 41e9fedf87
			
		
	
	
		41e9fedf87
		
	
	
	
	
		
			
			bugfixes:
 SYSTEM:
 . removed
        rc->p_priv->s_flags = 0;
   for the priv struct shared by all user processes in get_priv(). this
   should only be done once. doing a SYS_PRIV_USER in sys_privctl()
   caused the flags of all user processes to be reset, so they were no
   longer PREEMPTIBLE. this happened when RS executed a policy script.
   (this broke test1 in the test set)
 VFS/MFS:
 . chown can change the mode of a file, and chmod arguments are only
   part of the full file mode so the full filemode is slightly magic.
   changed these calls so that the final modes are returned to VFS, so
   that the vnode can be kept up-to-date.
   (this broke test11 in the test set)
 MFS:
 . lookup() checked for sizeof(string) instead of sizeof(user_path),
   truncating long path names
   (caught by test 23)
 . truncate functions neglected to update ctime
   (this broke test16)
 VFS:
 . corner case of an empty filename lookup caused fields of a request
   not to be filled in in the lookup functions, not making it clear
   that the lookup had failed, causing messages to garbage processes,
   causing strange failures.
   (caught by test 30)
 . trust v_size in vnode when doing reads or writes on non-special
   files, truncating i/o where necessary; this is necessary for pipes,
   as MFS can't tell when a pipe has been truncated without it being
   told explicitly each time.
   when the last reader/writer on a pipe closes, tell FS about
   the new size using truncate_vn().
   (this broke test 25, among others)
 . permission check for chdir() had disappeared; added a
   forbidden() call
   (caught by test 23)
new code, shouldn't change anything:
 . introduced RTS_SET, RTS_UNSET, and RTS_ISSET macro's, and their
   LOCK variants. These macros set and clear the p_rts_flags field,
   causing a lot of duplicated logic like
       old_flags = rp->p_rts_flags;            /* save value of the flags */
       rp->p_rts_flags &= ~NO_PRIV;
       if (old_flags != 0 && rp->p_rts_flags == 0) lock_enqueue(rp);
   to change into the simpler
       RTS_LOCK_UNSET(rp, NO_PRIV);
   so the macros take care of calling dequeue() and enqueue() (or lock_*()),
   as the case may be). This makes the code a bit more readable and a
   bit less fragile.
 . removed return code from do_clocktick in CLOCK as it currently
   never replies
 . removed some debug code from VFS
 . fixed grant debug message in device.c
 
preemptive checks, tests, changes:
 . added return code checks of receive() to SYSTEM and CLOCK
 . O_TRUNC should never arrive at MFS (added sanity check and removed
   O_TRUNC code)
 . user_path declared with PATH_MAX+1 to let it be null-terminated
 . checks in MFS to see if strings passed by VFS are null-terminated
 
 IS:
 . static irq name table thrown out
		
	
			
		
			
				
	
	
		
			236 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			C
		
	
	
		
			Executable File
		
	
	
	
	
			
		
		
	
	
			236 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			C
		
	
	
		
			Executable File
		
	
	
	
	
