On Mon, Jun 08, 2026 at 04:38:37AM -0400, Michael S. Tsirkin wrote:
> Add free_frozen_pages_zeroed(page, order) to free a frozen page
> while marking it as zeroed, so the next allocation can skip
> redundant zeroing.
>
> An FPI_ZEROED internal flag carries the hint through the free path.
> PageZeroed is set after __free_pages_prepare() clears all flags,
> so the hint survives on the free list.
>
> __SetPageZeroed is non-atomic but safe here: the page is frozen
> (refcount 0) and not yet on any free list.
>
> Note: when want_init_on_free() zeroes the page via
> kernel_init_pages(), the page is zero but the direct-map
> cache lines may be dirty. A later patch (skip
> kernel_init_pages for FPI_ZEROED) avoids the redundant
> re-zero, and post_alloc_hook handles the dcache flush
> for user pages on aliasing architectures.
>
> Signed-off-by: Michael S. Tsirkin <[email protected]>
> Assisted-by: Claude:claude-opus-4-6
> ---
> include/linux/gfp.h | 1 +
> mm/internal.h | 1 +
> mm/page_alloc.c | 23 ++++++++++++++++++++++-
> 3 files changed, 24 insertions(+), 1 deletion(-)
>
> diff --git a/include/linux/gfp.h b/include/linux/gfp.h
> index 73109d4e31a4..d24b61e45861 100644
> --- a/include/linux/gfp.h
> +++ b/include/linux/gfp.h
> @@ -384,6 +384,7 @@ __meminit void *alloc_pages_exact_nid_noprof(int nid,
> size_t size, gfp_t gfp_mas
> extern void __free_pages(struct page *page, unsigned int order);
> extern void free_pages_nolock(struct page *page, unsigned int order);
> extern void free_pages(unsigned long addr, unsigned int order);
> +void free_frozen_pages_zeroed(struct page *page, unsigned int order);
>
> #define __free_page(page) __free_pages((page), 0)
> #define free_page(addr) free_pages((addr), 0)
> diff --git a/mm/internal.h b/mm/internal.h
> index 4af5e72742ba..fd910743ddc3 100644
> --- a/mm/internal.h
> +++ b/mm/internal.h
> @@ -938,6 +938,7 @@ struct page *__alloc_frozen_pages_noprof(gfp_t, unsigned
> int order, int nid,
> #define __alloc_frozen_pages(...) \
> alloc_hooks(__alloc_frozen_pages_noprof(__VA_ARGS__))
> void free_frozen_pages(struct page *page, unsigned int order);
> +void free_frozen_pages_zeroed(struct page *page, unsigned int order);
This is badly named. That name implies you're freeing frozen, zeroed pages, not
that you're marking them zeroed.
And again, you're overloading 'zeroed' here. Be specific, it's about
host zeroing in virtualisation.
> void free_unref_folios(struct folio_batch *fbatch);
>
> #ifdef CONFIG_NUMA
> diff --git a/mm/page_alloc.c b/mm/page_alloc.c
> index 21f9e92922f1..008f1a311c40 100644
> --- a/mm/page_alloc.c
> +++ b/mm/page_alloc.c
> @@ -91,6 +91,13 @@ typedef int __bitwise fpi_t;
> /* Free the page without taking locks. Rely on trylock only. */
> #define FPI_TRYLOCK ((__force fpi_t)BIT(2))
>
> +/*
> + * The page contents are known to be zero (e.g., the host zeroed them
> + * during balloon deflate). Set PageZeroed after free so the next
Can we just be specific that this is about VM hosts, I don't imagine that we are
going to ever have a use beyond that, and we can adjust the phrasing later if
needed.
Otherwise it's just confusing right now, you're overloading 'zeroed' to mean
different things and we do that enough in mm already.
> + * allocation can skip redundant zeroing.
> + */
> +#define FPI_ZEROED ((__force fpi_t)BIT(3))
Hmm now we have another flag to propagate this around... this is messy.
Now we have multiple different ways of representing this state... ugh.
> +
> /* prevent >1 _updater_ of zone percpu pageset ->high and ->batch fields */
> static DEFINE_MUTEX(pcp_batch_high_lock);
> #define MIN_PERCPU_PAGELIST_HIGH_FRACTION (8)
> @@ -1596,8 +1603,12 @@ static void __free_pages_ok(struct page *page,
> unsigned int order,
> unsigned long pfn = page_to_pfn(page);
> struct zone *zone = page_zone(page);
>
> - if (__free_pages_prepare(page, order, fpi_flags))
> + if (__free_pages_prepare(page, order, fpi_flags)) {
> + /* Don't mark zeroed if poison overwrote with 0xAA. */
Can we not reference arbitrary values in comments? And this comment seems
redundant.
> + if ((fpi_flags & FPI_ZEROED) &&
> !page_poisoning_enabled_static())
> + __SetPageZeroed(page);
> free_one_page(zone, page, pfn, order, fpi_flags);
> + }
> }
>
> void __meminit __free_pages_core(struct page *page, unsigned int order,
> @@ -3020,6 +3031,10 @@ static void __free_frozen_pages(struct page *page,
> unsigned int order,
> if (!__free_pages_prepare(page, order, fpi_flags))
> return;
>
> + /* Don't mark zeroed if poison overwrote with 0xAA. */
Same comment as above.
> + if ((fpi_flags & FPI_ZEROED) && !page_poisoning_enabled_static())
> + __SetPageZeroed(page);
> +
> /*
> * We only track unmovable, reclaimable and movable on pcp lists.
> * Place ISOLATE pages on the isolated list because they are being
> @@ -3058,6 +3073,12 @@ void free_frozen_pages(struct page *page, unsigned int
> order)
> __free_frozen_pages(page, order, FPI_NONE);
> }
>
No comment describing this? kdoc please.
> +void free_frozen_pages_zeroed(struct page *page, unsigned int order)
> +{
> + __free_frozen_pages(page, order, FPI_ZEROED);
> +}
> +EXPORT_SYMBOL(free_frozen_pages_zeroed);
Do we have to use EXPORT_SYMBOLS()? Why not EXPORT_SYMBOLS_GPL()?
> +
> void free_frozen_pages_nolock(struct page *page, unsigned int order)
> {
> __free_frozen_pages(page, order, FPI_TRYLOCK);
> --
> MST
>
Thanks, Lorenzo
