经验首页 前端设计 程序设计 Java相关 移动开发 数据库/运维 软件/图像 大数据/云计算 其他经验
当前位置:技术经验 » 数据库/运维 » Linux/Shell » 查看文章
linux2.4.0版本内核代码fork.c浅显分析
来源:cnblogs  作者:wxy1567  时间:2021/5/31 9:02:18  对本文有异议

结合fork.c文件分析进程创建的过程


本文为作业任务,只做浅显的分析,为大家提供一个分析的思路,很多细节都没有展示。如果想要更详细的分析请去搜索相关函数代码,博客园内有许多有用的信息供大家学习。

 

  1. int nr_threads;
  2. int nr_running;
  4. int max_threads;
  5. unsigned long total_forks;    /* Handle normal Linux uptimes. */
  6. int last_pid;
  8. struct task_struct *pidhash[PIDHASH_SZ];

 

文件开头定义了线程数量,进程数量,最大线程数,创建的进程总个数,最新的pid号以及存放pid号的哈希表。

  1. void add_wait_queue(wait_queue_head_t *q, wait_queue_t * wait)
  2. {
  3.     unsigned long flags;
  5.     wq_write_lock_irqsave(&q->lock, flags);
  6.     wait->flags = 0;
  7.     __add_wait_queue(q, wait);
  8.     wq_write_unlock_irqrestore(&q->lock, flags);
  9. }
  10. void add_wait_queue_exclusive(wait_queue_head_t *q, wait_queue_t * wait)
  11. {
  12. unsigned long flags;
  14. wq_write_lock_irqsave(&q->lock, flags);
  15. wait->flags = WQ_FLAG_EXCLUSIVE;
  16. __add_wait_queue_tail(q, wait);
  17. wq_write_unlock_irqrestore(&q->lock, flags);
  18. }
  19. void remove_wait_queue(wait_queue_head_t *q, wait_queue_t * wait)
  20. {
  21.     unsigned long flags;
  23.     wq_write_lock_irqsave(&q->lock, flags);
  24.     __remove_wait_queue(q, wait);
  25.     wq_write_unlock_irqrestore(&q->lock, flags);
  26. }

 

这部分代码与进程的等待队列有关。Linux内核的等待队列是以双循环链表为基础数据结构,与进程调度机制紧密结合,能够用于实现核心的异步事件通知机制。等待队列在include/linux/wait.h中,这是一个通过list_head连接的典型双循环链表,在这个链表中,有两种数据结构:等待队列头(wait_queue_head_t)和等待队列项(wait_queue_t)。等待队列头和等待队列项中都包含一个list_head类型的域作为"连接件"。由于我们只需要对队列进行添加和删除操作,并不会修改其中的对象(等待队列项),因此,我们只需要提供一把保护整个基础设施和所有对象的锁,这把锁保存在等待队列头中,为wq_lock_t类型。在实现中,可以支持读写锁(rwlock)或自旋锁(spinlock)两种类型,通过一个宏定义来切换。如果使用读写锁,将wq_lock_t定义为rwlock_t类型;如果是自旋锁,将wq_lock_t定义为spinlock_t类型。无论哪种情况,分别相应设置wq_read_lock、wq_read_unlock、wq_read_lock_irqsave、wq_read_unlock_irqrestore、wq_write_lock_irq、wq_write_unlock、wq_write_lock_irqsave和wq_write_unlock_irqrestore等宏。在__wait_queue 中定义的WQ_FLAG_EXCLUSIVE表示节点对应的进程对临界资源具有排他性。remove_wait_queue函数用于将等待队列项wait从以q为等待队列头的等待队列中移除

 

  1. void __init fork_init(unsigned long mempages)
  3. {
  5.     /*
  7.      * The default maximum number of threads is set to a safe
  9.      * value: the thread structures can take up at most half
  11.      * of memory.
  13.      */
  15.     max_threads = mempages / (THREAD_SIZE/PAGE_SIZE) / 2;
  17.  
  19.     init_task.rlim[RLIMIT_NPROC].rlim_cur = max_threads/2;
  21.     init_task.rlim[RLIMIT_NPROC].rlim_max = max_threads/2;
  23. }

 

 

如注释所说,默认的最大线程数被设置为一个安全值:线程结构最多可以占用一半的内存。__init在include/linux/wait.h中,作用为将带有__init标识符的函数划分到.init.text段中,此段只在启动时做一次初始化载入。

