From nobody Wed Feb  5 20:35:16 2025
Received: from mail-pl1-f181.google.com (mail-pl1-f181.google.com
 [209.85.214.181])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id A8D6223F29D
	for <linux-kernel@vger.kernel.org>; Wed, 15 Jan 2025 10:30:00 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.214.181
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1736937002; cv=none;
 b=Q9syxWIv1dgk7n8xyZheRtJkD1AOdBAN4Ky8p4gbSjUAr6YMpATUvFQ3WWOLE1uMytDVd+3OJuALujBAsq96QZIpFO8nCgkfyP2kqLojkkZfeJZpYf7X1lJm7rK3HL0AhO/vSBiBGPO0cydzVfDEm318KBMK7RrHtzaYLcVKdNA=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1736937002; c=relaxed/simple;
	bh=dhtXRlaYMv9+3vcb06NZHC06q7d9tWaiXXCjLtWYr30=;
	h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References:
	 MIME-Version;
 b=RS0BFPX4ipEduM8ER7fGtMYDSJYAu9hkx1DArbFqytJ4XAeuohmA/d8B1WYRyadI/Cb1dP8nT2n28M/x1uXKSuyFpWdMUJMvD8mSGvy52wehi6iwYsj9c8Wdf1ts4Ln9nbjYqmR3DhNqCO75JnyUbmvg+8zVn4F7FGNpWZDcHLQ=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org;
 spf=pass smtp.mailfrom=chromium.org;
 dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b=f+kdmbf/; arc=none smtp.client-ip=209.85.214.181
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b="f+kdmbf/"
Received: by mail-pl1-f181.google.com with SMTP id
 d9443c01a7336-2156e078563so96466265ad.2
        for <linux-kernel@vger.kernel.org>;
 Wed, 15 Jan 2025 02:30:00 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google; t=1736937000; x=1737541800;
 darn=vger.kernel.org;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:from:to:cc:subject:date
         :message-id:reply-to;
        bh=Wla9sc5fcu+bqbR8lfrtmNCFTk5H4wEvmZAOtzLNAVk=;
        b=f+kdmbf/ZnqKXrWvtRRtMc3FOOLcVfvcFx+LykE+3ZRaIPoFYlfDbJuVrHfneqI2Ek
         5pfwYJQdn6550ilc9Hnbhb9V4VpxsL7m7z64kRZBvtIoZqDr9Ug9Plt/p5PTKOgdetMH
         ss1bOskwL6eRUNV/bwrcEdS7eVZR9miiUvhuw=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1736937000; x=1737541800;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=Wla9sc5fcu+bqbR8lfrtmNCFTk5H4wEvmZAOtzLNAVk=;
        b=P11+EDIIzKO5J2kFYq3lIUq4T1N0mDuj4QP4TwA1yK/v9xqwp72eItQVS/MFe0hZ7J
         HzbmSHMNlh27bwDlSdm043Awz7s4ddcZK/f23j139kFbxEyW6INshlHAk/Zx5pemIjQz
         hLrvTLtEM/D5VKNi4WMk7Ey03YuIWk1FztC3x92tqj618fwE8abaSXYdAfOetCSyBWMA
         bSpRdBo5C1TOqBb0Xkfyj0Xd5w0wjWDgBxE+u/3i2RJyG6o4k3caVqkdjG0APBrMb5iH
         1Nznfs/eaYc9HW8BO9CDV8wX6f6wP7TCJi8+QgLdNvwiCyrnjz1k338pyB0jVvp0ib6r
         R+dQ==
X-Forwarded-Encrypted: i=1;
 AJvYcCX3eXk1gOSNXj5ejLgOWa36xBT90JzivQ+cmTS9ROyn3bKojqZ7nzfzrga2pRC2smHCRAZuY/kdwkVyYaQ=@vger.kernel.org
X-Gm-Message-State: AOJu0YwDSXBwuad0zMWj6+sb7i81YFE7BeJ5AwKDxqbhgwMf/mSU7CsY
	WqLOnMhXgaDO3L6aAyK35JowjQIcZpVX9asRKXg6Am3mnDV1gaoizPx4R5XnTA==
X-Gm-Gg: ASbGncuLJISGRH4akIOUZfpAHkDkWgAd/VsUdwlJwxeRIWV9UHHy+Zo5iOUA1GrvIZo
	hB1lIrmJaY7SJqAuqvvgfaeZ3PpaS+BvCRMhzuV9/SxxzoVUVA1bES6LXCykF4Ghlh99XiodgP2
	9M7Q7Tn8+pMISqYJMc5IC5Zj0wqy7ox33hYJMnpd5j6S2/AaMdjphiYSeCrHdHuo0oc8aq35mW6
	XY7dOP1A9f+p6smQaVR2pzAw2/BtOk42BvUjMqR4vKtHSenSEwjRBCxL00tvSOYwJuopmUN1Hwv
	Sq5j2Wc9/Hg5IqyXDwVcV15ZpII3SA7pokVx0wMkisxZog==
X-Google-Smtp-Source: 
 AGHT+IFELcOP89VvVTz21l4LIeLc6IKyzpVksH7aQGXYFzhWweTpfk1zJ3wHzBSftRMK/m7yogYrtA==
X-Received: by 2002:a05:6a20:3d8b:b0:1d9:18af:d150 with SMTP id
 adf61e73a8af0-1e88d114f9bmr45237308637.21.1736937000050;
        Wed, 15 Jan 2025 02:30:00 -0800 (PST)
Received: from li-cloudtop.c.googlers.com.com
 (134.90.125.34.bc.googleusercontent.com. [34.125.90.134])
        by smtp.gmail.com with ESMTPSA id
 d2e1a72fcca58-72d4067e591sm8835195b3a.126.2025.01.15.02.29.58
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 15 Jan 2025 02:29:59 -0800 (PST)
From: Li Li <dualli@chromium.org>
To: dualli@google.com,
	corbet@lwn.net,
	davem@davemloft.net,
	edumazet@google.com,
	kuba@kernel.org,
	pabeni@redhat.com,
	donald.hunter@gmail.com,
	gregkh@linuxfoundation.org,
	arve@android.com,
	tkjos@android.com,
	maco@android.com,
	joel@joelfernandes.org,
	brauner@kernel.org,
	cmllamas@google.com,
	surenb@google.com,
	arnd@arndb.de,
	masahiroy@kernel.org,
	bagasdotme@gmail.com,
	horms@kernel.org,
	linux-kernel@vger.kernel.org,
	linux-doc@vger.kernel.org,
	netdev@vger.kernel.org,
	hridya@google.com,
	smoreland@google.com
Cc: kernel-team@android.com
Subject: [PATCH v13 1/3] tools: ynl-gen: add trampolines for sock-priv
Date: Wed, 15 Jan 2025 02:29:48 -0800
Message-ID: <20250115102950.563615-2-dualli@chromium.org>
X-Mailer: git-send-email 2.48.0.rc2.279.g1de40edade-goog
In-Reply-To: <20250115102950.563615-1-dualli@chromium.org>
References: <20250115102950.563615-1-dualli@chromium.org>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Li Li <dualli@google.com>

This fixes the CFI failure at genl-sk_priv_get().

