Changeset e3c762cd in mainline

Timestamp:

2006-05-05T11:59:19Z (19 years ago)

Author:

Jakub Jermar <jakub@…>

Branches:

lfn, master, serial, ticket/834-toolchain-update, topic/msim-upgrade, topic/simplify-dev-export

Children:

de07bcf

Parents:

22cf454d

Message:

Complete implementation of copy_from_uspace() and copy_to_uspace()
for amd64 and ia32. Other architectures still compile and run,
but need to implement their own assembly-only memcpy(), memcpy_from_uspace(),
memcpy_to_uspace() and their failover parts. For these architectures
only dummy implementations are provided.

Files:

• Makefile (modified) (1 diff)
• arch/amd64/include/interrupt.h (modified) (1 diff)
• arch/amd64/src/asm_utils.S (modified) (2 diffs)
• arch/amd64/src/mm/page.c (modified) (1 diff)
• arch/ia32/include/interrupt.h (modified) (1 diff)
• arch/ia32/src/asm.S (modified) (1 diff)
• arch/ia32/src/boot/boot.S (modified) (2 diffs)
• arch/ia32/src/interrupt.c (modified) (1 diff)
• arch/ia64/include/interrupt.h (modified) (1 diff)
• arch/ia64/src/asm.S (modified) (1 diff)
• arch/ia64/src/mm/tlb.c (modified) (3 diffs)
• arch/mips32/include/exception.h (modified) (1 diff)
• arch/mips32/src/asm.S (modified) (1 diff)
• arch/mips32/src/mm/tlb.c (modified) (11 diffs)
• arch/ppc32/include/exception.h (modified) (1 diff)
• arch/ppc32/include/interrupt.h (modified) (1 diff)
• arch/ppc32/src/asm.S (modified) (3 diffs)
• arch/ppc32/src/mm/tlb.c (modified) (6 diffs)
• arch/sparc64/include/interrupt.h (modified) (2 diffs)
• arch/sparc64/src/asm.S (modified) (1 diff)
• generic/include/interrupt.h (modified) (1 diff)
• generic/include/mm/as.h (modified) (2 diffs)
• generic/include/mm/page.h (modified) (1 diff)
• generic/include/proc/thread.h (modified) (1 diff)
• generic/include/syscall/copy.h (added)
• generic/src/ddi/ddi.c (modified) (3 diffs)
• generic/src/ipc/irq.c (modified) (3 diffs)
• generic/src/ipc/sysipc.c (modified) (8 diffs)
• generic/src/mm/as.c (modified) (8 diffs)
• generic/src/mm/slab.c (modified) (4 diffs)
• generic/src/printf/vsnprintf.c (modified) (2 diffs)
• generic/src/proc/task.c (modified) (3 diffs)
• generic/src/proc/thread.c (modified) (4 diffs)
• generic/src/smp/ipi.c (modified) (1 diff)
• generic/src/synch/waitq.c (modified) (1 diff)
• generic/src/syscall/copy.c (added)

Makefile

@@ -129 +129 @@
         generic/src/proc/the.c \
         generic/src/syscall/syscall.c \
+        generic/src/syscall/copy.c \
         generic/src/mm/buddy.c \
         generic/src/mm/frame.c \

arch/amd64/include/interrupt.h

@@ -87 +87 @@
 };
 
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        istate->rip = retaddr;
+}
+
 extern void (* disable_irqs_function)(__u16 irqmask);
 extern void (* enable_irqs_function)(__u16 irqmask);