  1. /* Protects next_safe and last_pid. */
  3. spinlock_t lastpid_lock = SPIN_LOCK_UNLOCKED;
  5.  
  7. static int get_pid(unsigned long flags)
  9. {
  11.     static int next_safe = PID_MAX;
  13.     struct task_struct *p;
  15.  
  17.     if (flags & CLONE_PID)
  19.         return current->pid;
  21.  
  23.     spin_lock(&lastpid_lock);
  25.     if((++last_pid) & 0xffff8000) {
  27.         last_pid = 300;      /* Skip daemons etc. */
  28.  
  29.         goto inside;
  31.     }
  33.     if(last_pid >= next_safe) {
  35. inside:
  37.         next_safe = PID_MAX;
  39.         read_lock(&tasklist_lock);
  41.     repeat:
  43.         for_each_task(p) {
  45.             if(p->pid == last_pid ||
  47.                p->pgrp == last_pid ||
  49.                p->session == last_pid) {
  51.                 if(++last_pid >= next_safe) {
  53.                     if(last_pid & 0xffff8000)
  55.                         last_pid = 300;
  57.                     next_safe = PID_MAX;
  59.                 }
  61.                 goto repeat;
  63.             }
  65.             if(p->pid > last_pid && next_safe > p->pid)
  67.                 next_safe = p->pid;
  69.             if(p->pgrp > last_pid && next_safe > p->pgrp)
  71.                 next_safe = p->pgrp;
  73.             if(p->session > last_pid && next_safe > p->session)
  75.                 next_safe = p->session;
  77.         }
  79.         read_unlock(&tasklist_lock);
  81.     }
  83.     spin_unlock(&lastpid_lock);
  85.  
  87.     return last_pid;
  89. }

 

这部分代码用来给进程分配pid,对get_pid函数添加自旋锁保证函数的运行,对tasklist_lock添加读锁,确保pid数据安全。last_pid用于记录上一次分配给进程时的pid值。分配的pid一般而言是last_pid+1,如果超出进程个数的最大值(0xffff8000),那么进程pid值从300开始重新查找未用的。也就是说,一般用户进程的pid值范围[300,ffff8000]。(0~299,留给系统)。变量next_safe的含义是,在[last_pid,next_safe]之间,都是没有使用过的pid,一旦last_pid+1大于了next_safe,也就是说pid值进入了不可靠空间,有可能这个值被使用,这时需要遍历task来确认。这样遍历task找到一个没有用过的pid,同时确定next_safe,以保证next_safe到last_pid的区间中pid是空闲的,这样只要再次分配pid时,其值小于next_safe就可以直接分配,而不需要遍历task来查找空闲的pid。

 

