Freax13
commented
1 year ago I'm trying to implement multitasking in user mode with the following setup:
- Each task has a user-mode and kernel-mode stack
- The kernel-mode stack pointer is placed in the privilege stack table of the TSS (so it is switched to on interrupts, exceptions, and system calls)
- On a context switch, the privilege stack table is updated to point to the kernel-mode stack for the new task
But with this crate, there is a problem. To add the TSS, the
Descriptor::tss_segmentfunction should be called with theTaskStateSegmentstructure, to create aDescriptorthat can be added to the GDT. But the function expects a&'staticreference to theTaskStateSegment, which means that, once called, no further modifications are possible to the TSS (the&'staticreference cannot coexist with any mutable references), so it is not possible to update the TSS on context switching.Would it be a good idea to loosen the requirements for calling this function?
The way I see it, there are two ways to solve this:
- Add an unsafe function that makes the caller responsible for ensuring that the TSS is valid while the entry is in use.
- Make it possible to modify the TSS fields atomically.
Option 2 will likely require breaking changes, so I tend towards option 1 for now (though we were planning on releasing a new breaking version anyways, so option 2 should also be good).
phil-opp
I'm trying to implement multitasking in user mode with the following setup:
But with this crate, there is a problem. To add the TSS, the
Descriptor::tss_segmentfunction should be called with theTaskStateSegmentstructure, to create aDescriptorthat can be added to the GDT. But the function expects a&'staticreference to theTaskStateSegment, which means that, once called, no further modifications are possible to the TSS (the&'staticreference cannot coexist with any mutable references), so it is not possible to update the TSS on context switching.Would it be a good idea to loosen the requirements for calling this function?