arch/amd64/src/asm_utils.S

@@ -61 +61 @@
         jmp printf
 
-.global memcpy
-memcpy:
-        jmp _memcpy
-        
 .global cpuid
 .global has_cpuid
@@ -70 +66 @@
 .global read_efer_flag
 .global set_efer_flag
-        
+.global memcpy
+.global memcpy_from_uspace
+.global memcpy_to_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace_failover_address
+
+#define MEMCPY_DST      %rdi
+#define MEMCPY_SRC      %rsi
+#define MEMCPY_SIZE     %rdx
+
+/**
+ * Copy memory from/to userspace.
+ *
+ * This is almost conventional memcpy().
+ * The difference is that there is a failover part
+ * to where control is returned from a page fault if
+ * the page fault occurs during copy_from_uspace()
+ * or copy_to_uspace().
+ *
+ * @param MEMCPY_DST    Destination address.
+ * @param MEMCPY_SRC    Source address.
+ * @param MEMCPY_SIZE   Number of bytes to copy.
+ *
+ * @retrun MEMCPY_SRC on success, 0 on failure.
+ */
+memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
+        movq MEMCPY_SRC, %rax
+
+        movq MEMCPY_SIZE, %rcx
+        shrq $3, %rcx                   /* size / 8 */
+        
+        rep movsq                       /* copy as much as possible word by word */
+
+        movq MEMCPY_SIZE, %rcx
+        andq $7, %rcx                   /* size % 8 */
+        jz 0f
+        
+        rep movsb                       /* copy the rest byte by byte */
+        
+0:
+        ret                             /* return MEMCPY_SRC, success */
+
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        xorq %rax, %rax                 /* return 0, failure */
+        ret
+
 ## Determine CPUID support
 #

arch/amd64/src/mm/page.c

@@ -167 +167 @@
         
         page = read_cr2();
-        if (!as_page_fault(page)) {
+        if (as_page_fault(page, istate) == AS_PF_FAULT) {
                 print_info_errcode(n, istate);
                 printf("Page fault address: %llX\n", page);

arch/ia32/include/interrupt.h

@@ -84 +84 @@
 };
 
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        istate->eip = retaddr;
+}
+
 extern void (* disable_irqs_function)(__u16 irqmask);
 extern void (* enable_irqs_function)(__u16 irqmask);

arch/ia32/src/asm.S

@@ -38 +38 @@
 .global enable_l_apic_in_msr
 .global interrupt_handlers
+.global memcpy
+.global memcpy_from_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace
+.global memcpy_to_uspace_failover_address
+
+
+#define MEMCPY_DST      4
+#define MEMCPY_SRC      8
+#define MEMCPY_SIZE     12
+
+/** Copy memory to/from userspace.
+ *
+ * This is almost conventional memcpy().
+ * The difference is that there is a failover part
+ * to where control is returned from a page fault
+ * if the page fault occurs during copy_from_uspace()
+ * or copy_to_uspace().
+ *
+ * @param MEMCPY_DST(%esp)      Destination address.
+ * @param MEMCPY_SRC(%esp)      Source address.
+ * @param MEMCPY_SIZE(%esp)     Size.
+ *
+ * @return MEMCPY_SRC(%esp) on success and 0 on failure.
+ */
+memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
+        movl %edi, %edx                         /* save %edi */
+        movl %esi, %eax                         /* save %esi */
+        
+        movl MEMCPY_SIZE(%esp), %ecx
+        shrl $2, %ecx                           /* size / 4 */
+        
+        movl MEMCPY_DST(%esp), %edi
+        movl MEMCPY_SRC(%esp), %esi
+        
+        rep movsl                               /* copy as much as possible word by word */
+
+        movl MEMCPY_SIZE(%esp), %ecx
+        andl $3, %ecx                           /* size % 4 */
+        jz 0f
+        
+        rep movsb                               /* copy the rest byte by byte */
+
+0:
+        movl %edx, %edi
+        movl %eax, %esi
+        movl MEMCPY_SRC(%esp), %eax             /* MEMCPY_SRC(%esp), success */
+        ret
+        
+/*
+ * We got here from as_page_fault() after the memory operations
+ * above had caused a page fault.
+ */
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        movl %edx, %edi
+        movl %eax, %esi
+        xorl %eax, %eax                         /* return 0, failure */
+        ret
 
 ## Turn paging on

arch/ia32/src/boot/boot.S

@@ -35 +35 @@
 #define START_STACK (BOOT_OFFSET - BOOT_STACK_SIZE)
 
-
-
-
-
-
-
-
-
 .section K_TEXT_START, "ax"
 
@@ -436 +428 @@
 #endif  
 
-
-
 .section K_DATA_START, "aw", @progbits
-
-
 
 .align 4096

arch/ia32/src/interrupt.c

@@ -145 +145 @@
 
         page = read_cr2();
-        if (!as_page_fault(page)) {
+        if (as_page_fault(page, istate) == AS_PF_FAULT) {
                 PRINT_INFO_ERRCODE(istate);
                 printf("page fault address: %#x\n", page);

arch/ia64/include/interrupt.h

@@ -107 +107 @@
 };
 
