| Message ID | 20230717143110.260162-4-ryan.roberts@arm.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a59:c923:0:b0:3e4:2afc:c1 with SMTP id j3csp1181832vqt;
Mon, 17 Jul 2023 08:29:08 -0700 (PDT)
X-Google-Smtp-Source:
APBJJlHxHXpl7yeq24AZJ0Wml/cK1b2XJcAIEyIETdwF1hQI/zAIVZb28B4wsompsq7mEsljQulD
X-Received: by 2002:aa7:d9d0:0:b0:51e:4439:f480 with SMTP id
v16-20020aa7d9d0000000b0051e4439f480mr12559070eds.34.1689607748541;
Mon, 17 Jul 2023 08:29:08 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1689607748; cv=none;
d=google.com; s=arc-20160816;
b=js705940Cuyd25GTt8Vyy6pnhS0yP8n2vakTZZMPy84EnzxYb9WwMjO9ovRv/kwndK
A1X+Ojz3ofoU9jIvDpekcw/LJlQEFz0+mTi5ikLS/68Y/Zdqj8h7fzdhSoDY0mmvlzMX
KOkuqhMfWGiu80LQLwicKDPsXV+WS6MIRR3d5y3/mT0afwml+5Lv6paTXxUd9yzFOm//
ZW++DGC8+vJGMdzc56GDGmScw156AZ1q+wnX1Fv8s/cAAZpc4MjHkp1Apmqni+2CPMGA
6WMqVGjOW1Z/YhMdp5hJPvPoYnUQF+z3OlDUQrcrSu4c/CoqgWB4IdQchwriJ0ubedJ+
IQwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:content-transfer-encoding:mime-version
:references:in-reply-to:message-id:date:subject:cc:to:from;
bh=Z9tyZhKLEUiT4Cu9fZro8vsV1H+EfHsCasdo1zxwtLo=;
fh=THi7eKCjaWcVibUnyL3CTjC3PwRMYqk9JChFkSe1vn0=;
b=YNQsdKAWSopkVc7o/RaZggC7GDsRriwTn+x7sWsstVGkXudQOnuyF8CAw0uEmhdiWP
gCS9TYL7Tc+v9UIWwULe3yP01J709O+VGg8pgF8ZwVrVZUMpaobqK55cqbQKiHvpGmG4
A/RVsz51Mv2OiQkdRwgzhnrd6E++qr/MhZ+vzoxx/U9XKvKjZVEcT1Rp8Ly0G0V2tJPo
+KMaukr7b1J8/XwveANHeaKkFBAwgb0il/2TMK34+1C6jVOejmqJ2Np4gW2fvYxAuHCP
FYJ8e7GOF+HW1iBegoVzpecsY5YE2EP7MjVEVeilNGIL848lVPl03EZIB0WqbPzUaD1J
pk+A==
ARC-Authentication-Results: i=1; mx.google.com;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
f24-20020a05640214d800b0051be9317ccasi14023399edx.508.2023.07.17.08.28.43;
Mon, 17 Jul 2023 08:29:08 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=arm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S231513AbjGQObh (ORCPT <rfc822;hadasmailinglist@gmail.com>
+ 99 others); Mon, 17 Jul 2023 10:31:37 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53320 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S231332AbjGQOba (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Mon, 17 Jul 2023 10:31:30 -0400
Received: from foss.arm.com (foss.arm.com [217.140.110.172])
by lindbergh.monkeyblade.net (Postfix) with ESMTP id 237C1E63
for <linux-kernel@vger.kernel.org>;
Mon, 17 Jul 2023 07:31:27 -0700 (PDT)
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14])
by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 3A3BB1424;
Mon, 17 Jul 2023 07:32:10 -0700 (PDT)
Received: from e125769.cambridge.arm.com (e125769.cambridge.arm.com
[10.1.196.26])
by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id
4B2FC3F738;
Mon, 17 Jul 2023 07:31:25 -0700 (PDT)
From: Ryan Roberts <ryan.roberts@arm.com>
To: Andrew Morton <akpm@linux-foundation.org>,
Matthew Wilcox <willy@infradead.org>,
Yin Fengwei <fengwei.yin@intel.com>,
David Hildenbrand <david@redhat.com>,
Yu Zhao <yuzhao@google.com>, Yang Shi <shy828301@gmail.com>,
"Huang, Ying" <ying.huang@intel.com>, Zi Yan <ziy@nvidia.com>
Cc: Ryan Roberts <ryan.roberts@arm.com>, linux-kernel@vger.kernel.org,
linux-mm@kvack.org
Subject: [PATCH v1 3/3] mm: Batch-zap large anonymous folio PTE mappings
Date: Mon, 17 Jul 2023 15:31:10 +0100
Message-Id: <20230717143110.260162-4-ryan.roberts@arm.com>
X-Mailer: git-send-email 2.25.1
In-Reply-To: <20230717143110.260162-1-ryan.roberts@arm.com>
References: <20230717143110.260162-1-ryan.roberts@arm.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
SPF_HELO_NONE,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=ham
autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: INBOX
X-GMAIL-THRID: 1771682134368248044
X-GMAIL-MSGID: 1771682134368248044
|
| Series |
Optimize large folio interaction with deferred split
|
|
Commit Message
Ryan Roberts
July 17, 2023, 2:31 p.m. UTC
This allows batching the rmap removal with folio_remove_rmap_range(),
which means we avoid spuriously adding a partially unmapped folio to the
deferrred split queue in the common case, which reduces split queue lock
contention.
Previously each page was removed from the rmap individually with
page_remove_rmap(). If the first page belonged to a large folio, this
would cause page_remove_rmap() to conclude that the folio was now
partially mapped and add the folio to the deferred split queue. But
subsequent calls would cause the folio to become fully unmapped, meaning
there is no value to adding it to the split queue.