Suggested-by: Jakub Kicinski <kuba@kernel.org>
Signed-off-by: Li Li <dualli@google.com>
---
 tools/net/ynl/pyynl/ynl_gen_c.py | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/tools/net/ynl/pyynl/ynl_gen_c.py b/tools/net/ynl/pyynl/ynl_gen=
_c.py
index d3a7dfbcf929..9852ba6fd9c3 100755
--- a/tools/net/ynl/pyynl/ynl_gen_c.py
+++ b/tools/net/ynl/pyynl/ynl_gen_c.py
@@ -2411,6 +2411,15 @@ def print_kernel_family_struct_src(family, cw):
     if not kernel_can_gen_family_struct(family):
         return
=20
+    if 'sock-priv' in family.kernel_family:
+        # Generate "trampolines" to make CFI happy
+        cw.write_func("static void", f"__{family.c_name}_nl_sock_priv_init=
",
+                      [f"{family.c_name}_nl_sock_priv_init(priv);"], ["voi=
d *priv"])
+        cw.nl()
+        cw.write_func("static void", f"__{family.c_name}_nl_sock_priv_dest=
roy",
+                      [f"{family.c_name}_nl_sock_priv_destroy(priv);"], ["=
void *priv"])
+        cw.nl()
+
     cw.block_start(f"struct genl_family {family.ident_name}_nl_family __ro=
_after_init =3D")
     cw.p('.name\t\t=3D ' + family.fam_key + ',')
     cw.p('.version\t=3D ' + family.ver_key + ',')
@@ -2428,9 +2437,8 @@ def print_kernel_family_struct_src(family, cw):
         cw.p(f'.n_mcgrps\t=3D ARRAY_SIZE({family.c_name}_nl_mcgrps),')
     if 'sock-priv' in family.kernel_family:
         cw.p(f'.sock_priv_size\t=3D sizeof({family.kernel_family["sock-pri=
v"]}),')
-        # Force cast here, actual helpers take pointer to the real type.
-        cw.p(f'.sock_priv_init\t=3D (void *){family.c_name}_nl_sock_priv_i=
nit,')
-        cw.p(f'.sock_priv_destroy =3D (void *){family.c_name}_nl_sock_priv=
_destroy,')
+        cw.p(f'.sock_priv_init\t=3D __{family.c_name}_nl_sock_priv_init,')
+        cw.p(f'.sock_priv_destroy =3D __{family.c_name}_nl_sock_priv_destr=
oy,')
     cw.block_end(';')
=20
=20
--=20
2.48.0.rc2.279.g1de40edade-goog
From nobody Wed Feb  5 20:35:16 2025
Received: from mail-pl1-f173.google.com (mail-pl1-f173.google.com
 [209.85.214.173])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3F7A2242254
	for <linux-kernel@vger.kernel.org>; Wed, 15 Jan 2025 10:30:02 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.214.173
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1736937004; cv=none;
 b=VjsyZlPUBcApS861Ihop9LLhAkpXjb1WTUnjhU/HEPtdmTBoXcziMPBBn/nczo2GN1C0J54XasQ1RhviqNRI83h5ZhQDxqfNMxaYHPPuVPBV6zaqpCe6+B2r8yrkPct5n9mQl6Yj9R9jWulLyLmErDi5+cDG5c4wNDW2u4LLM/A=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1736937004; c=relaxed/simple;
	bh=AuS/iv6kct3xwW/JT6RfpDdtL/kYEb8lhYq9bZGCAcA=;
	h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References:
	 MIME-Version;
 b=BjFYIEcYL1c8UEA2g0d90+JokAZLDQsrRUsRuW5BBh1U89ysZM9yQVQaF5oEzXPp61xvzr3Yl0EzCqJGIHGc4MvmGNSNjpUjFxmJ9lQP63mtFTwoSW2+KRIzyLB9C8WhqX7at6G4GpbJ0MZnIQe9JHClSLd8/vvbcP5QOqu/TGo=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org;
 spf=pass smtp.mailfrom=chromium.org;
 dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b=lR0fSQdi; arc=none smtp.client-ip=209.85.214.173
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b="lR0fSQdi"
Received: by mail-pl1-f173.google.com with SMTP id
 d9443c01a7336-21a7ed0155cso112278855ad.3
        for <linux-kernel@vger.kernel.org>;
 Wed, 15 Jan 2025 02:30:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google; t=1736937001; x=1737541801;
 darn=vger.kernel.org;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:from:to:cc:subject:date
         :message-id:reply-to;
        bh=vhgcFiioBCTJrsBu7R7SWfvrloYa7MHsggVE4kmGhcU=;
        b=lR0fSQdiE04ikti+5xq8WaDFxzwVQeHg00rN11k+au+7HPHtKuWQWs9Thgfz8tmALw
         5vfNFj8uLCMz2/Ok7bzr6zbU4Am+zfIpirMWAuu3ZDrCMaoMmN+dQzeF1BMXQD+k+wsJ
         gsj0vAL3byHY9P59YTMwJtwOK8brJh897vO3c=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1736937001; x=1737541801;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=vhgcFiioBCTJrsBu7R7SWfvrloYa7MHsggVE4kmGhcU=;
        b=d9U4q6rXO8+9P65E60Cof9l58lVgJCzJMB/hoVjKU0QVTVLTMKGiqnJMrPXhv+teDA
         DKaBaukkqsEhqYGDWuIU3F/3vrAuGe9xxntxkWJULPHIK7lJ3PtOaATUDW+EKGfcyw2G
         7rjaiqKQsAG3heaVa6Zf4htovRaH+wGq30MLW1o46SbHIi9OMtkz0+xCepwwr5O+bnfA
         muJIMdUMwv0wBQ0Jb6mXvdNwOXYCl3Gsh5ke5qaQUZWOInCPrGR8ueZ0fXTvMPezOtxK
         r65MJIE4PL1gaUDqJEhN9TL4HpnCY5B8pT5AgUp5FTSHcj6AGxU/UGGOcf5Q41V2yanf
         RuvQ==
X-Forwarded-Encrypted: i=1;
 AJvYcCVIj3sBR5F3hTo4d03uM5Q9eppcVUNcAeCibH441WCjurq7e8MZT4ZJyGwZafMnvJt5+n99NWcXm87nT+s=@vger.kernel.org
X-Gm-Message-State: AOJu0Yz/48oBi54gnD8WjriKMwe5UHdOOyqMaaVur0b9h7VNESNrxJmq
	NG9/6+6gaRUB+jVqB9E/K5oh1cg/Trh9OQjJJVHg6GX8w46wL2fTnkVqpz5MNg==
X-Gm-Gg: ASbGncvC3blpf6PryIa+cj7vV0DxJAarHwmBnWbdE+XkvZ89awMcAiszsXmKs/D8igS
	+7KfGJ/ETyTR0vynDm3AH4ViK2TbIS3zINv/1ppzFzotxb/nRvlvuyQacEG82IzvjYPSRcitiHh
	dfaJKOCQ83VKb4h8E3SycFv/KviKH5Rhxbc3WFLIlBIW0XKNbs3t/DQfPUHdmYgik21pJj0fbPt
	33IaSk1g2PLeKCFMvkLGx04cBvpUfcYAgRfD2chwxfbaq+Xs72cwoZw024Zm2Lz1blSMbS29PoS
	OCJf4FrSAgPHRh+zeVbIKpBi1pl2TDG2bQH4x6eovJ+kKg==
X-Google-Smtp-Source: 
 AGHT+IHLfLGJgEZ5SLuPyAwiMbZYFQ09flUH9NUqIb9U6+ujP8obt/r8pocQNQyqRrN/HC41+DPhzg==
X-Received: by 2002:a05:6a00:9a7:b0:725:ebab:bb2e with SMTP id
 d2e1a72fcca58-72d21f64e2amr37892682b3a.11.1736937001568;
        Wed, 15 Jan 2025 02:30:01 -0800 (PST)
Received: from li-cloudtop.c.googlers.com.com
 (134.90.125.34.bc.googleusercontent.com. [34.125.90.134])
        by smtp.gmail.com with ESMTPSA id
 d2e1a72fcca58-72d4067e591sm8835195b3a.126.2025.01.15.02.30.00
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 15 Jan 2025 02:30:01 -0800 (PST)
From: Li Li <dualli@chromium.org>
To: dualli@google.com,
	corbet@lwn.net,
	davem@davemloft.net,
	edumazet@google.com,
	kuba@kernel.org,
	pabeni@redhat.com,
	donald.hunter@gmail.com,
	gregkh@linuxfoundation.org,
	arve@android.com,
	tkjos@android.com,
	maco@android.com,
	joel@joelfernandes.org,
	brauner@kernel.org,
	cmllamas@google.com,
	surenb@google.com,
	arnd@arndb.de,
	masahiroy@kernel.org,
	bagasdotme@gmail.com,
	horms@kernel.org,
	linux-kernel@vger.kernel.org,
	linux-doc@vger.kernel.org,
	netdev@vger.kernel.org,
	hridya@google.com,
	smoreland@google.com
Cc: kernel-team@android.com
Subject: [PATCH v13 2/3] netdev-genl: run ynl-regen to fix CFI failure
Date: Wed, 15 Jan 2025 02:29:49 -0800
Message-ID: <20250115102950.563615-3-dualli@chromium.org>
X-Mailer: git-send-email 2.48.0.rc2.279.g1de40edade-goog
In-Reply-To: <20250115102950.563615-1-dualli@chromium.org>
References: <20250115102950.563615-1-dualli@chromium.org>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Li Li <dualli@google.com>

The ynl-gen tool has been updated to generate trampolines for sock-priv
to fix the CFI failure. Run ynl-regen to apply the fix to netdev-genl.

