This is an archive of the discontinued LLVM Phabricator instance.

Differential D106917

Security: make peoples' phab names obvious; recommend phab as the place for nominations
ClosedPublic

Authored by george.burgess.iv on Jul 27 2021, 2:25 PM.

Details

Reviewers
ab
apilipenko
dim
emaste
kristof.beyls
mattdr
ojhunt
probinson
peter.smith
pietroalbini
serge-sans-paille
Shayne
steveklabnik
Commits
rG4c98e9455aad: security: highlight phab accounts; recommend phab for nominations
Summary

This commit contains two mildly separate concepts; happy to split them out if folks prefer.

First, sending out reviews for things like this is a bit of a complicated endeavor, since the reviewer list is relatively long, and I generally rely on prior CLs in this area to find an authoritative list. Life's quite a bit easier if phab usernames are readily available on the doc. I was unable to locate accounts for the folks who have [] next to their names. If it's intended that some people on the list don't have phab accounts, I'm happy to leave those blank (though slightly concerned that these peoples' voices might not be getting heard on Phabricator code reviews).

Second, it seems to me that, at the moment, Phabricator makes the most sense for membership changes (incl. security group nominations). My reasoning for this is detailed in the diff, and to some extent in comment #1 of this bug. This change adds prose to recommend the use of Phabricator for nominations as a result. Happy to consider alternatives/etc if others have different opinions (especially given the other change in this patch).

Diff Detail

Event Timeline

george.burgess.iv requested review of this revision.Jul 27 2021, 2:25 PM
george.burgess.iv created this revision.
Herald added a project: Restricted Project. · View Herald TranscriptJul 27 2021, 2:25 PM
dim accepted this revision.Jul 27 2021, 3:08 PM

LGTM.

This revision is now accepted and ready to land.Jul 27 2021, 3:08 PM
pietroalbini added a comment.Jul 27 2021, 3:18 PM

I checked with Steve Klabnik (the other Rust contact) and he just created his Phabricator account: steveklabnik. Could you add his account to the list?

Running nominations over Phabricator LGTM.

pietroalbini added a reviewer: steveklabnik.Jul 27 2021, 3:19 PM
pietroalbini mentioned this in D106906: [Nomination] Adding an Nvidia representative to security group.Jul 27 2021, 3:26 PM
george.burgess.iv updated this revision to Diff 362203.Jul 27 2021, 3:29 PM

Added steveklabnik to the doc as requested -- thanks!

Harbormaster completed remote builds in B116557: Diff 362203.Jul 27 2021, 5:39 PM
emaste accepted this revision.Jul 27 2021, 6:06 PM
steveklabnik accepted this revision.Jul 27 2021, 6:56 PM

Thanks!

probinson accepted this revision.Jul 28 2021, 7:29 AM

Yes, this all makes sense to me.
I see that Josh Eads (the other Sony member) does not have a Phab account, but he's leaving and will be replaced by another member of our Security team; I'm on the hook to write a patch for that. I'll let the new guy know that it will be convenient to have a Phab account.

probinson mentioned this in D106964: [Security] Replace a Sony member.Jul 28 2021, 7:57 AM
probinson added a comment.Jul 28 2021, 8:02 AM

One question: Does it have to be a Phabricator account specifically? IIRC, Phab can authenticate with a github account, so if someone has a github account that should work here, correct?

steveklabnik added a comment.Jul 28 2021, 8:17 AM
In D106917#2910326, @probinson wrote:

One question: Does it have to be a Phabricator account specifically? IIRC, Phab can authenticate with a github account, so if someone has a github account that should work here, correct?

I created my account this way; while you auth with GitHub, it creates a Phab account that it's linked to.

pietroalbini accepted this revision.Jul 28 2021, 8:18 AM
peter.smith accepted this revision.Jul 28 2021, 9:07 AM
george.burgess.iv added a comment.Jul 28 2021, 2:19 PM

Thanks for the reviews and commentary!

Looks like everyone's happy with this. I'll plan to land it as-is tomorrow, so if anyone would like revisions, please speak up soon. :)

I created my account this way; while you auth with GitHub, it creates a Phab account that it's linked to.

+1; I use Google for authentication, myself. As long as a patch author can paste the name into phab's reviewers list and have phab pick the right person, I think all's good.

mattdr accepted this revision.Jul 28 2021, 10:40 PM

Many thanks for getting this spelled out.

Closed by commit rG4c98e9455aad: security: highlight phab accounts; recommend phab for nominations (authored by gbiv). · Explain WhyJul 29 2021, 3:41 PM
This revision was automatically updated to reflect the committed changes.
gbiv added a commit: rG4c98e9455aad: security: highlight phab accounts; recommend phab for nominations.