  1. static inline int dup_mmap(struct mm_struct * mm)
  3. {
  5.     struct vm_area_struct * mpnt, *tmp, **pprev;
  7.     int retval;
  9.  
  11.     flush_cache_mm(current->mm);
  13.     mm->locked_vm = 0;
  15.     mm->mmap = NULL;
  17.     mm->mmap_avl = NULL;
  19.     mm->mmap_cache = NULL;
  21.     mm->map_count = 0;
  23.     mm->cpu_vm_mask = 0;
  25.     mm->swap_cnt = 0;
  27.     mm->swap_address = 0;
  29.     pprev = &mm->mmap;
  31.     for (mpnt = current->mm->mmap ; mpnt ; mpnt = mpnt->vm_next) {
  33.         struct file *file;
  35.  
  37.         retval = -ENOMEM;
  39.         if(mpnt->vm_flags & VM_DONTCOPY)
  41.             continue;
  43.         tmp = kmem_cache_alloc(vm_area_cachep, SLAB_KERNEL);
  45.         if (!tmp)
  47.             goto fail_nomem;
  49.         *tmp = *mpnt;
  51.         tmp->vm_flags &= ~VM_LOCKED;
  53.         tmp->vm_mm = mm;
  55.         mm->map_count++;
  57.         tmp->vm_next = NULL;
  59.         file = tmp->vm_file;
  61.         if (file) {
  63.             struct inode *inode = file->f_dentry->d_inode;
  65.             get_file(file);
  67.             if (tmp->vm_flags & VM_DENYWRITE)
  69.                 atomic_dec(&inode->i_writecount);
  71.      
  73.             /* insert tmp into the share list, just after mpnt */
  75.             spin_lock(&inode->i_mapping->i_shared_lock);
  77.             if((tmp->vm_next_share = mpnt->vm_next_share) != NULL)
  79.                 mpnt->vm_next_share->vm_pprev_share =
  80.  
  81.                     &tmp->vm_next_share;
  83.             mpnt->vm_next_share = tmp;
  85.             tmp->vm_pprev_share = &mpnt->vm_next_share;
  87.             spin_unlock(&inode->i_mapping->i_shared_lock);
  89.         }
  91.  
  93.         /* Copy the pages, but defer checking for errors */
  95.         retval = copy_page_range(mm, current->mm, tmp);
  97.         if (!retval && tmp->vm_ops && tmp->vm_ops->open)
  99.             tmp->vm_ops->open(tmp);
  101.  
  103.         /*
  105.          * Link in the new vma even if an error occurred,
  107.          * so that exit_mmap() can clean up the mess.
  109.          */
  110.  
  111.         *pprev = tmp;
  113.         pprev = &tmp->vm_next;
  115.  
  117.         if (retval)
  119.             goto fail_nomem;
  121.     }
  123.     retval = 0;
  125.     if (mm->map_count >= AVL_MIN_MAP_COUNT)
  127.         build_mmap_avl(mm);
  129.  
  131. fail_nomem:
  133.     flush_tlb_mm(current->mm);
  135.     return retval;
  137. }
  139.  
  141. spinlock_t mmlist_lock __cacheline_aligned = SPIN_LOCK_UNLOCKED;
  143.  
  145. #define allocate_mm() (kmem_cache_alloc(mm_cachep, SLAB_KERNEL))
  146.  
  147. #define free_mm(mm)  (kmem_cache_free(mm_cachep, (mm)))
  148.  
  149.  
  150.  
  151. static struct mm_struct * mm_init(struct mm_struct * mm)
  153. {
  155.     atomic_set(&mm->mm_users, 1);
  157.     atomic_set(&mm->mm_count, 1);
  159.     init_MUTEX(&mm->mmap_sem);
  161.     mm->page_table_lock = SPIN_LOCK_UNLOCKED;
  163.     mm->pgd = pgd_alloc();
  165.     if (mm->pgd)
  167.         return mm;
  169.     free_mm(mm);
  171.     return NULL;
  173. }
  175.    
  177.  
  179. /*
  181.  * Allocate and initialize an mm_struct.
  183.  */
  184.  
  185. struct mm_struct * mm_alloc(void)
  187. {
  189.     struct mm_struct * mm;
  191.  
  193.     mm = allocate_mm();
  195.     if (mm) {
  197.         memset(mm, 0, sizeof(*mm));
  199.         return mm_init(mm);
  201.     }
  203.     return NULL;
  205. }
  207.  
  209. /*
  211.  * Called when the last reference to the mm
  213.  * is dropped: either by a lazy thread or by
  215.  * mmput. Free the page directory and the mm.
  217.  */
  219. inline void __mmdrop(struct mm_struct *mm)
  221. {
  223.     if (mm == &init_mm) BUG();
  225.     pgd_free(mm->pgd);
  227.     destroy_context(mm);
  229.     free_mm(mm);
  231. }
  233.  
  235. /*
  237.  * Decrement the use count and release all resources for an mm.
  239.  */
  240.  
  241. void mmput(struct mm_struct *mm)
  243. {
  245.     if (atomic_dec_and_lock(&mm->mm_users, &mmlist_lock)) {
  247.         list_del(&mm->mmlist);
  249.         spin_unlock(&mmlist_lock);
  251.         exit_mmap(mm);
  253.         mmdrop(mm);
  255.     }
  257. }
  259.  
  261. void mm_release(void)
  263. {
  265.     struct task_struct *tsk = current;
  267.  
  269.     /* notify parent sleeping on vfork() */
  270.  
  271.     if (tsk->flags & PF_VFORK) {
  273.         tsk->flags &= ~PF_VFORK;
  275.         up(tsk->p_opptr->vfork_sem);
  277.     }
  279. }

 

这部分代码为内存管理部分,代码中的注释向我们大致说明了本段代码的功能。

Linux内核通过一个被称为进程描述符的task_struct结构体来管理进程,这个结构体包含了一个进程所需的所有信息。它定义在include/linux/sched.h文件中。每一个进程都会有自己独立的mm_struct,这样每一个进程都会有自己独立的地址空间,这样才能互不干扰。在地址空间中,mmap为地址空间的内存区域(用vm_area_struct结构来表示)链表,表示起来更加方便。mm_struct的结构描述了进程的用户空间的结构,定义了用户空间的段分布:数据段,代码段,堆栈段。其中pgd_t是该进程用户空间地址映射到物理地址时使用vm_area_struct是进程用户空间已映射到物理空间的虚拟地址区间,定义在/include/linux/mm.h。mmap是该空间区块组成的链表。vm_flag是描述对虚拟区间的操作的标志。

 

 

