search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
panic() cleanup.
[minix.git] / kernel / arch / i386 / protect.c
blobbbef77763c3a79823fc159085bf684f7d76e7f22
1 /* This file contains code for initialization of protected mode, to initialize
2 * code and data segment descriptors, and to initialize global descriptors
3 * for local descriptors in the process table.
4 */
5
6 #include "../../kernel.h"
7 #include "../../proc.h"
8 #include <archconst.h>
9
10 #include "proto.h"
11
12 #define INT_GATE_TYPE (INT_286_GATE | DESC_386_BIT)
13 #define TSS_TYPE (AVL_286_TSS | DESC_386_BIT)
14
15 struct desctableptr_s {
16 char limit[sizeof(u16_t)];
17 char base[sizeof(u32_t)]; /* really u24_t + pad for 286 */
18 };
19
20 struct gatedesc_s {
21 u16_t offset_low;
22 u16_t selector;
23 u8_t pad; /* |000|XXXXX| ig & trpg, |XXXXXXXX| task g */
24 u8_t p_dpl_type; /* |P|DL|0|TYPE| */
25 u16_t offset_high;
26 };
27
28 PUBLIC struct segdesc_s gdt[GDT_SIZE]; /* used in klib.s and mpx.s */
29 PRIVATE struct gatedesc_s idt[IDT_SIZE]; /* zero-init so none present */
30 PUBLIC struct tss_s tss; /* zero init */
31
32 FORWARD _PROTOTYPE( void sdesc, (struct segdesc_s *segdp, phys_bytes base,
33 vir_bytes size) );
34
35 /*===========================================================================*
36 * enable_iop *
37 *===========================================================================*/
38 PUBLIC void enable_iop(struct proc *pp)
39 {
40 /* Allow a user process to use I/O instructions. Change the I/O Permission
41 * Level bits in the psw. These specify least-privileged Current Permission
42 * Level allowed to execute I/O instructions. Users and servers have CPL 3.
43 * You can't have less privilege than that. Kernel has CPL 0, tasks CPL 1.
44 */
45 pp->p_reg.psw |= 0x3000;
46 }
47
48 /*===========================================================================*
49 * seg2phys *
50 *===========================================================================*/
51 PUBLIC phys_bytes seg2phys(U16_t seg)
52 {
53 /* Return the base address of a segment, with seg being a
54 * register, or a 286/386 segment selector.
55 */
56 phys_bytes base;
57 struct segdesc_s *segdp;
58
59 segdp = &gdt[seg >> 3];
60 base = ((u32_t) segdp->base_low << 0)
61 | ((u32_t) segdp->base_middle << 16)
62 | ((u32_t) segdp->base_high << 24);
63 return base;
64 }
65
66 /*===========================================================================*
67 * phys2seg *
68 *===========================================================================*/
69 PRIVATE void phys2seg(u16_t *seg, vir_bytes *off, phys_bytes phys)
70 {
71 /* Return a segment selector and offset that can be used to reach a physical
72 * address, for use by a driver doing memory I/O in the A0000 - DFFFF range.
