diff options
| author | Jonathan Corbet <corbet@lwn.net> | 2026-05-13 14:51:29 -0600 |
|---|---|---|
| committer | Jonathan Corbet <corbet@lwn.net> | 2026-05-14 06:23:06 -0600 |
| commit | 561458db0d6b08b4e4956c6e4456d7781b18676f (patch) | |
| tree | 61a5bddd7d4897be2491938cc0b52e494ff3e8f6 | |
| parent | 4bf85afb9f3ecd7c3b5d15a85b0902f8e725cd06 (diff) | |
| download | lwn-561458db0d6b08b4e4956c6e4456d7781b18676f.tar.gz lwn-561458db0d6b08b4e4956c6e4456d7781b18676f.zip | |
docs: security-bugs: add a link to the threat-model documentation
Rather than make readers search for this document, just a link to it where
it is referenced.
(While I was at it, I removed the unused and unneeded _threatmodel label
from the top of threat-model.rst).
Acked-by: Willy Tarreau <w@1wt.eu>
Reviewed-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Jonathan Corbet <corbet@lwn.net>
| -rw-r--r-- | Documentation/process/security-bugs.rst | 13 | ||||
| -rw-r--r-- | Documentation/process/threat-model.rst | 2 |
2 files changed, 7 insertions, 8 deletions
diff --git a/Documentation/process/security-bugs.rst b/Documentation/process/security-bugs.rst index f85c65f31f12..3c51ddde31dd 100644 --- a/Documentation/process/security-bugs.rst +++ b/Documentation/process/security-bugs.rst @@ -191,12 +191,13 @@ handle: Please **always convert your report to plain text** without any formatting decorations before sending it. - * **Impact Evaluation**: Many AI-generated reports lack an understanding of - the kernel's threat model and go to great lengths inventing theoretical - consequences. This adds noise and complicates triage. Please stick to - verifiable facts (e.g., "this bug permits any user to gain CAP_NET_ADMIN") - without enumerating speculative implications. Have your tool read this - documentation as part of the evaluation process. + * **Impact Evaluation**: Many AI-generated reports lack an understanding + of the kernel's threat model (see Documentation/process/threat-model.rst) + and go to great lengths inventing theoretical consequences. This adds + noise and complicates triage. Please stick to verifiable facts (e.g., + "this bug permits any user to gain CAP_NET_ADMIN") without enumerating + speculative implications. Have your tool read this documentation as + part of the evaluation process. * **Reproducer**: AI-based tools are often capable of generating reproducers. Please always ensure your tool provides one and **test it thoroughly**. If diff --git a/Documentation/process/threat-model.rst b/Documentation/process/threat-model.rst index ecb432390e79..91da52f7114f 100644 --- a/Documentation/process/threat-model.rst +++ b/Documentation/process/threat-model.rst @@ -1,5 +1,3 @@ -.. _threatmodel: - The Linux Kernel threat model ============================= |