Revision Contents

PathSize
llvm/
docs/
40 lines

Diff 362908

llvm/docs/Security.rst

Show All 25 Lines
Group Composition Group Composition
================= =================
Security Group Members Security Group Members
---------------------- ----------------------
The members of the group represent a wide cross-section of the community, and meet the criteria for inclusion below. The members of the group represent a wide cross-section of the community, and meet the criteria for inclusion below. The list is in the format `* ${full_name} (${affiliation}) [${phabricator_username}]`. If a phabricator username for an individual isn't available, the brackets will be empty.
* Ahmed Bougacha (Apple) * Ahmed Bougacha (Apple) [ab]
* Artur Pilipenko (Azul Systems Inc) * Artur Pilipenko (Azul Systems Inc) [apilipenko]
* Dimitry Andric (individual; FreeBSD) * Dimitry Andric (individual; FreeBSD) [dim]
* Ed Maste (individual; FreeBSD) * Ed Maste (individual; FreeBSD) [emaste]
* George Burgess IV (Google) * George Burgess IV (Google) [george.burgess.iv]
* Josh Eads (Sony) * Josh Eads (Sony) []
* Kate McInnes (Apple) * Kate McInnes (Apple) []
* Kristof Beyls (ARM) * Kristof Beyls (ARM) [kristof.beyls]
* Matthew Riley (Google) * Matthew Riley (Google) [mattdr]
* Oliver Hunt (Apple) * Oliver Hunt (Apple) [ojhunt]
* Paul Robinson (Sony) * Paul Robinson (Sony) [probinson]
* Peter Smith (ARM) * Peter Smith (ARM) [peter.smith]
* Pietro Albini (individual; Rust) * Pietro Albini (individual; Rust) [pietroalbini]
* Serge Guelton (RedHat) * Serge Guelton (RedHat) [serge-sans-paille]
* Shayne Hiet-Block (Microsoft) * Shayne Hiet-Block (Microsoft) [Shayne]
* Steve Klabnik (Oxide Computer Company; Rust) * Steve Klabnik (Oxide Computer Company; Rust) [steveklabnik]
Criteria Criteria
-------- --------
* Nominees for LLVM Security Group membership should fall in one of these groups: * Nominees for LLVM Security Group membership should fall in one of these groups:
- Individual contributors: - Individual contributors:
Show All 20 Lines* Additionally, the following are necessary but not sufficient criteria for membership in the LLVM Security Group:
- When nominated as a vendor contact, their position with that vendor remains the same as when originally nominated. - When nominated as a vendor contact, their position with that vendor remains the same as when originally nominated.
- Nominees are trusted by existing Security Group members to keep communications embargoed while still active. - Nominees are trusted by existing Security Group members to keep communications embargoed while still active.
Nomination process Nomination process
------------------ ------------------
Anyone who feels they meet these criteria can nominate themselves, or may be nominated by a third party such as an existing LLVM Security Group member. The nomination should state whether the nominee is nominated as an individual, researcher, or as a vendor contact. It should clearly describe the grounds for nomination. Anyone who feels they meet these criteria can nominate themselves, or may be nominated by a third party such as an existing LLVM Security Group member. The nomination should state whether the nominee is nominated as an individual, researcher, or as a vendor contact. It should clearly describe the grounds for nomination.
*FUTURE*: where nomination occurs (mailing list, GitHub, etc), can be decided later. See `Discussion Medium`_ below. For the moment, nominations are generally proposed, discussed, and voted on using Phabricator. An `example nomination is available here`_. The use of Phabricator helps keep membership discussions open, transparent, and easily accessible to LLVM developers in many ways. If, for any reason, a fully-world-readable nomination seems inappropriate, you may `open a new issue`_, and a discussion can be had about the best way to approach nomination, given the constraints that individuals are under.
Our recommended method of nomination may change as our `Discussion Medium`_ story evolves over time.
Choosing new members Choosing new members
-------------------- --------------------
If a nomination for LLVM Security Group membership is supported by a majority of existing LLVM Security Group members, then it carries within five business days unless an existing member of the Security Group objects. If an objection is raised, the LLVM Security Group members should discuss the matter and try to come to consensus; failing this, the nomination will succeed only by a two-thirds supermajority vote of the LLVM Security Group. If a nomination for LLVM Security Group membership is supported by a majority of existing LLVM Security Group members, then it carries within five business days unless an existing member of the Security Group objects. If an objection is raised, the LLVM Security Group members should discuss the matter and try to come to consensus; failing this, the nomination will succeed only by a two-thirds supermajority vote of the LLVM Security Group.
Accepting membership Accepting membership
-------------------- --------------------
▲ Show 20 LinesShow All 123 Lines▼ Show 20 Lines
.. _CVE process: https://cve.mitre.org .. _CVE process: https://cve.mitre.org
.. _open a new issue: https://bugs.chromium.org/p/llvm/issues/entry .. _open a new issue: https://bugs.chromium.org/p/llvm/issues/entry
.. _chromium issue tracker: https://crbug.com .. _chromium issue tracker: https://crbug.com
.. _GitHub security: https://help.github.com/en/articles/about-maintainer-security-advisories .. _GitHub security: https://help.github.com/en/articles/about-maintainer-security-advisories
.. _llvm-dev mailing list: https://lists.llvm.org/mailman/listinfo/llvm-dev .. _llvm-dev mailing list: https://lists.llvm.org/mailman/listinfo/llvm-dev
.. _MITRE: https://cve.mitre.org .. _MITRE: https://cve.mitre.org
.. _example nomination is available here: https://reviews.llvm.org/D99232