On Mon, 12 Nov 2018 09:37:51 +0000 chouryzhou(周威) <chouryz...@tencent.com> wrote:
> Currently android's binder is not isolated by ipc namespace. Since binder > is a form of IPC and therefore should be tied to ipc namespace. With this > patch, we can run multiple instances of android container on one host. > > This patch move "binder_procs" and "binder_context" into ipc_namespace, > driver will find the context from it when opening. For debugfs, binder_proc > is namespace-aware, but not for binder dead nodes, binder_stats and > binder_transaction_log_entry (we added ipc inum to trace it). > > ... > > drivers/android/binder.c | 133 > ++++++++++++++++++++++++++++++++---------- > include/linux/ipc_namespace.h | 15 +++++ > ipc/namespace.c | 10 +++- > 3 files changed, 125 insertions(+), 33 deletions(-) Well, it's mainly an android patch so I suggest this be taken via the android tree. Acked-by: Andrew Morton <a...@linux-foundation.org>