写在前头
*.版权声明:本篇文章为原创,可随意转载,转载请注明出处,谢谢!另我创建一个QQ群82642304,欢迎加入!
*.目的:整理一下RIotBoard开发板的启动流程,对自己的所学做一个整理总结,本系列内核代码基于linux-3.0.35-imx。
*.备注:整个系列只是对我所学进行总结,记录我认为是关键的点,另我能力有限,难免出现疏漏错误,如果读者有发现请多指正,以免我误导他人!
接上篇分析:
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
2 /*
3 * The following calls CPU specific code in a position independent
4 * manner. See arch/arm/mm/proc-*.S for details. r10 = base of
5 * xxx_proc_info structure selected by __lookup_processor_type
6 * above. On return, the CPU will be ready for the MMU to be
7 * turned on, and r0 will hold the CPU control register value.
8 */
9 ldr r13, =__mmap_switched @ address to jump to after
10 @ mmu has been enabled
11 adr lr, BSYM(1f) @ return (PIC) address
12 mov r8, r4 @ set TTBR1 to swapper_pg_dir
13 ARM( add pc, r10, #PROCINFO_INITFUNC )
14 THUMB( add r12, r10, #PROCINFO_INITFUNC )
15 THUMB( mov pc, r12 )
161: b __enable_mmu
17ENDPROC(stext)
18
注释里解释的十分清楚。
- 将__mmap_switched的地址保存在r13,然后将返回地址设置成
b __enable_mmu
然后保存页表地址到r8,跳转到struct proc_info_list->__cpu_flush。
2. struct proc_info_list->__cpu_flush的定义在arch/arm/mm/proc-**.S,对我来说就是arch/arm/mm/proc-v7.S:
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
2 * Match any ARMv7 processor core.
3 */
4 .type __v7_proc_info, #object
5__v7_proc_info:
6 .long 0x000f0000 @ Required ID value
7 .long 0x000f0000 @ Mask for ID
8 ALT_SMP(.long \
9 PMD_TYPE_SECT | \
10 PMD_SECT_AP_WRITE | \
11 PMD_SECT_AP_READ | \
12 PMD_FLAGS_SMP)
13 ALT_UP(.long \
14 PMD_TYPE_SECT | \
15 PMD_SECT_AP_WRITE | \
16 PMD_SECT_AP_READ | \
17 PMD_FLAGS_UP)
18 .long PMD_TYPE_SECT | \
19 PMD_SECT_XN | \
20 PMD_SECT_AP_WRITE | \
21 PMD_SECT_AP_READ
22 W(b) __v7_setup
23 .long cpu_arch_name
24 .long cpu_elf_name
25 .long HWCAP_SWP|HWCAP_HALF|HWCAP_THUMB|HWCAP_FAST_MULT|HWCAP_EDSP|HWCAP_TLS
26 .long cpu_v7_name
27 .long v7_processor_functions
28 .long v7wbi_tlb_fns
29 .long v6_user_fns
30 .long v7_cache_fns
31 .size __v7_proc_info, . - __v7_proc_info
32
即跳转到__v7_setup,它的作用注释里面页解释清楚:
Initialise TLB, Caches, and MMU state ready to switch the MMU
arm V7内核,架构相关,我没有继续研究。
执行完__v7_setup后,由于之前我们已经赋值好lr寄存器的值,所以跳转之后,就是继续跳转到__enable_mmu函数。
3. __enable_mmu函数在head.S中定义,它的作用就是开启MMU,在该函数的最后汇编代码片段为
2
3
2 mov pc, r3
3
我们可以看到跳转到里r13寄存器里面保存的值,在之前r13寄存器保存的值是__mmap_switched,这是一个链接地址,跳转到这边后就跳出平等映射代码区域。
4. __mmap_switched的定义在head-common.S中:
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
2/*
3 * The following fragment of code is executed with the MMU on in MMU mode,
4 * and uses absolute addresses; this is not position independent.
5 *
6 * r0 = cp#15 control register
7 * r1 = machine ID
8 * r2 = atags/dtb pointer
9 * r9 = processor ID
10 */
11 __INIT
12__mmap_switched:
13 adr r3, __mmap_switched_data
14
15 ldmia r3!, {r4, r5, r6, r7}
16 cmp r4, r5 @ Copy data segment if needed
171: cmpne r5, r6
18 ldrne fp, [r4], #4
19 strne fp, [r5], #4
20 bne 1b
21
22 mov fp, #0 @ Clear BSS (and zero fp)
231: cmp r6, r7
24 strcc fp, [r6],#4
25 bcc 1b
26
27 ARM( ldmia r3, {r4, r5, r6, r7, sp})
28 THUMB( ldmia r3, {r4, r5, r6, r7} )
29 THUMB( ldr sp, [r3, #16] )
30 str r9, [r4] @ Save processor ID
31 str r1, [r5] @ Save machine type
32 str r2, [r6] @ Save atags pointer
33 bic r4, r0, #CR_A @ Clear 'A' bit
34 stmia r7, {r0, r4} @ Save control register values
35 b start_kernel
36ENDPROC(__mmap_switched)
37
清除BSS段,跳转到start_kernel。
start_kernel定义在init/main.c中,就是内核启动的第二阶段(C语言)。
在该函数里面做着大量的初始化工作,是一个非常重要的函数。
网络上有许多关于该函数的分析。我后续也会慢慢分析,但是我打算不按照它的执行流程来分析,而是尽量按照功能/模块来分析。
如果需要研究它的执行流程,建议参考网络上其他文章。
总结
创建页表之后的代码理解起来比较容易,我就没有详细分析。
参考
暂无