Signed-off-by: Li Li <dualli@google.com>
---
 net/core/netdev-genl-gen.c | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/net/core/netdev-genl-gen.c b/net/core/netdev-genl-gen.c
index a89cbd8d87c3..996ac6a449eb 100644
--- a/net/core/netdev-genl-gen.c
+++ b/net/core/netdev-genl-gen.c
@@ -197,6 +197,16 @@ static const struct genl_multicast_group netdev_nl_mcg=
rps[] =3D {
 	[NETDEV_NLGRP_PAGE_POOL] =3D { "page-pool", },
 };
=20
+static void __netdev_nl_sock_priv_init(void *priv)
+{
+	netdev_nl_sock_priv_init(priv);
+}
+
+static void __netdev_nl_sock_priv_destroy(void *priv)
+{
+	netdev_nl_sock_priv_destroy(priv);
+}
+
 struct genl_family netdev_nl_family __ro_after_init =3D {
 	.name		=3D NETDEV_FAMILY_NAME,
 	.version	=3D NETDEV_FAMILY_VERSION,
@@ -208,6 +218,6 @@ struct genl_family netdev_nl_family __ro_after_init =3D=
 {
 	.mcgrps		=3D netdev_nl_mcgrps,
 	.n_mcgrps	=3D ARRAY_SIZE(netdev_nl_mcgrps),
 	.sock_priv_size	=3D sizeof(struct list_head),
-	.sock_priv_init	=3D (void *)netdev_nl_sock_priv_init,
-	.sock_priv_destroy =3D (void *)netdev_nl_sock_priv_destroy,
+	.sock_priv_init	=3D __netdev_nl_sock_priv_init,
+	.sock_priv_destroy =3D __netdev_nl_sock_priv_destroy,
 };
--=20
2.48.0.rc2.279.g1de40edade-goog
From nobody Wed Feb  5 20:35:16 2025
Received: from mail-pl1-f179.google.com (mail-pl1-f179.google.com
 [209.85.214.179])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 2B1FD24333D
	for <linux-kernel@vger.kernel.org>; Wed, 15 Jan 2025 10:30:03 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=209.85.214.179
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1736937007; cv=none;
 b=El+g8PMN5JYLBxvA0e4MLdbUCxxzG/Lm215wb1h0iEFvlFqNUeaMwCVGtT9eKOSYNxx3XEijIDIWMoVZw8NSC/tOpwmvQlK+VyNf1cEvfWMIZt6JmR8SC9oOjFz93v086qwhbmbnqVe6tBGTEG+rZoX9BJ8zrnF56llLpMeSymk=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1736937007; c=relaxed/simple;
	bh=u/9ou+buehrISR4zdQgF9I6Za6NjBsP9FIuQWQW9RvY=;
	h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References:
	 MIME-Version;
 b=nXtMaxyNQIkIvOR0G1P5HNx+z2CumkvZCtxAXmOFSN+d/ochDdPHN2eTxe0IAwBa5xeO3v6bqYSRlwapzx+D6r3MCgFIocpmCE1MXzEhLOq4PX0rS8CGyMyzjdv1xcmSW4V8ve/iwhxy6GvxkSXFiuwJuRxMPHg7V1V/V8Uj1/E=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org;
 spf=pass smtp.mailfrom=chromium.org;
 dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b=iX4yb9GV; arc=none smtp.client-ip=209.85.214.179
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=none dis=none) header.from=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=chromium.org
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org
 header.b="iX4yb9GV"
Received: by mail-pl1-f179.google.com with SMTP id
 d9443c01a7336-21628b3fe7dso111281875ad.3
        for <linux-kernel@vger.kernel.org>;
 Wed, 15 Jan 2025 02:30:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google; t=1736937003; x=1737541803;
 darn=vger.kernel.org;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:from:to:cc:subject:date
         :message-id:reply-to;
        bh=xxANLdtLrW5RCHFJX5Jx0JY0mD7n8E1mOypGGZjxIh4=;
        b=iX4yb9GVqbUxp9wgQYA6l6FGcDBy4IvHoWgBUFPX9XRnXqzUk7Wuif2NeyYSxHBBhp
         8pyH9dbT95McDZ/b6+smekY94C0K6O7iksXpiIw0bH2VA0b7OVzPtw6I9XfmBdqThpi/
         cIRC+7Naj5QPffJ2xgnfO1BiLbLVtFsgQLdyA=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1736937003; x=1737541803;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=xxANLdtLrW5RCHFJX5Jx0JY0mD7n8E1mOypGGZjxIh4=;
        b=GBfzBlL/aqlofhjW6VdDBVBnjXKwJdMo2Zasw3D3TAOy4MkCgYW5IcTUy9HygsapDG
         nSaD55krp1Ob4gwKxaNoZEuz+zdBIuxXLUTt4bbHDIjweyODgicuCKuQsJror2taY6Gj
         gI/9bYTjlIl6B8dGXBGA/6Xw5zLkv8dqkXuqJTliutRyDX2BcPtumXuxnVK52dlmFzoD
         CBBPrF1BNgmLFyk2FHy3ZcbEB7FdMmykEZjpYHxE+s25tnVnk9aeSdB+2d5cOvugrjU3
         C6a7IjcjjGJcJ+eBH/P7c9EjnKZ46XpfdIgOTow8r3SmlXAxv+P5zYbBWXskbkZSTM6B
         uW8w==
X-Forwarded-Encrypted: i=1;
 AJvYcCU7WLnjTpVVVjncyDIRNqmhBTVU7yi96CBIe8ILsX/sU/lmRH+PA8375bSqekbcDRh9ICd/oWN86+nxDLc=@vger.kernel.org
X-Gm-Message-State: AOJu0YwzmzbXYmDLs7SV6e9patF9/YIgBYJFzoD2wlKpnXo4+dlVleJJ
	ZhiOHUg76PCGDsHU82ocqVC3H26QEEzn5EirFSwnhBaKQglcejfFMpdC6iq6jA==
X-Gm-Gg: ASbGnctuheI7vGVeaE6BHcukPfYU6lvALTs0auv3XZ3nqxOjoTsaa9nL6lOXznOK61r
	WATB35UhDQL4aj540zWxSgKU0OFMaVxnKReb6pXXiSdnPEtWugbpSZJrMRKA3V7fv+Q3gZe862u
	hwIDfVsFWS1tGSPCCJllR/XXtLZoOiIF3NR1/2/fkyqeKNNxbm7TUsyMQ6UE52pwYvwNQ+mFMXw
	WnEf+GYGEYYkCF72hrPVhVDyiJVqylDTeY9zWQQ7DzhctRU5PnB9Dmd0Wh+iZsP/2OLQi64XLSp
	zKJw1fimBtzxMBPoij9w9o/fUYuin9jURhl86STXJwQ4Dw==
X-Google-Smtp-Source: 
 AGHT+IE6e1oYtkW+J6av4prH5wBmiDYXm9faR8hD+5xD6Cwq20r4GTDlXn1q+NIWwhVP6My3PhFYtQ==
X-Received: by 2002:a05:6a21:328c:b0:1ea:e81c:60fa with SMTP id
 adf61e73a8af0-1eae81c62d7mr15485884637.20.1736937003139;
        Wed, 15 Jan 2025 02:30:03 -0800 (PST)
Received: from li-cloudtop.c.googlers.com.com
 (134.90.125.34.bc.googleusercontent.com. [34.125.90.134])
        by smtp.gmail.com with ESMTPSA id
 d2e1a72fcca58-72d4067e591sm8835195b3a.126.2025.01.15.02.30.01
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 15 Jan 2025 02:30:02 -0800 (PST)
From: Li Li <dualli@chromium.org>
To: dualli@google.com,
	corbet@lwn.net,
	davem@davemloft.net,
	edumazet@google.com,
	kuba@kernel.org,
	pabeni@redhat.com,
	donald.hunter@gmail.com,
	gregkh@linuxfoundation.org,
	arve@android.com,
	tkjos@android.com,
	maco@android.com,
	joel@joelfernandes.org,
