Re: [PATCH v3 3/3] Documentation: security-bugs: clarify requirements for AI-assisted reports

Next message: Sean Christopherson: "Re: [PATCH v2 2/2] x86/tdx: Fix zero-extension for 32-bit port I/O"
Previous message: Ian Rogers: "Re: [PATCH] perf arm-spe: Don't warn about the discard bit if it doesn't exist"
In reply to: Willy Tarreau: "Re: [PATCH v3 3/3] Documentation: security-bugs: clarify requirements for AI-assisted reports"
Next in thread: Willy Tarreau: "Re: [PATCH v3 3/3] Documentation: security-bugs: clarify requirements for AI-assisted reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jonathan Corbet

Date: Wed May 13 2026 - 09:06:03 EST

Willy Tarreau <w@xxxxxx> writes:

> On Wed, May 13, 2026 at 12:30:10PM +0200, Greg KH wrote:
>> > One nit:
>> >
>> > > + * **Impact Evaluation**: Many AI-generated reports lack an understanding of
>> > > + the kernel's threat model and go to great lengths inventing theoretical
>> > > + consequences.
>> >
>> > If only we had a shiny new document describing that threat model that we
>> > could reference here... :)
>>
>> Ah yes, a link to that would make things better, but don't we have that
>> elsewhere in this series?
>
> It's in the same patch, I think Jon was sarcastic here. I thought I had
> addressed that one but apparently I was wrong :-/

I'm just saying that this particular text should link to that document,
don't make readers go searching for it. I can certainly add a patch
doing that if you like.

Thanks,

jon