| /* This file contains the main program of MINIX as well as its shutdown code.
 | |
|  * The routine main() initializes the system and starts the ball rolling by
 | |
|  * setting up the process table, interrupt vectors, and scheduling each task 
 | |
|  * to run to initialize itself.
 | |
|  * The routine shutdown() does the opposite and brings down MINIX. 
 | |
|  *
 | |
|  * The entries into this file are:
 | |
|  *   main:	    	MINIX main program
 | |
|  *   prepare_shutdown:	prepare to take MINIX down
 | |
|  */
 | |
| #include "kernel.h"
 | |
| #include <signal.h>
 | |
| #include <string.h>
 | |
| #include <unistd.h>
 | |
| #include <a.out.h>
 | |
| #include <minix/callnr.h>
 | |
| #include <minix/com.h>
 | |
| #include <minix/endpoint.h>
 | |
| #include "proc.h"
 | |
| 
 | |
| /* Prototype declarations for PRIVATE functions. */
 | |
| FORWARD _PROTOTYPE( void announce, (void));	
 | |
| FORWARD _PROTOTYPE( void shutdown, (timer_t *));	
 | |
| 
 | |
| /*===========================================================================*
 | |
|  *				main                                         *
 | |
|  *===========================================================================*/
 | |
| PUBLIC void main()
 | |
| {
 | |
| /* Start the ball rolling. */
 | |
|   struct boot_image *ip;	/* boot image pointer */
 | |
|   register struct proc *rp;	/* process pointer */
 | |
|   register struct priv *sp;	/* privilege structure pointer */
 | |
|   register int i, s;
 | |
|   int hdrindex;			/* index to array of a.out headers */
 | |
|   phys_clicks text_base;
 | |
|   vir_clicks text_clicks, data_clicks, st_clicks;
 | |
|   reg_t ktsb;			/* kernel task stack base */
 | |
|   struct exec e_hdr;		/* for a copy of an a.out header */
 | |
| 
 | |
|   /* Clear the process table. Anounce each slot as empty and set up mappings 
 | |
|    * for proc_addr() and proc_nr() macros. Do the same for the table with 
 | |
|    * privilege structures for the system processes. 
 | |
|    */
 | |
|   for (rp = BEG_PROC_ADDR, i = -NR_TASKS; rp < END_PROC_ADDR; ++rp, ++i) {
 | |
|   	rp->p_rts_flags = SLOT_FREE;		/* initialize free slot */
 | |
| 	rp->p_nr = i;				/* proc number from ptr */
 | |
| 	rp->p_endpoint = _ENDPOINT(0, rp->p_nr); /* generation no. 0 */
 | |
|         (pproc_addr + NR_TASKS)[i] = rp;        /* proc ptr from number */
 | |
|   }
 | |
|   for (sp = BEG_PRIV_ADDR, i = 0; sp < END_PRIV_ADDR; ++sp, ++i) {
 | |
| 	sp->s_proc_nr = NONE;			/* initialize as free */
 | |
| 	sp->s_id = i;				/* priv structure index */
 | |
| 	ppriv_addr[i] = sp;			/* priv ptr from number */
 | |
|   }
 | |
| 
 | |
|   /* Set up proc table entries for processes in boot image.  The stacks of the
 | |
|    * kernel tasks are initialized to an array in data space.  The stacks
 | |
|    * of the servers have been added to the data segment by the monitor, so
 | |
|    * the stack pointer is set to the end of the data segment.  All the
 | |
|    * processes are in low memory on the 8086.  On the 386 only the kernel
 | |
|    * is in low memory, the rest is loaded in extended memory.
 | |
|    */
 | |
| 
 | |
|   /* Task stacks. */
 | |
|   ktsb = (reg_t) t_stack;
 | |
| 
 | |
|   for (i=0; i < NR_BOOT_PROCS; ++i) {
 | |
| 	int ci;
 | |
| 	bitchunk_t fv;
 | |
| 	ip = &image[i];				/* process' attributes */
 | |
| 	rp = proc_addr(ip->proc_nr);		/* get process pointer */
 | |
| 	ip->endpoint = rp->p_endpoint;		/* ipc endpoint */
 | |
| 	rp->p_max_priority = ip->priority;	/* max scheduling priority */
 | |
| 	rp->p_priority = ip->priority;		/* current priority */
 | |