Signed-off-by: Ryan Roberts <ryan.roberts@arm.com>
---
mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 119 insertions(+)
Comments
On 17 Jul 2023, at 10:31, Ryan Roberts wrote: > This allows batching the rmap removal with folio_remove_rmap_range(), > which means we avoid spuriously adding a partially unmapped folio to the > deferrred split queue in the common case, which reduces split queue lock > contention. > > Previously each page was removed from the rmap individually with > page_remove_rmap(). If the first page belonged to a large folio, this > would cause page_remove_rmap() to conclude that the folio was now > partially mapped and add the folio to the deferred split queue. But > subsequent calls would cause the folio to become fully unmapped, meaning > there is no value to adding it to the split queue. > > Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> > --- > mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ > 1 file changed, 119 insertions(+) > > diff --git a/mm/memory.c b/mm/memory.c > index 01f39e8144ef..6facb8c8807a 100644 > --- a/mm/memory.c > +++ b/mm/memory.c > @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, > pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); > } > > +static inline unsigned long page_addr(struct page *page, > + struct page *anchor, unsigned long anchor_addr) > +{ > + unsigned long offset; > + unsigned long addr; > + > + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; > + addr = anchor_addr + offset; > + > + if (anchor > page) { > + if (addr > anchor_addr) > + return 0; > + } else { > + if (addr < anchor_addr) > + return ULONG_MAX; > + } > + > + return addr; > +} > + > +static int calc_anon_folio_map_pgcount(struct folio *folio, > + struct page *page, pte_t *pte, > + unsigned long addr, unsigned long end) > +{ > + pte_t ptent; > + int floops; > + int i; > + unsigned long pfn; > + > + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), > + end); > + floops = (end - addr) >> PAGE_SHIFT; > + pfn = page_to_pfn(page); > + pfn++; > + pte++; > + > + for (i = 1; i < floops; i++) { > + ptent = ptep_get(pte); > + > + if (!pte_present(ptent) || > + pte_pfn(ptent) != pfn) { > + return i; > + } > + > + pfn++; > + pte++; > + } > + > + return floops; > +} > + > +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, > + struct vm_area_struct *vma, > + struct page *page, pte_t *pte, > + unsigned long addr, unsigned long end, > + bool *full_out) > +{ > + struct folio *folio = page_folio(page); > + struct mm_struct *mm = tlb->mm; > + pte_t ptent; > + int pgcount; > + int i; > + bool full; > + > + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); > + > + for (i = 0; i < pgcount;) { > + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); > + tlb_remove_tlb_entry(tlb, pte, addr); > + full = __tlb_remove_page(tlb, page, 0); > + > + if (unlikely(page_mapcount(page) < 1)) > + print_bad_pte(vma, addr, ptent, page); > + > + i++; > + page++; > + pte++; > + addr += PAGE_SIZE; > + > + if (unlikely(full)) > + break; > + } > + > + folio_remove_rmap_range(folio, page - i, i, vma); > + > + *full_out = full; > + return i; > +} > + > static unsigned long zap_pte_range(struct mmu_gather *tlb, > struct vm_area_struct *vma, pmd_t *pmd, > unsigned long addr, unsigned long end, > @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, > page = vm_normal_page(vma, addr, ptent); > if (unlikely(!should_zap_page(details, page))) > continue; > + > + /* > + * Batch zap large anonymous folio mappings. This allows > + * batching the rmap removal, which means we avoid > + * spuriously adding a partially unmapped folio to the > + * deferrred split queue in the common case, which > + * reduces split queue lock contention. Require the VMA > + * to be anonymous to ensure that none of the PTEs in > + * the range require zap_install_uffd_wp_if_needed(). > + */ > + if (page && PageAnon(page) && vma_is_anonymous(vma)) { > + bool full; > + int pgcount; > + > + pgcount = zap_anon_pte_range(tlb, vma, > + page, pte, addr, end, &full); Are you trying to zap as many ptes as possible if all these ptes are within a folio? If so, why not calculate end before calling zap_anon_pte_range()? That would make zap_anon_pte_range() simpler. Also check if page is part of a large folio first to make sure you can batch. > + > + rss[mm_counter(page)] -= pgcount; > + pgcount--; > + pte += pgcount; > + addr += pgcount << PAGE_SHIFT; > + > + if (unlikely(full)) { > + force_flush = 1; > + addr += PAGE_SIZE; > + break; > + } > + continue; > + } > + > ptent = ptep_get_and_clear_full(mm, addr, pte, > tlb->fullmm); > tlb_remove_tlb_entry(tlb, pte, addr); > -- > 2.25.1 -- Best Regards, Yan, Zi
On 17/07/2023 16:25, Zi Yan wrote: > On 17 Jul 2023, at 10:31, Ryan Roberts wrote: > >> This allows batching the rmap removal with folio_remove_rmap_range(), >> which means we avoid spuriously adding a partially unmapped folio to the >> deferrred split queue in the common case, which reduces split queue lock >> contention. >> >> Previously each page was removed from the rmap individually with >> page_remove_rmap(). If the first page belonged to a large folio, this >> would cause page_remove_rmap() to conclude that the folio was now >> partially mapped and add the folio to the deferred split queue. But >> subsequent calls would cause the folio to become fully unmapped, meaning >> there is no value to adding it to the split queue. >> >> Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> >> --- >> mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ >> 1 file changed, 119 insertions(+) >> >> diff --git a/mm/memory.c b/mm/memory.c >> index 01f39e8144ef..6facb8c8807a 100644 >> --- a/mm/memory.c >> +++ b/mm/memory.c >> @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, >> pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); >> } >> >> +static inline unsigned long page_addr(struct