3 files changed, 37 insertions, 0 deletions
diff --git a/include/linux/pid_namespace.h b/include/linux/pid_namespace.h
index 0135c76c76c6..1689e28483e4 100644
--- a/include/linux/pid_namespace.h
+++ b/include/linux/pid_namespace.h
@@ -29,6 +29,7 @@ struct pid_namespace {
 extern struct pid_namespace init_pid_ns;
+#ifdef CONFIG_PID_NS
 static inline struct pid_namespace *get_pid_ns(struct pid_namespace *ns)
 {
        if (ns != &init_pid_ns)
@@ -45,6 +46,28 @@ static inline void put_pid_ns(struct pid_namespace *ns)
                kref_put(&ns->kref, free_pid_ns);
 }
+#else /* !CONFIG_PID_NS */
+#include <linux/err.h>
+static inline struct pid_namespace *get_pid_ns(struct pid_namespace *ns)
+{
+        return ns;
+}
+static inline struct pid_namespace *
+copy_pid_ns(unsigned long flags, struct pid_namespace *ns)
+{
+        if (flags & CLONE_NEWPID)
+                ns = ERR_PTR(-EINVAL);
+        return ns;
+}
+static inline void put_pid_ns(struct pid_namespace *ns)
+{
+}
+#endif /* CONFIG_PID_NS */
 static inline struct pid_namespace *task_active_pid_ns(struct task_struct *tsk)
 {
        return tsk->nsproxy->pid_ns;
diff --git a/init/Kconfig b/init/Kconfig
index 5b92e3aa1366..c5b354b1409e 100644
--- a/init/Kconfig
+++ b/init/Kconfig
@@ -215,6 +215,18 @@ config USER_NS
          vservers, to use user namespaces to provide different
          user info for different servers.  If unsure, say N.
+config PID_NS
+        bool "PID Namespaces (EXPERIMENTAL)"
+        default n
+        depends on EXPERIMENTAL
+        help
+          Suport process id namespaces.  This allows having multiple
+          process with the same pid as long as they are in different
+          pid namespaces.  This is a building block of containers.
+          Unless you want to work with an experimental feature
+          say N here.
 config AUDIT
        bool "Auditing support"
        depends on NET
diff --git a/kernel/pid.c b/kernel/pid.c
index d1db36b94674..f815455431bf 100644
--- a/kernel/pid.c
+++ b/kernel/pid.c
@@ -537,6 +537,7 @@ err_alloc:
        return NULL;
 }
+#ifdef CONFIG_PID_NS
 static struct pid_namespace *create_pid_namespace(int level)
 {
        struct pid_namespace *ns;
@@ -621,6 +622,7 @@ void free_pid_ns(struct kref *kref)
        if (parent != NULL)
                put_pid_ns(parent);
 }
+#endif /* CONFIG_PID_NS */
 void zap_pid_ns_processes(struct pid_namespace *pid_ns)
 {

diff --git a/include/linux/pid_namespace.h b/include/linux/pid_namespace.h index 0135c76c76c6..1689e28483e4 100644 --- a/include/linux/pid_namespace.h +++ b/include/linux/pid_namespace.h
@@ -29,6 +29,7 @@ struct pid_namespace {
29		29
30	extern struct pid_namespace init_pid_ns;	30	extern struct pid_namespace init_pid_ns;
31		31
		32	#ifdef CONFIG_PID_NS
32	static inline struct pid_namespace get_pid_ns(struct pid_namespace ns)	33	static inline struct pid_namespace get_pid_ns(struct pid_namespace ns)
33	{	34	{
34	if (ns != &init_pid_ns)	35	if (ns != &init_pid_ns)
@@ -45,6 +46,28 @@ static inline void put_pid_ns(struct pid_namespace *ns)
45	kref_put(&ns->kref, free_pid_ns);	46	kref_put(&ns->kref, free_pid_ns);
46	}	47	}
47		48
		49	#else /* !CONFIG_PID_NS */
		50	#include <linux/err.h>
		51
		52	static inline struct pid_namespace get_pid_ns(struct pid_namespace ns)
		53	{
		54	return ns;
		55	}
		56
		57	static inline struct pid_namespace *
		58	copy_pid_ns(unsigned long flags, struct pid_namespace *ns)
		59	{
		60	if (flags & CLONE_NEWPID)
		61	ns = ERR_PTR(-EINVAL);
		62	return ns;
		63	}
		64
		65	static inline void put_pid_ns(struct pid_namespace *ns)
		66	{
		67	}
		68
		69	#endif /* CONFIG_PID_NS */
		70
48	static inline struct pid_namespace task_active_pid_ns(struct task_struct tsk)	71	static inline struct pid_namespace task_active_pid_ns(struct task_struct tsk)
49	{	72	{
50	return tsk->nsproxy->pid_ns;	73	return tsk->nsproxy->pid_ns;


diff --git a/init/Kconfig b/init/Kconfig index 5b92e3aa1366..c5b354b1409e 100644 --- a/init/Kconfig +++ b/init/Kconfig
@@ -215,6 +215,18 @@ config USER_NS
215	vservers, to use user namespaces to provide different	215	vservers, to use user namespaces to provide different
216	user info for different servers. If unsure, say N.	216	user info for different servers. If unsure, say N.
217		217
		218	config PID_NS
		219	bool "PID Namespaces (EXPERIMENTAL)"
		220	default n
		221	depends on EXPERIMENTAL
		222	help
		223	Suport process id namespaces. This allows having multiple
		224	process with the same pid as long as they are in different
		225	pid namespaces. This is a building block of containers.
		226
		227	Unless you want to work with an experimental feature
		228	say N here.
		229
218	config AUDIT	230	config AUDIT
219	bool "Auditing support"	231	bool "Auditing support"
220	depends on NET	232	depends on NET


diff --git a/kernel/pid.c b/kernel/pid.c index d1db36b94674..f815455431bf 100644 --- a/kernel/pid.c +++ b/kernel/pid.c
@@ -537,6 +537,7 @@ err_alloc:
537	return NULL;	537	return NULL;
538	}	538	}
539		539
		540	#ifdef CONFIG_PID_NS
540	static struct pid_namespace *create_pid_namespace(int level)	541	static struct pid_namespace *create_pid_namespace(int level)
541	{	542	{
542	struct pid_namespace *ns;	543	struct pid_namespace *ns;
@@ -621,6 +622,7 @@ void free_pid_ns(struct kref *kref)
621	if (parent != NULL)	622	if (parent != NULL)
622	put_pid_ns(parent);	623	put_pid_ns(parent);
623	}	624	}
		625	#endif /* CONFIG_PID_NS */
624		626
625	void zap_pid_ns_processes(struct pid_namespace *pid_ns)	627	void zap_pid_ns_processes(struct pid_namespace *pid_ns)
626	{	628	{