| 	rp->p_quantum_size = ip->quantum;	/* quantum size in ticks */
 | |
| 	rp->p_ticks_left = ip->quantum;		/* current credit */
 | |
| 	strncpy(rp->p_name, ip->proc_name, P_NAME_LEN); /* set process name */
 | |
| 	(void) get_priv(rp, (ip->flags & SYS_PROC));    /* assign structure */
 | |
| 	priv(rp)->s_flags = ip->flags;			/* process flags */
 | |
| 	priv(rp)->s_trap_mask = ip->trap_mask;		/* allowed traps */
 | |
| 
 | |
| 	/* Initialize call mask bitmap from unordered set.
 | |
| 	 * A single SYS_ALL_CALLS is a special case - it
 | |
| 	 * means all calls are allowed.
 | |
| 	 */
 | |
| 	if(ip->nr_k_calls == 1 && ip->k_calls[0] == SYS_ALL_CALLS)
 | |
| 		fv = ~0;		/* fill call mask */
 | |
| 	else
 | |
| 		fv = 0;			/* clear call mask */
 | |
| 
 | |
| 	for(ci = 0; ci < CALL_MASK_SIZE; ci++) 	/* fill or clear call mask */
 | |
| 		priv(rp)->s_k_call_mask[ci] = fv;
 | |
| 	if(!fv)			/* not all full? enter calls bit by bit */
 | |
| 		for(ci = 0; ci < ip->nr_k_calls; ci++)
 | |
| 			SET_BIT(priv(rp)->s_k_call_mask,
 | |
| 				ip->k_calls[ci]-KERNEL_CALL);
 | |
| 
 | |
| 	priv(rp)->s_ipc_to.chunk[0] = ip->ipc_to;	/* restrict targets */
 | |
| 	if (iskerneln(proc_nr(rp))) {		/* part of the kernel? */ 
 | |
| 		if (ip->stksize > 0) {		/* HARDWARE stack size is 0 */
 | |
| 			rp->p_priv->s_stack_guard = (reg_t *) ktsb;
 | |
| 			*rp->p_priv->s_stack_guard = STACK_GUARD;
 | |
| 		}
 | |
| 		ktsb += ip->stksize;	/* point to high end of stack */
 | |
| 		rp->p_reg.sp = ktsb;	/* this task's initial stack ptr */
 | |
| 		hdrindex = 0;		/* all use the first a.out header */
 | |
| 	} else {
 | |
| 		hdrindex = 1 + i-NR_TASKS;	/* servers, drivers, INIT */
 | |
| 	}
 | |
| 
 | |
| 	/* The bootstrap loader created an array of the a.out headers at
 | |
| 	 * absolute address 'aout'. Get one element to e_hdr.
 | |
| 	 */
 | |
| 	phys_copy(aout + hdrindex * A_MINHDR, vir2phys(&e_hdr),
 | |
| 						(phys_bytes) A_MINHDR);
 | |
| 	/* Convert addresses to clicks and build process memory map */
 | |
| 	text_base = e_hdr.a_syms >> CLICK_SHIFT;
 | |
| 	text_clicks = (e_hdr.a_text + CLICK_SIZE-1) >> CLICK_SHIFT;
 | |
| 	data_clicks = (e_hdr.a_data+e_hdr.a_bss + CLICK_SIZE-1) >> CLICK_SHIFT;
 | |
| 	st_clicks= (e_hdr.a_total + CLICK_SIZE-1) >> CLICK_SHIFT;
 | |
| 	if (!(e_hdr.a_flags & A_SEP))
 | |
| 	{
 | |
| 		data_clicks= (e_hdr.a_text+e_hdr.a_data+e_hdr.a_bss +
 | |
| 			CLICK_SIZE-1) >> CLICK_SHIFT;
 | |
| 		text_clicks = 0;	   /* common I&D */
 | |
| 	}
 | |
| 	rp->p_memmap[T].mem_phys = text_base;
 | |
| 	rp->p_memmap[T].mem_len  = text_clicks;
 | |
| 	rp->p_memmap[D].mem_phys = text_base + text_clicks;
 | |
| 	rp->p_memmap[D].mem_len  = data_clicks;
 | |
| 	rp->p_memmap[S].mem_phys = text_base + text_clicks + st_clicks;
 | |
| 	rp->p_memmap[S].mem_vir  = st_clicks;
 | |
| 	rp->p_memmap[S].mem_len  = 0;
 | |
| 
 | |
| 	/* Set initial register values.  The processor status word for tasks 
 | |
| 	 * is different from that of other processes because tasks can
 | |
| 	 * access I/O; this is not allowed to less-privileged processes 
 | |
| 	 */
 | |
| 	rp->p_reg.pc = (reg_t) ip->initial_pc;
 | |
| 	rp->p_reg.psw = (iskernelp(rp)) ? INIT_TASK_PSW : INIT_PSW;
 | |
| 
 | |
| 	/* Initialize the server stack pointer. Take it down one word
 | |
| 	 * to give crtso.s something to use as "argc".
 | |
| 	 */
 | |
| 	if (isusern(proc_nr(rp))) {		/* user-space process? */ 
 | |
| 		rp->p_reg.sp = (rp->p_memmap[S].mem_vir +
 | |
| 				rp->p_memmap[S].mem_len) << CLICK_SHIFT;
 | |
| 		rp->p_reg.sp -= sizeof(reg_t);
 | |
| 	}
 | |
| 	
 | |
| 	/* Set ready. The HARDWARE task is never ready. */
