lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <4e538f00-1337-d346-7df5-30081cb64c6f@gmail.com>
Date:   Mon, 6 Mar 2023 23:04:25 +0900
From:   Akira Yokosawa <akiyks@...il.com>
To:     Vegard Nossum <vegard.nossum@...cle.com>,
        Jonathan Corbet <corbet@....net>, linux-doc@...r.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
        linux-kernel@...r.kernel.org, Amit Shah <aams@...zon.com>,
        Dave Hansen <dave.hansen@...ux.intel.com>,
        David Woodhouse <dwmw@...zon.co.uk>,
        "Gustavo A. R. Silva" <gustavoars@...nel.org>,
        Kees Cook <keescook@...omium.org>,
        Laura Abbott <labbott@...nel.org>,
        Linus Torvalds <torvalds@...ux-foundation.org>,
        Mauro Carvalho Chehab <mchehab@...nel.org>,
        Paolo Bonzini <pbonzini@...hat.com>,
        Peter Zijlstra <peterz@...radead.org>,
        Thomas Gleixner <tglx@...utronix.de>,
        Thorsten Leemhuis <linux@...mhuis.info>,
        Tyler Hicks <tyhicks@...ux.microsoft.com>,
        Jiri Kosina <jikos@...nel.org>, Alex Shi <alexs@...nel.org>,
        Yanteng Si <siyanteng@...ngson.cn>,
        Hu Haowen <src.res@...il.cn>,
        Federico Vaga <federico.vaga@...a.pv.it>,
        Tsugikazu Shibata <tshibata@...jp.nec.com>,
        Minchan Kim <minchan@...nel.org>,
        Jeimi Lee <jamee.lee@...sung.com>,
        Carlos Bilbao <carlos.bilbao@....com>,
        Jiri Kosina <jkosina@...e.cz>,
        Solar Designer <solar@...nwall.com>,
        Will Deacon <will@...nel.org>, Willy Tarreau <w@....eu>
Subject: Re: [PATCH v3 1/7] Documentation/security-bugs: move from
 admin-guide/ to process/

On Sun,  5 Mar 2023 23:00:04 +0100, Vegard Nossum wrote:
> Jiri Kosina, Jonathan Corbet, and Willy Tarreau all expressed a desire
> to move this document under process/.
> 
> Create a new section for security issues in the index and group it with
> embargoed-hardware-issues.
> 
> I'm doing this at the start of the series to make all the subsequent
> changes show up in 'git blame'.
> 
> Existing references were updated using:
> 
>   git grep -l security-bugs ':!Documentation/translations/' | xargs sed -i 's|admin-guide/security-bugs|process/security-bugs|g'
>   git grep -l security-bugs Documentation/translations/ | xargs sed -i 's|Documentation/admin-guide/security-bugs|Documentation/process/security-bugs|g'
>   git grep -l security-bugs Documentation/translations/ | xargs sed -i '/Original:/s|\.\./admin-guide/security-bugs|\.\./process/security-bugs|g'
> 
> Notably, the page is not moved in the translations (due to my lack of
> knowledge of these languages), but the translations have been updated
> to point to the new location of the original document where these
> references exist.
