20 Dec
2022
20 Dec
'22
4:07 p.m.
On Fri, Dec 16, 2022 at 2:31 PM Peter Newman peternewman@google.com wrote:
In a memory bandwidth-metered compute host, malicious jobs could exploit this race to remain in a previous CLOSID or RMID in order to dodge a class-of-service downgrade imposed by an admin or to steal bandwidth.
After discussing with Reinette some more[1], I think the payoff of exploiting this is too little for this to concern me, so I'll remove the paragraph above.
[1] https://lore.kernel.org/lkml/CALPaoCi8hcFzNN9O9fS9Etri_KMdU32UU1tJsfeO1OxR-i...
Consequently I don't think this fix is critical enough to be needed on stable, so I'll drop the CC: stable from the update.