 | |
| 	if (rp->p_nr == HARDWARE) RTS_LOCK_SET(rp, NO_PRIORITY);
 | |
| 	RTS_LOCK_UNSET(rp, SLOT_FREE); /* remove SLOT_FREE and schedule */
 | |
| 
 | |
| 	/* Code and data segments must be allocated in protected mode. */
 | |
| 	alloc_segments(rp);
 | |
|   }
 | |
| 
 | |
| #if SPROFILE
 | |
|   sprofiling = 0;      /* we're not profiling until instructed to */
 | |
| #endif /* SPROFILE */
 | |
| #if CPROFILE
 | |
|   cprof_procs_no = 0;  /* init nr of hash table slots used */
 | |
| #endif /* CPROFILE */
 | |
| 
 | |
|   /* MINIX is now ready. All boot image processes are on the ready queue.
 | |
|    * Return to the assembly code to start running the current process. 
 | |
|    */
 | |
|   bill_ptr = proc_addr(IDLE);		/* it has to point somewhere */
 | |
|   announce();				/* print MINIX startup banner */
 | |
|   restart();
 | |
| }
 | |
| 
 | |
| /*===========================================================================*
 | |
|  *				announce				     *
 | |
|  *===========================================================================*/
 | |
| PRIVATE void announce(void)
 | |
| {
 | |
|   /* Display the MINIX startup banner. */
 | |
|   kprintf("\nMINIX %s.%s. "
 | |
|       "Copyright 2006, Vrije Universiteit, Amsterdam, The Netherlands\n",
 | |
|       OS_RELEASE, OS_VERSION);
 | |
| }
 | |
| 
 | |
| /*===========================================================================*
 | |
|  *				prepare_shutdown			     *
 | |
|  *===========================================================================*/
 | |
| PUBLIC void prepare_shutdown(how)
 | |
| int how;
 | |
| {
 | |
| /* This function prepares to shutdown MINIX. */
 | |
|   static timer_t shutdown_timer;
 | |
|   register struct proc *rp; 
 | |
|   message m;
 | |
| 
 | |
|   /* Send a signal to all system processes that are still alive to inform 
 | |
|    * them that the MINIX kernel is shutting down. A proper shutdown sequence
 | |
|    * should be implemented by a user-space server. This mechanism is useful
 | |
|    * as a backup in case of system panics, so that system processes can still
 | |
|    * run their shutdown code, e.g, to synchronize the FS or to let the TTY
 | |
|    * switch to the first console. 
 | |
|    */
 | |
| #if DEAD_CODE
 | |
|   kprintf("Sending SIGKSTOP to system processes ...\n"); 
 | |
|   for (rp=BEG_PROC_ADDR; rp<END_PROC_ADDR; rp++) {
 | |
|       if (!isemptyp(rp) && (priv(rp)->s_flags & SYS_PROC) && !iskernelp(rp))
 | |
|           send_sig(proc_nr(rp), SIGKSTOP);
 | |
|   }
 | |
| #endif
 | |
| 
 | |
|   /* Continue after 1 second, to give processes a chance to get scheduled to 
 | |
|    * do shutdown work.  Set a watchog timer to call shutdown(). The timer 
 | |
|    * argument passes the shutdown status. 
 | |
|    */
 | |
|   kprintf("MINIX will now be shut down ...\n");
 | |
|   tmr_arg(&shutdown_timer)->ta_int = how;
 | |
|   set_timer(&shutdown_timer, get_uptime() + HZ, shutdown);
 | |
| }
 | |
| 
 | |
| /*===========================================================================*
 | |
|  *				shutdown 				     *
 | |
|  *===========================================================================*/
 | |
| PRIVATE void shutdown(tp)
 | |
| timer_t *tp;
 | |
| {
 | |
| /* This function is called from prepare_shutdown or stop_sequence to bring 
 | |
|  * down MINIX. How to shutdown is in the argument: RBT_HALT (return to the
 | |
|  * monitor), RBT_MONITOR (execute given code), RBT_RESET (hard reset). 
 | |
|  */
 | |
|   intr_init(INTS_ORIG);
 | |
|   clock_stop();
 | |
|   arch_shutdown(tmr_arg(tp)->ta_int);
 | |
| }
 | |
| 
 |