> 
> Link: https://lore.kernel.org/all/nycvar.YFH.7.76.2206062326230.10851@cbobk.fhfr.pm/
> Suggested-by: Jiri Kosina <jikos@...nel.org>
> Cc: Alex Shi <alexs@...nel.org>
> Cc: Yanteng Si <siyanteng@...ngson.cn>
> Cc: Hu Haowen <src.res@...il.cn>
> Cc: Federico Vaga <federico.vaga@...a.pv.it>
> Cc: Tsugikazu Shibata <tshibata@...jp.nec.com>
> Cc: Minchan Kim <minchan@...nel.org>
> Cc: Jeimi Lee <jamee.lee@...sung.com>
> Cc: Carlos Bilbao <carlos.bilbao@....com>
> Cc: Akira Yokosawa <akiyks@...il.com>
> Signed-off-by: Vegard Nossum <vegard.nossum@...cle.com>
> ---
>  Documentation/admin-guide/index.rst                      | 1 -
>  Documentation/admin-guide/reporting-issues.rst           | 4 ++--
>  Documentation/process/howto.rst                          | 2 +-
>  Documentation/process/index.rst                          | 9 ++++++++-
>  Documentation/process/researcher-guidelines.rst          | 2 +-
>  Documentation/{admin-guide => process}/security-bugs.rst | 0
>  Documentation/process/stable-kernel-rules.rst            | 2 +-
>  Documentation/process/submitting-patches.rst             | 2 +-
>  .../translations/it_IT/admin-guide/security-bugs.rst     | 2 +-
>  .../translations/it_IT/process/submitting-patches.rst    | 2 +-
>  Documentation/translations/ja_JP/howto.rst               | 2 +-

For ja_JP part:
Reviewed-by: Akira Yokosawa <akiyks@...il.com>

>  Documentation/translations/ko_KR/howto.rst               | 2 +-
>  Documentation/translations/sp_SP/howto.rst               | 2 +-
>  .../translations/sp_SP/process/submitting-patches.rst    | 2 +-
>  .../translations/zh_CN/admin-guide/security-bugs.rst     | 2 +-
>  Documentation/translations/zh_CN/process/howto.rst       | 2 +-
>  .../translations/zh_TW/admin-guide/security-bugs.rst     | 2 +-
>  Documentation/translations/zh_TW/process/howto.rst       | 2 +-
>  MAINTAINERS                                              | 4 ++--
>  19 files changed, 26 insertions(+), 20 deletions(-)
>  rename Documentation/{admin-guide => process}/security-bugs.rst (100%)
> 
> diff --git a/Documentation/admin-guide/index.rst b/Documentation/admin-guide/index.rst
> index 0ad7e7ec0d27..09a563bbe3e7 100644
> --- a/Documentation/admin-guide/index.rst
> +++ b/Documentation/admin-guide/index.rst
> @@ -36,7 +36,6 @@ problems and bugs in particular.
>  
>     reporting-issues
>     reporting-regressions
> -   security-bugs
>     bug-hunting
>     bug-bisect
>     tainted-kernels
> diff --git a/Documentation/admin-guide/reporting-issues.rst b/Documentation/admin-guide/reporting-issues.rst
> index ec62151fe672..2fd5a030235a 100644
> --- a/Documentation/admin-guide/reporting-issues.rst
> +++ b/Documentation/admin-guide/reporting-issues.rst
> @@ -395,7 +395,7 @@ might want to be aware of; it for example explains how to add your issue to the
>  list of tracked regressions, to ensure it won't fall through the cracks.
>  
>  What qualifies as security issue is left to your judgment. Consider reading
> -Documentation/admin-guide/security-bugs.rst before proceeding, as it
> +Documentation/process/security-bugs.rst before proceeding, as it
>  provides additional details how to best handle security issues.
>  
>  An issue is a 'really severe problem' when something totally unacceptably bad
> @@ -1269,7 +1269,7 @@ them when sending the report by mail. If you filed it in a bug tracker, forward
>  the report's text to these addresses; but on top of it put a small note where
>  you mention that you filed it with a link to the ticket.
>  
> -See Documentation/admin-guide/security-bugs.rst for more information.
> +See Documentation/process/security-bugs.rst for more information.
>  
>  
>  Duties after the report went out
> diff --git a/Documentation/process/howto.rst b/Documentation/process/howto.rst
> index cb6abcb2b6d0..deb8235e20ff 100644
> --- a/Documentation/process/howto.rst
> +++ b/Documentation/process/howto.rst
> @@ -138,7 +138,7 @@ required reading:
>      philosophy and is very important for people moving to Linux from
>      development on other Operating Systems.
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      If you feel you have found a security problem in the Linux kernel,
>      please follow the steps in this document to help notify the kernel
>      developers, and help solve the issue.