	brauner@kernel.org,
	cmllamas@google.com,
	surenb@google.com,
	arnd@arndb.de,
	masahiroy@kernel.org,
	bagasdotme@gmail.com,
	horms@kernel.org,
	linux-kernel@vger.kernel.org,
	linux-doc@vger.kernel.org,
	netdev@vger.kernel.org,
	hridya@google.com,
	smoreland@google.com
Cc: kernel-team@android.com
Subject: [PATCH v13 3/3] binder: report txn errors via generic netlink
Date: Wed, 15 Jan 2025 02:29:50 -0800
Message-ID: <20250115102950.563615-4-dualli@chromium.org>
X-Mailer: git-send-email 2.48.0.rc2.279.g1de40edade-goog
In-Reply-To: <20250115102950.563615-1-dualli@chromium.org>
References: <20250115102950.563615-1-dualli@chromium.org>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

From: Li Li <dualli@google.com>

Introduce generic netlink messages into the binder driver so that the
Linux/Android system administration process can listen to important
events and take corresponding actions, like stopping a broken app from
attacking the OS by sending huge amount of spamming binder transactions.

The binder netlink sources and headers are automatically generated from
the corresponding binder netlink YAML spec. Don't modify them directly.

Signed-off-by: Li Li <dualli@google.com>
---
 Documentation/admin-guide/binder_netlink.rst | 110 ++++++++
 Documentation/admin-guide/index.rst          |   1 +
 Documentation/netlink/specs/binder.yaml      | 113 ++++++++
 drivers/android/Kconfig                      |   1 +
 drivers/android/Makefile                     |   2 +-
 drivers/android/binder.c                     | 282 ++++++++++++++++++-
 drivers/android/binder_internal.h            |  20 ++
 drivers/android/binder_netlink.c             |  53 ++++
 drivers/android/binder_netlink.h             |  22 ++
 drivers/android/binder_trace.h               |  35 +++
 drivers/android/binderfs.c                   |   1 +
 include/uapi/linux/android/binder_netlink.h  |  55 ++++
 12 files changed, 691 insertions(+), 4 deletions(-)
 create mode 100644 Documentation/admin-guide/binder_netlink.rst
 create mode 100644 Documentation/netlink/specs/binder.yaml
 create mode 100644 drivers/android/binder_netlink.c
 create mode 100644 drivers/android/binder_netlink.h
 create mode 100644 include/uapi/linux/android/binder_netlink.h

diff --git a/Documentation/admin-guide/binder_netlink.rst b/Documentation/a=
dmin-guide/binder_netlink.rst
new file mode 100644
index 000000000000..53ac6fa8ba63
--- /dev/null
+++ b/Documentation/admin-guide/binder_netlink.rst
@@ -0,0 +1,110 @@
+.. SPDX-License-Identifier: GPL-2.0
+
+=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+Generic Netlink for the Android Binder Driver (Binder Netlink)
+=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+
+The Generic Netlink subsystem in the Linux kernel provides a generic way f=
or
+the Linux kernel to communicate with the user space applications via binder
+driver. It is used to report binder transaction errors and warnings to user
+space administration process. The driver allows multiple binder devices and
+their corresponding binder contexts. Each context has an independent Gener=
ic
+Netlink for security reason. To prevent untrusted user applications from
+accessing the netlink data, the kernel driver uses unicast mode instead of
+multicast.
+
+Basically, the user space code uses the BINDER_CMD_REPORT_SETUP command to
+request what kind of binder transactions should be reported by the driver.
+The driver then echoes the attributes in a reply message to acknowledge the
+request. The BINDER_CMD_REPORT_SETUP command also registers the current
+user space process to receive the reports. When the user space process
+exits, the previous request will be reset automatically.
+
+Currently the driver reports these binder transaction errors and warnings.
+1. "FAILED" transactions that fail to reach the target process;
+2. "ASYNC_FROZEN" transactions that are delayed due to the target process
+being frozen by cgroup freezer; or
+3. "SPAM" transactions that are considered spamming according to existing
+logic in binder_alloc.c.
+
+When the specified binder transactions happen, the driver uses the
+BINDER_CMD_REPORT command to send a generic netlink message to the
+registered process, containing the payload defined in binder.yaml.
+
+More details about the flags, attributes and operations can be found at the
+the doc sections in Documentations/netlink/specs/binder.yaml and the
+kernel-doc comments of the new source code in binder.{h|c}.
+
+Using Binder Netlink
+--------------------
+
+The Binder Netlink can be used in the same way as any other generic netlink
+drivers. Userspace application uses a raw netlink socket to send commands
+to and receive packets from the kernel driver.
+
+.. note::
+    If the userspace application that talks to the driver exits, the kernel
+    driver will automatically reset the configuration to the default and
+    stop sending more reports, which would otherwise fail.
+
+Usage example (user space pseudo code):
+
+::
+    /*
+     * send() below is overloaded to pack netlink commands and attributes
+     * to nlattr/genlmsghdr/nlmsghdr and then send to the netlink socket.
+     *
+     * recv() below is overloaded to receive the raw netlink message from
+     * the netlink socket, parse nlmsghdr/genlmsghdr to find the netlink
+     * command and then return the nlattr payload.
