www.infradead.org Git - users/jedix/linux-maple.git/commit

author	Günther Noack <gnoack@google.com>
	Mon, 3 Mar 2025 19:45:12 +0000 (20:45 +0100)
committer	Mickaël Salaün <mic@digikod.net>
	Thu, 20 Mar 2025 18:23:07 +0000 (19:23 +0100)
commit	d1a088a87273620670b3a54b65ca504fab1febd4
tree	a95380f8ac623763f87ec69375ced517601d8d0c	tree
parent	7eb172143d5508b4da468ed59ee857c6e5e01da6	commit \| diff

landlock: Clarify IPC scoping documentation

* Clarify terminology
* Stop mixing the unix(7) and signal(7) aspects in the explanation.

Terminology:

* The *IPC Scope* of a Landlock domain is that Landlock domain and its
  nested domains.
* An *operation* (e.g., signaling, connecting to abstract UDS) is said to
  be *scoped within a domain* when the flag for that operation was set at
  ruleset creation time.  This means that for the purpose of this
  operation, only processes within the domain's IPC scope are reachable.

Signed-off-by: Günther Noack <gnoack@google.com>
Link: https://lore.kernel.org/r/20250303194510.135506-4-gnoack@google.com
[mic: Update doc date]
Signed-off-by: Mickaël Salaün <mic@digikod.net>