0x00 system Call ConceptThis article is the "reading thin"linux core design and implementation "series of article III, this article mainly discusses the following questions: The concept of system calls, the implementation of system calls and procedures and how to add a system call in Linux.
A system call is a set of interfaces provided by the kernel in order to interact with processes on the user space.
Applications access hardware and other operating system resources through this set of interfaces
Complete access control for hardware and resources
Abstraction of hardware devices (providing device independence)
Fork (), exec (), open (), read (), write (), close (),......
More than 300 Linux systems are currently calling
Applications are programmed through APIs implemented in user space rather than directly through system tuning
0X02 Linux System Call Implementation principle I related conceptsExample: When invoking the printf () function, the relationship between the application, the C library, and the kernel:
The application calls the write () system call in the Write ()-C library in printf (), C library, printf ()
int 80H: Soft interrupt, notification kernel mechanism is implemented by soft interrupt, interrupt handler number 128th
IVT (Interrupt vector table): Interrupt vector tables, including all interrupt program entry addresses, which are fixed in memory (application in real mode)
IDT (Interrupt Descriptor Table): Interrupt descriptor table, non-fixed memory location, position it with IDTR Register (protected mode application, int 80H occupies one)
Syscall table: System call Tables
System call Number: In Linux, each system call is given a system call number, indicating its number in the table
The loading of system calls made by the operating system at load time:
int 80H handler address loading: Trap_init () and Set_system_gate () in Start_kernel ()
Loading of each system call handler (ENTRY.S)
First, a soft interrupt is caught in an int 80h interrupt, prompting the system to switch to the kernel state to execute the exception handler (System call handler), after which the system obtains the system call number by reading the value of the EAX register, after which the system obtains the passed parameters by reading the registers (EBX, ECX, edx, ESI, EDI) stores the first five parameters sequentially, and if the parameter is 6 or more, points the value of one of the registers to the memory space, and finally executes the corresponding system call code to complete the system call
IV parameter Validation for system callsSystem calls must be carefully checked to see if all of their parameters are valid, and if the user passes an illegal argument to the kernel, the security and stability of the system will be greatly challenged.
Permission Validation: callers of a system call can use the capable () function to check whether they are authorized to operate on the established resources
pointer legitimacy validation: before accepting a pointer to a user space, the kernel needs to verify:
Add system Call Function (/KERNEL/SYS.C)
Add the system call function entry to sys_call_table (ENTRY.S)
Add system call number
It provides users with an abstract interface to the hardware
Provide services to ensure system stability and security, and avoid application rampage
This article's copyright belongs to the author Luo voyage All, uses Attribution-noncommercial 3.0 License. Any person may reproduce, share, but not be used without permission for commercial purposes; reprint please specify the source. Thanks for cooperating!
Read thin "Linux kernel design and Implementation" (3)-System call
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