page *page, >> + struct page *anchor, unsigned long anchor_addr) >> +{ >> + unsigned long offset; >> + unsigned long addr; >> + >> + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; >> + addr = anchor_addr + offset; >> + >> + if (anchor > page) { >> + if (addr > anchor_addr) >> + return 0; >> + } else { >> + if (addr < anchor_addr) >> + return ULONG_MAX; >> + } >> + >> + return addr; >> +} >> + >> +static int calc_anon_folio_map_pgcount(struct folio *folio, >> + struct page *page, pte_t *pte, >> + unsigned long addr, unsigned long end) >> +{ >> + pte_t ptent; >> + int floops; >> + int i; >> + unsigned long pfn; >> + >> + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), >> + end); >> + floops = (end - addr) >> PAGE_SHIFT; >> + pfn = page_to_pfn(page); >> + pfn++; >> + pte++; >> + >> + for (i = 1; i < floops; i++) { >> + ptent = ptep_get(pte); >> + >> + if (!pte_present(ptent) || >> + pte_pfn(ptent) != pfn) { >> + return i; >> + } >> + >> + pfn++; >> + pte++; >> + } >> + >> + return floops; >> +} >> + >> +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, >> + struct vm_area_struct *vma, >> + struct page *page, pte_t *pte, >> + unsigned long addr, unsigned long end, >> + bool *full_out) >> +{ >> + struct folio *folio = page_folio(page); >> + struct mm_struct *mm = tlb->mm; >> + pte_t ptent; >> + int pgcount; >> + int i; >> + bool full; >> + >> + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); >> + >> + for (i = 0; i < pgcount;) { >> + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); >> + tlb_remove_tlb_entry(tlb, pte, addr); >> + full = __tlb_remove_page(tlb, page, 0); >> + >> + if (unlikely(page_mapcount(page) < 1)) >> + print_bad_pte(vma, addr, ptent, page); >> + >> + i++; >> + page++; >> + pte++; >> + addr += PAGE_SIZE; >> + >> + if (unlikely(full)) >> + break; >> + } >> + >> + folio_remove_rmap_range(folio, page - i, i, vma); >> + >> + *full_out = full; >> + return i; >> +} >> + >> static unsigned long zap_pte_range(struct mmu_gather *tlb, >> struct vm_area_struct *vma, pmd_t *pmd, >> unsigned long addr, unsigned long end, >> @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, >> page = vm_normal_page(vma, addr, ptent); >> if (unlikely(!should_zap_page(details, page))) >> continue; >> + >> + /* >> + * Batch zap large anonymous folio mappings. This allows >> + * batching the rmap removal, which means we avoid >> + * spuriously adding a partially unmapped folio to the >> + * deferrred split queue in the common case, which >> + * reduces split queue lock contention. Require the VMA >> + * to be anonymous to ensure that none of the PTEs in >> + * the range require zap_install_uffd_wp_if_needed(). >> + */ >> + if (page && PageAnon(page) && vma_is_anonymous(vma)) { >> + bool full; >> + int pgcount; >> + >> + pgcount = zap_anon_pte_range(tlb, vma, >> + page, pte, addr, end, &full); > > Are you trying to zap as many ptes as possible if all these ptes are > within a folio? Yes. > If so, why not calculate end before calling zap_anon_pte_range()? > That would make zap_anon_pte_range() simpler. I'm not sure I follow. That's currently done in calc_anon_folio_map_pgcount(). I could move it to here, but I'm not sure that makes things simpler, just puts more code in here and less in there? > Also check if page is part of > a large folio first to make sure you can batch. Yeah that's fair. I'd be inclined to put that in zap_anon_pte_range() to short circuit calc_anon_folio_map_pgcount(). But ultimately zap_anon_pte_range() would still zap the single pte. > >> + >> + rss[mm_counter(page)] -= pgcount; >> + pgcount--; >> + pte += pgcount; >> + addr += pgcount << PAGE_SHIFT; >> + >> + if (unlikely(full)) { >> + force_flush = 1; >> + addr += PAGE_SIZE; >> + break; >> + } >> + continue; >> + } >> + >> ptent = ptep_get_and_clear_full(mm, addr, pte, >> tlb->fullmm); >> tlb_remove_tlb_entry(tlb, pte, addr); >> -- >> 2.25.1 > > > -- > Best Regards, > Yan, Zi
On 17 Jul 2023, at 11:55, Ryan Roberts wrote: > On 17/07/2023 16:25, Zi Yan wrote: >> On 17 Jul 2023, at 10:31, Ryan Roberts wrote: >> >>> This allows batching the rmap removal with folio_remove_rmap_range(), >>> which means we avoid spuriously adding a partially unmapped folio to the >>> deferrred split queue in the common case, which reduces split queue lock >>> contention. >>> >>> Previously each page was removed from the rmap individually with >>> page_remove_rmap(). If the first page belonged to a large folio, this >>> would cause page_remove_rmap() to conclude that the folio was now >>> partially mapped and add the folio to the deferred split queue. But >>> subsequent calls would cause the folio to become fully unmapped, meaning >>> there is no value to adding it to the split queue. >>> >>> Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> >>> --- >>> mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ >>> 1 file changed, 119 insertions(+) >>> >>> diff --git a/mm/memory.c b/mm/memory.c >>> index 01f39e8144ef..6facb8c8807a 100644 >>> --- a/mm/memory.c >>> +++ b/mm/memory.c >>> @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, >>> pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); >>> } >>> >>> +static inline unsigned long page_addr(struct page *page, >>> + struct page *anchor, unsigned long anchor_addr) >>> +{ >>> + unsigned long offset; >>> + unsigned long addr; >>> + >>> + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; >>> + addr = anchor_addr + offset; >>> + >>> + if (anchor > page) { >>> + if (addr > anchor_addr) >>> + return 0; >>> + } else { >>> + if (addr < anchor_addr) >>> + return ULONG_MAX; >>> + } >>> + >>> + return addr; >>> +} >>> + >>> +static int calc_anon_folio_map_pgcount(struct folio *folio, >>> + struct page *page, pte_t *pte, >>> + unsigned long addr, unsigned long end) >>> +{ >>> + pte_t ptent; >>> + int floops; >>> + int i; >>> + unsigned long