From patchwork Fri Feb  3 22:40:50 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Patchwork-Submitter: John Stultz <john.stultz@linaro.org>
X-Patchwork-Id: 93326
Delivered-To: patches@linaro.org
Received: by 10.140.20.99 with SMTP id 90csp805058qgi;
 Fri, 3 Feb 2017 14:41:12 -0800 (PST)
X-Received: by 10.98.13.203 with SMTP id 72mr20777159pfn.64.1486161671940;
 Fri, 03 Feb 2017 14:41:11 -0800 (PST)
Return-Path: <john.stultz@linaro.org>
Received: from mail-pf0-x22b.google.com (mail-pf0-x22b.google.com.
 [2607:f8b0:400e:c00::22b]) by mx.google.com with ESMTPS id
 m63si26642934pfc.123.2017.02.03.14.41.11 for <patches@linaro.org>
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Fri, 03 Feb 2017 14:41:11 -0800 (PST)
Received-SPF: pass (google.com: domain of john.stultz@linaro.org designates
 2607:f8b0:400e:c00::22b as permitted sender)
 client-ip=2607:f8b0:400e:c00::22b; 
Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org;
 spf=pass (google.com: domain of john.stultz@linaro.org designates
 2607:f8b0:400e:c00::22b as permitted sender)
 smtp.mailfrom=john.stultz@linaro.org; 
 dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: by mail-pf0-x22b.google.com with SMTP id y143so8844087pfb.0
 for <patches@linaro.org>; Fri, 03 Feb 2017 14:41:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id:in-reply-to:references
 :mime-version:content-transfer-encoding;
 bh=5X6pPbRrgF8wr+inZ/jaFoU46rAP3ReQiCZbBIX0pQY=;
 b=CVzB6lXZT+C8LsJuN34LY0utWE2LZe77pDXLaHM2T9unnuRzAB4ii3N+KTZLFfhJCi
 p3HeRTWA3hlw1aarI0YoquJxMqF+9jO8NfMaXRuGlHGLfddfHro5kTBFAGBgHFm+tIFQ
 VrSKCutSkc2XDrF5osG1Sul92p9XFCFoHS3Mg=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
 :references:mime-version:content-transfer-encoding;
 bh=5X6pPbRrgF8wr+inZ/jaFoU46rAP3ReQiCZbBIX0pQY=;
 b=KcfUlWdT1fAMBwoMFOljnzrXKF2R9NJCy/ofRrCxA74u/708T7T170a5x38lefm1vo
 7rw3rfsyZgbD52hQSgsnq4a+TV3qXSCEvdKkZe5nZfvqFHVg79p3RU8ZDxQ3MLN68j1w
 XyG/65sIzf3Qwcg+epJvCtLLq6hk1AZQ7ttMcAgfy1qfEUMcpfiff09csdGnYAuPhEjD
 F80FUNOjFliWpRmsZIKW7uFHz3KAVarJvenYwf5Msv9xRRd/CkMK1ZTjwVM89m5+enxY
 CYvv9sO4VZek0wJZZABTHkP1Hsb3huln1SN6pYepkgvZ9UhYMXsAkgQeFiHvN6wJoAeB
 lU+w==
X-Gm-Message-State: AIkVDXKsymxBOjRAXTMTa70scSjNjMV7lTZE/eJmlJIV4WZYfIkW+vUVn49HXyEau1LR94C8KfE=
X-Received: by 10.84.174.1 with SMTP id q1mr24730600plb.19.1486161671629;
 Fri, 03 Feb 2017 14:41:11 -0800 (PST)
Return-Path: <john.stultz@linaro.org>
Received: from localhost.localdomain ([2601:1c2:1002:83f0:4e72:b9ff:fe99:466a])
 by smtp.gmail.com with ESMTPSA id
 p26sm70102163pgn.39.2017.02.03.14.41.09
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128);
 Fri, 03 Feb 2017 14:41:10 -0800 (PST)
From: John Stultz <john.stultz@linaro.org>
To: lkml <linux-kernel@vger.kernel.org>
Cc: Martijn Coenen <maco@google.com>, Greg Kroah-Hartman
 <gregkh@linuxfoundation.org>, =?utf-8?q?Arve_Hj=C3=B8nnev=C3=A5g?=
 <arve@android.com>, 	Amit Pundir <amit.pundir@linaro.org>,
 Serban Constantinescu <serban.constantinescu@arm.com>, 
 Dmitry Shmidt <dimitrysh@google.com>,
 Rom Lemarchand <romlem@google.com>, Android Kernel Team
 <kernel-team@android.com>, 	John Stultz <john.stultz@linaro.org>
Subject: [PATCH 6/8] binder: Add extra size to allocator
Date: Fri,  3 Feb 2017 14:40:50 -0800
Message-Id: <1486161652-2612-7-git-send-email-john.stultz@linaro.org>
X-Mailer: git-send-email 2.7.4
In-Reply-To: <1486161652-2612-1-git-send-email-john.stultz@linaro.org>
References: <1486161652-2612-1-git-send-email-john.stultz@linaro.org>
MIME-Version: 1.0