> diff --git a/Documentation/process/index.rst b/Documentation/process/index.rst
> index d4b6217472b0..565df595152e 100644
> --- a/Documentation/process/index.rst
> +++ b/Documentation/process/index.rst
> @@ -35,6 +35,14 @@ Below are the essential guides that every developer should read.
>     kernel-enforcement-statement
>     kernel-driver-statement
>  
> +For security issues, see:
> +
> +.. toctree::
> +   :maxdepth: 1
> +
> +   security-bugs
> +   embargoed-hardware-issues
> +
>  Other guides to the community that are of interest to most developers are:
>  
>  .. toctree::
> @@ -47,7 +55,6 @@ Other guides to the community that are of interest to most developers are:
>     submit-checklist
>     kernel-docs
>     deprecated
> -   embargoed-hardware-issues
>     maintainers
>     researcher-guidelines
>  
> diff --git a/Documentation/process/researcher-guidelines.rst b/Documentation/process/researcher-guidelines.rst
> index afc944e0e898..9fcfed3c350b 100644
> --- a/Documentation/process/researcher-guidelines.rst
> +++ b/Documentation/process/researcher-guidelines.rst
> @@ -68,7 +68,7 @@ Before contributing, carefully read the appropriate documentation:
>  * Documentation/process/development-process.rst
>  * Documentation/process/submitting-patches.rst
>  * Documentation/admin-guide/reporting-issues.rst
> -* Documentation/admin-guide/security-bugs.rst
> +* Documentation/process/security-bugs.rst
>  
>  Then send a patch (including a commit log with all the details listed
>  below) and follow up on any feedback from other developers.
> diff --git a/Documentation/admin-guide/security-bugs.rst b/Documentation/process/security-bugs.rst
> similarity index 100%
> rename from Documentation/admin-guide/security-bugs.rst
> rename to Documentation/process/security-bugs.rst
> diff --git a/Documentation/process/stable-kernel-rules.rst b/Documentation/process/stable-kernel-rules.rst
> index 2fd8aa593a28..51df1197d5ab 100644
> --- a/Documentation/process/stable-kernel-rules.rst
> +++ b/Documentation/process/stable-kernel-rules.rst
> @@ -39,7 +39,7 @@ Procedure for submitting patches to the -stable tree
>  
>     Security patches should not be handled (solely) by the -stable review
>     process but should follow the procedures in
> -   :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`.
> +   :ref:`Documentation/process/security-bugs.rst <securitybugs>`.
>  
>  For all other submissions, choose one of the following procedures
>  -----------------------------------------------------------------
> diff --git a/Documentation/process/submitting-patches.rst b/Documentation/process/submitting-patches.rst
> index eac7167dce83..7b223f306efa 100644
> --- a/Documentation/process/submitting-patches.rst
> +++ b/Documentation/process/submitting-patches.rst
> @@ -254,7 +254,7 @@ If you have a patch that fixes an exploitable security bug, send that patch
>  to security@...nel.org.  For severe bugs, a short embargo may be considered
>  to allow distributors to get the patch out to users; in such cases,
>  obviously, the patch should not be sent to any public lists. See also
> -Documentation/admin-guide/security-bugs.rst.
> +Documentation/process/security-bugs.rst.
>  
>  Patches that fix a severe bug in a released kernel should be directed
>  toward the stable maintainers by putting a line like this::
> diff --git a/Documentation/translations/it_IT/admin-guide/security-bugs.rst b/Documentation/translations/it_IT/admin-guide/security-bugs.rst
> index 18a5822c7d9a..20994f4bfa31 100644
> --- a/Documentation/translations/it_IT/admin-guide/security-bugs.rst
> +++ b/Documentation/translations/it_IT/admin-guide/security-bugs.rst
> @@ -1,6 +1,6 @@
>  .. include:: ../disclaimer-ita.rst
>  
> -:Original: :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +:Original: :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>  
>  .. _it_securitybugs:
>  
> diff --git a/Documentation/translations/it_IT/process/submitting-patches.rst b/Documentation/translations/it_IT/process/submitting-patches.rst
> index c2cfa0948b2b..167fce813032 100644
> --- a/Documentation/translations/it_IT/process/submitting-patches.rst
> +++ b/Documentation/translations/it_IT/process/submitting-patches.rst
> @@ -272,7 +272,7 @@ embargo potrebbe essere preso in considerazione per dare il tempo alle
>  distribuzioni di prendere la patch e renderla disponibile ai loro utenti;
>  in questo caso, ovviamente, la patch non dovrebbe essere inviata su alcuna
>  lista di discussione pubblica. Leggete anche
> -Documentation/admin-guide/security-bugs.rst.
