[PATCH] RLIMIT_AS checking fix

extern struct vm_area_struct *copy_vma(struct vm_area_struct **,

	unsigned long addr, unsigned long len, pgoff_t pgoff);

extern void exit_mmap(struct mm_struct *);

extern int may_expand_vm(struct mm_struct *mm, unsigned long npages);

extern unsigned long get_unmapped_area(struct file *, unsigned long, unsigned long, unsigned long, unsigned long);

	}

	/* Check against address space limit. */

	if ((mm->total_vm << PAGE_SHIFT) + len

	    > current->signal->rlim[RLIMIT_AS].rlim_cur)

	if (!may_expand_vm(mm, len >> PAGE_SHIFT))

		return -ENOMEM;

	if (accountable && (!(flags & MAP_NORESERVE) ||

	struct rlimit *rlim = current->signal->rlim;

	/* address space limit tests */

	if (mm->total_vm + grow > rlim[RLIMIT_AS].rlim_cur >> PAGE_SHIFT)

	if (!may_expand_vm(mm, grow))

		return -ENOMEM;

	/* Stack limit test */

	}

	/* Check against address space limits *after* clearing old maps... */

	if ((mm->total_vm << PAGE_SHIFT) + len

	    > current->signal->rlim[RLIMIT_AS].rlim_cur)

	if (!may_expand_vm(mm, len >> PAGE_SHIFT))

		return -ENOMEM;

	if (mm->map_count > sysctl_max_map_count)

	}

	return new_vma;

}

/*

 * Return true if the calling process may expand its vm space by the passed

 * number of pages

 */

int may_expand_vm(struct mm_struct *mm, unsigned long npages)

{

	unsigned long cur = mm->total_vm;	/* pages */

	unsigned long lim;

	lim = current->signal->rlim[RLIMIT_AS].rlim_cur >> PAGE_SHIFT;

	if (cur + npages > lim)

		return 0;

	return 1;

}

		if (locked > lock_limit && !capable(CAP_IPC_LOCK))

			goto out;

	}

	if (!may_expand_vm(current->mm, (new_len - old_len) >> PAGE_SHIFT)) {

		ret = -ENOMEM;

	if ((current->mm->total_vm << PAGE_SHIFT) + (new_len - old_len)

	    > current->signal->rlim[RLIMIT_AS].rlim_cur)

		goto out;

	}

	if (vma->vm_flags & VM_ACCOUNT) {

		charged = (new_len - old_len) >> PAGE_SHIFT;