Progress towards topic-precise-security-essential

This page shows the progress towards completing a Topic . You can see from the burndown if the Topic is likely to be completed at the current rate of work. Below that you can see the progress towards the blueprints that contribute to the Topic , and the progress of each person working on the Topic .

Launchpad page

Workitem burndown

(enlarge)

"foreign" counts refer to workitems that are assigned to someone not in the team

Burndown chart
96% of 49

Contributing Blueprints

Blueprint Completion Priority Status/Description
security-p-apparmor-permissions-rework
100% of 5
Essential The file permissions layout table[1] is running out of space and cannot properly support things such as mount rules. While we could hack around this and do remappings, this will require more work to untangle down the road than completing the permissions rework. http://wiki.apparmor.net/index.php/TechnicalDoc_HFA_permissions#Permission_Layout
security-p-mozilla-lts
100% of 7
Essential With rapid release now a reality in Oneiric and presumably in Precise, we should discuss the potential impact of updates that can affect people that were just expecting security updates, but getting a whole lot more (new features and potentially breaking stuff that used to work). After this session, a clear path forward for supporting the existing LTS and Precise should be established and documented.
security-p-quality
90% of 10
Essential This blueprint is to regroup and mark as "essential" work for the acceptance criteria and quality in Ubuntu Security.
security-p-browser-maintenance
83% of 6
Essential This blueprint is to regroup and mark as "essential" work required for web browser maintenance.
security-p-app-isolation
100% of 7
Essential This blueprint is to regroup and mark as "essential" work required for app isolation.
security-p-apparmor-containers
100% of 14
Essential This blueprint is to regroup and mark as "essential" work required for AppArmor container support.

Status by assignee

Assignee todo blocked inprogress postponed done Completion
allison 0 0 0 0 1 100%
Jamie Strandboge 0 0 0 0 10 100%
John Johansen 0 0 0 2 14 100%
Marc Deslauriers 0 0 0 0 1 100%
Micah Gersten 0 0 1 1 9 91%
Steve Beattie 0 0 1 0 6 86%
Tyler Hicks 0 0 0 0 3 100%

Work item details

Assignee Status Blueprint Priority Work item
allison done security-p-app-isolation Essential give packaging requirements for ARB reviewed packages
Jamie Strandboge done security-p-app-isolation Essential finish aa-easyprof (formerly aa-profiles) (2)
security-p-app-isolation Essential submit aa-easyprof upstream (1)
security-p-app-isolation Essential take ARB packaging requirements and create documentation on how to use the tool and add the resulting profile to the packaging (1)
security-p-app-isolation Essential update apparmor packaging in Ubuntu to include aa-easyprof (0.5)
security-p-app-isolation Essential write tests for aa-easyprof (1)
security-p-apparmor-containers Essential (host) update man page for mount rules and review wiki documentation for mount rules (1)
security-p-browser-maintenance Essential adjust qrt for reduced, basic and digest auth test cases for chromium (0.5) (essential)
security-p-quality Essential Setup Daily AppArmor build to ppa for trunk and later for the stable branches (0.5)
security-p-quality Essential daily build ppa for ufw (0.5)
security-p-quality Essential ufw QRT script (1)
John Johansen done security-p-apparmor-containers Essential (child) stacking cmd line tool to set profile aa_confine + man page (0.5)
security-p-apparmor-containers Essential (child) stacking cmd line tool to set stack aa_stack + man page (0.5)
security-p-apparmor-containers Essential (child) stacking tag audit messages with namespace (0.5)
security-p-apparmor-containers Essential (host) mount rules add to kernel (0.5)
security-p-apparmor-containers Essential (host) mount rules add to parser (0.5)
security-p-apparmor-containers Essential aa-stackcon add api to libapparmor (0.5)
security-p-apparmor-containers Essential aa-stackcon add interface to kernel module (0.5)
security-p-apparmor-containers Essential investigate removal of need for attach_disconnected in containers (3)
security-p-apparmor-containers Essential stacking investigate best way to track ns changes in kernel to handle disconnected paths - how to structure policy (3)
security-p-apparmor-permissions-rework Essential extend kernel to load policydb - new permission layout (high) (1)
security-p-apparmor-permissions-rework Essential extend kernel to remap old perms at load to new permission format + regression test it (high) (1)
security-p-apparmor-permissions-rework Essential extend kernel to use extended permission format (high) (1)
security-p-apparmor-permissions-rework Essential extend parser to generate policydb - new permission layout (high) (2)
security-p-apparmor-permissions-rework Essential fix parse dfa backend to propogate permissions through to compressed DFA generation (high) (4)
postponed security-p-apparmor-containers Essential (child) stacking interface to create new policy namespace (1)
security-p-apparmor-containers Essential mediation of clone flags to control who can make a new namespace (1)
Marc Deslauriers done security-p-mozilla-lts Essential Upload empty package for bindwood for rapid release migration (0.25)
Micah Gersten inprogress security-p-browser-maintenance Essential prepare backport for webkit-gtk 1.8 for lucid, natty, and oneiric, release after 1.8 is final (20)
done security-p-browser-maintenance Essential continue talk to upstream and other distributions (debian, redhat) about webkit-gtk maintenance (2)
security-p-browser-maintenance Essential follow-up with chriscoulson on nss 3.13 transition - more work items potentially pending
security-p-browser-maintenance Essential restart thread in webkit mailing list that we want gtk2 support until 2.0 in webkit-gtk (0.5)
security-p-browser-maintenance Essential talk to kubuntu folks (felix-geyer) on how to make this qtwebkit-source more maintainable or drop to universe (0.5)
security-p-mozilla-lts Essential Coordinate with release team (skaet) an announcement to ubuntu-announce and ubuntu-security-announce about the plans to jump from Firefox 3.6 to the rapid release version (ended up just sending to ubuntu-security-announce) (0.5)
security-p-mozilla-lts Essential Ensure Firefox 3.6 -> current rapid release is a supported upgrade - email (0.5)
security-p-mozilla-lts Essential Ensure Thunderbird 3.1 -> current rapid release is a supported upgrade - email (0.5)
security-p-mozilla-lts Essential Prepare Firefox rapid release in security-proposed PPA (4)
security-p-mozilla-lts Essential Prepare Thunderbird rapid release in security-proposed PPA (0.5)
postponed security-p-mozilla-lts Essential Coordinate with release team (skaet) an announcement to ubuntu-announce and ubuntu-security-announce about the plans to jump from Thunderbird 3.1 to the rapid release version (0.5)
Steve Beattie inprogress security-p-quality Essential Get AppArmor upstream Jenkins and ppa builds working again (1)
done security-p-app-isolation Essential investigate utility of cgroups (6)
security-p-apparmor-containers Essential (host) mount rules add to parser tests (0.5)
security-p-apparmor-containers Essential (host) mount rules regression tests (1)
security-p-quality Essential fix bug #800826 - aa-notify doesn't display certain apparmor events (1)
security-p-quality Essential fix bug #872446 - aa-logprof should detect denials as well as complaints (1)
security-p-quality Essential verify OS hardening features via QRT (2)
Tyler Hicks done security-p-quality Essential Create make check target, in ecryptfs-utils, to run eCryptfs-specific build tests for trunk testing (0.5)
security-p-quality Essential Create test harness, in ecryptfs-utils, to run eCryptfs-specific non-build trunk tests for distro-readiness testing (2)
security-p-quality Essential Set up daily build ppa for eCryptfs (0.5)


Last updated: Wed 06 June 2012, 07:15 UTC