73 */
74 *seg = FLAT_DS_SELECTOR;
75 *off = (vir_bytes) phys;
76 }
77
78 /*===========================================================================*
79 * init_dataseg *
80 *===========================================================================*/
81 PUBLIC void init_dataseg(register struct segdesc_s *segdp,
82 phys_bytes base, vir_bytes size, int privilege)
83 {
84 /* Build descriptor for a data segment. */
85 sdesc(segdp, base, size);
86 segdp->access = (privilege << DPL_SHIFT) | (PRESENT | SEGMENT |
87 WRITEABLE);
88 /* EXECUTABLE = 0, EXPAND_DOWN = 0, ACCESSED = 0 */
89 }
90
91 /*===========================================================================*
92 * init_codeseg *
93 *===========================================================================*/
94 PRIVATE void init_codeseg(register struct segdesc_s *segdp, phys_bytes base,
95 vir_bytes size, int privilege)
96 {
97 /* Build descriptor for a code segment. */
98 sdesc(segdp, base, size);
99 segdp->access = (privilege << DPL_SHIFT)
100 | (PRESENT | SEGMENT | EXECUTABLE | READABLE);
101 /* CONFORMING = 0, ACCESSED = 0 */
102 }
103
104 PUBLIC struct gate_table_s gate_table_pic[] = {
105 { hwint00, VECTOR( 0), INTR_PRIVILEGE },
106 { hwint01, VECTOR( 1), INTR_PRIVILEGE },
107 { hwint02, VECTOR( 2), INTR_PRIVILEGE },
108 { hwint03, VECTOR( 3), INTR_PRIVILEGE },
109 { hwint04, VECTOR( 4), INTR_PRIVILEGE },
110 { hwint05, VECTOR( 5), INTR_PRIVILEGE },
111 { hwint06, VECTOR( 6), INTR_PRIVILEGE },
112 { hwint07, VECTOR( 7), INTR_PRIVILEGE },
113 { hwint08, VECTOR( 8), INTR_PRIVILEGE },
114 { hwint09, VECTOR( 9), INTR_PRIVILEGE },
115 { hwint10, VECTOR(10), INTR_PRIVILEGE },
116 { hwint11, VECTOR(11), INTR_PRIVILEGE },
117 { hwint12, VECTOR(12), INTR_PRIVILEGE },
118 { hwint13, VECTOR(13), INTR_PRIVILEGE },
119 { hwint14, VECTOR(14), INTR_PRIVILEGE },
120 { hwint15, VECTOR(15), INTR_PRIVILEGE },
121 { NULL, 0, 0}
122 };
123
124 /*===========================================================================*
125 * prot_init *
126 *===========================================================================*/
127 PUBLIC void prot_init(void)
128 {
129 /* Set up tables for protected mode.
130 * All GDT slots are allocated at compile time.
131 */
132 struct desctableptr_s *dtp;
133 unsigned ldt_index;
134 register struct proc *rp;
135
136 /* Click-round kernel. */
137 if(kinfo.data_base % CLICK_SIZE)
138 panic("kinfo.data_base not aligned");
139 kinfo.data_size = (phys_bytes) (CLICK_CEIL(kinfo.data_size));
140
141 /* Build gdt and idt pointers in GDT where the BIOS expects them. */
142 dtp= (struct desctableptr_s *) &gdt[GDT_INDEX];
143 * (u16_t *) dtp->limit = (sizeof gdt) - 1;
144 * (u32_t *) dtp->base = vir2phys(gdt);
145
146 dtp= (struct desctableptr_s *) &gdt[IDT_INDEX];
147 * (u16_t *) dtp->limit = (sizeof idt) - 1;
148 * (u32_t *) dtp->base = vir2phys(idt);
149
150 /* Build segment descriptors for tasks and interrupt handlers. */
151 init_codeseg(&gdt[CS_INDEX],
152 kinfo.code_base, kinfo.code_size, INTR_PRIVILEGE);
153 init_dataseg(&gdt[DS_INDEX],
154 kinfo.data_base, kinfo.data_size, INTR_PRIVILEGE);
155 init_dataseg(&gdt[ES_INDEX], 0L, 0, INTR_PRIVILEGE);
156
157 /* Build local descriptors in GDT for LDT's in process table.
158 * The LDT's are allocated at compile time in the process table, and
159 * initialized whenever a process' map is initialized or changed.
