfp_t flags, struct kmem_cache *c)
{
if (static_branch_unlikely(&init_on_alloc)) {
#ifndef CONFIG_SLUB
if (c->ctor)
return false;
#endif
if (c->flags & (SLAB_TYPESAFE_BY_RCU | SLAB_POISON))
return flags & __GFP_ZERO;
return true;
Expand Down
23 changes: 18 additions & 5 deletions mm/slub.c
Original file line number Diff line number Diff line change
Expand Up @@ -1639,9 +1639,10 @@ static inline bool slab_free_freelist_hook(struct kmem_cache *s,
* need to show a valid freepointer to check_object().
*
* Note that doing this for all caches (not just ctor
* ones, which have s->offset != NULL)) causes a GPF,
* due to KASAN poisoning and the way set_freepointer()
* eventually dereferences the freepointer.
* ones, which have s->offset >= object_size)) causes a
* GPF, due to KASAN poisoning and the way
* set_freepointer() eventually dereferences the
* freepointer.
*/
set_freepointer(s, object, NULL);
}
Expand Down Expand Up @@ -2956,8 +2957,14 @@ static __always_inline void *slab_alloc_node(struct kmem_cache *s,
if (s->ctor)
s->ctor(object);
kasan_poison_object_data(s, object);
} else if (unlikely(slab_want_init_on_alloc(gfpflags, s)) && object)
} else if (unlikely(slab_want_init_on_alloc(gfpflags, s)) && object) {
memset(object, 0, s->object_size);
if (s->ctor) {
kasan_unpoison_object_data(s, object);
s->ctor(object);
kasan_poison_object_data(s, object);
}
}

if (object) {
check_canary(s, object, s->random_inactive);
Expand Down Expand Up @@ -3415,8 +3422,14 @@ int kmem_cache_alloc_bulk(struct kmem_cache *s, gfp_t flags, size_t size,
} else if (unlikely(slab_want_init_on_alloc(flags, s))) {
int j;

for (j = 0; j < i; j++)
for (j = 0; j < i; j++) {
memset(p[j], 0, s->object_size);
if (s->ctor) {
kasan_unpoison_object_data(s, p[j]);
s->ctor(p[j]);
kasan_poison_object_data(s, p[j]);
}
}
}

for (k = 0; k < i; k++) {
Expand Down

0 comments on commit 97f22a7

Please sign in to comment.