Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Are "Protection rings" and "CPU modes" the same thing?

Tags:

cpu-architecture

operating-system

cpu

cpu-registers

I know that CPU has special registers to track CPU operating mode. I thought that "Protection rings" and "CPU modes" are the same thing, but when I have read the article about "Protection rings" on wikipedia, I got confused about what really "Protection rings" is. The point of my confusion were these lines in wikipedia article:

Ring protection can be combined with processor modes (master/kernel/privileged/supervisor mode versus slave/unprivileged/user mode) in some systems. Operating systems running on hardware supporting both may use both forms of protection or only one.

So, is "Protection rings" an OS level abstraction? What's the difference between "Protection rings" and "CPU modes"? Any further explaination is appreciated.

Protection rings

CPU modes

like image 227
h4ckthepl4net Avatar asked Oct 15 '25 14:10

h4ckthepl4net

1 Answers

Are “Protection rings” and “CPU modes” the same thing?

It mostly depends on how the CPU designer/manufacturer felt like defining their terminology.

For 80x86; the terminology is defined such that there are multiple CPU modes (real mode, protected mode, long mode, etc) and some of the CPU modes have privilege levels that are not CPU modes. However, Intel could've defined it more like "protected mode has 4 sub-modes, one for each privilege level" if they wanted to.

For other CPUs the terminology may be defined such that there's a "supervisor mode" and a "user mode" (and maybe other modes - a "virtualisation mode", an "IRQ mode", etc). ARM defines their terminology like this (but they could've defined their terminology more like "CPU only has 2 modes (normal mode and hypervisor mode) and everything else is something else (privilege level)" if they wanted to).

So, is "Protection rings" an OS level abstraction? What's the difference between "Protection rings" and "CPU modes"?

In general, the concept of protection rings (splitting OS into layers and having layers with different permissions/privileges) is much older than 80x86 (at least as old as multics in the 1960s, but possibly older and likely dating back to batch processing systems in the 1950s), and the design of 80x86 protected mode was merely an implementation of a pre-existing concept.

However, no modern OS (that I know of) uses the concept (e.g. "all user code in a single protection domain"); and instead they use significantly more isolation (e.g. "each separate process in its own isolated protection domain") which makes it fairly pointless to have more than 2 privilege levels (one for controlling the isolation and another for everything that was isolated from each other).

like image 118
Brendan Avatar answered Oct 19 '25 14:10

Brendan
Sign in to Comment

Related questions

What is the maximum addressable space of virtual memory?
What is a "Logical CPU Core"
Can someone explain this diagram on Paging (virtual memory) to me?
Create a user level thread or kernel level thread using `pthread_create`?
What is the relation between dup() and close() system calls?
What's the best operating system for a Microsoft developer? [closed]
How does the clock function work behind the scene in a multithreading program?
How can I search and get the directory of a DLL file in python
What is "process context" exactly, and how does it relates to "interrupt context"?
How does memory allocation happen at the lowest level in an operating system?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!