160 */
161 for (rp = BEG_PROC_ADDR, ldt_index = FIRST_LDT_INDEX;
162 rp < END_PROC_ADDR; ++rp, ldt_index++) {
163 init_dataseg(&gdt[ldt_index], vir2phys(rp->p_seg.p_ldt),
164 sizeof(rp->p_seg.p_ldt), INTR_PRIVILEGE);
165 gdt[ldt_index].access = PRESENT | LDT;
166 rp->p_seg.p_ldt_sel = ldt_index * DESC_SIZE;
167 }
168
169 /* Build main TSS */
170 tss.ss0 = DS_SELECTOR;
171 init_dataseg(&gdt[TSS_INDEX], vir2phys(&tss), sizeof(tss), INTR_PRIVILEGE);
172 gdt[TSS_INDEX].access = PRESENT | (INTR_PRIVILEGE << DPL_SHIFT) | TSS_TYPE;
173
174 /* Complete building of main TSS. */
175 tss.iobase = sizeof tss; /* empty i/o permissions map */
176 }
177
178 PUBLIC void idt_copy_vectors(struct gate_table_s * first)
179 {
180 struct gate_table_s *gtp;
181 for (gtp = first; gtp->gate; gtp++) {
182 int_gate(gtp->vec_nr, (vir_bytes) gtp->gate,
183 PRESENT | INT_GATE_TYPE |
184 (gtp->privilege << DPL_SHIFT));
185 }
186 }
187
188 /* Build descriptors for interrupt gates in IDT. */
189 PUBLIC void idt_init(void)
190 {
191 struct gate_table_s gate_table[] = {
192 { divide_error, DIVIDE_VECTOR, INTR_PRIVILEGE },
193 { single_step_exception, DEBUG_VECTOR, INTR_PRIVILEGE },
194 { nmi, NMI_VECTOR, INTR_PRIVILEGE },
195 { breakpoint_exception, BREAKPOINT_VECTOR, USER_PRIVILEGE },
196 { overflow, OVERFLOW_VECTOR, USER_PRIVILEGE },
197 { bounds_check, BOUNDS_VECTOR, INTR_PRIVILEGE },
198 { inval_opcode, INVAL_OP_VECTOR, INTR_PRIVILEGE },
199 { copr_not_available, COPROC_NOT_VECTOR, INTR_PRIVILEGE },
200 { double_fault, DOUBLE_FAULT_VECTOR, INTR_PRIVILEGE },
201 { copr_seg_overrun, COPROC_SEG_VECTOR, INTR_PRIVILEGE },
202 { inval_tss, INVAL_TSS_VECTOR, INTR_PRIVILEGE },
203 { segment_not_present, SEG_NOT_VECTOR, INTR_PRIVILEGE },
204 { stack_exception, STACK_FAULT_VECTOR, INTR_PRIVILEGE },
205 { general_protection, PROTECTION_VECTOR, INTR_PRIVILEGE },
206 { page_fault, PAGE_FAULT_VECTOR, INTR_PRIVILEGE },
207 { copr_error, COPROC_ERR_VECTOR, INTR_PRIVILEGE },
208 { alignment_check, ALIGNMENT_CHECK_VECTOR, INTR_PRIVILEGE },
209 { machine_check, MACHINE_CHECK_VECTOR, INTR_PRIVILEGE },
210 { simd_exception, SIMD_EXCEPTION_VECTOR, INTR_PRIVILEGE },
211 { ipc_entry, IPC_VECTOR, USER_PRIVILEGE },
212 { kernel_call_entry, KERN_CALL_VECTOR, USER_PRIVILEGE },
213 { NULL, 0, 0}
214 };
215
216 idt_copy_vectors(gate_table);
217 idt_copy_vectors(gate_table_pic);
218 }
219
220
221 /*===========================================================================*
222 * sdesc *
223 *===========================================================================*/
224 PRIVATE void sdesc(segdp, base, size)
225 register struct segdesc_s *segdp;
226 phys_bytes base;
227 vir_bytes size;
228 {
229 /* Fill in the size fields (base, limit and granularity) of a descriptor. */
230 segdp->base_low = base;
231 segdp->base_middle = base >> BASE_MIDDLE_SHIFT;
232 segdp->base_high = base >> BASE_HIGH_SHIFT;
233
234 --size; /* convert to a limit, 0 size means 4G */
235 if (size > BYTE_GRAN_MAX) {
236 segdp->limit_low = size >> PAGE_GRAN_SHIFT;
237 segdp->granularity = GRANULAR | (size >>
238 (PAGE_GRAN_SHIFT + GRANULARITY_SHIFT));
239 } else {
240 segdp->limit_low = size;
241 segdp->granularity = size >> GRANULARITY_SHIFT;
242 }
243 segdp->granularity |= DEFAULT; /* means BIG for data seg */
244 }
245
246 /*===========================================================================*
247 * int_gate *
248 *===========================================================================*/
249 PUBLIC void int_gate(vec_nr, offset, dpl_type)
250 unsigned vec_nr;
251 vir_bytes offset;
252 unsigned dpl_type;
253 {
254 /* Build descriptor for an interrupt gate. */
255 register struct gatedesc_s *idp;
256
257 idp = &idt[vec_nr];
258 idp->offset_low = offset;
259 idp->selector = CS_SELECTOR;
260 idp->p_dpl_type = dpl_type;
261 idp->offset_high = offset >> OFFSET_HIGH_SHIFT;
262 }
263
264 /*===========================================================================*
265 * alloc_segments *
266 *===========================================================================*/
267 PUBLIC void alloc_segments(register struct proc *rp)
268 {
269 /* This is called at system initialization from main() and by do_newmap().
