Reputation: 1295
Linux kernel: is a re-assigned page frame cleared?
When a process ends, the Linux kernel can re-assign the user-space page frames (the pages in physical memory) to the user-space pages (in virtual memory) of another process.
Are the page frames cleared before the re-assignment? Otherwise old content might be visible to another process, I can't imagine that this would be allowed. One situation would be assigning page frames to a growing heap where old content may be visible in allocated memory.
Upvotes: 1
Views: 433
Answers (1)
Reputation: 69276
Yes, "re-assigned" physical memory is cleared, but how and when exactly is a bit tricky. The page is not cleared right away, but rather on the first write page fault after another process maps it.
Assuming an anonymous "zero-fill on demand" page:
- User program A is using a memory page with physical address PA.
- User program A terminates execution, kernel claims memory back, physical memory contents are still unchanged.
- User program B (or even A again, doesn't matter) starts and requests a memory page.
- Kernel creates a virtual mapping for the requested page.
- User program B writes to the mapping, causing a write page fault.
- Kernel allocates memory, and gets a physical page with physical address PA, same as point 1.
- Kernel clears the page (zeroing-out any previous content) and updates the virtual mapping accordingly (page tables, etc.).
So the actual clearing happens "lazily", potentially a lot later (step 7) than when the memory was released and claimed back by the kernel (step 2).
NOTE: what happens for the first read page fault on a newly created anonymous mapping is quite a different story. The kernel always keeps a physical page that is completely zeroed out (called the "zero page"), and creates a virtual mapping to this page. This happens for every process that needs it, so the zero page is mapped a lot of times in multiple VMAs of different processes. This is done for performance (no need to zero-out anything) and to save memory (no need to allocate a new page until a write occurs).
Regarding the write fault, which is when the page is actually cleared, one of the possible code paths in the kernel is:
- Arch-specific page fault handler (code should be in
arch/XXX/mm/fault.c) handle_mm_fault()__handle_mm_fault()handle_pte_fault()do_anonymous_page()(assuming an anonymous mapping)alloc_zeroed_user_highpage_movable()- Some variant of
alloc_pages()passing__GFP_ZERO clear_page()- Return allocated and zeroed page
Upvotes: 4
Related Questions
- What is zeroed page in Linux kernel?
- Difference between virtual page and page frame?
- Dirty page accounting in Linux kernel through /proc/$PID/smaps
- how the paging of pages works in unix systems?
- How does kernel know, which pages in the virtual address space correspond to a swapped out physical page frame?
- Linux kernel memory management, does it use consecutive memory pages all the time?
- Do Kernel pages get swapped out?
- Are .text pages swapped-out?
- is number of frame = number of pages(linux)?
- per process page table: what happens when a page frame is sent to disk?