pfn; >>> + >>> + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), >>> + end); >>> + floops = (end - addr) >> PAGE_SHIFT; >>> + pfn = page_to_pfn(page); >>> + pfn++; >>> + pte++; >>> + >>> + for (i = 1; i < floops; i++) { >>> + ptent = ptep_get(pte); >>> + >>> + if (!pte_present(ptent) || >>> + pte_pfn(ptent) != pfn) { >>> + return i; >>> + } >>> + >>> + pfn++; >>> + pte++; >>> + } >>> + >>> + return floops; >>> +} >>> + >>> +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, >>> + struct vm_area_struct *vma, >>> + struct page *page, pte_t *pte, >>> + unsigned long addr, unsigned long end, >>> + bool *full_out) >>> +{ >>> + struct folio *folio = page_folio(page); >>> + struct mm_struct *mm = tlb->mm; >>> + pte_t ptent; >>> + int pgcount; >>> + int i; >>> + bool full; >>> + >>> + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); >>> + >>> + for (i = 0; i < pgcount;) { >>> + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); >>> + tlb_remove_tlb_entry(tlb, pte, addr); >>> + full = __tlb_remove_page(tlb, page, 0); >>> + >>> + if (unlikely(page_mapcount(page) < 1)) >>> + print_bad_pte(vma, addr, ptent, page); >>> + >>> + i++; >>> + page++; >>> + pte++; >>> + addr += PAGE_SIZE; >>> + >>> + if (unlikely(full)) >>> + break; >>> + } >>> + >>> + folio_remove_rmap_range(folio, page - i, i, vma); >>> + >>> + *full_out = full; >>> + return i; >>> +} >>> + >>> static unsigned long zap_pte_range(struct mmu_gather *tlb, >>> struct vm_area_struct *vma, pmd_t *pmd, >>> unsigned long addr, unsigned long end, >>> @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, >>> page = vm_normal_page(vma, addr, ptent); >>> if (unlikely(!should_zap_page(details, page))) >>> continue; >>> + >>> + /* >>> + * Batch zap large anonymous folio mappings. This allows >>> + * batching the rmap removal, which means we avoid >>> + * spuriously adding a partially unmapped folio to the >>> + * deferrred split queue in the common case, which >>> + * reduces split queue lock contention. Require the VMA >>> + * to be anonymous to ensure that none of the PTEs in >>> + * the range require zap_install_uffd_wp_if_needed(). >>> + */ >>> + if (page && PageAnon(page) && vma_is_anonymous(vma)) { >>> + bool full; >>> + int pgcount; >>> + >>> + pgcount = zap_anon_pte_range(tlb, vma, >>> + page, pte, addr, end, &full); >> >> Are you trying to zap as many ptes as possible if all these ptes are >> within a folio? > > Yes. > >> If so, why not calculate end before calling zap_anon_pte_range()? >> That would make zap_anon_pte_range() simpler. > > I'm not sure I follow. That's currently done in calc_anon_folio_map_pgcount(). I > could move it to here, but I'm not sure that makes things simpler, just puts > more code in here and less in there? Otherwise your zap_anon_pte_range() is really zap_anon_pte_in_folio_range() or some other more descriptive name. When I first look at the name, I thought PTEs will be zapped until the end. But that is not the case when I look at the code. And future users can easily be confused too and use it in a wrong way. BTW, page_addr() needs a better name and is easily confused with existing page_address(). > >> Also check if page is part of >> a large folio first to make sure you can batch. > > Yeah that's fair. I'd be inclined to put that in zap_anon_pte_range() to short > circuit calc_anon_folio_map_pgcount(). But ultimately zap_anon_pte_range() would > still zap the single pte. > > >> >>> + >>> + rss[mm_counter(page)] -= pgcount; >>> + pgcount--; >>> + pte += pgcount; >>> + addr += pgcount << PAGE_SHIFT; >>> + >>> + if (unlikely(full)) { >>> + force_flush = 1; >>> + addr += PAGE_SIZE; >>> + break; >>> + } >>> + continue; >>> + } >>> + >>> ptent = ptep_get_and_clear_full(mm, addr, pte, >>> tlb->fullmm); >>> tlb_remove_tlb_entry(tlb, pte, addr); >>> -- >>> 2.25.1 >> >> >> -- >> Best Regards, >> Yan, Zi -- Best Regards, Yan, Zi
On 7/17/23 22:31, Ryan Roberts wrote: > This allows batching the rmap removal with folio_remove_rmap_range(), > which means we avoid spuriously adding a partially unmapped folio to the > deferrred split queue in the common case, which reduces split queue lock > contention. > > Previously each page was removed from the rmap individually with > page_remove_rmap(). If the first page belonged to a large folio, this > would cause page_remove_rmap() to conclude that the folio was now > partially mapped and add the folio to the deferred split queue. But > subsequent calls would cause the folio to become fully unmapped, meaning > there is no value to adding it to the split queue. > > Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> > --- > mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ > 1 file changed, 119 insertions(+) > > diff --git a/mm/memory.c b/mm/memory.c > index 01f39e8144ef..6facb8c8807a 100644 > --- a/mm/memory.c > +++ b/mm/memory.c > @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, > pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); > } > > +static inline unsigned long page_addr(struct page *page, > + struct page *anchor, unsigned long anchor_addr) > +{ > + unsigned long offset; > + unsigned long addr; > + > + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; > + addr = anchor_addr + offset; > + > + if (anchor > page) { > + if (addr > anchor_addr) > + return 0; > + } else { > + if (addr < anchor_addr) > + return ULONG_MAX; > + } > + > + return addr; > +} > + > +static int calc_anon_folio_map_pgcount(struct folio *folio, > + struct page *page, pte_t *pte, > + unsigned long addr, unsigned long end) > +{ > + pte_t ptent; > + int floops; > + int i; > + unsigned long pfn; > + > + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), > + end); > + floops = (end - addr) >> PAGE_SHIFT; > + pfn = page_to_pfn(page); > + pfn++; > + pte++; > + > + for (i = 1; i < floops; i++) { > + ptent = ptep_get(pte); > + > + if (!pte_present(ptent) || > + pte_pfn(ptent) != pfn) { > + return i; > + } > + > + pfn++; > + pte++; > + } > + > + return floops; > +} > + > +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, > + struct vm_area_struct *vma, > + struct page *page, pte_t *pte, > + unsigned long addr, unsigned long end, > + bool *full_out) > +{ > + struct folio *folio = page_folio(page); > + struct mm_struct *mm = tlb->mm; > + pte_t ptent; > + int pgcount; > + int i; > + bool full; > + > + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); > + > + for (i = 0; i < pgcount;) { > + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); > + tlb_remove_tlb_entry(tlb, pte, addr); > + full = __tlb_remove_page(tlb, page, 0); > + > + if (unlikely(page_mapcount(page) < 1)) > + print_bad_pte(vma, addr, ptent, page); > + > + i++; > + page++; > + pte++; > + addr += PAGE_SIZE; > + > + if (unlikely(full)) > + break; > + } > + > + folio_remove_rmap_range(folio, page - i, i, vma); > + > + *full_out = full; > + return i; > +} > + > static unsigned long zap_pte_range(struct mmu_gather *tlb, > struct vm_area_struct *vma, pmd_t *pmd, > unsigned long addr, unsigned long end, > @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, > page = vm_normal_page(vma, addr, ptent); > if (unlikely(!should_zap_page(details, page))) > continue; > + > + /* > + * Batch zap large anonymous folio mappings. This allows > + * batching the rmap removal, which means we avoid > + * spuriously adding a partially unmapped folio to the > + * deferrred split queue in the common case, which > + * reduces split queue lock contention. Require the VMA > + * to be anonymous to ensure that none of the PTEs in > + * the range require zap_install_uffd_wp_if_needed(). > + */ > + if (page && PageAnon(page) && vma_is_anonymous(vma)) { Why this is only for anonymous page? I suppose it can support file mapping also. Regards Yin, Fengwei > + bool full; > + int pgcount; > + > + pgcount = zap_anon_pte_range(tlb, vma, > + page, pte, addr, end, &full); > + > + rss[mm_counter(page)] -= pgcount; > + pgcount--; > + pte += pgcount; > + addr += pgcount << PAGE_SHIFT; > + > + if (unlikely(full)) { > + force_flush = 1; > + addr += PAGE_SIZE; > + break; > + } > + continue; > + } > + > ptent = ptep_get_and_clear_full(mm, addr, pte, > tlb->fullmm); > tlb_remove_tlb_entry(tlb, pte, addr);
On 17/07/2023 17:15, Zi Yan wrote: > On 17 Jul 2023, at 11:55, Ryan Roberts wrote: > >> On 17/07/2023 16:25, Zi Yan wrote: >>> On 17 Jul 2023, at 10:31, Ryan Roberts wrote: >>> >>>> This allows batching the rmap removal with folio_remove_rmap_range(), >>>> which means we avoid spuriously adding a partially unmapped folio to the >>>> deferrred split queue in the common case, which reduces split queue lock >>>> contention. >>>> >>>> Previously each page was removed from the rmap individually with >>>> page_remove_rmap(). If the first page belonged to a large folio, this >>>> would cause page_remove_rmap() to conclude that the folio was now >>>> partially mapped and add the folio to the deferred split queue. But >>>> subsequent calls would cause the folio to become fully unmapped, meaning >>>> there is no value to adding it to the split queue. >>>> >>>> Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> >>>> --- >>>> mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ >>>> 1 file changed, 119 insertions(+) >>>> >>>> diff --git a/mm/memory.c b/mm/memory.c >>>> index 01f39e8144ef..6facb8c8807a 100644 >>>> --- a/mm/memory.c >>>> +++ b/mm/memory.c >>>> @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, >>>> pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); >>>> } >>>> >>>> +static inline unsigned long page_addr(struct page *page, >>>> + struct page *anchor, unsigned long anchor_addr) >>>> +{ >>>> + unsigned long offset; >>>> + unsigned long addr; >>>> + >>>> + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; >>>> + addr = anchor_addr + offset; >>>> + >>>> + if (anchor > page) { >>>> + if (addr > anchor_addr) >>>> + return 0; >>>> + } else { >>>> + if (addr < anchor_addr) >>>> + return ULONG_MAX; >>>> + } >>>> + >>>> + return addr; >>>> +} >>>> + >>>> +static int calc_anon_folio_map_pgcount(struct folio *folio, >>>> + struct page *page, pte_t *pte, >>>> + unsigned long addr, unsigned long end) >>>> +{ >>>> + pte_t ptent; >>>> + int floops; >>>> + int i; >>>> + unsigned long pfn; >>>> + >>>> + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), >>>> + end); >>>> + floops = (end - addr) >> PAGE_SHIFT; >>>> + pfn = page_to_pfn(page); >>>> + pfn++; >>>> + pte++; >>>> + >>>> + for (i = 1; i < floops; i++) { >>>> + ptent = ptep_get(pte); >>>> + >>>> + if (!pte_present(ptent) || >>>> + pte_pfn(ptent) != pfn) { >>>> + return i; >>>> + } >>>> + >>>> + pfn++; >>>> + pte++; >>>> + } >>>> + >>>> + return floops; >>>> +} >>>> + >>>> +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, >>>> + struct vm_area_struct *vma, >>>> + struct page *page, pte_t *pte, >>>> + unsigned long addr, unsigned long end, >>>> + bool *full_out) >>>> +{ >>>> + struct folio *folio = page_folio(page); >>>> + struct mm_struct *mm = tlb->mm; >>>> + pte_t ptent; >>>> + int pgcount; >>>> + int i; >>>> + bool full; >>>> + >>>> + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); >>>> + >>>> + for (i = 0; i < pgcount;) { >>>> + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); >>>> + tlb_remove_tlb_entry(tlb, pte, addr); >>>> + full = __tlb_remove_page(tlb, page, 0); >>>> + >>>> + if (unlikely(page_mapcount(page) < 1)) >>>> + print_bad_pte(vma, addr, ptent, page); >>>> + >>>> + i++; >>>> + page++; >>>> + pte++; >>>> + addr += PAGE_SIZE; >>>> + >>>> + if (unlikely(full)) >>>> + break; >>>> + } >>>> + >>>> + folio_remove_rmap_range(folio, page - i, i, vma); >>>> + >>>> + *full_out = full; >>>> + return i; >>>> +} >>>> + >>>> static unsigned long zap_pte_range(struct mmu_gather *tlb, >>>> struct