270 * The code has a separate function because of all hardware-dependencies.
271 */
272 phys_bytes code_bytes;
273 phys_bytes data_bytes;
274 int privilege;
275
276 data_bytes = (phys_bytes) (rp->p_memmap[S].mem_vir +
277 rp->p_memmap[S].mem_len) << CLICK_SHIFT;
278 if (rp->p_memmap[T].mem_len == 0)
279 code_bytes = data_bytes; /* common I&D, poor protect */
280 else
281 code_bytes = (phys_bytes) rp->p_memmap[T].mem_len << CLICK_SHIFT;
282 privilege = USER_PRIVILEGE;
283 init_codeseg(&rp->p_seg.p_ldt[CS_LDT_INDEX],
284 (phys_bytes) rp->p_memmap[T].mem_phys << CLICK_SHIFT,
285 code_bytes, privilege);
286 init_dataseg(&rp->p_seg.p_ldt[DS_LDT_INDEX],
287 (phys_bytes) rp->p_memmap[D].mem_phys << CLICK_SHIFT,
288 data_bytes, privilege);
289 rp->p_reg.cs = (CS_LDT_INDEX * DESC_SIZE) | TI | privilege;
290 rp->p_reg.gs =
291 rp->p_reg.fs =
292 rp->p_reg.ss =
293 rp->p_reg.es =
294 rp->p_reg.ds = (DS_LDT_INDEX*DESC_SIZE) | TI | privilege;
295 }
296
297 /*===========================================================================*
298 * check_segments *
299 *===========================================================================*/
300 PRIVATE void check_segments(char *File, int line)
301 {
302 int checked = 0;
303 int fail = 0;
304 struct proc *rp;
305 for (rp = BEG_PROC_ADDR; rp < END_PROC_ADDR; ++rp) {
306
307 int privilege;
308 int cs, ds;
309
310 if (isemptyp(rp))
311 continue;
312
313 privilege = USER_PRIVILEGE;
314
315 cs = (CS_LDT_INDEX*DESC_SIZE) | TI | privilege;
316 ds = (DS_LDT_INDEX*DESC_SIZE) | TI | privilege;
317
318 #define CHECK(s1, s2) if(s1 != s2) { \
319 printf("%s:%d: " #s1 " != " #s2 " for ep %d\n", \
320 File, line, rp->p_endpoint); fail++; } checked++;
321
322 CHECK(rp->p_reg.cs, cs);
323 CHECK(rp->p_reg.gs, ds);
324 CHECK(rp->p_reg.fs, ds);
325 CHECK(rp->p_reg.ss, ds);
326 if(rp->p_endpoint != -2) {
327 CHECK(rp->p_reg.es, ds);
328 }
329 CHECK(rp->p_reg.ds, ds);
330 }
331 if(fail) {
332 printf("%d/%d checks failed\n", fail, checked);
333 panic("wrong: %d", fail);
334 }
335 }
336
337 /*===========================================================================*
338 * printseg *
339 *===========================================================================*/
340 PUBLIC void printseg(char *banner, int iscs, struct proc *pr, u32_t selector)
341 {
342 u32_t base, limit, index, dpl;
343 struct segdesc_s *desc;
344
345 if(banner) { printf("%s", banner); }
346
347 index = selector >> 3;
348
349 printf("RPL %d, ind %d of ",
350 (selector & RPL_MASK), index);
351
352 if(selector & TI) {
353 printf("LDT");
354 if(index >= LDT_SIZE) {
