staging: android: ashmem: Avoid range_alloc() allocation with ashmem_mutex held.

 * @end:	   The ending page (inclusive)

 *

 * This function is protected by ashmem_mutex.

 *

 * Return: 0 if successful, or -ENOMEM if there is an error

 */

static int range_alloc(struct ashmem_area *asma,

static void range_alloc(struct ashmem_area *asma,

			struct ashmem_range *prev_range, unsigned int purged,

		       size_t start, size_t end)

			size_t start, size_t end,

			struct ashmem_range **new_range)

{

	struct ashmem_range *range;

	range = kmem_cache_zalloc(ashmem_range_cachep, GFP_KERNEL);

	if (!range)

		return -ENOMEM;

	struct ashmem_range *range = *new_range;

	*new_range = NULL;

	range->asma = asma;

	range->pgstart = start;

	range->pgend = end;

	if (range_on_lru(range))

		lru_add(range);

	return 0;

}

/**

 *

 * Caller must hold ashmem_mutex.

 */

static int ashmem_pin(struct ashmem_area *asma, size_t pgstart, size_t pgend)

static int ashmem_pin(struct ashmem_area *asma, size_t pgstart, size_t pgend,

		      struct ashmem_range **new_range)

{

	struct ashmem_range *range, *next;

	int ret = ASHMEM_NOT_PURGED;

			 * second half and adjust the first chunk's endpoint.

			 */

			range_alloc(asma, range, range->purged,

				    pgend + 1, range->pgend);

				    pgend + 1, range->pgend, new_range);

			range_shrink(range, range->pgstart, pgstart - 1);

			break;

		}

 *

 * Caller must hold ashmem_mutex.

 */

static int ashmem_unpin(struct ashmem_area *asma, size_t pgstart, size_t pgend)

static int ashmem_unpin(struct ashmem_area *asma, size_t pgstart, size_t pgend,

			struct ashmem_range **new_range)

{

	struct ashmem_range *range, *next;

	unsigned int purged = ASHMEM_NOT_PURGED;

		}

	}

	return range_alloc(asma, range, purged, pgstart, pgend);

	range_alloc(asma, range, purged, pgstart, pgend, new_range);

	return 0;

}

/*

	struct ashmem_pin pin;

	size_t pgstart, pgend;

	int ret = -EINVAL;

	struct ashmem_range *range = NULL;

	if (copy_from_user(&pin, p, sizeof(pin)))

		return -EFAULT;

	if (cmd == ASHMEM_PIN || cmd == ASHMEM_UNPIN) {

		range = kmem_cache_zalloc(ashmem_range_cachep, GFP_KERNEL);

		if (!range)

			return -ENOMEM;

	}

	mutex_lock(&ashmem_mutex);

	wait_event(ashmem_shrink_wait, !atomic_read(&ashmem_shrink_inflight));

	switch (cmd) {

	case ASHMEM_PIN:

		ret = ashmem_pin(asma, pgstart, pgend);

		ret = ashmem_pin(asma, pgstart, pgend, &range);

		break;

	case ASHMEM_UNPIN:

		ret = ashmem_unpin(asma, pgstart, pgend);

		ret = ashmem_unpin(asma, pgstart, pgend, &range);

		break;

	case ASHMEM_GET_PIN_STATUS:

		ret = ashmem_get_pin_status(asma, pgstart, pgend);

out_unlock:

	mutex_unlock(&ashmem_mutex);

	if (range)

		kmem_cache_free(ashmem_range_cachep, range);

	return ret;

}