vm_area_struct *vma, pmd_t *pmd, >>>> unsigned long addr, unsigned long end, >>>> @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, >>>> page = vm_normal_page(vma, addr, ptent); >>>> if (unlikely(!should_zap_page(details, page))) >>>> continue; >>>> + >>>> + /* >>>> + * Batch zap large anonymous folio mappings. This allows >>>> + * batching the rmap removal, which means we avoid >>>> + * spuriously adding a partially unmapped folio to the >>>> + * deferrred split queue in the common case, which >>>> + * reduces split queue lock contention. Require the VMA >>>> + * to be anonymous to ensure that none of the PTEs in >>>> + * the range require zap_install_uffd_wp_if_needed(). >>>> + */ >>>> + if (page && PageAnon(page) && vma_is_anonymous(vma)) { >>>> + bool full; >>>> + int pgcount; >>>> + >>>> + pgcount = zap_anon_pte_range(tlb, vma, >>>> + page, pte, addr, end, &full); >>> >>> Are you trying to zap as many ptes as possible if all these ptes are >>> within a folio? >> >> Yes. >> >>> If so, why not calculate end before calling zap_anon_pte_range()? >>> That would make zap_anon_pte_range() simpler. >> >> I'm not sure I follow. That's currently done in calc_anon_folio_map_pgcount(). I >> could move it to here, but I'm not sure that makes things simpler, just puts >> more code in here and less in there? > > Otherwise your zap_anon_pte_range() is really zap_anon_pte_in_folio_range() or > some other more descriptive name. When I first look at the name, I thought > PTEs will be zapped until the end. But that is not the case when I look at the > code. And future users can easily be confused too and use it in a wrong way. OK I see your point. OK let me pull the page count calculation into here and pass it to zap_anon_pte_range(). Then I think we can keep the name as is? > > BTW, page_addr() needs a better name and is easily confused with existing > page_address(). Yeah... I'll try to think of something for v2. > >> >>> Also check if page is part of >>> a large folio first to make sure you can batch. >> >> Yeah that's fair. I'd be inclined to put that in zap_anon_pte_range() to short >> circuit calc_anon_folio_map_pgcount(). But ultimately zap_anon_pte_range() would >> still zap the single pte. >> >> >>> >>>> + >>>> + rss[mm_counter(page)] -= pgcount; >>>> + pgcount--; >>>> + pte += pgcount; >>>> + addr += pgcount << PAGE_SHIFT; >>>> + >>>> + if (unlikely(full)) { >>>> + force_flush = 1; >>>> + addr += PAGE_SIZE; >>>> + break; >>>> + } >>>> + continue; >>>> + } >>>> + >>>> ptent = ptep_get_and_clear_full(mm, addr, pte, >>>> tlb->fullmm); >>>> tlb_remove_tlb_entry(tlb, pte, addr); >>>> -- >>>> 2.25.1 >>> >>> >>> -- >>> Best Regards, >>> Yan, Zi > > > -- > Best Regards, > Yan, Zi
On 18/07/2023 00:27, Yin Fengwei wrote: > > > On 7/17/23 22:31, Ryan Roberts wrote: >> This allows batching the rmap removal with folio_remove_rmap_range(), >> which means we avoid spuriously adding a partially unmapped folio to the >> deferrred split queue in the common case, which reduces split queue lock >> contention. >> >> Previously each page was removed from the rmap individually with >> page_remove_rmap(). If the first page belonged to a large folio, this >> would cause page_remove_rmap() to conclude that the folio was now >> partially mapped and add the folio to the deferred split queue. But >> subsequent calls would cause the folio to become fully unmapped, meaning >> there is no value to adding it to the split queue. >> >> Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> >> --- >> mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ >> 1 file changed, 119 insertions(+) >> >> diff --git a/mm/memory.c b/mm/memory.c >> index 01f39e8144ef..6facb8c8807a 100644 >> --- a/mm/memory.c >> +++ b/mm/memory.c >> @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, >> pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); >> } >> >> +static inline unsigned long page_addr(struct page *page, >> + struct page *anchor, unsigned long anchor_addr) >> +{ >> + unsigned long offset; >> + unsigned long addr; >> + >> + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; >> + addr = anchor_addr + offset; >> + >> + if (anchor > page) { >> + if (addr > anchor_addr) >> + return 0; >> + } else { >> + if (addr < anchor_addr) >> + return ULONG_MAX; >> + } >> + >> + return addr; >> +} >> + >> +static int calc_anon_folio_map_pgcount(struct folio *folio, >> + struct page *page, pte_t *pte, >> + unsigned long addr, unsigned long end) >> +{ >> + pte_t ptent; >> + int floops; >> + int i; >> + unsigned long pfn; >> + >> + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), >> + end); >> + floops = (end - addr) >> PAGE_SHIFT; >> + pfn = page_to_pfn(page); >> + pfn++; >> + pte++; >> + >> + for (i = 1; i < floops; i++) { >> + ptent = ptep_get(pte); >> + >> + if (!pte_present(ptent) || >> + pte_pfn(ptent) != pfn) { >> + return i; >> + } >> + >> + pfn++; >> + pte++; >> + } >> + >> + return floops; >> +} >> + >> +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, >> + struct vm_area_struct *vma, >> + struct page *page, pte_t *pte, >> + unsigned long addr, unsigned long end, >> + bool *full_out) >> +{ >> + struct folio *folio = page_folio(page); >> + struct mm_struct *mm = tlb->mm; >> + pte_t ptent; >> + int pgcount; >> + int i; >> + bool full; >> + >> + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); >> + >> + for (i = 0; i < pgcount;) { >> + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); >> + tlb_remove_tlb_entry(tlb, pte, addr); >> + full = __tlb_remove_page(tlb, page, 0); >> + >> + if (unlikely(page_mapcount(page) < 1)) >> + print_bad_pte(vma, addr, ptent, page); >> + >> + i++; >> + page++; >> + pte++; >> + addr += PAGE_SIZE; >> + >> + if (unlikely(full)) >> + break; >> + } >> + >> + folio_remove_rmap_range(folio, page - i, i, vma); >> + >> + *full_out = full; >> + return i; >> +} >> + >> static