> +Documentation/process/security-bugs.rst.
>  
>  Patch che correggono bachi importanti su un kernel già rilasciato, dovrebbero
>  essere inviate ai manutentori dei kernel stabili aggiungendo la seguente riga::
> diff --git a/Documentation/translations/ja_JP/howto.rst b/Documentation/translations/ja_JP/howto.rst
> index 9b0b3436dfcf..8d856ebe873c 100644
> --- a/Documentation/translations/ja_JP/howto.rst
> +++ b/Documentation/translations/ja_JP/howto.rst
> @@ -167,7 +167,7 @@ linux-api@...r.kernel.org に送ることを勧めます。
>      このドキュメントは Linux 開発の思想を理解するのに非常に重要です。
>      そして、他のOSでの開発者が Linux に移る時にとても重要です。
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      もし Linux カーネルでセキュリティ問題を発見したように思ったら、こ
>      のドキュメントのステップに従ってカーネル開発者に連絡し、問題解決を
>      支援してください。
> diff --git a/Documentation/translations/ko_KR/howto.rst b/Documentation/translations/ko_KR/howto.rst
> index 969e91a95bb0..34f14899c155 100644
> --- a/Documentation/translations/ko_KR/howto.rst
> +++ b/Documentation/translations/ko_KR/howto.rst
> @@ -157,7 +157,7 @@ mtk.manpages@...il.com의 메인테이너에게 보낼 것을 권장한다.
>      리눅스로 전향하는 사람들에게는 매우 중요하다.
>  
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      여러분들이 리눅스 커널의 보안 문제를 발견했다고 생각한다면 이 문서에
>      나온 단계에 따라서 커널 개발자들에게 알리고 그 문제를 해결할 수 있도록
>      도와 달라.
> diff --git a/Documentation/translations/sp_SP/howto.rst b/Documentation/translations/sp_SP/howto.rst
> index f9818d687b54..f1629738b49d 100644
> --- a/Documentation/translations/sp_SP/howto.rst
> +++ b/Documentation/translations/sp_SP/howto.rst
> @@ -135,7 +135,7 @@ de obligada lectura:
>       de Linux y es muy importante para las personas que se mudan a Linux
>       tras desarrollar otros sistemas operativos.
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      Si cree que ha encontrado un problema de seguridad en el kernel de
>      Linux, siga los pasos de este documento para ayudar a notificar a los
>      desarrolladores del kernel y ayudar a resolver el problema.
> diff --git a/Documentation/translations/sp_SP/process/submitting-patches.rst b/Documentation/translations/sp_SP/process/submitting-patches.rst
> index bf95ceb5e865..c2757d9ab216 100644
> --- a/Documentation/translations/sp_SP/process/submitting-patches.rst
> +++ b/Documentation/translations/sp_SP/process/submitting-patches.rst
> @@ -276,7 +276,7 @@ parche a security@...nel.org. Para errores graves, se debe mantener un
>  poco de discreción y permitir que los distribuidores entreguen el parche a
>  los usuarios; en esos casos, obviamente, el parche no debe enviarse a
>  ninguna lista pública. Revise también
> -Documentation/admin-guide/security-bugs.rst.
> +Documentation/process/security-bugs.rst.