  1. static int copy_mm(unsigned long clone_flags, struct task_struct * tsk)
  3. {
  5.     struct mm_struct * mm, *oldmm;
  7.     int retval;
  9.  
  11.     tsk->min_flt = tsk->maj_flt = 0;
  13.     tsk->cmin_flt = tsk->cmaj_flt = 0;
  15.     tsk->nswap = tsk->cnswap = 0;
  17.  
  19.     tsk->mm = NULL;
  21.     tsk->active_mm = NULL;
  23.  
  25.     /*
  27.      * Are we cloning a kernel thread?
  29.      *
  31.      * We need to steal a active VM for that..
  33.      */
  35.     oldmm = current->mm;
  37.     if (!oldmm)
  39.         return 0;
  41.  
  43.     if (clone_flags & CLONE_VM) {
  45.         atomic_inc(&oldmm->mm_users);
  47.         mm = oldmm;
  49.         goto good_mm;
  51.     }
  53.  
  55.     retval = -ENOMEM;
  57.     mm = allocate_mm();
  59.     if (!mm)
  61.         goto fail_nomem;
  63.  
  65.     /* Copy the current MM stuff.. */
  67.     memcpy(mm, oldmm, sizeof(*mm));
  69.     if (!mm_init(mm))
  71.         goto fail_nomem;
  73.  
  75.     down(&oldmm->mmap_sem);
  77.     retval = dup_mmap(mm);
  79.     up(&oldmm->mmap_sem);
  81.  
  83.     /*
  85.      * Add it to the mmlist after the parent.
  87.      *
  89.      * Doing it this way means that we can order
  91.      * the list, and fork() won't mess up the
  93.      * ordering significantly.
  95.      */
  97.     spin_lock(&mmlist_lock);
  99.     list_add(&mm->mmlist, &oldmm->mmlist);
  101.     spin_unlock(&mmlist_lock);
  103.  
  105.     if (retval)
  107.         goto free_pt;
  109.  
  111.     /*
  113.      * child gets a private LDT (if there was an LDT in the parent)
  115.      */
  117.     copy_segments(tsk, mm);
  119.  
  121.     if (init_new_context(tsk,mm))
  123.         goto free_pt;
  125.  
  127. good_mm:
  129.     tsk->mm = mm;
  131.     tsk->active_mm = mm;
  133.     return 0;
  135.  
  137. free_pt:
  139.     mmput(mm);
  141. fail_nomem:
  143.     return retval;
  145. }
  147.  
  149. static inline struct fs_struct *__copy_fs_struct(struct fs_struct *old)
  151. {
  153.     struct fs_struct *fs = kmem_cache_alloc(fs_cachep, GFP_KERNEL);
  155.     /* We don't need to lock fs - think why ;-) */
  156.  
  157.     if (fs) {
  159.         atomic_set(&fs->count, 1);
  161.         fs->lock = RW_LOCK_UNLOCKED;
  163.         fs->umask = old->umask;
  165.         read_lock(&old->lock);
  167.         fs->rootmnt = mntget(old->rootmnt);
  169.         fs->root = dget(old->root);
  171.         fs->pwdmnt = mntget(old->pwdmnt);
  173.         fs->pwd = dget(old->pwd);
  175.         if (old->altroot) {
  177.             fs->altrootmnt = mntget(old->altrootmnt);
  179.             fs->altroot = dget(old->altroot);
  181.         } else {
  183.             fs->altrootmnt = NULL;
  185.             fs->altroot = NULL;
  187.         }  
  189.         read_unlock(&old->lock);
  191.     }
  193.     return fs;
  195. }
  197.  
  199. struct fs_struct *copy_fs_struct(struct fs_struct *old)
  201. {
  203.     return __copy_fs_struct(old);
  205. }
  207.  
  209. static inline int copy_fs(unsigned long clone_flags, struct task_struct * tsk)
  211. {
  213.     if (clone_flags & CLONE_FS) {
  215.         atomic_inc(&current->fs->count);
  217.         return 0;
  219.     }
  221.     tsk->fs = __copy_fs_struct(current->fs);
  223.     if (!tsk->fs)
  225.         return -1;
  227.     return 0;
  229. }
  231.  
  233. static int count_open_files(struct files_struct *files, int size)
  235. {
  237.     int i;
  239.    
  241.     /* Find the last open fd */
  242.  
  243.     for (i = size/(8*sizeof(long)); i > 0; ) {
  245.         if (files->open_fds->fds_bits[--i])
  247.             break;
  249.     }
  251.     i = (i+1) * 8 * sizeof(long);
  253.     return i;
  255. }
  257.  
  259. static int copy_files(unsigned long clone_flags, struct task_struct * tsk)
  261. {
  263.     struct files_struct *oldf, *newf;
  265.     struct file **old_fds, **new_fds;
  267.     int open_files, nfds, size, i, error = 0;
  269.  
  271.     /*
  273.      * A background process may not have any files ...
  275.      */
  277.     oldf = current->files;
  279.     if (!oldf)
  281.         goto out;
  283.  
  285.     if (clone_flags & CLONE_FILES) {
  287.         atomic_inc(&oldf->count);
  289.         goto out;