+     */
+
+    // open netlink socket
+    int fd =3D socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC);
+
+    // bind netlink socket
+    bind(fd, struct socketaddr);
+
+    // get the family id of the binder netlink
+    send(fd, CTRL_CMD_GETFAMILY, CTRL_ATTR_FAMILY_NAME,
+            BINDER_FAMILY_NAME);
+    void *data =3D recv(CTRL_CMD_NEWFAMILY);
+    if (!has_nla_type(data, CTRL_ATTR_FAMILY_ID)) {
+        // Binder Netlink isn't available on this version of Linux kernel
+        return;
+    }
+    __u16 id =3D nla(data)[CTRL_ATTR_FAMILY_ID];
+
+    // enable per-context binder report
+    send(fd, id, BINDER_CMD_REPORT_SETUP, "binder", 0,
+            BINDER_FLAG_FAILED | BINDER_FLAG_DELAYED);
+
+    // confirm the per-context configuration
+    data =3D recv(fd, BINDER_CMD_REPLY);
+    char *context =3D nla(data)[BINDER_A_CMD_CONTEXT];
+    __u32 pid =3D  nla(data)[BINDER_A_CMD_PID];
+    __u32 flags =3D nla(data)[BINDER_A_CMD_FLAGS];
+
+    // set optional per-process report, overriding the per-context one
+    send(fd, id, BINDER_CMD_REPORT_SETUP, "binder", getpid(),
+            BINDER_FLAG_SPAM | BINDER_REPORT_OVERRIDE);
+
+    // confirm the optional per-process configuration
+    data =3D recv(fd, BINDER_CMD_REPLY);
+    context =3D nla(data)[BINDER_A_CMD_CONTEXT];
+    pid =3D  nla(data)[BINDER_A_CMD_PID];
+    flags =3D nla(data)[BINDER_A_CMD_FLAGS];
+
+    // wait and read all binder reports
+    while (running) {
+            data =3D recv(fd, BINDER_CMD_REPORT);
+            auto *attr =3D nla(data)[BINDER_A_REPORT_XXX];
+
+            // process binder report
+            do_something(*attr);
+    }
+
+    // clean up
+    send(fd, id, BINDER_CMD_REPORT_SETUP, 0, 0);
+    send(fd, id, BINDER_CMD_REPORT_SETUP, getpid(), 0);
+    close(fd);
diff --git a/Documentation/admin-guide/index.rst b/Documentation/admin-guid=
e/index.rst
index c8af32a8f800..655f39ddf1cf 100644
--- a/Documentation/admin-guide/index.rst
+++ b/Documentation/admin-guide/index.rst
@@ -120,6 +120,7 @@ Block-layer and filesystem administration
    :maxdepth: 1
=20
    bcache
+   binder_netlink
    binderfs
    blockdev/index
    cifs/index
diff --git a/Documentation/netlink/specs/binder.yaml b/Documentation/netlin=
k/specs/binder.yaml
new file mode 100644
index 000000000000..b5c8bdfc2ae4
--- /dev/null
+++ b/Documentation/netlink/specs/binder.yaml
@@ -0,0 +1,113 @@
+# SPDX-License-Identifier: ((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Cla=
use)
+
+name: binder
+protocol: genetlink
+uapi-header: linux/android/binder_netlink.h
+doc: Netlink protocol to report binder transaction errors and warnings.
+
+definitions:
+  -
+    type: flags
+    name: flag
+    doc: Define what kind of binder transactions should be reported.
+    entries: [ failed, async-frozen, spam, override ]
+
+attribute-sets:
+  -
+    name: cmd
+    doc: The supported attributes of "report-setup" command.
+    attributes:
+      -
+        name: context
+        type: string
+        doc: The binder context to enable binder netlink report.
+      -
+        name: pid
+        type: u32
+        doc: The binder proc to enable binder netlink report.
+      -
+        name: flags
+        type: u32
+        enum: flag
+        doc: What kind of binder transactions should be reported.
+  -
+    name: report
+    doc: The supported attributes of "report" command
+    attributes:
+      -
+        name: context
+        type: string
+        doc: The binder context where the binder netlink report happens.
+      -
+        name: err
+        type: u32
+        doc: Copy of binder_driver_return_protocol returned to the sender.
+      -
+        name: from_pid
+        type: u32
+        doc: Sender pid of the corresponding binder transaction.
+      -
+        name: from_tid
+        type: u32
+        doc: Sender tid of the corresponding binder transaction.
+      -
+        name: to_pid
+        type: u32
+        doc: Target pid of the corresponding binder transaction.
+      -
+        name: to_tid
+        type: u32
+        doc: Target tid of the corresponding binder transaction.
+      -
+        name: reply
+        type: u32
+        doc: 1 means the transaction is a reply, 0 otherwise.
+      -
+        name: flags
+        type: u32
+        doc: Copy of binder_transaction_data->flags.
+      -
+        name: code
+        type: u32
+        doc: Copy of binder_transaction_data->code.
+      -
+        name: data_size
+        type: u32
+        doc: Copy of binder_transaction_data->data_size.
+
+operations:
+  list:
+    -
+      name: report-setup
+      doc: Set flags from user space.
+      attribute-set: cmd
+      flags: [ admin-perm ]
+
+      do:
+        request: &params
+          attributes:
+            - context
+            - pid
+            - flags
+        reply: *params
+    -
+      name: report
+      doc: Send the requested reports to user space.
+      attribute-set: report
+
+      event:
+        attributes:
+          - context
+          - err
+          - from_pid
+          - from_tid
+          - to_pid
+          - to_tid
+          - reply
+          - flags
+          - code
+          - data_size
+
+kernel-family:
+  headers: [ "binder_internal.h" ]
+  sock-priv: struct binder_context *
diff --git a/drivers/android/Kconfig b/drivers/android/Kconfig
index 07aa8ae0a058..e2fa620934e2 100644
--- a/drivers/android/Kconfig
+++ b/drivers/android/Kconfig
@@ -4,6 +4,7 @@ menu "Android"
 config ANDROID_BINDER_IPC
 	bool "Android Binder IPC Driver"
 	depends on MMU
+	depends on NET
 	default n
 	help
 	  Binder is used in Android for both communication between processes,
diff --git a/drivers/android/Makefile b/drivers/android/Makefile
index c9d3d0c99c25..b8874dba884e 100644
--- a/drivers/android/Makefile
+++ b/drivers/android/Makefile
@@ -2,5 +2,5 @@
 ccflags-y +=3D -I$(src)			# needed for trace events
=20
 obj-$(CONFIG_ANDROID_BINDERFS)		+=3D binderfs.o
-obj-$(CONFIG_ANDROID_BINDER_IPC)	+=3D binder.o binder_alloc.o
+obj-$(CONFIG_ANDROID_BINDER_IPC)	+=3D binder.o binder_alloc.o binder_netli=
nk.o
 obj-$(CONFIG_ANDROID_BINDER_IPC_SELFTEST) +=3D binder_alloc_selftest.o
diff --git a/drivers/android/binder.c b/drivers/android/binder.c
index 76052006bd87..a5be7bca934e 100644
--- a/drivers/android/binder.c
+++ b/drivers/android/binder.c
@@ -72,6 +72,7 @@
=20
 #include <linux/cacheflush.h>
=20
+#include "binder_netlink.h"
 #include "binder_internal.h"
 #include "binder_trace.h"
=20
@@ -2990,6 +2991,111 @@ static void binder_set_txn_from_error(struct binder=
_transaction *t, int id,
 	binder_thread_dec_tmpref(from);
 }
=20
+/**
+ * binder_find_proc() - find the binder_proc by pid
+ * @pid:	the target process
+ *
+ * Returns the struct binder_proc if the pid is found, or NULL otherwise.
+ */
+static struct binder_proc *binder_find_proc(int pid)
+{
+	struct binder_proc *proc;
+
+	mutex_lock(&binder_procs_lock);
+	hlist_for_each_entry(proc, &binder_procs, proc_node) {
+		if (proc->pid =3D=3D pid)
+			break;
+	}
+	mutex_unlock(&binder_procs_lock);
+
+	return proc;
+}
+
+/**
+ * binder_netlink_enabled() - check if binder netlink reports are enabled
+ * @proc:	the binder_proc to check
+ * @mask:	the categories of binder netlink reports
+ *
+ * Returns true if certain binder netlink reports are enabled for this bin=
der
+ * proc (when per-process overriding takes effect) or context.
