DONE - Add genericity in the package name and versions handling.
-> for instance, source a file with variables with the right names before running installation/dependencies.sh and installation/install.sh
DONE - Implement an installation/uninstall.sh script.
DONE - Automate the detection of an EFI partition and of a Linux filesystem. Detect whether they are several one (in this case raise an error).
DONE - Genericize the IPv4, interface, etc. detection when creating dracut.conf from dracut.conf.in
- Document installation/packages.sh, installation/remove-dependencies and installation/unstall.sh
- Remove the efibootmgr entry when uninstalling.
-> Add the variable for the efibootmgr entry in env.sh
Bug:
- When sed fails to match, it does not replace anything. It is a problem in the script: no match should produce an error.
STAGE 1:
Technical Security:
DONE - How to sign and verify as much components as one can (the kernel, modules, etc.)
- How does initramfs uses TLS? It seems there is no certificates in it.
Operational Security:
- Design a default behavior to sign the keys?
- Distribute the keys in a secured way.
Installation:
- Do not remove dependencies that were already installed when running installation/dependencies.sh for the first time.
-> Detect the installed dependencies and store them.
OTHERS :
Upstream:
DONE - Make fluent-bit package work again from OBS so that it can be downloaded directly.
What remains to be done:
- merge https://lab.nexedi.com/nexedi/slapos.libnetworkcache/merge_requests/8 and release the associated egg
- test the playbook https://lab.nexedi.com/nexedi/slapos.package/blob/master/playbook/upgrade-river.yml which depends on the aforementioned merge
- sign the content of /etc/opt/slapos/ on the servers and verify the signature in ./dracut.module/90metadata-collect/collect.sh (because we read information from it at boot time and a tampering of this file could compromise the whole system security)
