1 // SPDX-License-Identifier: GPL-2.0
3 * SLOB Allocator: Simple List Of Blocks
5 * Matt Mackall <mpm@selenic.com> 12/30/03
7 * NUMA support by Paul Mundt, 2007.
11 * The core of SLOB is a traditional K&R style heap allocator, with
12 * support for returning aligned objects. The granularity of this
13 * allocator is as little as 2 bytes, however typically most architectures
14 * will require 4 bytes on 32-bit and 8 bytes on 64-bit.
16 * The slob heap is a set of linked list of pages from alloc_pages(),
17 * and within each page, there is a singly-linked list of free blocks
18 * (slob_t). The heap is grown on demand. To reduce fragmentation,
19 * heap pages are segregated into three lists, with objects less than
20 * 256 bytes, objects less than 1024 bytes, and all other objects.
22 * Allocation from heap involves first searching for a page with
23 * sufficient free blocks (using a next-fit-like approach) followed by
24 * a first-fit scan of the page. Deallocation inserts objects back
25 * into the free list in address order, so this is effectively an
26 * address-ordered first fit.
28 * Above this is an implementation of kmalloc/kfree. Blocks returned
29 * from kmalloc are prepended with a 4-byte header with the kmalloc size.
30 * If kmalloc is asked for objects of PAGE_SIZE or larger, it calls
31 * alloc_pages() directly, allocating compound pages so the page order
32 * does not have to be separately tracked.
33 * These objects are detected in kfree() because PageSlab()
36 * SLAB is emulated on top of SLOB by simply calling constructors and
37 * destructors for every SLAB allocation. Objects are returned with the
38 * 4-byte alignment unless the SLAB_HWCACHE_ALIGN flag is set, in which
39 * case the low-level allocator will fragment blocks to create the proper
40 * alignment. Again, objects of page-size or greater are allocated by
41 * calling alloc_pages(). As SLAB objects know their size, no separate
42 * size bookkeeping is necessary and there is essentially no allocation
43 * space overhead, and compound pages aren't needed for multi-page
46 * NUMA support in SLOB is fairly simplistic, pushing most of the real
47 * logic down to the page allocator, and simply doing the node accounting
48 * on the upper levels. In the event that a node id is explicitly
49 * provided, __alloc_pages_node() with the specified node id is used
50 * instead. The common case (or when the node id isn't explicitly provided)
51 * will default to the current node, as per numa_node_id().
53 * Node aware pages are still inserted in to the global freelist, and
54 * these are scanned for by matching against the node id encoded in the
55 * page flags. As a result, block allocations that can be satisfied from
56 * the freelist will only be done so on pages residing on the same node,
57 * in order to prevent random node placement.
60 #include <linux/kernel.h>
61 #include <linux/slab.h>
64 #include <linux/swap.h> /* struct reclaim_state */
65 #include <linux/cache.h>
66 #include <linux/init.h>
67 #include <linux/export.h>
68 #include <linux/rcupdate.h>
69 #include <linux/list.h>
70 #include <linux/kmemleak.h>
72 #include <trace/events/kmem.h>
74 #include <linux/atomic.h>
78 * slob_block has a field 'units', which indicates size of block if +ve,
79 * or offset of next block if -ve (in SLOB_UNITs).
81 * Free blocks of size 1 unit simply contain the offset of the next block.
82 * Those with larger size contain their size in the first SLOB_UNIT of
83 * memory, and the offset of the next free block in the second SLOB_UNIT.
85 #if PAGE_SIZE <= (32767 * 2)
86 typedef s16 slobidx_t
;
88 typedef s32 slobidx_t
;
94 typedef struct slob_block slob_t
;
97 * All partially free slob pages go on these lists.
99 #define SLOB_BREAK1 256
100 #define SLOB_BREAK2 1024
101 static LIST_HEAD(free_slob_small
);
102 static LIST_HEAD(free_slob_medium
);
103 static LIST_HEAD(free_slob_large
);
106 * slob_page_free: true for pages on free_slob_pages list.
