On Mon, May 25, 2020 at 02:23:08AM -0700, [email protected] wrote: > On Saturday, 23 May 2020 17:24:42 UTC+2, qubeslover wrote: > Is there any plan to create a package for Qubes Dom0 repo for the future? > We are planning to collaborate with Qubes folks on packaging it.
there is https://github.com/QubesOS/qubes-builder/blob/master/example-configs/mirage.conf which builds mirage firewall (and ssh-agent) as a template-vm, which reduces the problem to the more generic "how to ship/install a template" (which can be handled entirely outside dom0 already) as opposed to the very mirage-specific "how to install a vm-kernel in dom0" (which is very dom0 oriented). it actualy works well enough, i have been building+deploying all my mirage vms for more than a year this way. there are some points left to improve: 1) how to include vm-specific prefs/feats with a template pkg. this mainly needs a way for a vm-specific builder to include a file in the final rpm, and that isnt really straightforward since the rpm-builder and vm-builder are like three layers of abstraction apart. 2) "@tag:buildvm @tag:created-by-@srcvm allow" in qubesrpc-policy. the "reference srcvm in dstvm spec" part doesnt exist. 3) automated way to create the pvgrub vm-kernel entry. (probably salt) 4) polishing. (which doesnt make too much sense as long as 1-3 are open) these are not actualy required, but would make the whole thing a lot more userfriendly. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/20200525100335.GU1079%40priv-mua.
