Google Git
Sign in
android-kvm / linux / 3e52e5b077f6c3e26801d87335aac35411744108
commit3e52e5b077f6c3e26801d87335aac35411744108[log] [tgz]
authorMickaël Salaün <mic@digikod.net>Fri Dec 09 20:38:13 2022 +0100
committerMickaël Salaün <mic@digikod.net>Fri Jan 13 20:40:35 2023 +0100
tree3989d20a25897edb392b7cb60717ae6b56d9e730
parentb7bfaa761d760e72a969d116517eaa12e404c262 [diff]
landlock: Explain file descriptor access rights

Starting with LANDLOCK_ACCESS_FS_TRUNCATE, it is worth explaining why we
choose to restrict access checks at open time.  This new "File
descriptor access rights" section is complementary to the existing
"Inode access rights" section.  Add a new guiding principle related to
this section.

Reviewed-by: Günther Noack <gnoack3000@gmail.com>
Link: https://lore.kernel.org/r/20221209193813.972012-1-mic@digikod.net
[mic: Include the latest Günther's suggestion, and fix spelling]
Signed-off-by: Mickaël Salaün <mic@digikod.net>
1 file changed
tree: 3989d20a25897edb392b7cb60717ae6b56d9e730
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. io_uring/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. rust/
  18. samples/
  19. scripts/
  20. security/
  21. sound/
  22. tools/
  23. usr/
  24. virt/
  25. .clang-format
  26. .cocciconfig
  27. .get_maintainer.ignore
  28. .gitattributes
  29. .gitignore
  30. .mailmap
  31. .rustfmt.toml
  32. COPYING
  33. CREDITS
  34. Kbuild
  35. Kconfig
  36. MAINTAINERS
  37. Makefile
  38. README