108 static inline int slob_page_free(struct page
*sp
)
110 return PageSlobFree(sp
);
113 static void set_slob_page_free(struct page
*sp
, struct list_head
*list
)
115 list_add(&sp
->slab_list
, list
);
116 __SetPageSlobFree(sp
);
119 static inline void clear_slob_page_free(struct page
*sp
)
121 list_del(&sp
->slab_list
);
122 __ClearPageSlobFree(sp
);
125 #define SLOB_UNIT sizeof(slob_t)
126 #define SLOB_UNITS(size) DIV_ROUND_UP(size, SLOB_UNIT)
129 * struct slob_rcu is inserted at the tail of allocated slob blocks, which
130 * were created with a SLAB_TYPESAFE_BY_RCU slab. slob_rcu is used to free
131 * the block using call_rcu.
134 struct rcu_head head
;
139 * slob_lock protects all slob allocator structures.
141 static DEFINE_SPINLOCK(slob_lock
);
144 * Encode the given size and next info into a free slob block s.
146 static void set_slob(slob_t
*s
, slobidx_t size
, slob_t
*next
)
148 slob_t
*base
= (slob_t
*)((unsigned long)s
& PAGE_MASK
);
149 slobidx_t offset
= next
- base
;
155 s
[0].units
= -offset
;
159 * Return the size of a slob block.
161 static slobidx_t
slob_units(slob_t
*s
)
169 * Return the next free slob block pointer after this one.
171 static slob_t
*slob_next(slob_t
*s
)
173 slob_t
*base
= (slob_t
*)((unsigned long)s
& PAGE_MASK
);
184 * Returns true if s is the last free block in its page.
186 static int slob_last(slob_t
*s
)
188 return !((unsigned long)slob_next(s
) & ~PAGE_MASK
);
191 static void *slob_new_pages(gfp_t gfp
, int order
, int node
)
196 if (node
!= NUMA_NO_NODE
)
197 page
= __alloc_pages_node(node
, gfp
, order
);
200 page
= alloc_pages(gfp
, order
);
205 mod_node_page_state(page_pgdat(page
), NR_SLAB_UNRECLAIMABLE
,
207 return page_address(page
);
210 static void slob_free_pages(void *b
, int order
)
212 struct page
*sp
= virt_to_page(b
);
214 if (current
->reclaim_state
)
215 current
->reclaim_state
->reclaimed_slab
+= 1 << order
;
217 mod_node_page_state(page_pgdat(sp
), NR_SLAB_UNRECLAIMABLE
,
219 __free_pages(sp
, order
);
223 * slob_page_alloc() - Allocate a slob block within a given slob_page sp.
224 * @sp: Page to look in.
225 * @size: Size of the allocation.
226 * @align: Allocation alignment.
227 * @align_offset: Offset in the allocated block that will be aligned.
228 * @page_removed_from_list: Return parameter.
230 * Tries to find a chunk of memory at least @size bytes big within @page.
232 * Return: Pointer to memory if allocated, %NULL otherwise. If the
233 * allocation fills up @page then the page is removed from the
234 * freelist, in this case @page_removed_from_list will be set to
235 * true (set to false otherwise).
237 static void *slob_page_alloc(struct page
*sp
, size_t size
, int align
,
238 int align_offset
, bool *page_removed_from_list
)
240 slob_t
*prev
, *cur
, *aligned
= NULL
;
241 int delta
= 0, units
= SLOB_UNITS(size
);
243 *page_removed_from_list
= false;
244 for (prev
= NULL
, cur
= sp
->freelist
; ; prev
= cur
, cur
= slob_next(cur
)) {
245 slobidx_t avail
= slob_units(cur
);
248 * 'aligned' will hold the address of the slob block so that the
249 * address 'aligned'+'align_offset' is aligned according to the
250 * 'align' parameter. This is for kmalloc() which prepends the
251 * allocated block with its size, so that the block itself is
252 * aligned when needed.
256 (ALIGN((unsigned long)cur
+ align_offset
, align
)
258 delta
= aligned
- cur
;
260 if (avail
>= units
+ delta
) { /* room enough? */
263 if (delta
) { /* need to fragment head to align? */
264 next
= slob_next(cur
);
265 set_slob(aligned
, avail
- delta
, next
);
266 set_slob(cur
, delta
, aligned
);
269 avail
= slob_units(cur
);
272 next
= slob_next(cur
);
273 if (avail
== units
) { /* exact fit? unlink. */
275 set_slob(prev
, slob_units(prev
), next
);
278 } else { /* fragment */
280 set_slob(prev
, slob_units(prev
), cur
+ units
);
282 sp
->freelist
= cur
+ units
;
283 set_slob(cur
+ units
, avail
- units
, next
);
288 clear_slob_page_free(sp
);
289 *page_removed_from_list
= true;
299 * slob_alloc: entry point into the slob allocator.