+ */
+static bool binder_netlink_enabled(struct binder_proc *proc, u32 mask)
+{
+	struct binder_context *context =3D proc->context;
+
+	if (!context->report_portid)
+		return false;
+
+	if (proc->report_flags & BINDER_FLAG_OVERRIDE)
+		return (proc->report_flags & mask) !=3D 0;
+	else
+		return (context->report_flags & mask) !=3D 0;
+}
+
+/**
+ * binder_netlink_report() - report one binder netlink event
+ * @context:	the binder context
+ * @err:	copy of binder_driver_return_protocol returned to the sender
+ * @pid:	sender process
+ * @tid:	sender thread
+ * @to_pid:	target process
+ * @to_tid:	target thread
+ * @reply:	whether the binder transaction is a reply
+ * @tr:		the binder transaction data
+ *
+ * Packs the report data into a binder netlink message and send it.
+ */
+static void binder_netlink_report(struct binder_context *context, u32 err,
+				  u32 pid, u32 tid, u32 to_pid, u32 to_tid,
+				  u32 reply,
+				  struct binder_transaction_data *tr)
+{
+	struct sk_buff *skb;
+	void *hdr;
+	int ret;
+
+	trace_binder_netlink_report(context->name, err, pid, tid, to_pid,
+				    to_tid, reply, tr);
+
+	skb =3D genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
+	if (!skb) {
+		pr_err("Failed to alloc binder netlink message\n");
+		return;
+	}
+
+	hdr =3D genlmsg_put(skb, 0, atomic_inc_return(&context->report_seq),
+			  &binder_nl_family, 0, BINDER_CMD_REPORT);
+	if (!hdr)
+		goto free_skb;
+
+	if (nla_put_string(skb, BINDER_A_REPORT_CONTEXT, context->name) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_ERR, err) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_FROM_PID, pid) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_FROM_TID, tid) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_TO_PID, to_pid) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_TO_TID, to_tid) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_REPLY, reply) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_FLAGS, tr->flags) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_CODE, tr->code) ||
+	    nla_put_u32(skb, BINDER_A_REPORT_DATA_SIZE, tr->data_size))
+		goto cancel_skb;
+
+	genlmsg_end(skb, hdr);
+
+	ret =3D genlmsg_unicast(&init_net, skb, context->report_portid);
+	if (ret < 0)
+		pr_err("Failed to send binder netlink message to %d: %d\n",
+		       context->report_portid, ret);
+	return;
+
+cancel_skb:
+	pr_err("Failed to add attributes to binder netlink message\n");
+	genlmsg_cancel(skb, hdr);
+free_skb:
+	pr_err("Free binder netlink report message on error\n");
+	nlmsg_free(skb);
+}
+
 static void binder_transaction(struct binder_proc *proc,
 			       struct binder_thread *thread,
 			       struct binder_transaction_data *tr, int reply,
@@ -3683,10 +3789,17 @@ static void binder_transaction(struct binder_proc *=
proc,
 		return_error_line =3D __LINE__;
 		goto err_copy_data_failed;
 	}
-	if (t->buffer->oneway_spam_suspect)
+	if (t->buffer->oneway_spam_suspect) {
 		tcomplete->type =3D BINDER_WORK_TRANSACTION_ONEWAY_SPAM_SUSPECT;
-	else
+		if (binder_netlink_enabled(proc, BINDER_FLAG_SPAM))
+			binder_netlink_report(context, BR_ONEWAY_SPAM_SUSPECT,
+					      proc->pid, thread->pid,
+					      target_proc ? target_proc->pid : 0,
+					      target_thread ? target_thread->pid : 0,
+					      reply, tr);
+	} else {
 		tcomplete->type =3D BINDER_WORK_TRANSACTION_COMPLETE;
+	}
 	t->work.type =3D BINDER_WORK_TRANSACTION;
=20
 	if (reply) {
@@ -3736,8 +3849,15 @@ static void binder_transaction(struct binder_proc *p=
roc,
 		 * process and is put in a pending queue, waiting for the target
 		 * process to be unfrozen.
 		 */
-		if (return_error =3D=3D BR_TRANSACTION_PENDING_FROZEN)
+		if (return_error =3D=3D BR_TRANSACTION_PENDING_FROZEN) {
 			tcomplete->type =3D BINDER_WORK_TRANSACTION_PENDING;
+			if (binder_netlink_enabled(proc, BINDER_FLAG_ASYNC_FROZEN))
+				binder_netlink_report(context, return_error,
+						      proc->pid, thread->pid,
+						      target_proc ? target_proc->pid : 0,
+						      target_thread ? target_thread->pid : 0,
+						      reply, tr);
+		}
 		binder_enqueue_thread_work(thread, tcomplete);
 		if (return_error &&
 		    return_error !=3D BR_TRANSACTION_PENDING_FROZEN)
@@ -3799,6 +3919,13 @@ static void binder_transaction(struct binder_proc *p=
roc,
 		binder_dec_node_tmpref(target_node);
 	}
=20
+	if (binder_netlink_enabled(proc, BINDER_FLAG_FAILED))
+		binder_netlink_report(context, return_error,
+				      proc->pid, thread->pid,
+				      target_proc ? target_proc->pid : 0,
+				      target_thread ? target_thread->pid : 0,
+				      reply, tr);
+
 	binder_debug(BINDER_DEBUG_FAILED_TRANSACTION,
 		     "%d:%d transaction %s to %d:%d failed %d/%d/%d, code %u size %lld-%=
lld line %d\n",
 		     proc->pid, thread->pid, reply ? "reply" :
@@ -6334,6 +6461,148 @@ binder_defer_work(struct binder_proc *proc, enum bi=
nder_deferred_state defer)
 	mutex_unlock(&binder_deferred_lock);
 }
=20
+/**
+ * binder_nl_report_setup_doit() - netlink .doit handler
+ * @skb:	the metadata struct passed from netlink driver
+ * @info:	the generic netlink struct passed from netlink driver
+ *
+ * Implements the .doit function to process binder netlink commands.