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        /* TODO */
+}
+
 extern void *ivt;
 

arch/ia64/src/asm.S

@@ -31 +31 @@
 .text
 
+/** Copy memory from/to userspace.
+ *
+ * @param in0 Destination address.
+ * @param in1 Source address.
+ * @param in2 Number of byte to copy.
+ */
 .global memcpy
+.global memcpy_from_uspace
+.global memcpy_to_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace_failover_address
 memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
         br _memcpy
+        
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        br memcpy_from_uspace_failover_address
 
 .global memsetb

arch/ia64/src/mm/tlb.c

@@ -448 +448 @@
                  */
                 page_table_unlock(AS, true);
-                if (!as_page_fault(va)) {
+                if (as_page_fault(va, istate) == AS_PF_FAULT) {
                         panic("%s: va=%p, rid=%d, iip=%p\n", __FUNCTION__, istate->cr_ifa, rr.map.rid, istate->cr_iip);
                 }
@@ -494 +494 @@
                  */
                 page_table_unlock(AS, true);
-                if (!as_page_fault(va)) {
+                if (as_page_fault(va, istate) == AS_PF_FAULT) {
                         panic("%s: va=%p, rid=%d, iip=%p\n", __FUNCTION__, va, rid, istate->cr_iip);
                 }
@@ -609 +609 @@
         } else {
                 page_table_unlock(AS, true);
-                if (!as_page_fault(va)) {
+                if (as_page_fault(va, istate) == AS_PF_FAULT) {
                         panic("%s: va=%p, rid=%d\n", __FUNCTION__, va, rr.map.rid);
                 }

arch/mips32/include/exception.h

@@ -94 +94 @@
 };
 
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        /* TODO */
+}
+
 extern void exception(istate_t *istate);
 extern void tlb_refill_entry(void);

arch/mips32/src/asm.S

@@ -58 +58 @@
         nop
 
+
 .global memcpy
+.global memcpy_from_uspace
+.global memcpy_to_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace_failover_address
 memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
         j _memcpy
         nop
+
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        j memcpy_from_uspace_failover_address
+        nop
+
+
 
 .macro fpu_gp_save reg ctx

arch/mips32/src/mm/tlb.c

@@ -45 +45 @@
 static void tlb_modified_fail(istate_t *istate);
 
-static pte_t *find_mapping_and_check(__address badvaddr);
+static pte_t *find_mapping_and_check(__address badvaddr, istate_t *istate, int *pfrc);
 
 static void prepare_entry_lo(entry_lo_t *lo, bool g, bool v, bool d, bool cacheable, __address pfn);
@@ -92 +92 @@
         __address badvaddr;
         pte_t *pte;
+        int pfrc;
 
         badvaddr = cp0_badvaddr_read();
@@ -101 +102 @@
         page_table_lock(AS, true);
 
-        pte = find_mapping_and_check(badvaddr);
-        if (!pte)
-                goto fail;
+        pte = find_mapping_and_check(badvaddr, istate, &pfrc);
+        if (!pte) {
+                switch (pfrc) {
+                case AS_PF_FAULT:
+                        goto fail;
+                        break;
+                case AS_PF_DEFER:
+                        /*
+                         * The page fault came during copy_from_uspace()
+                         * or copy_to_uspace().
+                         */
+                        page_table_unlock(AS, true);
+                        return;
+                default:
+                        panic("unexpected pfrc (%d)\n", pfrc);
+                }
+        }
 
         /*
@@ -149 +164 @@
         entry_hi_t hi;
         pte_t *pte;
+        int pfrc;
 
         badvaddr = cp0_badvaddr_read();
@@ -171 +187 @@
         }
 
-        pte = find_mapping_and_check(badvaddr);
-        if (!pte)
-                goto fail;
+        pte = find_mapping_and_check(badvaddr, istate, &pfrc);
+        if (!pte) {
+                switch (pfrc) {
+                case AS_PF_FAULT:
+                        goto fail;
+                        break;
+                case AS_PF_DEFER:
+                        /*
+                         * The page fault came during copy_from_uspace()
+                         * or copy_to_uspace().
+                         */
+                        page_table_unlock(AS, true);                     
+                        return;
+                default:
+                        panic("unexpected pfrc (%d)\n", pfrc);
+                }
+        }
 