301 static void *slob_alloc(size_t size
, gfp_t gfp
, int align
, int node
,
305 struct list_head
*slob_list
;
310 if (size
< SLOB_BREAK1
)
311 slob_list
= &free_slob_small
;
312 else if (size
< SLOB_BREAK2
)
313 slob_list
= &free_slob_medium
;
315 slob_list
= &free_slob_large
;
317 spin_lock_irqsave(&slob_lock
, flags
);
318 /* Iterate through each partially free page, try to find room */
319 list_for_each_entry(sp
, slob_list
, slab_list
) {
320 bool page_removed_from_list
= false;
323 * If there's a node specification, search for a partial
324 * page with a matching node id in the freelist.
326 if (node
!= NUMA_NO_NODE
&& page_to_nid(sp
) != node
)
329 /* Enough room on this page? */
330 if (sp
->units
< SLOB_UNITS(size
))
333 b
= slob_page_alloc(sp
, size
, align
, align_offset
, &page_removed_from_list
);
338 * If slob_page_alloc() removed sp from the list then we
339 * cannot call list functions on sp. If so allocation
340 * did not fragment the page anyway so optimisation is
343 if (!page_removed_from_list
) {
345 * Improve fragment distribution and reduce our average
346 * search time by starting our next search here. (see
347 * Knuth vol 1, sec 2.5, pg 449)
349 if (!list_is_first(&sp
->slab_list
, slob_list
))
350 list_rotate_to_front(&sp
->slab_list
, slob_list
);
354 spin_unlock_irqrestore(&slob_lock
, flags
);
356 /* Not enough space: must allocate a new page */
358 b
= slob_new_pages(gfp
& ~__GFP_ZERO
, 0, node
);
361 sp
= virt_to_page(b
);
364 spin_lock_irqsave(&slob_lock
, flags
);
365 sp
->units
= SLOB_UNITS(PAGE_SIZE
);
367 INIT_LIST_HEAD(&sp
->slab_list
);
368 set_slob(b
, SLOB_UNITS(PAGE_SIZE
), b
+ SLOB_UNITS(PAGE_SIZE
));
369 set_slob_page_free(sp
, slob_list
);
370 b
= slob_page_alloc(sp
, size
, align
, align_offset
, &_unused
);
372 spin_unlock_irqrestore(&slob_lock
, flags
);
374 if (unlikely(gfp
& __GFP_ZERO
))
380 * slob_free: entry point into the slob allocator.
382 static void slob_free(void *block
, int size
)
385 slob_t
*prev
, *next
, *b
= (slob_t
*)block
;
388 struct list_head
*slob_list
;
390 if (unlikely(ZERO_OR_NULL_PTR(block
)))
394 sp
= virt_to_page(block
);
395 units
= SLOB_UNITS(size
);
397 spin_lock_irqsave(&slob_lock
, flags
);
399 if (sp
->units
+ units
== SLOB_UNITS(PAGE_SIZE
)) {
400 /* Go directly to page allocator. Do not pass slob allocator */
401 if (slob_page_free(sp
))
402 clear_slob_page_free(sp
);
403 spin_unlock_irqrestore(&slob_lock
, flags
);
405 page_mapcount_reset(sp
);
406 slob_free_pages(b
, 0);
410 if (!slob_page_free(sp
)) {
411 /* This slob page is about to become partially free. Easy! */
415 (void *)((unsigned long)(b
+
416 SLOB_UNITS(PAGE_SIZE
)) & PAGE_MASK
));
417 if (size
< SLOB_BREAK1
)
418 slob_list
= &free_slob_small
;
419 else if (size
< SLOB_BREAK2
)
420 slob_list
= &free_slob_medium
;
422 slob_list
= &free_slob_large
;
423 set_slob_page_free(sp
, slob_list
);
428 * Otherwise the page is already partially free, so find reinsertion
433 if (b
< (slob_t
*)sp
->freelist
) {
434 if (b
+ units
== sp
->freelist
) {
435 units
+= slob_units(sp
->freelist
);
436 sp
->freelist
= slob_next(sp
->freelist
);
438 set_slob(b
, units
, sp
->freelist
);
442 next
= slob_next(prev
);
445 next
= slob_next(prev
);
448 if (!slob_last(prev
) && b
+ units
== next
) {
449 units
+= slob_units(next
);
450 set_slob(b
, units
, slob_next(next
));
452 set_slob(b
, units
, next
);
454 if (prev
+ slob_units(prev
) == b
) {
455 units
= slob_units(b
) + slob_units(prev
);
456 set_slob(prev
, units
, slob_next(b
));
458 set_slob(prev
, slob_units(prev
), b
);
461 spin_unlock_irqrestore(&slob_lock
, flags
);
465 * End of slob allocator proper. Begin kmem_cache_alloc and kmalloc frontend.
