privilege transition

Efficient Ops

Jul 20, 2017 · Fundamentals

How Linux Init Switches from Kernel to User Mode: Inside kernel_execve

This article explains how the Linux init process (pid 1) transitions from kernel mode to user mode using kernel_execve and the int 0x80 system call, detailing the register changes, assembly flow, and verification experiment that reveal the privilege level switch.