355 printf("invalid index in ldt\n");
356 return;
357 }
358 if(!pr) {
359 printf("local selector but unknown process\n");
360 return;
361 }
362 desc = &pr->p_seg.p_ldt[index];
363 } else {
364 printf("GDT");
365 if(index >= GDT_SIZE) {
366 printf("invalid index in gdt\n");
367 return;
368 }
369 desc = &gdt[index];
370 }
371
372 limit = desc->limit_low |
373 (((u32_t) desc->granularity & LIMIT_HIGH) << GRANULARITY_SHIFT);
374
375 if(desc->granularity & GRANULAR) {
376 limit = (limit << PAGE_GRAN_SHIFT) + 0xfff;
377 }
378
379 base = desc->base_low |
380 ((u32_t) desc->base_middle << BASE_MIDDLE_SHIFT) |
381 ((u32_t) desc->base_high << BASE_HIGH_SHIFT);
382
383 printf(" -> base 0x%08lx size 0x%08lx ", base, limit+1);
384
385 if(iscs) {
386 if(!(desc->granularity & BIG))
387 printf("16bit ");
388 } else {
389 if(!(desc->granularity & BIG))
390 printf("not big ");
391 }
392
393 if(desc->granularity & 0x20) { /* reserved */
394 panic("granularity reserved field set");
395 }
396
397 if(!(desc->access & PRESENT))
398 printf("notpresent ");
399
400 if(!(desc->access & SEGMENT))
401 printf("system ");
402
403 if(desc->access & EXECUTABLE) {
404 printf(" exec ");
405 if(desc->access & CONFORMING) printf("conforming ");
406 if(!(desc->access & READABLE)) printf("non-readable ");
407 } else {
408 printf("nonexec ");
409 if(desc->access & EXPAND_DOWN) printf("non-expand-down ");
410 if(!(desc->access & WRITEABLE)) printf("non-writable ");
411 }
412
413 if(!(desc->access & ACCESSED)) {
414 printf("nonacc ");
415 }
416
417 dpl = ((u32_t) desc->access & DPL) >> DPL_SHIFT;
418
419 printf("DPL %d\n", dpl);
420
421 return;
422 }
423
424 /*===========================================================================*
425 * prot_set_kern_seg_limit *
426 *===========================================================================*/
427 PUBLIC int prot_set_kern_seg_limit(vir_bytes limit)
428 {
429 struct proc *rp;
430 int orig_click;
431 int incr_clicks;
432
433 if(limit <= kinfo.data_base) {
434 printf("prot_set_kern_seg_limit: limit bogus\n");
435 return EINVAL;
436 }
437
438 /* Do actual increase. */
439 orig_click = kinfo.data_size / CLICK_SIZE;
440 kinfo.data_size = limit - kinfo.data_base;
441 incr_clicks = kinfo.data_size / CLICK_SIZE - orig_click;
442
443 prot_init();
444
445 /* Increase kernel processes too. */
446 for (rp = BEG_PROC_ADDR; rp < END_PROC_ADDR; ++rp) {
447 if (isemptyp(rp) || !iskernelp(rp))
448 continue;
449 rp->p_memmap[S].mem_len += incr_clicks;
450 alloc_segments(rp);
451 rp->p_memmap[S].mem_len -= incr_clicks;
452 }
453
454 return OK;
455 }
MINIX 3 (repo.or.cz mirror)