From: Martijn Coenen <maco@google.com>

The binder_buffer allocator currently only allocates
space for the data and offsets buffers of a Parcel.
This change allows for requesting an additional chunk
of data in the buffer, which can for example be used
to hold additional meta-data about the transaction
(eg a security context).

Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: Martijn Coenen <maco@google.com>
Cc: Arve Hjønnevåg <arve@android.com>
Cc: Amit Pundir <amit.pundir@linaro.org>
Cc: Serban Constantinescu <serban.constantinescu@arm.com>
Cc: Dmitry Shmidt <dimitrysh@google.com>
Cc: Rom Lemarchand <romlem@google.com>
Cc: Android Kernel Team <kernel-team@android.com>
Signed-off-by: Martijn Coenen <maco@google.com>
Signed-off-by: John Stultz <john.stultz@linaro.org>
---
 drivers/android/binder.c | 41 ++++++++++++++++++++++++++++-------------
 1 file changed, 28 insertions(+), 13 deletions(-)

-- 
2.7.4

diff --git a/drivers/android/binder.c b/drivers/android/binder.c
index 1a6969c..25aa452 100644
--- a/drivers/android/binder.c
+++ b/drivers/android/binder.c
@@ -302,6 +302,7 @@ struct binder_buffer {
 	struct binder_node *target_node;
 	size_t data_size;
 	size_t offsets_size;
+	size_t extra_buffers_size;
 	uint8_t data[0];
 };
 
@@ -669,7 +670,9 @@ static int binder_update_page_range(struct binder_proc *proc, int allocate,
 
 static struct binder_buffer *binder_alloc_buf(struct binder_proc *proc,
 					      size_t data_size,
-					      size_t offsets_size, int is_async)
+					      size_t offsets_size,
+					      size_t extra_buffers_size,
+					      int is_async)
 {
 	struct rb_node *n = proc->free_buffers.rb_node;
 	struct binder_buffer *buffer;
@@ -677,7 +680,7 @@ static struct binder_buffer *binder_alloc_buf(struct binder_proc *proc,
 	struct rb_node *best_fit = NULL;
 	void *has_page_addr;
 	void *end_page_addr;
-	size_t size;
+	size_t size, data_offsets_size;
 
 	if (proc->vma == NULL) {
 		pr_err("%d: binder_alloc_buf, no vma\n",
@@ -685,15 +688,20 @@ static struct binder_buffer *binder_alloc_buf(struct binder_proc *proc,
 		return NULL;
 	}
 
-	size = ALIGN(data_size, sizeof(void *)) +
+	data_offsets_size = ALIGN(data_size, sizeof(void *)) +
 		ALIGN(offsets_size, sizeof(void *));
 
-	if (size < data_size || size < offsets_size) {
+	if (data_offsets_size < data_size || data_offsets_size < offsets_size) {
 		binder_user_error("%d: got transaction with invalid size %zd-%zd\n",
 				proc->pid, data_size, offsets_size);
 		return NULL;
 	}
-
+	size = data_offsets_size + ALIGN(extra_buffers_size, sizeof(void *));
+	if (size < data_offsets_size || size < extra_buffers_size) {
+		binder_user_error("%d: got transaction with invalid extra_buffers_size %zd\n",
+				  proc->pid, extra_buffers_size);
+		return NULL;
+	}
 	if (is_async &&
 	    proc->free_async_space < size + sizeof(struct binder_buffer)) {
 		binder_debug(BINDER_DEBUG_BUFFER_ALLOC,
@@ -762,6 +770,7 @@ static struct binder_buffer *binder_alloc_buf(struct binder_proc *proc,
 		      proc->pid, size, buffer);
 	buffer->data_size = data_size;
 	buffer->offsets_size = offsets_size;
+	buffer->extra_buffers_size = extra_buffers_size;
 	buffer->async_transaction = is_async;
 	if (is_async) {
 		proc->free_async_space -= size + sizeof(struct binder_buffer);
@@ -836,7 +845,8 @@ static void binder_free_buf(struct binder_proc *proc,
 	buffer_size = binder_buffer_size(proc, buffer);
 
