mm/thp: fix __split_huge_pmd_locked() on shmem migration entry

author Hugh Dickins <hughd@google.com>

Wed, 16 Jun 2021 01:23:45 +0000 (18:23 -0700)

committer Linus Torvalds <torvalds@linux-foundation.org>

Wed, 16 Jun 2021 16:24:42 +0000 (09:24 -0700)
author Hugh Dickins <hughd@google.com>
Wed, 16 Jun 2021 01:23:45 +0000 (18:23 -0700)
committer Linus Torvalds <torvalds@linux-foundation.org>
Wed, 16 Jun 2021 16:24:42 +0000 (09:24 -0700)
diff --git a/mm/huge_memory.c b/mm/huge_memory.c

index 63ed6b2..42cfefc 100644 (file)
--- a/mm/huge_memory.c
+++ b/mm/huge_memory.c
@@ -2044,7 +2044,7 @@ static void __split_huge_pmd_locked(struct vm_area_struct *vma, pmd_t *pmd,
         count_vm_event(THP_SPLIT_PMD);
  
         if (!vma_is_anonymous(vma)) {
-               _pmd = pmdp_huge_clear_flush_notify(vma, haddr, pmd);
+               old_pmd = pmdp_huge_clear_flush_notify(vma, haddr, pmd);
                 /*
                  * We are going to unmap this huge page. So
                  * just go ahead and zap it
@@ -2053,16 +2053,25 @@ static void __split_huge_pmd_locked(struct vm_area_struct *vma, pmd_t *pmd,
                         zap_deposited_table(mm, pmd);
                 if (vma_is_special_huge(vma))
                         return;
-               page = pmd_page(_pmd);
-               if (!PageDirty(page) && pmd_dirty(_pmd))
-                       set_page_dirty(page);
-               if (!PageReferenced(page) && pmd_young(_pmd))
-                       SetPageReferenced(page);
-               page_remove_rmap(page, true);
-               put_page(page);
+               if (unlikely(is_pmd_migration_entry(old_pmd))) {
+                       swp_entry_t entry;
+
+                       entry = pmd_to_swp_entry(old_pmd);
+                       page = migration_entry_to_page(entry);
+               } else {
+                       page = pmd_page(old_pmd);
+                       if (!PageDirty(page) && pmd_dirty(old_pmd))
+                               set_page_dirty(page);
+                       if (!PageReferenced(page) && pmd_young(old_pmd))
+                               SetPageReferenced(page);
+                       page_remove_rmap(page, true);
+                       put_page(page);
+               }
                 add_mm_counter(mm, mm_counter_file(page), -HPAGE_PMD_NR);
                 return;
-       } else if (pmd_trans_huge(*pmd) && is_huge_zero_pmd(*pmd)) {
+       }
+
+       if (pmd_trans_huge(*pmd) && is_huge_zero_pmd(*pmd)) {
                 /*
                  * FIXME: Do we want to invalidate secondary mmu by calling
                  * mmu_notifier_invalidate_range() see comments below inside
diff --git a/mm/pgtable-generic.c b/mm/pgtable-generic.c

index c2210e1..4e640ba 100644 (file)
--- a/mm/pgtable-generic.c
+++ b/mm/pgtable-generic.c
@@ -135,9 +135,8 @@ pmd_t pmdp_huge_clear_flush(struct vm_area_struct *vma, unsigned long address,
  {
         pmd_t pmd;
         VM_BUG_ON(address & ~HPAGE_PMD_MASK);
-       VM_BUG_ON(!pmd_present(*pmdp));
-       /* Below assumes pmd_present() is true */
-       VM_BUG_ON(!pmd_trans_huge(*pmdp) && !pmd_devmap(*pmdp));
+       VM_BUG_ON(pmd_present(*pmdp) && !pmd_trans_huge(*pmdp) &&
+                          !pmd_devmap(*pmdp));
         pmd = pmdp_huge_get_and_clear(vma->vm_mm, address, pmdp);
         flush_pmd_tlb_range(vma, address, address + HPAGE_PMD_SIZE);
         return pmd;
author	Hugh Dickins <hughd@google.com>
	Wed, 16 Jun 2021 01:23:45 +0000 (18:23 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Wed, 16 Jun 2021 16:24:42 +0000 (09:24 -0700)
mm/huge_memory.c		patch \| blob \| history
mm/pgtable-generic.c		patch \| blob \| history