[Bug 1543754] Re: [MIR] barbican

Mathieu Trudel-Lapierre mathieu.tl at gmail.com
Mon Feb 22 16:59:57 UTC 2016 

Some lintian warnings should be fixed:
W: barbican-common: binary-without-manpage usr/bin/barbican-db-manage
W: barbican-common: binary-without-manpage usr/bin/barbican-keystone-listener
W: barbican-common: binary-without-manpage usr/bin/barbican-retry
W: barbican-common: binary-without-manpage usr/bin/barbican-worker
W: barbican-common: binary-without-manpage usr/bin/pkcs11-kek-rewrap
W: barbican-common: binary-without-manpage usr/bin/pkcs11-key-generation
P: barbican-common: maintainer-script-without-set-e postinst

Not all Build-Depends and binary Depends are in main:

Checking support status of build dependencies...
 * python-ldap3 binary and source package is in universe
 * python-pykmip binary and source package is in universe

Checking support status of binary dependencies...
 * python-ldap3 binary and source package is in universe
 * python-barbican binary and source package is in universe
 * python-pysqlite2 binary and source package is in universe
 * barbican-common binary and source package is in universe
 * uwsgi-core binary and source package is in universe
 * uwsgi-plugin-python binary and source package is in universe
 * barbican-common binary and source package is in universe
 * barbican-common binary and source package is in universe

There's also an open bug in LP:
https://bugs.launchpad.net/ubuntu/+source/barbican/+bug/1526648 its
impact on 16.04 should be investigated.

The above should be fixed or at least there should be documentation on
why they should not (or can't be).

Given that barbican is meant to handle secure storage, sensitive client
secret information, I think this would also benefit from a security
review.

** Changed in: barbican (Ubuntu)
     Assignee: Mathieu Trudel-Lapierre (mathieu-tl) => Ubuntu Security Team (ubuntu-security)

-- 
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to barbican in Ubuntu.
https://bugs.launchpad.net/bugs/1543754

Title:
  [MIR] barbican

Status in barbican package in Ubuntu:
  New

Bug description:
  [Availability]
  Currently in universe

  [Rationale]
  OpenStack Mitaka requires the barbican package.

  [Security]
  No security history

  [Quality Assurance]
  No prompting during install, all unit tests ran successfully. All current bugs are triaged or in progress.

  [Dependencies]
  All in main.

  [Standards Compliance]
  FHS and Debian Policy compliant.

  [Maintenance]
  Simple python package that the Ubuntu Server Team will take care of.

  [Background]
  Barbican provides a secure REST key store for authentication.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/barbican/+bug/1543754/+subscriptions

More information about the Ubuntu-openstack-bugs mailing list