 	size = ALIGN(buffer->data_size, sizeof(void *)) +
-		ALIGN(buffer->offsets_size, sizeof(void *));
+		ALIGN(buffer->offsets_size, sizeof(void *)) +
+		ALIGN(buffer->extra_buffers_size, sizeof(void *));
 
 	binder_debug(BINDER_DEBUG_BUFFER_ALLOC,
 		     "%d: binder_free_buf %p size %zd buffer_size %zd\n",
@@ -1553,7 +1563,8 @@ static int binder_translate_fd(int fd,
 
 static void binder_transaction(struct binder_proc *proc,
 			       struct binder_thread *thread,
-			       struct binder_transaction_data *tr, int reply)
+			       struct binder_transaction_data *tr, int reply,
+			       binder_size_t extra_buffers_size)
 {
 	int ret;
 	struct binder_transaction *t;
@@ -1697,20 +1708,22 @@ static void binder_transaction(struct binder_proc *proc,
 
 	if (reply)
 		binder_debug(BINDER_DEBUG_TRANSACTION,
-			     "%d:%d BC_REPLY %d -> %d:%d, data %016llx-%016llx size %lld-%lld\n",
+			     "%d:%d BC_REPLY %d -> %d:%d, data %016llx-%016llx size %lld-%lld-%lld\n",
 			     proc->pid, thread->pid, t->debug_id,
 			     target_proc->pid, target_thread->pid,
 			     (u64)tr->data.ptr.buffer,
 			     (u64)tr->data.ptr.offsets,
-			     (u64)tr->data_size, (u64)tr->offsets_size);
+			     (u64)tr->data_size, (u64)tr->offsets_size,
+			     (u64)extra_buffers_size);
 	else
 		binder_debug(BINDER_DEBUG_TRANSACTION,
-			     "%d:%d BC_TRANSACTION %d -> %d - node %d, data %016llx-%016llx size %lld-%lld\n",
+			     "%d:%d BC_TRANSACTION %d -> %d - node %d, data %016llx-%016llx size %lld-%lld-%lld\n",
 			     proc->pid, thread->pid, t->debug_id,
 			     target_proc->pid, target_node->debug_id,
 			     (u64)tr->data.ptr.buffer,
 			     (u64)tr->data.ptr.offsets,
-			     (u64)tr->data_size, (u64)tr->offsets_size);
+			     (u64)tr->data_size, (u64)tr->offsets_size,
+			     (u64)extra_buffers_size);
 
 	if (!reply && !(tr->flags & TF_ONE_WAY))
 		t->from = thread;
@@ -1726,7 +1739,8 @@ static void binder_transaction(struct binder_proc *proc,
 	trace_binder_transaction(reply, t, target_node);
 
 	t->buffer = binder_alloc_buf(target_proc, tr->data_size,
-		tr->offsets_size, !reply && (t->flags & TF_ONE_WAY));
+		tr->offsets_size, extra_buffers_size,
+		!reply && (t->flags & TF_ONE_WAY));
 	if (t->buffer == NULL) {
 		return_error = BR_FAILED_REPLY;
 		goto err_binder_alloc_buf_failed;
@@ -2076,7 +2090,8 @@ static int binder_thread_write(struct binder_proc *proc,
 			if (copy_from_user(&tr, ptr, sizeof(tr)))
 				return -EFAULT;
 			ptr += sizeof(tr);
-			binder_transaction(proc, thread, &tr, cmd == BC_REPLY);
+			binder_transaction(proc, thread, &tr,
+					   cmd == BC_REPLY, 0);
 			break;
 		}