468 static __always_inline
void *
469 __do_kmalloc_node(size_t size
, gfp_t gfp
, int node
, unsigned long caller
)
472 int minalign
= max_t(size_t, ARCH_KMALLOC_MINALIGN
, ARCH_SLAB_MINALIGN
);
475 gfp
&= gfp_allowed_mask
;
477 fs_reclaim_acquire(gfp
);
478 fs_reclaim_release(gfp
);
480 if (size
< PAGE_SIZE
- minalign
) {
481 int align
= minalign
;
484 * For power of two sizes, guarantee natural alignment for
485 * kmalloc()'d objects.
487 if (is_power_of_2(size
))
488 align
= max(minalign
, (int) size
);
491 return ZERO_SIZE_PTR
;
493 m
= slob_alloc(size
+ minalign
, gfp
, align
, node
, minalign
);
498 ret
= (void *)m
+ minalign
;
500 trace_kmalloc_node(caller
, ret
,
501 size
, size
+ minalign
, gfp
, node
);
503 unsigned int order
= get_order(size
);
507 ret
= slob_new_pages(gfp
, order
, node
);
509 trace_kmalloc_node(caller
, ret
,
510 size
, PAGE_SIZE
<< order
, gfp
, node
);
513 kmemleak_alloc(ret
, size
, 1, gfp
);
517 void *__kmalloc(size_t size
, gfp_t gfp
)
519 return __do_kmalloc_node(size
, gfp
, NUMA_NO_NODE
, _RET_IP_
);
521 EXPORT_SYMBOL(__kmalloc
);
523 void *__kmalloc_track_caller(size_t size
, gfp_t gfp
, unsigned long caller
)
525 return __do_kmalloc_node(size
, gfp
, NUMA_NO_NODE
, caller
);
527 EXPORT_SYMBOL(__kmalloc_track_caller
);
530 void *__kmalloc_node_track_caller(size_t size
, gfp_t gfp
,
531 int node
, unsigned long caller
)
533 return __do_kmalloc_node(size
, gfp
, node
, caller
);
535 EXPORT_SYMBOL(__kmalloc_node_track_caller
);
538 void kfree(const void *block
)
542 trace_kfree(_RET_IP_
, block
);
544 if (unlikely(ZERO_OR_NULL_PTR(block
)))
546 kmemleak_free(block
);
548 sp
= virt_to_page(block
);
550 int align
= max_t(size_t, ARCH_KMALLOC_MINALIGN
, ARCH_SLAB_MINALIGN
);
551 unsigned int *m
= (unsigned int *)(block
- align
);
552 slob_free(m
, *m
+ align
);
554 unsigned int order
= compound_order(sp
);
555 mod_node_page_state(page_pgdat(sp
), NR_SLAB_UNRECLAIMABLE
,
557 __free_pages(sp
, order
);
561 EXPORT_SYMBOL(kfree
);
563 /* can't use ksize for kmem_cache_alloc memory, only kmalloc */
564 size_t __ksize(const void *block
)
571 if (unlikely(block
== ZERO_SIZE_PTR
))
574 sp
= virt_to_page(block
);
575 if (unlikely(!PageSlab(sp
)))
576 return page_size(sp
);
578 align
= max_t(size_t, ARCH_KMALLOC_MINALIGN
, ARCH_SLAB_MINALIGN
);
579 m
= (unsigned int *)(block
- align
);
580 return SLOB_UNITS(*m
) * SLOB_UNIT
;
582 EXPORT_SYMBOL(__ksize
);
584 int __kmem_cache_create(struct kmem_cache
*c
, slab_flags_t flags
)
586 if (flags
& SLAB_TYPESAFE_BY_RCU
) {
587 /* leave room for rcu footer at the end of object */
588 c
->size
+= sizeof(struct slob_rcu
);
594 static void *slob_alloc_node(struct kmem_cache
*c
, gfp_t flags