         /*
@@ -218 +248 @@
         entry_hi_t hi;
         pte_t *pte;
+        int pfrc;
 
         badvaddr = cp0_badvaddr_read();
@@ -240 +271 @@
         }
 
-        pte = find_mapping_and_check(badvaddr);
-        if (!pte)
-                goto fail;
+        pte = find_mapping_and_check(badvaddr, istate, &pfrc);
+        if (!pte) {
+                switch (pfrc) {
+                case AS_PF_FAULT:
+                        goto fail;
+                        break;
+                case AS_PF_DEFER:
+                        /*
+                         * The page fault came during copy_from_uspace()
+                         * or copy_to_uspace().
+                         */
+                        page_table_unlock(AS, true);                     
+                        return;
+                default:
+                        panic("unexpected pfrc (%d)\n", pfrc);
+                }
+        }
 
         /*
@@ -322 +367 @@
  *
  * @param badvaddr Faulting virtual address.
+ * @param istate Pointer to interrupted state.
+ * @param pfrc Pointer to variable where as_page_fault() return code will be stored.
  *
  * @return PTE on success, NULL otherwise.
  */
-pte_t *find_mapping_and_check(__address badvaddr)
+pte_t *find_mapping_and_check(__address badvaddr, istate_t *istate, int *pfrc)
 {
         entry_hi_t hi;
@@ -351 +398 @@
                 return pte;
         } else {
+                int rc;
+                
                 /*
                  * Mapping not found in page tables.
@@ -356 +405 @@
                  */
                 page_table_unlock(AS, true);
-                if (as_page_fault(badvaddr)) {
+                switch (rc = as_page_fault(badvaddr, istate)) {
+                case AS_PF_OK:
                         /*
                          * The higher-level page fault handler succeeded,
@@ -365 +415 @@
                         ASSERT(pte && pte->p);
                         return pte;
-                } else {
+                        break;
+                case AS_PF_DEFER:
+                        page_table_lock(AS, true);
+                        *pfrc = AS_PF_DEFER;
+                        return NULL;
+                        break;
+                case AS_PF_FAULT:
                         page_table_lock(AS, true);
                         printf("Page fault.\n");
+                        *pfrc = AS_PF_FAULT;
                         return NULL;
+                        break;
+                default:
+                        panic("unexpected rc (%d)\n", rc);
                 }
                 

arch/ppc32/include/exception.h

@@ -77 +77 @@
 };
 
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        /* TODO */
+}
+
 #endif

arch/ppc32/include/interrupt.h

@@ -30 +30 @@
 #define __ppc32_INTERRUPT_H__
 
+#include <arch/exception.h>
+
 #define IRQ_COUNT       1
 #define IVT_ITEMS   15

arch/ppc32/src/asm.S

@@ -36 +36 @@
 .global memsetb
 .global memcpy
+.global memcpy_from_uspace
+.global memcpy_to_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace_failover_address
 
 userspace_asm:
@@ -234 +238 @@
 
 memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
+
         srwi. r7, r5, 3
         addi r6, r3, -4
@@ -294 +301 @@
         mtctr r7
         b 1b
+
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        b memcpy_from_uspace_failover_address

arch/ppc32/src/mm/tlb.c

@@ -69 +69 @@
  *
  * @param badvaddr Faulting virtual address.
+ * @param istate Pointer to interrupted state.
+ * @param pfrc Pointer to variable where as_page_fault() return code will be stored.
  * @return         PTE on success, NULL otherwise.
  *
  */
-static pte_t *find_mapping_and_check(__address badvaddr)
+static pte_t *find_mapping_and_check(__address badvaddr, istate_t *istate, int *pfcr)
 {
         /*
@@ -85 +87 @@
                 return pte;
         } else {
+                int rc;
+        
                 /*
                  * Mapping not found in page tables.
@@ -90 +94 @@
                  */
                 page_table_unlock(AS, true);
-                if (as_page_fault(badvaddr)) {
+                switch (rc = as_page_fault(badvaddr, istate)) {
+                case AS_PF_OK:
                         /*
                          * The higher-level page fault handler succeeded,
@@ -99 +104 @@
                         ASSERT((pte) && (pte->p));
                         return pte;
-                } else {
+                        break;
+                case AS_PF_DEFER:
+                        page_table_lock(AS, true);
+                        *pfcr = rc;
+                        return NULL;
+                        break;
+                case AS_PF_FAULT:
                         page_table_lock(AS, true);
                         printf("Page fault.\n");
+                        *pfcr = rc;
                         return NULL;
-                }
-                
+                        break;
+                default:
+                        panic("unexpected rc (%d)\n", rc);
+                        break;
+                }       
         }
 }
@@ -140 +155 @@
         __u32 hash;
         __u32 i;
+        int pfcr;
         
         if (data) {
@@ -155 +171 @@
         page_table_lock(AS, true);
         
