Main Inclusion Report for keepalived

Requirements

1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/k/keepalived, available for all supported architectures

2. Rationale: Part of LVS (Linux Virtual Server) support.

3. Security:

   • No CVE entries.
   • No Secunia history.
   • Daemon running as root.
   • Opens a port, so potential remote root compromise. However, only talks to peer nodes in the cluster, which are supposed to be trusted.
   • Source code review: Quick review, no apparent gaping holes.

4. Quality assurance:

   • Package does not work out of the box without configuration. It is a cluster tool. It needs to know about the rest of the cluster.
   • No showstopper Debian bugs. There are a few minor that we can easily fix.
   • Reasonable maintenance in Debian.
   • Active upstream: similar situation as ipvsadm. The code is stable enough and it has been for a long while.
   • No upstream bug tracker.
   • Does not deal with exotic hardware which we cannot support.

5. Standards compliance:

   • Meets the FHS, Debian Policy

standards.

• Standard cdbs packaging, standard patch system.

1. Dependencies:

   • ipvsadm: MainInclusionReportIpvsadm

Reviewers

MartinPitt: pending QA check and functional test from Fabio
FabioMassimoDiNitto: looks reasonably good to me, both packaging and upstream.
MartinPitt: approved