, int node
)
598 flags
&= gfp_allowed_mask
;
600 fs_reclaim_acquire(flags
);
601 fs_reclaim_release(flags
);
603 if (c
->size
< PAGE_SIZE
) {
604 b
= slob_alloc(c
->size
, flags
, c
->align
, node
, 0);
605 trace_kmem_cache_alloc_node(_RET_IP_
, b
, c
->object_size
,
606 SLOB_UNITS(c
->size
) * SLOB_UNIT
,
609 b
= slob_new_pages(flags
, get_order(c
->size
), node
);
610 trace_kmem_cache_alloc_node(_RET_IP_
, b
, c
->object_size
,
611 PAGE_SIZE
<< get_order(c
->size
),
616 WARN_ON_ONCE(flags
& __GFP_ZERO
);
620 kmemleak_alloc_recursive(b
, c
->size
, 1, c
->flags
, flags
);
624 void *kmem_cache_alloc(struct kmem_cache
*cachep
, gfp_t flags
)
626 return slob_alloc_node(cachep
, flags
, NUMA_NO_NODE
);
628 EXPORT_SYMBOL(kmem_cache_alloc
);
631 void *__kmalloc_node(size_t size
, gfp_t gfp
, int node
)
633 return __do_kmalloc_node(size
, gfp
, node
, _RET_IP_
);
635 EXPORT_SYMBOL(__kmalloc_node
);
637 void *kmem_cache_alloc_node(struct kmem_cache
*cachep
, gfp_t gfp
, int node
)
639 return slob_alloc_node(cachep
, gfp
, node
);
641 EXPORT_SYMBOL(kmem_cache_alloc_node
);
644 static void __kmem_cache_free(void *b
, int size
)
646 if (size
< PAGE_SIZE
)
649 slob_free_pages(b
, get_order(size
));
652 static void kmem_rcu_free(struct rcu_head
*head
)
654 struct slob_rcu
*slob_rcu
= (struct slob_rcu
*)head
;
655 void *b
= (void *)slob_rcu
- (slob_rcu
->size
- sizeof(struct slob_rcu
));
657 __kmem_cache_free(b
, slob_rcu
->size
);
660 void kmem_cache_free(struct kmem_cache
*c
, void *b
)
662 kmemleak_free_recursive(b
, c
->flags
);
663 if (unlikely(c
->flags
& SLAB_TYPESAFE_BY_RCU
)) {
664 struct slob_rcu
*slob_rcu
;
665 slob_rcu
= b
+ (c
->size
- sizeof(struct slob_rcu
));
666 slob_rcu
->size
= c
->size
;
667 call_rcu(&slob_rcu
->head
, kmem_rcu_free
);
669 __kmem_cache_free(b
, c
->size
);
672 trace_kmem_cache_free(_RET_IP_
, b
);
674 EXPORT_SYMBOL(kmem_cache_free
);
676 void kmem_cache_free_bulk(struct kmem_cache
*s
, size_t size
, void **p
)
678 __kmem_cache_free_bulk(s
, size
, p
);
680 EXPORT_SYMBOL(kmem_cache_free_bulk
);
682 int kmem_cache_alloc_bulk(struct kmem_cache
*s
, gfp_t flags
, size_t size
,
685 return __kmem_cache_alloc_bulk(s
, flags
, size
, p
);
687 EXPORT_SYMBOL(kmem_cache_alloc_bulk
);
689 int __kmem_cache_shutdown(struct kmem_cache
*c
)
691 /* No way to check for remaining objects */
695 void __kmem_cache_release(struct kmem_cache
*c
)
699 int __kmem_cache_shrink(struct kmem_cache
*d
)
704 struct kmem_cache kmem_cache_boot
= {
705 .name
= "kmem_cache",
706 .size
= sizeof(struct kmem_cache
),
708 .align
= ARCH_KMALLOC_MINALIGN
,
711 void __init
kmem_cache_init(void)
713 kmem_cache
= &kmem_cache_boot
;
717 void __init
kmem_cache_init_late(void)