>  
>  Los parches que corrigen un error grave en un kernel en uso deben dirigirse
>  hacia los maintainers estables poniendo una línea como esta::
> diff --git a/Documentation/translations/zh_CN/admin-guide/security-bugs.rst b/Documentation/translations/zh_CN/admin-guide/security-bugs.rst
> index b8120391755d..d6b8f8a4e7f6 100644
> --- a/Documentation/translations/zh_CN/admin-guide/security-bugs.rst
> +++ b/Documentation/translations/zh_CN/admin-guide/security-bugs.rst
> @@ -1,6 +1,6 @@
>  .. include:: ../disclaimer-zh_CN.rst
>  
> -:Original: :doc:`../../../admin-guide/security-bugs`
> +:Original: :doc:`../../../process/security-bugs`
>  
>  :译者:
>  
> diff --git a/Documentation/translations/zh_CN/process/howto.rst b/Documentation/translations/zh_CN/process/howto.rst
> index 10254751df6a..cc47be356dd3 100644
> --- a/Documentation/translations/zh_CN/process/howto.rst
> +++ b/Documentation/translations/zh_CN/process/howto.rst
> @@ -125,7 +125,7 @@ Linux内核代码中包含有大量的文档。这些文档对于学习如何与
>      这篇文档对于理解Linux的开发哲学至关重要。对于将开发平台从其他操作系
>      统转移到Linux的人来说也很重要。
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      如果你认为自己发现了Linux内核的安全性问题,请根据这篇文档中的步骤来
>      提醒其他内核开发者并帮助解决这个问题。
>  
> diff --git a/Documentation/translations/zh_TW/admin-guide/security-bugs.rst b/Documentation/translations/zh_TW/admin-guide/security-bugs.rst
> index eed260ef0c37..15f8e9005071 100644
> --- a/Documentation/translations/zh_TW/admin-guide/security-bugs.rst
> +++ b/Documentation/translations/zh_TW/admin-guide/security-bugs.rst
> @@ -2,7 +2,7 @@
>  
>  .. include:: ../disclaimer-zh_TW.rst
>  
> -:Original: :doc:`../../../admin-guide/security-bugs`
> +:Original: :doc:`../../../process/security-bugs`
>  
>  :譯者:
>  
> diff --git a/Documentation/translations/zh_TW/process/howto.rst b/Documentation/translations/zh_TW/process/howto.rst
> index 8fb8edcaee66..ea2f468d3e58 100644
> --- a/Documentation/translations/zh_TW/process/howto.rst
> +++ b/Documentation/translations/zh_TW/process/howto.rst
> @@ -128,7 +128,7 @@ Linux內核代碼中包含有大量的文檔。這些文檔對於學習如何與
>      這篇文檔對於理解Linux的開發哲學至關重要。對於將開發平台從其他操作系
>      統轉移到Linux的人來說也很重要。
>  
> -  :ref:`Documentation/admin-guide/security-bugs.rst <securitybugs>`
> +  :ref:`Documentation/process/security-bugs.rst <securitybugs>`
>      如果你認爲自己發現了Linux內核的安全性問題,請根據這篇文檔中的步驟來
>      提醒其他內核開發者並幫助解決這個問題。
>  
> diff --git a/MAINTAINERS b/MAINTAINERS
> index b0db911207ba..ed84d41353a7 100644
> --- a/MAINTAINERS
> +++ b/MAINTAINERS
> @@ -73,7 +73,7 @@ Tips for patch submitters
>  	and ideally, should come with a patch proposal. Please do not send
>  	automated reports to this list either. Such bugs will be handled
>  	better and faster in the usual public places. See
> -	Documentation/admin-guide/security-bugs.rst for details.
> +	Documentation/process/security-bugs.rst for details.
>  
>  8.	Happy hacking.
>  
> @@ -18807,7 +18807,7 @@ F:	include/uapi/linux/sed*
>  SECURITY CONTACT
>  M:	Security Officers <security@...nel.org>
>  S:	Supported
> -F:	Documentation/admin-guide/security-bugs.rst
> +F:	Documentation/process/security-bugs.rst
>  
>  SECURITY SUBSYSTEM
>  M:	Paul Moore <paul@...l-moore.com>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