-        pte = find_mapping_and_check(badvaddr);
-        if (!pte)
-                goto fail;
+        pte = find_mapping_and_check(badvaddr, istate, &pfcr);
+        if (!pte) {
+                switch (pfcr) {
+                case AS_PF_FAULT:
+                        goto fail;
+                        break;
+                case AS_PF_DEFER:
+                        /*
+                         * The page fault came during copy_from_uspace()
+                         * or copy_to_uspace().
+                         */
+                        page_table_unlock(AS, true);
+                        return;
+                default:
+                        panic("Unexpected pfrc (%d)\n", pfcr);
+                        break;
+                }
+        }
 
         /* Record access to PTE */

arch/sparc64/include/interrupt.h

@@ -31 +31 @@
 
 #include <typedefs.h>
+#include <arch/types.h>
 
 #define IRQ_COUNT       1       /* TODO */
@@ -44 +45 @@
 #define trap_virtual_eoi()
 
+struct istate {
+};
+
+static inline void istate_set_retaddr(istate_t *istate, __address retaddr)
+{
+        /* TODO */
+}
+
 extern void interrupt_register(int n, const char *name, iroutine f);
 

arch/sparc64/src/asm.S

@@ -30 +30 @@
 
 .global memcpy
+.global memcpy_from_uspace
+.global memcpy_to_uspace
+.global memcpy_from_uspace_failover_address
+.global memcpy_to_uspace_failover_address
 .global memsetb
 
 memcpy:
+memcpy_from_uspace:
+memcpy_to_uspace:
+
         b _memcpy
+        nop
+
+memcpy_from_uspace_failover_address:
+memcpy_to_uspace_failover_address:
+        b memcpy_from_uspace_failover_address
         nop
 

generic/include/interrupt.h

@@ -32 +32 @@
 #include <arch/interrupt.h>
 #include <typedefs.h>
+#include <arch/types.h>
 
 #ifndef IVT_ITEMS

generic/include/mm/as.h

@@ -64 +64 @@
 #define AS_AREA_ATTR_PARTIAL    1       /* Not fully initialized area. */
 
+#define AS_PF_FAULT             0       /**< The page fault was not resolved by asp_page_fault(). */
+#define AS_PF_OK                1       /**< The page fault was resolved by as_page_fault(). */
+#define AS_PF_DEFER             2       /**< The page fault was caused by memcpy_from_uspace(). */
+
 /** Address space area structure.
  *
@@ -122 +126 @@
 int as_area_send(task_id_t dst_id, __address base);
 extern void as_set_mapping(as_t *as, __address page, __address frame);
-extern int as_page_fault(__address page);
+extern int as_page_fault(__address page, istate_t *istate);
 extern void as_switch(as_t *old, as_t *new);
 extern void as_free(as_t *as);

generic/include/mm/page.h

@@ -61 +61 @@
 #define PAGE_GLOBAL             (1<<PAGE_GLOBAL_SHIFT)
 
-/* TODO - check that userspace is OK, platform specific functions etc */
-static inline void copy_to_uspace(void *dst, void *src, count_t cnt)
-{
-        memcpy(dst, src, cnt);
-} 
-
-static inline void copy_from_uspace(void *dst, void *src, count_t cnt)
-{
-        memcpy(dst, src, cnt);
-}
-
 /** Operations to manipulate page mappings. */
 struct page_mapping_operations {

generic/include/proc/thread.h

@@ -92 +92 @@
         volatile int timeout_pending;           /**< Flag signalling sleep timeout in progress. */
 
