Merge tag 'x86_cpu_for_7.1-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

			emulate     Vsyscalls turn into traps and are emulated

			            reasonably safely.  The vsyscall page is

				    readable.

				    readable.  This disables the Linear

				    Address Space Separation (LASS) security

				    feature and makes the system less secure.

			xonly       [default] Vsyscalls turn into traps and are

			            emulated reasonably safely.  The vsyscall

 * soon be no new userspace code that will ever use a vsyscall.

 *

 * The code in this file emulates vsyscalls when notified of a page

 * fault to a vsyscall address.

 * fault or a general protection fault to a vsyscall address.

 */

#include <linux/kernel.h>

		else

			return -EINVAL;

		if (cpu_feature_enabled(X86_FEATURE_LASS) && vsyscall_mode == EMULATE) {

			setup_clear_cpu_cap(X86_FEATURE_LASS);

			pr_warn_once("x86/cpu: Disabling LASS due to vsyscall=emulate\n");

		}

		return 0;

	}

	}

}

bool emulate_vsyscall(unsigned long error_code,

		      struct pt_regs *regs, unsigned long address)

static bool __emulate_vsyscall(struct pt_regs *regs, unsigned long address)

{

	unsigned long caller;

	int vsyscall_nr, syscall_nr, tmp;

	long ret;

	unsigned long orig_dx;

	/* Write faults or kernel-privilege faults never get fixed up. */

	if ((error_code & (X86_PF_WRITE | X86_PF_USER)) != X86_PF_USER)

		return false;

	/*

	 * Assume that faults at regs->ip are because of an

	 * instruction fetch. Return early and avoid

	 * emulation for faults during data accesses:

	 */

	if (address != regs->ip) {

		/* Failed vsyscall read */

		if (vsyscall_mode == EMULATE)

			return false;

		/*

		 * User code tried and failed to read the vsyscall page.

		 */

		warn_bad_vsyscall(KERN_INFO, regs, "vsyscall read attempt denied -- look up the vsyscall kernel parameter if you need a workaround");

	/* Confirm that the fault happened in 64-bit user mode */

	if (!user_64bit_mode(regs))

		return false;

	}

	/*

	 * X86_PF_INSTR is only set when NX is supported.  When

	 * available, use it to double-check that the emulation code

	 * is only being used for instruction fetches:

	 */

	if (cpu_feature_enabled(X86_FEATURE_NX))

		WARN_ON_ONCE(!(error_code & X86_PF_INSTR));

	/*

	 * No point in checking CS -- the only way to get here is a user mode

	 * trap to a high address, which means that we're in 64-bit user code.

	 */

	if (vsyscall_mode == NONE) {

		warn_bad_vsyscall(KERN_INFO, regs,

	return true;

}

bool emulate_vsyscall_pf(unsigned long error_code, struct pt_regs *regs,

			 unsigned long address)

{

	/* Write faults or kernel-privilege faults never get fixed up. */

	if ((error_code & (X86_PF_WRITE | X86_PF_USER)) != X86_PF_USER)

		return false;

	/*

	 * Assume that faults at regs->ip are because of an instruction

	 * fetch. Return early and avoid emulation for faults during

	 * data accesses:

	 */

	if (address != regs->ip) {

		/* Failed vsyscall read */

		if (vsyscall_mode == EMULATE)

			return false;

		/* User code tried and failed to read the vsyscall page. */

		warn_bad_vsyscall(KERN_INFO, regs,

				  "vsyscall read attempt denied -- look up the vsyscall kernel parameter if you need a workaround");

		return false;

	}

	/*

	 * X86_PF_INSTR is only set when NX is supported.  When

	 * available, use it to double-check that the emulation code

	 * is only being used for instruction fetches:

	 */

	if (cpu_feature_enabled(X86_FEATURE_NX))

		WARN_ON_ONCE(!(error_code & X86_PF_INSTR));

	return __emulate_vsyscall(regs, address);

}

bool emulate_vsyscall_gp(struct pt_regs *regs)

{

	/* Without LASS, vsyscall accesses are expected to generate a #PF */

	if (!cpu_feature_enabled(X86_FEATURE_LASS))

		return false;

	/* Emulate only if the RIP points to the vsyscall address */

	if (!is_vsyscall_vaddr(regs->ip))

		return false;

	return __emulate_vsyscall(regs, regs->ip);

}

/*

 * A pseudo VMA to allow ptrace access for the vsyscall page.  This only

 * covers the 64bit vsyscall page now. 32bit has a real VMA now and does

 * Called on instruction fetch fault in vsyscall page.