+ */
+int binder_nl_report_setup_doit(struct sk_buff *skb, struct genl_info *inf=
o)
+{
+	struct binder_context *context =3D NULL;
+	struct binder_context **sock_priv;
+	struct binder_device *device;
+	struct binder_proc *proc;
+	u32 flags, pid;
+	int ret =3D 0;
+	int portid;
+	void *hdr;
+
+	hlist_for_each_entry(device, &binder_devices, hlist) {
+		if (!nla_strcmp(info->attrs[BINDER_A_CMD_CONTEXT],
+				device->context.name)) {
+			context =3D &device->context;
+			break;
+		}
+	}
+
+	if (!context) {
+		NL_SET_ERR_MSG(info->extack, "Unknown binder context");
+		return -EINVAL;
+	}
+
+	sock_priv =3D genl_sk_priv_get(&binder_nl_family, NETLINK_CB(skb).sk);
+	if (IS_ERR(sock_priv)) {
+		NL_SET_ERR_MSG(info->extack, "Can't get sock priv");
+		return PTR_ERR(sock_priv);
+	}
+
+	if (*sock_priv && *sock_priv !=3D context) {
+		NL_SET_ERR_MSG(info->extack, "Overloaded socket");
+		return -EINVAL;
+	}
+
+	portid =3D nlmsg_hdr(skb)->nlmsg_pid;
+	pid =3D nla_get_u32(info->attrs[BINDER_A_CMD_PID]);
+	flags =3D nla_get_u32(info->attrs[BINDER_A_CMD_FLAGS]);
+
+	mutex_lock(&context->report_lock);
+	if (context->report_portid && context->report_portid !=3D portid) {
+		NL_SET_ERR_MSG_FMT(info->extack,
+				   "No permission to set flags from %d",
+				   portid);
+		ret =3D -EPERM;
+		goto err_exit;
+	}
+
+	if (!pid) {
+		/* Set the global flags for the whole binder context */
+		context->report_flags =3D flags;
+	} else {
+		/* Set the per-process flags */
+		proc =3D binder_find_proc(pid);
+		if (!proc) {
+			NL_SET_ERR_MSG_FMT(info->extack,
+					   "Invalid binder report pid %u",
+					   pid);
+			ret =3D -EINVAL;
+			goto err_exit;
+		}
+
+		proc->report_flags =3D flags;
+	}
+
+	skb =3D genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
+	if (!skb) {
+		pr_err("Failed to alloc binder netlink reply message\n");
+		ret =3D -ENOMEM;
+		goto err_exit;
+	}
+
+	hdr =3D genlmsg_iput(skb, info);
+	if (!hdr)
+		goto free_skb;
+
+	if (nla_put_string(skb, BINDER_A_CMD_CONTEXT, context->name) ||
+	    nla_put_u32(skb, BINDER_A_CMD_PID, pid) ||
+	    nla_put_u32(skb, BINDER_A_CMD_FLAGS, flags))
+		goto cancel_skb;
+
+	genlmsg_end(skb, hdr);
+
+	if (genlmsg_reply(skb, info)) {
+		pr_err("Failed to send binder netlink reply message\n");
+		ret =3D -EFAULT;
+		goto err_exit;
+	}
+
+	context->report_portid =3D portid;
+	if (!(*sock_priv))
+		*sock_priv =3D context;
+	mutex_unlock(&context->report_lock);
+	return 0;
+
+cancel_skb:
+	pr_err("Failed to add reply attributes to binder netlink message\n");
+	genlmsg_cancel(skb, hdr);
+free_skb:
+	pr_err("Free binder netlink reply message on error\n");
+	nlmsg_free(skb);
+	ret =3D -EMSGSIZE;
+err_exit:
+	mutex_unlock(&context->report_lock);
+	return ret;
+}
+
+/**
+ * binder_nl_sock_priv_init() - netlink sock_priv_init handler
+ * @priv:	the per-socket private memory passed from netlink driver
+ *
+ * Implements the .sock_priv_init function to initialize sock_priv.
+ */
+void binder_nl_sock_priv_init(struct binder_context **priv)
+{
+}
+
+/**
+ * binder_nl_sock_priv_destroy() - netlink sock_priv_destroy handler
+ * @priv:	the per-socket private memory passed from netlink driver
+ *
+ * Implements the .sock_priv_destroy function to deinit sock_priv.
+ */
+void binder_nl_sock_priv_destroy(struct binder_context **priv)
+{
+	struct binder_context *context =3D *priv;
+
+	if (context) {
+		mutex_lock(&context->report_lock);
+		context->report_portid =3D 0;
+		context->report_flags =3D 0;
+		mutex_unlock(&context->report_lock);
+	}
+}
+
 static void print_binder_transaction_ilocked(struct seq_file *m,
 					     struct binder_proc *proc,
 					     const char *prefix,
@@ -6949,6 +7218,7 @@ static int __init init_binder_device(const char *name)
 	binder_device->context.binder_context_mgr_uid =3D INVALID_UID;
 	binder_device->context.name =3D name;
 	mutex_init(&binder_device->context.context_mgr_node_lock);
+	mutex_init(&binder_device->context.report_lock);
=20
 	ret =3D misc_register(&binder_device->miscdev);
 	if (ret < 0) {
@@ -7013,6 +7283,12 @@ static int __init binder_init(void)
 	if (ret)
 		goto err_init_binder_device_failed;
=20
+	ret =3D genl_register_family(&binder_nl_family);
+	if (ret) {
+		pr_err("Failed to register binder netlink family\n");
+		goto err_init_binder_device_failed;
+	}
+
 	return ret;
=20
 err_init_binder_device_failed:
diff --git a/drivers/android/binder_internal.h b/drivers/android/binder_int=
ernal.h
index e4eb8357989c..0e788247cf8a 100644
--- a/drivers/android/binder_internal.h
+++ b/drivers/android/binder_internal.h
@@ -12,15 +12,32 @@
 #include <linux/stddef.h>
 #include <linux/types.h>
 #include <linux/uidgid.h>
+#include <net/genetlink.h>
 #include <uapi/linux/android/binderfs.h>
 #include "binder_alloc.h"
 #include "dbitmap.h"
=20
+/**
+ * struct binder_context - information about a binder domain
+ * @binder_context_mgr_node: the context manager
+ * @context_mgr_node_lock:   the lock protecting the above context manager=
 node
+ * @binder_context_mgr_uid:  the uid of the above context manager
+ * @name:                    the name of the binder device
+ * @report_lock:             the lock protecting report_portid
+ * @report_portid:           the netlink socket to receive binder reports
+ * @report_flags:            the categories of binder transactions that wo=
uld
+ *                           be reported (see enum binder_report_flag).
+ * @report_seq:              the seq number of the generic netlink report
+ */
 struct binder_context {
 	struct binder_node *binder_context_mgr_node;
 	struct mutex context_mgr_node_lock;
 	kuid_t binder_context_mgr_uid;
 	const char *name;
+	struct mutex report_lock; /* protect report_portid below */
+	u32 report_portid;
+	u32 report_flags;
+	atomic_t report_seq;
 };
=20
 /**
@@ -414,6 +431,8 @@ struct binder_ref {
  * @binderfs_entry:       process-specific binderfs log file
  * @oneway_spam_detection_enabled: process enabled oneway spam detection
  *                        or not
+ * @report_flags:         the categories of binder transactions that would
+ *                        be reported (see enum binder_genl_flag).
