KVM: Drop FOLL_GET in GUP when doing async page fault

	int r;

	if ((vcpu->arch.mmu.direct_map != work->arch.direct_map) ||

	      is_error_page(work->page))

	      work->wakeup_all)

		return;

	r = kvm_mmu_reload(vcpu);

	struct x86_exception fault;

	trace_kvm_async_pf_ready(work->arch.token, work->gva);

	if (is_error_page(work->page))

	if (work->wakeup_all)

		work->arch.token = ~0; /* broadcast wakeup */

	else

		kvm_del_async_pf_gfn(vcpu, work->arch.gfn);

	gva_t gva;

	unsigned long addr;

	struct kvm_arch_async_pf arch;

	struct page *page;

	bool   wakeup_all;

};

void kvm_clear_async_pf_completion_queue(struct kvm_vcpu *vcpu);

TRACE_EVENT(

	kvm_async_pf_completed,

	TP_PROTO(unsigned long address, struct page *page, u64 gva),

	TP_ARGS(address, page, gva),

	TP_PROTO(unsigned long address, u64 gva),

	TP_ARGS(address, gva),

	TP_STRUCT__entry(

		__field(unsigned long, address)

		__field(pfn_t, pfn)

		__field(u64, gva)

		),

	TP_fast_assign(

		__entry->address = address;

		__entry->pfn = page ? page_to_pfn(page) : 0;

		__entry->gva = gva;

		),

	TP_printk("gva %#llx address %#lx pfn %#llx",  __entry->gva,

		  __entry->address, __entry->pfn)

	TP_printk("gva %#llx address %#lx",  __entry->gva,

		  __entry->address)

);

#endif

static void async_pf_execute(struct work_struct *work)

{

	struct page *page = NULL;

	struct kvm_async_pf *apf =

		container_of(work, struct kvm_async_pf, work);

	struct mm_struct *mm = apf->mm;

	use_mm(mm);

	down_read(&mm->mmap_sem);

	get_user_pages(current, mm, addr, 1, 1, 0, &page, NULL);

	get_user_pages(current, mm, addr, 1, 1, 0, NULL, NULL);

	up_read(&mm->mmap_sem);

	unuse_mm(mm);

	spin_lock(&vcpu->async_pf.lock);

	list_add_tail(&apf->link, &vcpu->async_pf.done);

	apf->page = page;

	spin_unlock(&vcpu->async_pf.lock);

	/*

	 * this point

	 */

	trace_kvm_async_pf_completed(addr, page, gva);

	trace_kvm_async_pf_completed(addr, gva);

	if (waitqueue_active(&vcpu->wq))

		wake_up_interruptible(&vcpu->wq);

			list_entry(vcpu->async_pf.done.next,

				   typeof(*work), link);

		list_del(&work->link);

		if (!is_error_page(work->page))

			kvm_release_page_clean(work->page);

		kmem_cache_free(async_pf_cache, work);

	}

	spin_unlock(&vcpu->async_pf.lock);

		list_del(&work->link);

		spin_unlock(&vcpu->async_pf.lock);

		if (work->page)

		kvm_arch_async_page_ready(vcpu, work);

		kvm_arch_async_page_present(vcpu, work);

		list_del(&work->queue);

		vcpu->async_pf.queued--;

		if (!is_error_page(work->page))

			kvm_release_page_clean(work->page);

		kmem_cache_free(async_pf_cache, work);

	}

}

	if (!work)

		return 0;

	work->page = NULL;

	work->wakeup_all = false;

	work->vcpu = vcpu;

	work->gva = gva;

	work->addr = gfn_to_hva(vcpu->kvm, gfn);

	if (!work)

		return -ENOMEM;

	work->page = KVM_ERR_PTR_BAD_PAGE;

	work->wakeup_all = true;

	INIT_LIST_HEAD(&work->queue); /* for list_del to work */

	spin_lock(&vcpu->async_pf.lock);