[MIR] ledmon
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OEM Priority Project |
Confirmed
|
High
|
Yuan-Chen Cheng | ||
ledmon (Ubuntu) |
Invalid
|
Low
|
Ubuntu Foundations Bugs |
Bug Description
== Requirements ==
[Availability]
Currently in universe.
Package in LP: https:/
Upstream: https:/
[Rationale]
1.OEM projects needs to include ledmon for VROC suport (LP: #1759225)
2.Intel still maintains upstream for that (LP: #1668126)
3.Dependencies already in main.
[Security]
No security issues exposed so far. We may need to rely on Intel to be aware of upstream commits for security fixes.
[Quality Assurance]
1.No debconf questions
2.No outstanding bugs
3.I can help to make sure the consistency for status of important bugs in Debian's/Ubuntu's, and upstream's bug (on github).
4.Ledmon only supports Intel related storage controller (e.g. AHCI/iSCSI/VMD controller)
5.No test suite shipped with ledmon
6.No dependencies with obsolete or demoted packages
[UI standards]
1.This is a CLI tool/daemon service. It has normal CLI style short help and man pages. (man ledmon/ledctl)
2.No desktop file required as it is a backend tool.
[Dependencies]
build-depends: perl (main), libsgutils2-dev (main), libudev-dev (main)
binary-depends: openipmi (main)
[Standards Compliance]
The package should meet the FHS and Debian Policy standards.
[Maintenance]
Package owning team: The Foundations team
Debian package maintained by Daniel Jared Dominguez (but seems he didn't maintain the latest one: currently the version 0.90 on upstream and it's 0.79-2 on debian)
https:/
[Background Information]
ledmon and ledctl are userspace tools designed to control storage enclosure LEDs. The user must have root privileges to use these tools.
These tools use the SGPIO and SES-2 protocols to monitor and control LEDs. They been verified to work with Intel(R) storage controllers (i.e. the Intel(R) AHCI controller) and have not been tested with storage controllers of other vendors (especially SAS/SCSI controllers).
For backplane enclosures attached to ISCI controllers, support is limited to Intel(R) Intelligent Backplanes.
== Security checks ==
1.http://
* There are 0 CVE entries that match your search.
2.Check OSS security mailing list (feed 'site:www.
* No security issue found
3.Ubuntu CVE Tracker
http://
* No
http://
* No
http://
* No
4.Check for security relevant binaries. If any are present, this requires a more in-depth security review.
* Executables which have the suid or sgid bit set.
No
* Executables in /sbin, /usr/sbin.
Yes
* Packages which install services / daemons (/etc/init.d/*, /etc/init/*, /lib/systemd/
No
* Packages which open privileged ports (ports < 1024).
No
* Add-ons and plugins to security-sensitive software (filters, scanners, UI skins, etc)
No
description: | updated |
Changed in ledmon (Ubuntu): | |
status: | New → Incomplete |
Changed in oem-priority: | |
importance: | Undecided → Medium |
Changed in ledmon (Ubuntu): | |
assignee: | nobody → Christian Ehrhardt (paelzer) |
Changed in oem-priority: | |
assignee: | nobody → Yuan-Chen Cheng (ycheng-twn) |
importance: | Medium → High |
tags: | added: oem-priority |
tags: | added: originate-1912445 |
Changed in oem-priority: | |
status: | New → In Progress |
tags: | added: fr-1336 |
description: | updated |
Changed in oem-priority: | |
status: | Fix Committed → Confirmed |
Changed in ledmon (Ubuntu): | |
importance: | Undecided → Low |
Hi Woodrow,
AFAIK the sections above are non optional.
Please use [1] to fill out all of them.
Especially Package ownership is a gating thing, someone responsible has to own it.
Since you wrote TBD I assume you know that and will update it later on.
It seems this originally was [3] but intel has taken over in [2] and was active in 2017.
There was no packaging activity until recently , are there actions to ensure it does not fall unmaintained again?
Please address all of the above (full template and subscriber at least) and then set it back to new for a re-review.
[1]: https:/ /wiki.ubuntu. com/UbuntuMainI nclusionRequire ments /github. com/intel/ ledmon/ tags /github. com/dell/ ledmon/ commits/ debian
[2]: https:/
[3]: https:/