  291.     }
  293.  
  295.     tsk->files = NULL;
  297.     error = -ENOMEM;
  299.     newf = kmem_cache_alloc(files_cachep, SLAB_KERNEL);
  301.     if (!newf)
  303.         goto out;
  305.  
  307.     atomic_set(&newf->count, 1);
  309.  
  311.     newf->file_lock      = RW_LOCK_UNLOCKED;
  313.     newf->next_fd     = 0;
  315.     newf->max_fds     = NR_OPEN_DEFAULT;
  317.     newf->max_fdset      = __FD_SETSIZE;
  319.     newf->close_on_exec = &newf->close_on_exec_init;
  321.     newf->open_fds       = &newf->open_fds_init;
  323.     newf->fd     = &newf->fd_array[0];
  325.  
  327.     /* We don't yet have the oldf readlock, but even if the old
  329.            fdset gets grown now, we'll only copy up to "size" fds */
  331.     size = oldf->max_fdset;
  333.     if (size > __FD_SETSIZE) {
  335.         newf->max_fdset = 0;
  337.         write_lock(&newf->file_lock);
  339.         error = expand_fdset(newf, size);
  341.         write_unlock(&newf->file_lock);
  343.         if (error)
  345.             goto out_release;
  347.     }
  349.     read_lock(&oldf->file_lock);
  351.  
  353.     open_files = count_open_files(oldf, size);
  355.  
  357.     /*
  359.      * Check whether we need to allocate a larger fd array.
  361.      * Note: we're not a clone task, so the open count won't
  363.      * change.
  365.      */
  367.     nfds = NR_OPEN_DEFAULT;
  369.     if (open_files > nfds) {
  371.         read_unlock(&oldf->file_lock);
  373.         newf->max_fds = 0;
  375.         write_lock(&newf->file_lock);
  377.         error = expand_fd_array(newf, open_files);
  379.         write_unlock(&newf->file_lock);
  381.         if (error)
  383.             goto out_release;
  385.         nfds = newf->max_fds;
  387.         read_lock(&oldf->file_lock);
  389.     }
  391.  
  393.     old_fds = oldf->fd;
  395.     new_fds = newf->fd;
  397.  
  399.     memcpy(newf->open_fds->fds_bits, oldf->open_fds->fds_bits, open_files/8);
  401.     memcpy(newf->close_on_exec->fds_bits, oldf->close_on_exec->fds_bits, open_files/8);
  403.  
  405.     for (i = open_files; i != 0; i--) {
  407.         struct file *f = *old_fds++;
  409.         if (f)
  411.             get_file(f);
  413.         *new_fds++ = f;
  415.     }
  417.     read_unlock(&oldf->file_lock);
  419.  
  421.     /* compute the remainder to be cleared */
  423.     size = (newf->max_fds - open_files) * sizeof(struct file *);
  425.  
  427.     /* This is long word aligned thus could use a optimized version */
  429.     memset(new_fds, 0, size);
  431.  
  433.     if (newf->max_fdset > open_files) {
  435.         int left = (newf->max_fdset-open_files)/8;
  437.         int start = open_files / (8 * sizeof(unsigned long));
  439.        
  441.         memset(&newf->open_fds->fds_bits[start], 0, left);
  443.         memset(&newf->close_on_exec->fds_bits[start], 0, left);
  445.     }
  447.  
  449.     tsk->files = newf;
  451.     error = 0;
  453. out:
  455.     return error;
  457.  
  459. out_release:
  461.     free_fdset (newf->close_on_exec, newf->max_fdset);
  463.     free_fdset (newf->open_fds, newf->max_fdset);
  465.     kmem_cache_free(files_cachep, newf);
  467.     goto out;
  469. }
  471.  
  473. static inline int copy_sighand(unsigned long clone_flags, struct task_struct * tsk)
  475. {
  477.     struct signal_struct *sig;
  479.  
  481.     if (clone_flags & CLONE_SIGHAND) {
  483.         atomic_inc(&current->sig->count);
  485.         return 0;
  487.     }
  489.     sig = kmem_cache_alloc(sigact_cachep, GFP_KERNEL);
  491.     tsk->sig = sig;
  493.     if (!sig)
  495.         return -1;
  497.     spin_lock_init(&sig->siglock);
  499.     atomic_set(&sig->count, 1);
  501.     memcpy(tsk->sig->action, current->sig->action, sizeof(tsk->sig->action));
  503.     return 0;
  505. }
  507.  
  509. static inline void copy_flags(unsigned long clone_flags, struct task_struct *p)
  511. {
  513.     unsigned long new_flags = p->flags;
  515.  
  517.     new_flags &= ~(PF_SUPERPRIV | PF_USEDFPU | PF_VFORK);
  519.     new_flags |= PF_FORKNOEXEC;
  521.     if (!(clone_flags & CLONE_PTRACE))
  523.         p->ptrace = 0;
  525.     if (clone_flags & CLONE_VFORK)
  527.         new_flags |= PF_VFORK;
  529.     p->flags = new_flags;
  531. }

