Merge branch 'x86-smap-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

			noexec=on: enable non-executable mappings (default)

			noexec=off: disable non-executable mappings

	nosmap		[X86]

			Disable SMAP (Supervisor Mode Access Prevention)

			even if it is supported by processor.

	nosmep		[X86]

			Disable SMEP (Supervisor Mode Execution Protection)

			Disable SMEP (Supervisor Mode Execution Prevention)

			even if it is supported by processor.

	noexec32	[X86-64]

	  If supported, this is a high bandwidth, cryptographically

	  secure hardware random number generator.

config X86_SMAP

	def_bool y

	prompt "Supervisor Mode Access Prevention" if EXPERT

	---help---

	  Supervisor Mode Access Prevention (SMAP) is a security

	  feature in newer Intel processors.  There is a small

	  performance cost if this enabled and turned on; there is

	  also a small increase in the kernel size if this is enabled.

	  If unsure, say Y.

config EFI

	bool "EFI runtime service support"

	depends on ACPI

#include <asm/sigframe.h>

#include <asm/sighandling.h>

#include <asm/sys_ia32.h>

#include <asm/smap.h>

#define FIX_EFLAGS	__FIX_EFLAGS

		get_user_ex(tmp, &sc->fpstate);

		buf = compat_ptr(tmp);

		err |= restore_xstate_sig(buf, 1);

		get_user_ex(*pax, &sc->ax);

	} get_user_catch(err);

	err |= restore_xstate_sig(buf, 1);

	return err;

}

		put_user_ex(sig, &frame->sig);

		put_user_ex(ptr_to_compat(&frame->info), &frame->pinfo);

		put_user_ex(ptr_to_compat(&frame->uc), &frame->puc);

		err |= copy_siginfo_to_user32(&frame->info, info);

		/* Create the ucontext.  */

		if (cpu_has_xsave)

		put_user_ex(sas_ss_flags(regs->sp),

			    &frame->uc.uc_stack.ss_flags);

		put_user_ex(current->sas_ss_size, &frame->uc.uc_stack.ss_size);

		err |= ia32_setup_sigcontext(&frame->uc.uc_mcontext, fpstate,

					     regs, set->sig[0]);

		err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set));

		if (ka->sa.sa_flags & SA_RESTORER)

			restorer = ka->sa.sa_restorer;

		put_user_ex(*((u64 *)&code), (u64 __user *)frame->retcode);

	} put_user_catch(err);

	err |= copy_siginfo_to_user32(&frame->info, info);

	err |= ia32_setup_sigcontext(&frame->uc.uc_mcontext, fpstate,

				     regs, set->sig[0]);

	err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set));

	if (err)

		return -EFAULT;

#include <asm/segment.h>

#include <asm/irqflags.h>

#include <asm/asm.h>

#include <asm/smap.h>

#include <linux/linkage.h>

#include <linux/err.h>

	SAVE_ARGS 0,1,0

 	/* no need to do an access_ok check here because rbp has been

 	   32bit zero extended */ 

	ASM_STAC

1:	movl	(%rbp),%ebp

	_ASM_EXTABLE(1b,ia32_badarg)

	ASM_CLAC

	orl     $TS_COMPAT,TI_status+THREAD_INFO(%rsp,RIP-ARGOFFSET)

	testl   $_TIF_WORK_SYSCALL_ENTRY,TI_flags+THREAD_INFO(%rsp,RIP-ARGOFFSET)

	CFI_REMEMBER_STATE

	/* no need to do an access_ok check here because r8 has been

	   32bit zero extended */ 

	/* hardware stack frame is complete now */	

	ASM_STAC

1:	movl	(%r8),%r9d

	_ASM_EXTABLE(1b,ia32_badarg)

	ASM_CLAC

	orl     $TS_COMPAT,TI_status+THREAD_INFO(%rsp,RIP-ARGOFFSET)

	testl   $_TIF_WORK_SYSCALL_ENTRY,TI_flags+THREAD_INFO(%rsp,RIP-ARGOFFSET)

	CFI_REMEMBER_STATE

END(ia32_cstar_target)

ia32_badarg:

	ASM_CLAC

	movq $-EFAULT,%rax

	jmp ia32_sysret

	CFI_ENDPROC

#ifndef _ASM_X86_ALTERNATIVE_ASM_H

#define _ASM_X86_ALTERNATIVE_ASM_H

#ifdef __ASSEMBLY__

#include <asm/asm.h>

#ifdef CONFIG_SMP

	.macro LOCK_PREFIX

672:	lock

	.section .smp_locks,"a"

	.pushsection .smp_locks,"a"

	.balign 4

	.long 672b - .

	.previous

	.popsection

	.endm

#else

	.macro LOCK_PREFIX

.endm

#endif  /*  __ASSEMBLY__  */

#endif /* _ASM_X86_ALTERNATIVE_ASM_H */