+        /** True if this thread is executing copy_from_uspace(). False otherwise. */
+        bool in_copy_from_uspace;
+        /** True if this thread is executing copy_to_uspace(). False otherwise. */
+        bool in_copy_to_uspace;
+
+
         fpu_context_t *saved_fpu_context;
         int fpu_context_exists;

generic/src/ddi/ddi.c

@@ -41 +41 @@
 #include <security/cap.h>
 #include <mm/frame.h>
-#include <mm/page.h>
 #include <mm/as.h>
 #include <synch/spinlock.h>
+#include <syscall/copy.h>
 #include <arch.h>
 #include <align.h>
@@ -184 +184 @@
 {
         ddi_memarg_t arg;
-        
-        copy_from_uspace(&arg, uspace_mem_arg, sizeof(ddi_memarg_t));
+        int rc;
+        
+        rc = copy_from_uspace(&arg, uspace_mem_arg, sizeof(ddi_memarg_t));
+        if (rc != 0)
+                return (__native) rc;
+                
         return (__native) ddi_physmem_map((task_id_t) arg.task_id, ALIGN_DOWN((__address) arg.phys_base, FRAME_SIZE),
                                           ALIGN_DOWN((__address) arg.virt_base, PAGE_SIZE), (count_t) arg.pages,
@@ -200 +204 @@
 {
         ddi_ioarg_t arg;
-        
-        copy_from_uspace(&arg, uspace_io_arg, sizeof(ddi_ioarg_t));
+        int rc;
+        
+        rc = copy_from_uspace(&arg, uspace_io_arg, sizeof(ddi_ioarg_t));
+        if (rc != 0)
+                return (__native) rc;
+                
         return (__native) ddi_iospace_enable((task_id_t) arg.task_id, (__address) arg.ioaddr, (size_t) arg.size);
 }

generic/src/ipc/irq.c

@@ -48 +48 @@
 #include <ipc/irq.h>
 #include <atomic.h>
+#include <syscall/copy.h>
 
 typedef struct {
@@ -121 +122 @@
         irq_code_t *code;
         irq_cmd_t *ucmds;
+        int rc;
 
         code = malloc(sizeof(*code), 0);
-        copy_from_uspace(code, ucode, sizeof(*code));
+        rc = copy_from_uspace(code, ucode, sizeof(*code));
+        if (rc != 0) {
+                free(code);
+                return NULL;
+        }
         
         if (code->cmdcount > IRQ_MAX_PROG_SIZE) {
@@ -131 +137 @@
         ucmds = code->cmds;
         code->cmds = malloc(sizeof(code->cmds[0]) * (code->cmdcount), 0);
-        copy_from_uspace(code->cmds, ucmds, sizeof(code->cmds[0]) * (code->cmdcount));
+        rc = copy_from_uspace(code->cmds, ucmds, sizeof(code->cmds[0]) * (code->cmdcount));
+        if (rc != 0) {
+                free(code->cmds);
+                free(code);
+                return NULL;
+        }
 
         return code;

generic/src/ipc/sysipc.c

@@ -29 +29 @@
 #include <arch.h>
 #include <proc/task.h>
-
+#include <proc/thread.h>
 #include <errno.h>
-#include <mm/page.h>
 #include <memstr.h>
 #include <debug.h>
@@ -39 +38 @@
 #include <ipc/ipcrsc.h>
 #include <arch/interrupt.h>
-
 #include <print.h>
-#include <arch.h>
-#include <proc/thread.h>
+#include <syscall/copy.h>
 
 #define GET_CHECK_PHONE(phone,phoneid,err) { \
@@ -229 +226 @@
         phone_t *phone;
         int res;
+        int rc;
 
         ipc_call_static_init(&call);
-        copy_from_uspace(&call.data.args, &question->args, sizeof(call.data.args));
+        rc = copy_from_uspace(&call.data.args, &question->args, sizeof(call.data.args));
+        if (rc != 0)
+                return (__native) rc;
 
         GET_CHECK_PHONE(phone, phoneid, return ENOENT);
@@ -241 +241 @@
                 IPC_SET_RETVAL(call.data, res);
 