 

父进程中在调用fork()派生新进程,实际上相当于创建了进程的一个拷贝;复制出来的子进程有自己的 task_struct结构和系统空间堆栈,但与父进程共享其他所有的资源。Linux为此提供了两个系统调用,一个是fork(),另一个是clone()。我们现在主要讨论fork()。fork()是全部复制,父进程所需的资源全部通过数据结构的复制传递给子进程,而完成这一操作的函数定义就是上方所写的代码段。调用fork时,内核会在copy_mm函数中处理子进程的mm_struct,在copy_files函数中处理拷贝父进程打开的文件的相关事宜,在copy_fs中记录进程所在文件系统的根目录和当前目录信息, copy_sighand中复制进程对信号的处理方式。

  1. /*
  3.  *  Ok, this is the main fork-routine. It copies the system process
  5.  * information (task[nr]) and sets up the necessary registers. It also
  7.  * copies the data segment in its entirety.  The "stack_start" and
  9.  * "stack_top" arguments are simply passed along to the platform
  11.  * specific copy_thread() routine.  Most platforms ignore stack_top.
  13.  * For an example that's using stack_top, see
  15.  * arch/ia64/kernel/process.c.
  17.  */
  18.  
  19. int do_fork(unsigned long clone_flags, unsigned long stack_start,struct pt_regs *regs, unsigned long stack_size)
  21. {
  23.     int retval = -ENOMEM;
  25.     struct task_struct *p;
  27.     DECLARE_MUTEX_LOCKED(sem);
  29.  
  31.     if (clone_flags & CLONE_PID) {
  33.         /* This is only allowed from the boot up thread */
  34.  
  35.         if (current->pid)
  37.             return -EPERM;
  39.     }
  41.    
  43.     current->vfork_sem = &sem;
  45.  
  47.     p = alloc_task_struct();
  49.     if (!p)
  51.         goto fork_out;
  53.  
  55.     *p = *current;
  57.  
  59.     retval = -EAGAIN;
  61.     if (atomic_read(&p->user->processes) >= p->rlim[RLIMIT_NPROC].rlim_cur)
  63.         goto bad_fork_free;
  65.     atomic_inc(&p->user->__count);
  67.     atomic_inc(&p->user->processes);
  69.  
  71.     /*
  73.      * Counter increases are protected by
  75.      * the kernel lock so nr_threads can't
  77.      * increase under us (but it may decrease).
  79.      */
  80.  
  81.     if (nr_threads >= max_threads)
  83.         goto bad_fork_cleanup_count;
  85.    
  87.     get_exec_domain(p->exec_domain);
  89.  
  91.     if (p->binfmt && p->binfmt->module)
  93.         __MOD_INC_USE_COUNT(p->binfmt->module);
  95.  
  97.     p->did_exec = 0;
  99.     p->swappable = 0;
  101.     p->state = TASK_UNINTERRUPTIBLE;
  103.  
  105.     copy_flags(clone_flags, p);
  107.     p->pid = get_pid(clone_flags);
  109.  
  111.     p->run_list.next = NULL;
  113.     p->run_list.prev = NULL;
  115.  
  117.     if ((clone_flags & CLONE_VFORK) || !(clone_flags & CLONE_PARENT)) {
  119.         p->p_opptr = current;
  121.         if (!(p->ptrace & PT_PTRACED))
  123.             p->p_pptr = current;
  125.     }
  127.     p->p_cptr = NULL;
  129.     init_waitqueue_head(&p->wait_chldexit);
  131.     p->vfork_sem = NULL;
  133.     spin_lock_init(&p->alloc_lock);
  135.  
  137.     p->sigpending = 0;
  139.     init_sigpending(&p->pending);
  141.  
  143.     p->it_real_value = p->it_virt_value = p->it_prof_value = 0;
  145.     p->it_real_incr = p->it_virt_incr = p->it_prof_incr = 0;
  147.     init_timer(&p->real_timer);
  149.     p->real_timer.data = (unsigned long) p;
  151.  
  153.     p->leader = 0;       /* session leadership doesn't inherit */
  155.     p->tty_old_pgrp = 0;
  157.     p->times.tms_utime = p->times.tms_stime = 0;
  159.     p->times.tms_cutime = p->times.tms_cstime = 0;
  161. #ifdef CONFIG_SMP
  163.     {
  165.         int i;
  167.         p->has_cpu = 0;
  169.         p->processor = current->processor;
  171.         /* ?? should we just memset this ?? */
  172.  
