我在Linux5.15
中的
arch/arm64/kernel/entry.S处阅读了下面的代码
/*
* Register switch for AArch64. The callee-saved registers need to be saved
* and restored. On entry:
* x0 = previous task_struct (must be preserved across the switch)
* x1 = next task_struct
* Previous and next are guaranteed not to be the same.
*
*/
SYM_FUNC_START(cpu_switch_to)
mov x10, #THREAD_CPU_CONTEXT // x10 = offsetof(struct task_struct, thread.cpu_context)
add x8, x0, x10 // x8 = previous cpu_context address
mov x9, sp
stp x19, x20, [x8], #16 // store callee-saved registers
stp x21, x22, [x8], #16
stp x23, x24, [x8], #16
stp x25, x26, [x8], #16
stp x27, x28, [x8], #16
stp x29, x9, [x8], #16
str lr, [x8]
add x8, x1, x10
ldp x19, x20, [x8], #16 // restore callee-saved registers
ldp x21, x22, [x8], #16
ldp x23, x24, [x8], #16
ldp x25, x26, [x8], #16
ldp x27, x28, [x8], #16
ldp x29, x9, [x8], #16
ldr lr, [x8]
mov sp, x9 // <============================= confused
msr sp_el0, x1 // <============================= confused
ptrauth_keys_install_kernel x1, x8, x9, x10
scs_save x0 // save the scs_sp
scs_load_current
ret
SYM_FUNC_END(cpu_switch_to)
NOKPROBE(cpu_switch_to)
我对
spsp_el0spsp_el1sp_el1task_structsp_el0sp_el0我知道这是一个使用
sp_el0task_structcpu_switch_tosp_el0cpu_switch_to该函数的想法是,处理器在“磨损”特定线程的上下文时开始执行该函数,但随后返回“磨损”不同线程的上下文。
每个“等待”的线程在 this 函数内都有一个 kstack,其中线程上次执行“停止”时位于此处。
你可以看到
mov sp, x9 // <============================= confused
只需将
x9spldp x29, x9, [x8], #16
来自之前的函数调用 -
mov x9, sp
// ...
stp x29, x9, [x8], #16
spcurrentstruct task_struct在内核5.15下,是通过以下方式实现的:
static __always_inline struct task_struct *get_current(void)
{
unsigned long sp_el0;
asm ("mrs %0, sp_el0" : "=r" (sp_el0));
return (struct task_struct *)sp_el0;
}
#define current get_current()
如您所见,在上下文切换后保持
sp_el0struct task_struct