  *
  * Bookkeeping structure for binder processes
  */
@@ -452,6 +471,7 @@ struct binder_proc {
 	spinlock_t outer_lock;
 	struct dentry *binderfs_entry;
 	bool oneway_spam_detection_enabled;
+	u32 report_flags;
 };
=20
 /**
diff --git a/drivers/android/binder_netlink.c b/drivers/android/binder_netl=
ink.c
new file mode 100644
index 000000000000..b9af337e5f68
--- /dev/null
+++ b/drivers/android/binder_netlink.c
@@ -0,0 +1,53 @@
+// SPDX-License-Identifier: ((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Cl=
ause)
+/* Do not edit directly, auto-generated from: */
+/*	Documentation/netlink/specs/binder.yaml */
+/* YNL-GEN kernel source */
+
+#include <net/netlink.h>
+#include <net/genetlink.h>
+
+#include "binder_netlink.h"
+
+#include <uapi/linux/android/binder_netlink.h>
+#include <binder_internal.h>
+
+/* BINDER_CMD_REPORT_SETUP - do */
+static const struct nla_policy binder_report_setup_nl_policy[BINDER_A_CMD_=
FLAGS + 1] =3D {
+	[BINDER_A_CMD_CONTEXT] =3D { .type =3D NLA_NUL_STRING, },
+	[BINDER_A_CMD_PID] =3D { .type =3D NLA_U32, },
+	[BINDER_A_CMD_FLAGS] =3D NLA_POLICY_MASK(NLA_U32, 0xf),
+};
+
+/* Ops table for binder */
+static const struct genl_split_ops binder_nl_ops[] =3D {
+	{
+		.cmd		=3D BINDER_CMD_REPORT_SETUP,
+		.doit		=3D binder_nl_report_setup_doit,
+		.policy		=3D binder_report_setup_nl_policy,
+		.maxattr	=3D BINDER_A_CMD_FLAGS,
+		.flags		=3D GENL_ADMIN_PERM | GENL_CMD_CAP_DO,
+	},
+};
+
+static void __binder_nl_sock_priv_init(void *priv)
+{
+	binder_nl_sock_priv_init(priv);
+}
+
+static void __binder_nl_sock_priv_destroy(void *priv)
+{
+	binder_nl_sock_priv_destroy(priv);
+}
+
+struct genl_family binder_nl_family __ro_after_init =3D {
+	.name		=3D BINDER_FAMILY_NAME,
+	.version	=3D BINDER_FAMILY_VERSION,
+	.netnsok	=3D true,
+	.parallel_ops	=3D true,
+	.module		=3D THIS_MODULE,
+	.split_ops	=3D binder_nl_ops,
+	.n_split_ops	=3D ARRAY_SIZE(binder_nl_ops),
+	.sock_priv_size	=3D sizeof(struct binder_context *),
+	.sock_priv_init	=3D __binder_nl_sock_priv_init,
+	.sock_priv_destroy =3D __binder_nl_sock_priv_destroy,
+};
diff --git a/drivers/android/binder_netlink.h b/drivers/android/binder_netl=
ink.h
new file mode 100644
index 000000000000..2250b9c6debf
--- /dev/null
+++ b/drivers/android/binder_netlink.h
@@ -0,0 +1,22 @@
+/* SPDX-License-Identifier: ((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Cl=
ause) */
+/* Do not edit directly, auto-generated from: */
+/*	Documentation/netlink/specs/binder.yaml */
+/* YNL-GEN kernel header */
+
+#ifndef _LINUX_BINDER_GEN_H
+#define _LINUX_BINDER_GEN_H
+
+#include <net/netlink.h>
+#include <net/genetlink.h>
+
+#include <uapi/linux/android/binder_netlink.h>
+#include <binder_internal.h>
+
+int binder_nl_report_setup_doit(struct sk_buff *skb, struct genl_info *inf=
o);
+
+extern struct genl_family binder_nl_family;
+
+void binder_nl_sock_priv_init(struct binder_context **priv);
+void binder_nl_sock_priv_destroy(struct binder_context **priv);
+
+#endif /* _LINUX_BINDER_GEN_H */
diff --git a/drivers/android/binder_trace.h b/drivers/android/binder_trace.h
index 16de1b9e72f7..6fb454bcd857 100644
--- a/drivers/android/binder_trace.h
+++ b/drivers/android/binder_trace.h
@@ -423,6 +423,41 @@ TRACE_EVENT(binder_return,
 			  "unknown")
 );
=20
+TRACE_EVENT(binder_netlink_report,
+	TP_PROTO(const char *name, u32 err, u32 pid, u32 tid, u32 to_pid,
+		 u32 to_tid, u32 reply, struct binder_transaction_data *tr),
+	TP_ARGS(name, err, pid, tid, to_pid, to_tid, reply, tr),
+	TP_STRUCT__entry(
+		__field(const char *, name)
+		__field(u32, err)
+		__field(u32, pid)
+		__field(u32, tid)
+		__field(u32, to_pid)
+		__field(u32, to_tid)
+		__field(u32, reply)
+		__field(u32, flags)
+		__field(u32, code)
+		__field(binder_size_t, data_size)
+	),
+	TP_fast_assign(
+		__entry->name =3D name;
+		__entry->err =3D err;
+		__entry->pid =3D pid;
+		__entry->tid =3D tid;
+		__entry->to_pid =3D to_pid;
+		__entry->to_tid =3D to_tid;
+		__entry->reply =3D reply;
+		__entry->flags =3D tr->flags;
+		__entry->code =3D tr->code;
+		__entry->data_size =3D tr->data_size;
+	),
+	TP_printk("%s: %d %d:%d -> %d:%d %s flags=3D0x08%x code=3D%d %llu",
+		  __entry->name, __entry->err, __entry->pid, __entry->tid,
+		  __entry->to_pid, __entry->to_tid,
+		  __entry->reply ? "reply" : "",
+		  __entry->flags, __entry->code, __entry->data_size)
+);
+
 #endif /* _BINDER_TRACE_H */
=20
 #undef TRACE_INCLUDE_PATH
diff --git a/drivers/android/binderfs.c b/drivers/android/binderfs.c
index bc6bae76ccaf..452a86b931b5 100644
--- a/drivers/android/binderfs.c
+++ b/drivers/android/binderfs.c
@@ -174,6 +174,7 @@ static int binderfs_binder_device_create(struct inode *=
ref_inode,
 	device->miscdev.name =3D name;
 	device->miscdev.minor =3D minor;
 	mutex_init(&device->context.context_mgr_node_lock);
+	mutex_init(&device->context.report_lock);
=20
 	req->major =3D MAJOR(binderfs_dev);
 	req->minor =3D minor;
diff --git a/include/uapi/linux/android/binder_netlink.h b/include/uapi/lin=
ux/android/binder_netlink.h
new file mode 100644
index 000000000000..d6504c267516
--- /dev/null
+++ b/include/uapi/linux/android/binder_netlink.h
@@ -0,0 +1,55 @@
+/* SPDX-License-Identifier: ((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Cl=
ause) */
+/* Do not edit directly, auto-generated from: */
+/*	Documentation/netlink/specs/binder.yaml */
+/* YNL-GEN uapi header */
+
+#ifndef _UAPI_LINUX_ANDROID_BINDER_NETLINK_H
+#define _UAPI_LINUX_ANDROID_BINDER_NETLINK_H
+
+#define BINDER_FAMILY_NAME	"binder"
+#define BINDER_FAMILY_VERSION	1
+
+/*
+ * Define what kind of binder transactions should be reported.
+ */
+enum binder_flag {
+	BINDER_FLAG_FAILED =3D 1,
+	BINDER_FLAG_ASYNC_FROZEN =3D 2,
+	BINDER_FLAG_SPAM =3D 4,
+	BINDER_FLAG_OVERRIDE =3D 8,
+};
+
+enum {
+	BINDER_A_CMD_CONTEXT =3D 1,
+	BINDER_A_CMD_PID,
+	BINDER_A_CMD_FLAGS,
+
+	__BINDER_A_CMD_MAX,
+	BINDER_A_CMD_MAX =3D (__BINDER_A_CMD_MAX - 1)
+};
+
+enum {
+	BINDER_A_REPORT_CONTEXT =3D 1,
+	BINDER_A_REPORT_ERR,
+	BINDER_A_REPORT_FROM_PID,
+	BINDER_A_REPORT_FROM_TID,
+	BINDER_A_REPORT_TO_PID,
+	BINDER_A_REPORT_TO_TID,
+	BINDER_A_REPORT_REPLY,
+	BINDER_A_REPORT_FLAGS,
+	BINDER_A_REPORT_CODE,
+	BINDER_A_REPORT_DATA_SIZE,
+
+	__BINDER_A_REPORT_MAX,
+	BINDER_A_REPORT_MAX =3D (__BINDER_A_REPORT_MAX - 1)
+};
+
+enum {
+	BINDER_CMD_REPORT_SETUP =3D 1,
+	BINDER_CMD_REPORT,
+
+	__BINDER_CMD_MAX,
+	BINDER_CMD_MAX =3D (__BINDER_CMD_MAX - 1)
+};
+
+#endif /* _UAPI_LINUX_ANDROID_BINDER_NETLINK_H */
--=20
2.48.0.rc2.279.g1de40edade-goog