  173.         for(i = 0; i < smp_num_cpus; i++)
  175.             p->per_cpu_utime[i] = p->per_cpu_stime[i] = 0;
  177.         spin_lock_init(&p->sigmask_lock);
  179.     }
  181. #endif
  183.     p->lock_depth = -1;       /* -1 = no lock */
  185.     p->start_time = jiffies;
  187.  
  189.     retval = -ENOMEM;
  191.     /* copy all the process information */
  192.  
  193.     if (copy_files(clone_flags, p))
  195.         goto bad_fork_cleanup;
  197.     if (copy_fs(clone_flags, p))
  199.         goto bad_fork_cleanup_files;
  201.     if (copy_sighand(clone_flags, p))
  203.         goto bad_fork_cleanup_fs;
  205.     if (copy_mm(clone_flags, p))
  207.         goto bad_fork_cleanup_sighand;
  209.     retval = copy_thread(0, clone_flags, stack_start, stack_size, p, regs);
  211.     if (retval)
  213.         goto bad_fork_cleanup_sighand;
  215.     p->semundo = NULL;
  217.    
  219.     /* Our parent execution domain becomes current domain
  221.        These must match for thread signalling to apply */
  223.       
  225.     p->parent_exec_id = p->self_exec_id;
  227.  
  229.     /* ok, now we should be set up.. */
  231.     p->swappable = 1;
  233.     p->exit_signal = clone_flags & CSIGNAL;
  235.     p->pdeath_signal = 0;
  237.  
  239.     /*
  241.      * "share" dynamic priority between parent and child, thus the
  243.      * total amount of dynamic priorities in the system doesnt change,
  245.      * more scheduling fairness. This is only important in the first
  247.      * timeslice, on the long run the scheduling behaviour is unchanged.
  249.      */
  251.     p->counter = (current->counter + 1) >> 1;
  253.     current->counter >>= 1;
  255.     if (!current->counter)
  257.         current->need_resched = 1;
  259.  
  261.     /*
  263.      * Ok, add it to the run-queues and make it
  265.      * visible to the rest of the system.
  267.      *
  269.      * Let it rip!
  271.      */
  273.     retval = p->pid;
  275.     p->tgid = retval;
  277.     INIT_LIST_HEAD(&p->thread_group);
  279.     write_lock_irq(&tasklist_lock);
  281.     if (clone_flags & CLONE_THREAD) {
  283.         p->tgid = current->tgid;
  285.         list_add(&p->thread_group, &current->thread_group);
  287.     }
  289.     SET_LINKS(p);
  291.     hash_pid(p);
  293.     nr_threads++;
  295.     write_unlock_irq(&tasklist_lock);
  297.  
  299.     if (p->ptrace & PT_PTRACED)
  301.         send_sig(SIGSTOP, p, 1);
  303.  
  305.     wake_up_process(p);      /* do this last */
  306.  
  307.     ++total_forks;
  309.  
  311. fork_out:
  313.     if ((clone_flags & CLONE_VFORK) && (retval > 0))
  315.         down(&sem);
  317.     return retval;
  319.  
  321. bad_fork_cleanup_sighand:
  323.     exit_sighand(p);
  325. bad_fork_cleanup_fs:
  327.     exit_fs(p); /* blocking */
  329. bad_fork_cleanup_files:
  331.     exit_files(p); /* blocking */
  333. bad_fork_cleanup:
  335.     put_exec_domain(p->exec_domain);
  337.     if (p->binfmt && p->binfmt->module)
  339.         __MOD_DEC_USE_COUNT(p->binfmt->module);
  341. bad_fork_cleanup_count:
  343.     atomic_dec(&p->user->processes);
  345.     free_uid(p->user);
  347. bad_fork_free:
  349.     free_task_struct(p);
  351.     goto fork_out;
  353. }

 

如开头注释第一句所说,这部分代码是fork.c中最主要的函数。

do_fork首先进行一些参数及权限的检查,仅允许从线程启动。之后进行内存的分配,复制父进程的task_struct。判断进程数量,将从父进程中继承的task_struct初始化,获取新的pid,分配CPU,解锁后设定运行时间。将子进程的pid放入pidhash表中,就可以唤醒子进程了。代码中间部分有设置进程判断,若发现非法进程会直接清理掉。清理函数在代码尾部定义。

