x86 supervisor level vs paging? \ VOGONS

x86 supervisor level vs paging?

Topic actions

Post a reply

First post, by superfury

Posted on 2019-01-20, 13:52

superfury Offline

Rank l33t++

Rank: l33t++
Posts: 5465
Joined: 2014-03-08, 11:25
Location: Netherlands

What happens in Supervisor mode when the kernel tries to write to a read-only user page(lower 3 bits of the PDE and PTE are set to 5)? Does the write access succeed(happens according to test386.asm's tables and test routines)? So the CPL(which is zeroed) has direct effect on this(besides the tables mentioned in the CPU documentation clearly resulting in "User R", thus meaning a read-only user privilege page)?

The 80386 programmer's reference manual does state:

16.4.1.2 Type Checking
2At the level of page addressing, two types are defined:
3Read-only access (R/W=0)
4Read/write access (R/W=1)
5When the processor is executing at supervisor level, all pages are both readable and writable. When the processor is executing at user level, only pages that belong to user level and are marked for read/write access are writable; pages that belong to supervisor level are neither readable nor writable from user level.

So CPL0 ignores the R/W bits in the PDE and PTE? Also, the TLB is written as if the PDE and PTE have combined write access(required for the kernel to even address said data), forcing it to 1 instead of the PDE/PTE combined write rights(1 for writable, 0 for read-only).

Author of the UniPCemu emulator.
UniPCemu Git repository
UniPCemu for Android, Windows, PSP, Vita and Switch on itch.io

Reply 1 of 2, by crazyc

Posted on 2019-01-21, 01:02

crazyc Offline

Rank Member

Rank: Member
Posts: 204
Joined: 2013-02-02, 16:17

Ring 0-2 can always write to any page unless the WP bit is set in CR0 (486+ only).

Reply 2 of 2, by superfury

Posted on 2019-01-21, 20:25

superfury Offline

Rank l33t++

Rank: l33t++
Posts: 5465
Joined: 2014-03-08, 11:25
Location: Netherlands

Didn´t implement that yet. I've now added(in the latest commit) the writes to user pages in kernel mode(instead of just 'assuming' the RW to be 1 for user pages when CPL!=3(running in Kernel mode)) the user pages to fault when in kernel mode and on a 80486+ the WP bit is set in CR0.

I assume the 'kernel' (PDE.US/PTE.US either or both being 0) pages are still writable always, even in kernel mode(CPL<3) with WP set(RW in the PDE/PTE is still ignored assume to be '1'(effectively))?

Thinking about it, does WP have effect on the CPL 0 fetches/writes to the descriptor tables? Those are usually executed as CPL 0 according to the documentation, does WP have effect on those as well(I'd assume they do, with my current implementation they do)? So WP=1 and read-only kernel page still doesn't fault if it's a kernel page, but it does fault if it's a user page with RW=0, WP=1 and CPL0 for the descriptor table writeback? So COW(Copy on Write) does still WORK(or crash probably) with GDT/IDT/LDT entries?

Author of the UniPCemu emulator.
UniPCemu Git repository
UniPCemu for Android, Windows, PSP, Vita and Switch on itch.io

Go to top of page Go to top of page

Back to PC Emulation

Main menu

Common searches