 * Returns true if handled.

 */

extern bool emulate_vsyscall(unsigned long error_code,

			     struct pt_regs *regs, unsigned long address);

bool emulate_vsyscall_pf(unsigned long error_code, struct pt_regs *regs, unsigned long address);

bool emulate_vsyscall_gp(struct pt_regs *regs);

#else

static inline void map_vsyscall(void) {}

static inline bool emulate_vsyscall(unsigned long error_code,

static inline bool emulate_vsyscall_pf(unsigned long error_code,

				       struct pt_regs *regs, unsigned long address)

{

	return false;

}

static inline bool emulate_vsyscall_gp(struct pt_regs *regs)

{

	return false;

}

#endif

/*

	cr4_clear_bits(X86_CR4_UMIP);

}

static __always_inline void setup_lass(struct cpuinfo_x86 *c)

static int enable_lass(unsigned int cpu)

{

	if (!cpu_feature_enabled(X86_FEATURE_LASS))

		return;

	cr4_set_bits(X86_CR4_LASS);

	return 0;

}

/*

	 * Legacy vsyscall page access causes a #GP when LASS is active.

	 * Disable LASS because the #GP handler doesn't support vsyscall

	 * emulation.

	 *

	 * Also disable LASS when running under EFI, as some runtime and

	 * boot services rely on 1:1 mappings in the lower half.

 * Finalize features that need to be enabled just before entering

 * userspace. Note that this only runs on a single CPU. Use appropriate

 * callbacks if all the CPUs need to reflect the same change.

 */

	if (IS_ENABLED(CONFIG_X86_VSYSCALL_EMULATION) ||

	    IS_ENABLED(CONFIG_EFI)) {

		setup_clear_cpu_cap(X86_FEATURE_LASS);

		return;

	}

static int cpu_finalize_pre_userspace(void)

{

	if (!cpu_feature_enabled(X86_FEATURE_LASS))

		return 0;

	cr4_set_bits(X86_CR4_LASS);

	/* Runs on all online CPUs and future CPUs that come online. */

	cpuhp_setup_state(CPUHP_AP_ONLINE_DYN, "x86/lass:enable", enable_lass, NULL);

	return 0;

}

late_initcall(cpu_finalize_pre_userspace);

/* These bits should not change their value after CPU init is finished. */

static const unsigned long cr4_pinned_mask = X86_CR4_SMEP | X86_CR4_SMAP | X86_CR4_UMIP |

	setup_smep(c);

	setup_smap(c);

	setup_umip(c);

	setup_lass(c);

	/*

	 * The vendor-specific functions might have changed features.

#include <asm/tdx.h>

#include <asm/cfi.h>

#include <asm/msr.h>

#include <asm/vsyscall.h>

#ifdef CONFIG_X86_64

#include <asm/x86_init.h>

	cond_local_irq_enable(regs);

	if (static_cpu_has(X86_FEATURE_UMIP)) {

		if (user_mode(regs) && fixup_umip_exception(regs))

			goto exit;

	}

	if (v8086_mode(regs)) {

		local_irq_enable();

		handle_vm86_fault((struct kernel_vm86_regs *) regs, error_code);

		if (fixup_vdso_exception(regs, X86_TRAP_GP, error_code, 0))

			goto exit;

		if (fixup_umip_exception(regs))

			goto exit;

		if (emulate_vsyscall_gp(regs))

			goto exit;

		gp_user_force_sig_segv(regs, X86_TRAP_GP, error_code, desc);

		goto exit;

	}