-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Sun, May 24, 2020 at 03:53:24PM -0400, Demi M. Obenour wrote: > On 2020-05-24 15:13, [email protected] wrote: > > On Sun, May 24, 2020 at 03:01:50PM -0400, Demi M. Obenour wrote: > > > >>> https://github.com/xaki23/rzqubes/blob/master/misc/installtemplate.sh > >>> > >>> can be run in either dom0 or (with a lot of policy adjustments > >>> or a bazillion manual approvals and minor changes) an adminapi-vm. > >>> > >>> it is also mostly trivial to install the template-root right > >>> from the buildvm. (skipping the "rpm" part entirely) > >> > >> How does one do that? That sounds promising. > > > > > > see above shellscript for the general basic outline of "how to turn > > a template rpm into a template vm". > > > > most of the qvm-something steps are also avail in appvms through > > the adminapi these days. (== can be called from a buildvm) > > > > for "skipping the rpm part" prototype see > > https://github.com/QubesOS/qubes-builder/pull/87 > > and related PRs/diffs. > > > > both the shellscript and builder integration are fully functional, > > but need cleanup before they can be merged. > > the main open issue is how to integrate a template-specific > > settings-file (the "tplspec" parts) with the build process. > > this is mostly needed for the mirage templates. > > That makes sense. Writing to a qube’s root volume from dom0 is a > safe operation, since it doesn’t do anything that the qube could > not already do itself. It would be nice if that could be done by > `qvm-block import`, though.
You can do that with `qvm-volume import`. And with some adjustments to the qrexec policy, you can do that even from your buildvm. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEhrpukzGPukRmQqkK24/THMrX1ywFAl7K0fMACgkQ24/THMrX 1yzLFQf9FUU670LSbL8EOQYADryVyxxisnzeExfeMq0EpbprYys0Alv33JeeVQ7n GwFyC5KavAVWYB6dya92PBNp1lOt+znl016+dNAFXBQ2PMSn2WGDdJLYkC0Ld03r 2Pv0wyYzkNuicX9EYmeitHN+EFzNX0NTDo+jqupYaHkBCd8wjtx3LjaZ/h5hgmwD ecyTbYHYRvrVXkmGM2DPxUd1UMsL9ZSAaMLwfId0rctoj6uUt7Xrp/XIKbRjGuwB r6bvuBdT+Sq/YSYmulqxyKxjstImgJ/8aFJTBPA8zia/8b+U7mS0YDD10YUzrbXK 01swbNokTRbO7kqRLHrI72HrQyiJTg== =2C1r -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/20200524195843.GW98582%40mail-itl.