 

  1. /* SLAB cache for signal_struct structures (tsk->sig) */
  3. kmem_cache_t *sigact_cachep;
  5.  
  7. /* SLAB cache for files_struct structures (tsk->files) */
  9. kmem_cache_t *files_cachep;
  11.  
  13. /* SLAB cache for fs_struct structures (tsk->fs) */
  15. kmem_cache_t *fs_cachep;
  17.  
  19. /* SLAB cache for vm_area_struct structures */
  21. kmem_cache_t *vm_area_cachep;
  23.  
  25. /* SLAB cache for mm_struct structures (tsk->mm) */
  27. kmem_cache_t *mm_cachep;
  29.  
  31. void __init proc_caches_init(void)
  33. {
  35.     sigact_cachep = kmem_cache_create("signal_act",
  37.             sizeof(struct signal_struct), 0,
  39.             SLAB_HWCACHE_ALIGN, NULL, NULL);
  41.     if (!sigact_cachep)
  43.         panic("Cannot create signal action SLAB cache");
  45.  
  47.     files_cachep = kmem_cache_create("files_cache",
  49.              sizeof(struct files_struct), 0,
  51.              SLAB_HWCACHE_ALIGN, NULL, NULL);
  53.     if (!files_cachep)
  55.         panic("Cannot create files SLAB cache");
  57.  
  59.     fs_cachep = kmem_cache_create("fs_cache",
  61.              sizeof(struct fs_struct), 0,
  63.              SLAB_HWCACHE_ALIGN, NULL, NULL);
  65.     if (!fs_cachep)
  67.         panic("Cannot create fs_struct SLAB cache");
  69.  
  71.     vm_area_cachep = kmem_cache_create("vm_area_struct",
  73.             sizeof(struct vm_area_struct), 0,
  75.             SLAB_HWCACHE_ALIGN, NULL, NULL);
  77.     if(!vm_area_cachep)
  79.         panic("vma_init: Cannot alloc vm_area_struct SLAB cache");
  81.  
  83.     mm_cachep = kmem_cache_create("mm_struct",
  85.             sizeof(struct mm_struct), 0,
  87.             SLAB_HWCACHE_ALIGN, NULL, NULL);
  89.     if(!mm_cachep)
  91.         panic("vma_init: Cannot alloc mm_struct SLAB cache");
  93. }

 

最后这部分代码作用是处理进程的缓存,为proc文件系统创建高速缓冲。

 

 

从文件开头的宏定义,到等待队列的处理,到线程数的安全处理,到pid的分配,到进程的内存管理,到父进程复制出子进程。fork()函数中对进程的创建大致是以上步骤。主要在于copy部分对task_struct复制和复制后的初始化。

 

原文链接:http://www.cnblogs.com/wxy1567/p/14806603.html

 友情链接:直通硅谷  点职佳  北美留学生论坛

Linux/Shell热门文章

  • vdbench 数据校验测试方法
  • CentOS7一键脚本安装WireGuard
  • VMware Ubuntu 20.04 LTS 使用Qemu虚拟机u-boot启动或者配合busybox模拟ARM开发板
  • Activation of org.freedesktop.systemd1 timed out
  • vmWare 虚机文件不能启动的事故处理
  • windows远程连接centos及闪退异常解决记录
  • CentOS7防火墙放行或限制指定IP和端口(firewall)
  • jvm:jmap无法dump文件的解决办法
  • C# 控制 GPIO
  • linux中文件权限的字母含义

    • Linux/Shell推荐文章

  • 旧物利用 - 将机顶盒改造为一台Linux开发机!
  • condition字符串匹配问题
  • proxmox ve 部署双节点HA集群及glusterfs分布式文件系统
  • 入门到精通rsync和inotify
  • 解决 CentOS 7 官方 yum 仓库无法使用的最佳实践
  • Linux 提权-NFS 共享
  • 将虚拟机跑在ceph之中
  • saltStack自动化工具
  • SeaweedFS + TiKV 部署保姆级教程
  • GlusterFs分布式文件系统

    • 本站QQ群:前端 618073944 | Java 606181507 | Python 626812652 | C/C++ 612253063 | 微信 634508462 | 苹果 692586424 | C#/.net 182808419 | PHP 305140648 | 运维 608723728

    W3xue 的所有内容仅供测试,对任何法律问题及风险不承担任何责任。通过使用本站内容随之而来的风险与本站无关。
    关于我们  |  意见建议  |  捐助我们  |  报错有奖  |  广告合作、友情链接(目前9元/月)请联系QQ:27243702 沸活量
    皖ICP备17017327号-2 皖公网安备34020702000426号