AArch64 Implementation
Relevant source files
This document details the AArch64-specific implementation of interrupt control mechanisms within the kernel_guard crate. It covers the ARM64 architecture's DAIF register manipulation and the assembly instructions used to save and restore interrupt states for RAII guard implementations.
For information about the overall architecture abstraction system, see Architecture Abstraction Layer. For comparisons with other CPU architectures, see x86/x86_64 Implementation, RISC-V Implementation, and LoongArch64 Implementation.
DAIF Register and Interrupt Control
The AArch64 implementation centers around the DAIF (Debug, SError, IRQ, FIQ) system register, which controls various exception types. The kernel_guard crate specifically manipulates the IRQ (Interrupt Request) bit to implement critical sections.
DAIF Register Structure
flowchart TD
subgraph subGraph2["Assembly Instructions"]
MRS["mrs (Move from System Register)Read DAIF value"]
MSR_SET["msr daifset, #2Set I bit (disable IRQs)"]
MSR_RESTORE["msr daif, registerRestore full DAIF"]
end
subgraph subGraph1["kernel_guard Operations"]
SAVE["local_irq_save_and_disable()Read DAIF + Set I bit"]
RESTORE["local_irq_restore(flags)Write saved DAIF"]
end
subgraph subGraph0["DAIF Register (64-bit)"]
D["D (bit 9)Debug exceptions"]
A["A (bit 8)SError interrupts"]
I["I (bit 7)IRQ interrupts"]
F["F (bit 6)FIQ interrupts"]
end
MRS --> A
MRS --> D
MRS --> F
MRS --> I
MSR_RESTORE --> A
MSR_RESTORE --> D
MSR_RESTORE --> F
MSR_RESTORE --> I
MSR_SET --> I
RESTORE --> MSR_RESTORE
SAVE --> MRS
SAVE --> MSR_SET
Sources: src/arch/aarch64.rs(L1 - L15)
Core Implementation Functions
The AArch64 implementation provides two primary functions that form the foundation for all interrupt-disabling guards on this architecture.
Interrupt Save and Disable
The local_irq_save_and_disable function captures the current interrupt state and disables IRQs atomically:
| Function | Return Type | Operation | Assembly Instructions |
|---|---|---|---|
| local_irq_save_and_disable | usize | Save DAIF, disable IRQs | mrs {}, daif; msr daifset, #2 |
The function uses two ARM64 instructions in sequence:
mrs {}, daif- Move the DAIF register value to a general-purpose registermsr daifset, #2- Set bit 1 (which corresponds to the IRQ mask bit) in DAIF
Interrupt Restore
The local_irq_restore function restores the previously saved interrupt state:
| Function | Parameters | Operation | Assembly Instructions |
|---|---|---|---|
| local_irq_restore | flags: usize | Restore DAIF | msr daif, {} |
This function directly writes the saved flags back to the DAIF register, restoring the complete interrupt state.
Sources: src/arch/aarch64.rs(L3 - L14)
Integration with Guard System
The AArch64 implementation integrates with the broader kernel_guard architecture through the conditional compilation system and provides the low-level primitives for RAII guards.
flowchart TD
subgraph subGraph3["RAII Pattern"]
ACQUIRE["BaseGuard::acquire()"]
DROP["Drop implementation"]
end
subgraph subGraph2["Guard Implementations"]
IRQ_GUARD["IrqSave guard"]
COMBO_GUARD["NoPreemptIrqSave guard"]
end
subgraph subGraph1["AArch64 Module (src/arch/aarch64.rs)"]
SAVE_FN["local_irq_save_and_disable()"]
RESTORE_FN["local_irq_restore(flags)"]
end
subgraph subGraph0["Architecture Selection"]
CFG_IF["cfg_if! macro"]
AARCH64_CHECK["target_arch = 'aarch64'"]
end
AARCH64_CHECK --> RESTORE_FN
AARCH64_CHECK --> SAVE_FN
CFG_IF --> AARCH64_CHECK
COMBO_GUARD --> ACQUIRE
COMBO_GUARD --> DROP
IRQ_GUARD --> ACQUIRE
IRQ_GUARD --> DROP
RESTORE_FN --> COMBO_GUARD
RESTORE_FN --> IRQ_GUARD
SAVE_FN --> COMBO_GUARD
SAVE_FN --> IRQ_GUARD
Sources: src/arch/aarch64.rs(L1 - L15)
Assembly Instruction Details
The AArch64 implementation relies on specific ARM64 assembly instructions for system register manipulation:
System Register Access Instructions
| Instruction | Purpose | Syntax | Usage in kernel_guard |
|---|---|---|---|
| mrs | Move from System Register | mrs Xt, system_reg | Read current DAIF state |
| msr | Move to System Register | msr system_reg, Xt | Write to DAIF register |
| msr(immediate) | Move immediate to System Register | msr daifset, #imm | Set specific DAIF bits |
Bit Manipulation Strategy
flowchart TD
subgraph subGraph2["Critical Section State"]
BEFORE["IRQs enabled (I=0)"]
DURING["IRQs disabled (I=1)"]
AFTER["IRQs restored"]
end
subgraph subGraph1["daifset #2 Operation"]
IMM2["Immediate value #2"]
SHIFT["Left shift by 6 positions"]
RESULT["Sets bit 7 (IRQ mask)"]
end
subgraph subGraph0["DAIF Bit Positions"]
BIT9["Bit 9: Debug"]
BIT8["Bit 8: SError"]
BIT7["Bit 7: IRQ"]
BIT6["Bit 6: FIQ"]
end
BEFORE --> DURING
BIT7 --> DURING
DURING --> AFTER
IMM2 --> SHIFT
RESULT --> BIT7
SHIFT --> RESULT
The daifset #2 instruction specifically targets the IRQ bit by using immediate value 2, which when processed by the instruction becomes a mask for bit 7 of the DAIF register.
Sources: src/arch/aarch64.rs(L7 - L13)
Safety and Inline Optimization
Both functions are marked with #[inline] for performance optimization and use unsafe blocks for assembly code execution:
- Inline annotation: Ensures the assembly instructions are inlined at call sites for minimal overhead
- Unsafe blocks: Required for all inline assembly operations in Rust
- Register constraints: Uses
out(reg)andin(reg)to specify register allocation for the assembler
The implementation assumes that the DAIF register is accessible in the current execution context, which is typically true for kernel-level code running at EL1 (Exception Level 1) or higher privilege levels.
Sources: src/arch/aarch64.rs(L3 - L14)