unsigned long zap_pte_range(struct mmu_gather *tlb, >> struct vm_area_struct *vma, pmd_t *pmd, >> unsigned long addr, unsigned long end, >> @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, >> page = vm_normal_page(vma, addr, ptent); >> if (unlikely(!should_zap_page(details, page))) >> continue; >> + >> + /* >> + * Batch zap large anonymous folio mappings. This allows >> + * batching the rmap removal, which means we avoid >> + * spuriously adding a partially unmapped folio to the >> + * deferrred split queue in the common case, which >> + * reduces split queue lock contention. Require the VMA >> + * to be anonymous to ensure that none of the PTEs in >> + * the range require zap_install_uffd_wp_if_needed(). >> + */ >> + if (page && PageAnon(page) && vma_is_anonymous(vma)) { > Why this is only for anonymous page? I suppose it can support file mapping also. I was trying to avoid the complexity. For file-backed pages, there is a bunch of dirty and access management stuff that needs to happen (see "if (!PageAnon(page)) {" a bit further down). And for file-backed VMAs (even if the page is anon, I think?) zap_install_uffd_wp_if_needed() might do some extra work, which again I didn't want to have to drag into zap_anon_pte_range(). I guess it's implementable, but given only anon folios will be deferred-split and anon folios in a file-backed vma will all be single page, I didn't feel that the extra complexity would add anything performance-wise. > > > Regards > Yin, Fengwei > >> + bool full; >> + int pgcount; >> + >> + pgcount = zap_anon_pte_range(tlb, vma, >> + page, pte, addr, end, &full); >> + >> + rss[mm_counter(page)] -= pgcount; >> + pgcount--; >> + pte += pgcount; >> + addr += pgcount << PAGE_SHIFT; >> + >> + if (unlikely(full)) { >> + force_flush = 1; >> + addr += PAGE_SIZE; >> + break; >> + } >> + continue; >> + } >> + >> ptent = ptep_get_and_clear_full(mm, addr, pte, >> tlb->fullmm); >> tlb_remove_tlb_entry(tlb, pte, addr);
On 18 Jul 2023, at 6:19, Ryan Roberts wrote: > On 17/07/2023 17:15, Zi Yan wrote: >> On 17 Jul 2023, at 11:55, Ryan Roberts wrote: >> >>> On 17/07/2023 16:25, Zi Yan wrote: >>>> On 17 Jul 2023, at 10:31, Ryan Roberts wrote: >>>> >>>>> This allows batching the rmap removal with folio_remove_rmap_range(), >>>>> which means we avoid spuriously adding a partially unmapped folio to the >>>>> deferrred split queue in the common case, which reduces split queue lock >>>>> contention. >>>>> >>>>> Previously each page was removed from the rmap individually with >>>>> page_remove_rmap(). If the first page belonged to a large folio, this >>>>> would cause page_remove_rmap() to conclude that the folio was now >>>>> partially mapped and add the folio to the deferred split queue. But >>>>> subsequent calls would cause the folio to become fully unmapped, meaning >>>>> there is no value to adding it to the split queue. >>>>> >>>>> Signed-off-by: Ryan Roberts <ryan.roberts@arm.com> >>>>> --- >>>>> mm/memory.c | 119 ++++++++++++++++++++++++++++++++++++++++++++++++++++ >>>>> 1 file changed, 119 insertions(+) >>>>> >>>>> diff --git a/mm/memory.c b/mm/memory.c >>>>> index 01f39e8144ef..6facb8c8807a 100644 >>>>> --- a/mm/memory.c >>>>> +++ b/mm/memory.c >>>>> @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, >>>>> pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); >>>>> } >>>>> >>>>> +static inline unsigned long page_addr(struct page *page, >>>>> + struct page *anchor, unsigned long anchor_addr) >>>>> +{ >>>>> + unsigned long offset; >>>>> + unsigned long addr; >>>>> + >>>>> + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; >>>>> + addr = anchor_addr + offset; >>>>> + >>>>> + if (anchor > page) { >>>>> + if (addr > anchor_addr) >>>>> + return 0; >>>>> + } else { >>>>> + if (addr < anchor_addr) >>>>> + return ULONG_MAX; >>>>> + } >>>>> + >>>>> + return addr; >>>>> +} >>>>> + >>>>> +static int calc_anon_folio_map_pgcount(struct folio *folio, >>>>> + struct page *page, pte_t *pte, >>>>> + unsigned long addr, unsigned long end) >>>>> +{ >>>>> + pte_t ptent; >>>>> + int floops; >>>>> + int i; >>>>> + unsigned long pfn; >>>>> + >>>>> + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), >>>>> + end); >>>>> + floops = (end - addr) >> PAGE_SHIFT; >>>>> + pfn = page_to_pfn(page); >>>>> + pfn++; >>>>> + pte++; >>>>> + >>>>> + for (i = 1; i < floops; i++) { >>>>> + ptent = ptep_get(pte); >>>>> + >>>>> + if (!pte_present(ptent) || >>>>> + pte_pfn(ptent) != pfn) { >>>>> + return i; >>>>> + } >>>>> + >>>>> + pfn++; >>>>> + pte++; >>>>> + } >>>>> + >>>>> + return floops; >>>>> +} >>>>> + >>>>> +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, >>>>> + struct vm_area_struct *vma, >>>>> + struct page *page, pte_t *pte, >>>>> + unsigned long addr, unsigned long end, >>>>> + bool *full_out) >>>>> +{ >>>>> + struct folio *folio = page_folio(page); >>>>> + struct mm_struct *mm = tlb->mm; >>>>> + pte_t ptent; >>>>> + int pgcount; >>>>> + int i; >>>>> + bool full; >>>>> + >>>>> + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); >>>>> + >>>>> + for (i = 0; i < pgcount;) { >>>>> + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); >>>>> + tlb_remove_tlb_entry(tlb, pte, addr); >>>>> + full = __tlb_remove_page(tlb, page, 0); >>>>> + >>>>> + if (unlikely(page_mapcount(page) < 1)) >>>>> + print_bad_pte(vma, addr, ptent, page); >>>>> + >>>>> + i++; >>>>> + page++; >>>>> + pte++; >>>>> + addr += PAGE_SIZE; >>>>> + >>>>> + if (unlikely(full)) >>>>> + break; >>>>> + } >>>>> + >>>>> + folio_remove_rmap_range(folio, page - i, i, vma); >>>>> + >>>>> + *full_out = full; >>>>> + return i; >>>>> +} >>>>> + >>>>> static unsigned long zap_pte_range(struct mmu_gather *tlb, >>>>> struct vm_area_struct *vma, pmd_t *pmd, >>>>> unsigned long addr, unsigned long end, >>>>> @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, >>>>> page = vm_normal_page(vma, addr, ptent); >>>>> if (unlikely(!should_zap_page(details, page))) >>>>> continue; >>>>> + >>>>> + /* >>>>> + * Batch zap large anonymous folio mappings. This allows >>>>> + * batching the rmap removal, which means we avoid >>>>> + * spuriously adding a partially unmapped folio to the >>>>> + * deferrred split queue in the common case, which >>>>> + * reduces split queue lock contention. Require the VMA >>>>> + * to be anonymous to ensure that none of the PTEs in >>>>> + * the range require zap_install_uffd_wp_if_needed(). >>>>> + */ >>>>> + if (page && PageAnon(page) && vma_is_anonymous(vma)) { >>>>> + bool full; >>>>> + int pgcount; >>>>> + >>>>> + pgcount = zap_anon_pte_range(tlb, vma, >>>>> + page, pte, addr, end, &full); >>>> >>>> Are you trying to zap as many ptes as possible if all these ptes are >>>> within a folio? >>> >>> Yes. >>> >>>> If so, why not calculate end before calling zap_anon_pte_range()? >>>> That would make zap_anon_pte_range() simpler. >>> >>> I'm not sure I follow. That's currently done in calc_anon_folio_map_pgcount(). I >>> could move it to here, but I'm not sure that makes things simpler, just puts >>> more code in here and less in there? >> >> Otherwise your zap_anon_pte_range() is really zap_anon_pte_in_folio_range() or >> some other more descriptive name. When I first look at the name, I thought >> PTEs will be zapped until the end. But that is not the case when I look at the >> code. And future users can easily be confused too and use it in a wrong way. > > OK I see your point. OK let me pull the page count calculation into here and > pass it to zap_anon_pte_range(). Then I think we can keep the name as is? Yes. Thanks. > > >> >> BTW, page_addr() needs a better name and is easily confused with existing >> page_address(). > > Yeah... I'll try to think of something for v2. > >> >>> >>>> Also check if page is part of >>>> a large folio first to make sure you can batch. >>> >>> Yeah that's fair. I'd be inclined to put that in zap_anon_pte_range() to short >>> circuit calc_anon_folio_map_pgcount(). But ultimately zap_anon_pte_range() would >>> still zap the single pte. >>> >>> >>>> >>>>> + >>>>> + rss[mm_counter(page)] -= pgcount; >>>>> + pgcount--; >>>>> + pte += pgcount; >>>>> + addr += pgcount << PAGE_SHIFT; >>>>> + >>>>> + if (unlikely(full)) { >>>>> + force_flush = 1; >>>>> + addr += PAGE_SIZE; >>>>> + break; >>>>> + } >>>>> + continue; >>>>> + } >>>>> + >>>>> ptent = ptep_get_and_clear_full(mm, addr, pte, >>>>> tlb->fullmm); >>>>> tlb_remove_tlb_entry(tlb, pte, addr); >>>>> -- >>>>> 2.25.1 >>>> >>>> >>>> -- >>>> Best Regards, >>>> Yan, Zi >> >> >> -- >> Best Regards, >> Yan, Zi -- Best Regards, Yan, Zi
diff --git a/mm/memory.c b/mm/memory.c index 01f39e8144ef..6facb8c8807a 100644 --- a/mm/memory.c +++ b/mm/memory.c @@ -1391,6 +1391,95 @@ zap_install_uffd_wp_if_needed(struct vm_area_struct *vma, pte_install_uffd_wp_if_needed(vma, addr, pte, pteval); } +static inline unsigned long page_addr(struct page *page, + struct page *anchor, unsigned long anchor_addr) +{ + unsigned long offset; + unsigned long addr; + + offset = (page_to_pfn(page) - page_to_pfn(anchor)) << PAGE_SHIFT; + addr = anchor_addr + offset; + + if (anchor > page) { + if (addr > anchor_addr) + return 0; + } else { + if (addr < anchor_addr) + return ULONG_MAX; + } + + return addr; +} + +static int calc_anon_folio_map_pgcount(struct folio *folio, + struct page *page, pte_t *pte, + unsigned long addr, unsigned long end) +{ + pte_t ptent; + int floops; + int i; + unsigned long pfn; + + end = min(page_addr(&folio->page + folio_nr_pages(folio), page, addr), + end); + floops = (end - addr) >> PAGE_SHIFT; + pfn = page_to_pfn(page); + pfn++; + pte++; + + for (i = 1; i < floops; i++) { + ptent = ptep_get(pte); + + if (!pte_present(ptent) || + pte_pfn(ptent) != pfn) { + return i; + } + + pfn++; + pte++; + } + + return floops; +} + +static unsigned long zap_anon_pte_range(struct mmu_gather *tlb, + struct vm_area_struct *vma, + struct page *page, pte_t *pte, + unsigned long addr, unsigned long end, + bool *full_out) +{ + struct folio *folio = page_folio(page); + struct mm_struct *mm = tlb->mm; + pte_t ptent; + int pgcount; + int i; + bool full; + + pgcount = calc_anon_folio_map_pgcount(folio, page, pte, addr, end); + + for (i = 0; i < pgcount;) { + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); + tlb_remove_tlb_entry(tlb, pte, addr); + full = __tlb_remove_page(tlb, page, 0); + + if (unlikely(page_mapcount(page) < 1)) + print_bad_pte(vma, addr, ptent, page); + + i++; + page++; + pte++; + addr += PAGE_SIZE; + + if (unlikely(full)) + break; + } + + folio_remove_rmap_range(folio, page - i, i, vma); + + *full_out = full; + return i; +} + static unsigned long zap_pte_range(struct mmu_gather *tlb, struct vm_area_struct *vma, pmd_t *pmd, unsigned long addr, unsigned long end, @@ -1428,6 +1517,36 @@ static unsigned long zap_pte_range(struct mmu_gather *tlb, page = vm_normal_page(vma, addr, ptent); if (unlikely(!should_zap_page(details, page))) continue; + + /* + * Batch zap large anonymous folio mappings. This allows + * batching the rmap removal, which means we avoid + * spuriously adding a partially unmapped folio to the + * deferrred split queue in the common case, which + * reduces split queue lock contention. Require the VMA + * to be anonymous to ensure that none of the PTEs in + * the range require zap_install_uffd_wp_if_needed(). + */ + if (page && PageAnon(page) && vma_is_anonymous(vma)) { + bool full; + int pgcount; + + pgcount = zap_anon_pte_range(tlb, vma, + page, pte, addr, end, &full); + + rss[mm_counter(page)] -= pgcount; + pgcount--; + pte += pgcount; + addr += pgcount << PAGE_SHIFT; + + if (unlikely(full)) { + force_flush = 1; + addr += PAGE_SIZE; + break; + } + continue; + } + ptent = ptep_get_and_clear_full(mm, addr, pte, tlb->fullmm); tlb_remove_tlb_entry(tlb, pte, addr);