-        STRUCT_TO_USPACE(&reply->args, &call.data.args);
+        rc = STRUCT_TO_USPACE(&reply->args, &call.data.args);
+        if (rc != 0)
+                return rc;
 
         return 0;
@@ -298 +300 @@
         phone_t *phone;
         int res;
+        int rc;
 
         if (check_call_limit())
@@ -305 +308 @@
 
         call = ipc_call_alloc(0);
-        copy_from_uspace(&call->data.args, &data->args, sizeof(call->data.args));
+        rc = copy_from_uspace(&call->data.args, &data->args, sizeof(call->data.args));
+        if (rc != 0)
+                return (__native) rc;
         if (!(res=request_preprocess(call)))
                 ipc_call(phone, call);
@@ -394 +399 @@
         ipc_data_t saved_data;
         int saveddata = 0;
+        int rc;
 
         call = get_call(callid);
@@ -403 +409 @@
                 saveddata = 1;
         }
-        copy_from_uspace(&call->data.args, &data->args, 
+        rc = copy_from_uspace(&call->data.args, &data->args, 
                          sizeof(call->data.args));
+        if (rc != 0)
+                return rc;
 
         answer_preprocess(call, saveddata ? &saved_data : NULL);

generic/src/mm/as.c

@@ -58 +58 @@
 #include <adt/btree.h>
 #include <proc/task.h>
+#include <proc/thread.h>
 #include <arch/asm.h>
 #include <panic.h>
@@ -69 +70 @@
 #include <arch/types.h>
 #include <typedefs.h>
+#include <syscall/copy.h>
+#include <arch/interrupt.h>
 
 as_operations_t *as_operations = NULL;
@@ -478 +481 @@
  *
  * @param page Faulting page.
- *
- * @return 0 on page fault, 1 on success.
- */
-int as_page_fault(__address page)
+ * @param istate Pointer to interrupted state.
+ *
+ * @return 0 on page fault, 1 on success or 2 if the fault was caused by copy_to_uspace() or copy_from_uspace().
+ */
+int as_page_fault(__address page, istate_t *istate)
 {
         pte_t *pte;
@@ -497 +501 @@
                  */
                 spinlock_unlock(&AS->lock);
-                return 0;
+                goto page_fault;
         }
 
@@ -507 +511 @@
                 spinlock_unlock(&area->lock);
                 spinlock_unlock(&AS->lock);
-                return 0;               
+                goto page_fault;                
         }
 
@@ -555 +559 @@
         spinlock_unlock(&area->lock);
         spinlock_unlock(&AS->lock);
-        return 1;
+        return AS_PF_OK;
+
+page_fault:
+        if (!THREAD)
+                return AS_PF_FAULT;
+        
+        if (THREAD->in_copy_from_uspace) {
+                THREAD->in_copy_from_uspace = false;
+                istate_set_retaddr(istate, (__address) &memcpy_from_uspace_failover_address);
+        } else if (THREAD->in_copy_to_uspace) {
+                THREAD->in_copy_to_uspace = false;
+                istate_set_retaddr(istate, (__address) &memcpy_to_uspace_failover_address);
+        } else {
+                return AS_PF_FAULT;
+        }
+
+        return AS_PF_DEFER;
 }
 
@@ -885 +905 @@
 {
         as_area_acptsnd_arg_t arg;
-        
-        copy_from_uspace(&arg, uspace_accept_arg, sizeof(as_area_acptsnd_arg_t));
+        int rc;
+        
+        rc = copy_from_uspace(&arg, uspace_accept_arg, sizeof(as_area_acptsnd_arg_t));
+        if (rc != 0)
+                return rc;
         
         if (!arg.size)
@@ -907 +930 @@
 {
         as_area_acptsnd_arg_t arg;
-        
-        copy_from_uspace(&arg, uspace_send_arg, sizeof(as_area_acptsnd_arg_t));
+        int rc;
+        
+        rc = copy_from_uspace(&arg, uspace_send_arg, sizeof(as_area_acptsnd_arg_t));
+        if (rc != 0)
+                return rc;
 
         if (!arg.size)

generic/src/mm/slab.c

@@ -176 +176 @@
                 slab = data + fsize - sizeof(*slab);
         }
-                
+        
         /* Fill in slab structures */
         for (i=0; i < (1 << cache->order); i++)
@@ -278 +278 @@
                 /* Allow recursion and reclaiming
                  * - this should work, as the slab control structures
-                 *   are small and do not need to allocte with anything
-                 *   other ten frame_alloc when they are allocating,
+                 *   are small and do not need to allocate with anything
+                 *   other than frame_alloc when they are allocating,
                  *   that's why we should get recursion at most 1-level deep
                  */
@@ -880 +880 @@
 
         ASSERT(_slab_initialized);
-        ASSERT( size && size <= (1 << SLAB_MAX_MALLOC_W));
+        ASSERT(size && size <= (1 << SLAB_MAX_MALLOC_W));
         
         if (size < (1 << SLAB_MIN_MALLOC_W))
@@ -890 +890 @@
 }
 
-
 void free(void *obj)
 {

generic/src/printf/vsnprintf.c

@@ -40 +40 @@
 
 /** Write string to given buffer.
- * Write at most data->size characters including trailing zero. According to C99 has snprintf to return number
+ * Write at most data->size characters including trailing zero. According to C99, snprintf() has to return number
  * of characters that would have been written if enough space had been available. Hence the return value is not
- * number of really printed characters but size of input string. Number of really used characters 
+ * number of really printed characters but size of the input string. Number of really used characters 
  * is stored in data->len.
  * @param str source string to print
@@ -91 +91 @@
         return printf_core(fmt, &ps, ap);
 }
-
-

generic/src/proc/task.c

@@ -49 +49 @@
 #include <print.h>
 #include <elf.h>
-
+#include <syscall/copy.h>
 
 #ifndef LOADED_PROG_STACK_PAGES_NO
@@ -171 +171 @@
  * @param uspace_task_id Userspace address of 8-byte buffer where to store current task ID.
  *
- * @return Always returns 0.
+ * @return 0 on success or an error code from @ref errno.h.
  */
 __native sys_task_get_id(task_id_t *uspace_task_id)
@@ -179 +179 @@
          * remains constant for the lifespan of the task.
          */
-        copy_to_uspace(uspace_task_id, &TASK->taskid, sizeof(TASK->taskid));
-
-        return 0;
+        return (__native) copy_to_uspace(uspace_task_id, &TASK->taskid, sizeof(TASK->taskid));
 }
 

generic/src/proc/thread.c

@@ -61 +61 @@
 #include <debug.h>
 #include <main/uinit.h>
+#include <syscall/copy.h>
+#include <errno.h>
 
 char *thread_states[] = {"Invalid", "Running", "Sleeping", "Ready", "Entering", "Exiting"}; /**< Thread states */
@@ -304 +306 @@
         t->sleep_queue = NULL;
         t->timeout_pending = 0;
+
+        t->in_copy_from_uspace = false;
+        t->in_copy_to_uspace = false;
         
         t->rwlock_holder_type = RWLOCK_NONE;
@@ -463 +468 @@
         uspace_arg_t *kernel_uarg;
         __u32 tid;
-
-        copy_from_uspace(namebuf, uspace_name, THREAD_NAME_BUFLEN);
+        int rc;
+
+        rc = copy_from_uspace(namebuf, uspace_name, THREAD_NAME_BUFLEN);
+        if (rc != 0)
+                return (__native) rc;
 
         kernel_uarg = (uspace_arg_t *) malloc(sizeof(uspace_arg_t), 0); 
-        copy_from_uspace(kernel_uarg, uspace_uarg, sizeof(uspace_arg_t));
+        rc = copy_from_uspace(kernel_uarg, uspace_uarg, sizeof(uspace_arg_t));
+        if (rc != 0) {
+                free(kernel_uarg);
+                return (__native) rc;
+        }
 
         if ((t = thread_create(uinit, kernel_uarg, TASK, 0, namebuf))) {
@@ -477 +489 @@
         }
 
-        return (__native) -1;
+        return (__native) ENOMEM;
 }
 

generic/src/smp/ipi.c

@@ -44 +44 @@
  * @param ipi Message to broadcast.
  *
- * @bugs The decision whether to actually send the IPI must be based
- *       on a different criterion. The current version has
- *       problems when some of the detected CPUs are marked
- *       disabled in machine configuration.
+ * @bug The decision whether to actually send the IPI must be based
+ *      on a different criterion. The current version has
+ *      problems when some of the detected CPUs are marked
+ *      disabled in machine configuration.
  */
 void ipi_broadcast(int ipi)

generic/src/synch/waitq.c

@@ -31 +31 @@
  * @brief       Wait queue.
  *
- * Wait queue is the basic synchronization primitive upon all
+ * Wait queue is the basic synchronization primitive upon which all
  * other synchronization primitives build.
  *