Dimitris Karakasilis issues

Results 68 issues of


                                            Dimitris Karakasilis

CF_INSTANCE_INDEX env var should be available when deploying with Eirini

This is a needed feature + it breaks some CATs (e.g. https://github.com/cloudfoundry/cf-acceptance-tests/blob/46f2bb669c30fa03a46201980454f6b8beaca789/ssh/ssh.go#L67). This has already been fixed in upstream Eirini (https://github.com/cloudfoundry-incubator/eirini/blob/master/cmd/instance-index-env-injector/main.go) but it's not yet part of any eirini-release release...

Priority: High

non scratch Eirini images should include have a new tag with every update on the base image

We build a couple of images (opi and env injector) on top of sle because the original ones are built on top of `cloudfoundry/run:tiny`. For those images we have a...

Priority: Medium

Type: Maintenance

Status: Accepted

Size: 5

Auroraboot should respect the livecd cmdline

The original issue is with selinux: https://github.com/kairos-io/kairos/issues/2553 but it could happens with other options too. Instead of Auroraboot [passing a hardcoded cmdline](https://github.com/kairos-io/AuroraBoot/blob/c2252b4a5f5f13a835b4b3cbb8b628d9cf8017d7/pkg/ops/netboot.go#L32), it should instead use the one defined in...

Arbitraty encrypted partitions should be allowed

UKI and non-UKI installations, have different implementations on partition encryption: - [UKI](https://github.com/kairos-io/kairos-agent/blob/main/internal/agent/hooks/kcrypt_uki.go) - [non UKI](https://github.com/kairos-io/kcrypt/blob/main/pkg/config/config.go#L128) (not the actual code but the limiting one) In the UKI case, one can specify...

bug

question

triage

unconfirmed

bump projects to go 1.22 and fix snyk cve

let's also produce fips versions of the binaries to be prepared for then that is certified.

triage

Allow skipping the upgrade image verification in UKI mode

In order to check the validity of the upgrade images, [we load the whole artifact into memory](https://github.com/kairos-io/kairos-sdk/blob/a8fb4bc705558209f5d87a259fa8cf9d15225422/signatures/signatures.go#L174). With big enough images and low enough memory, this makes the upgrade process...

[Spike] Make UKI systemd sysext solution more robust

Instead of [XBOOTLDR](https://github.com/kairos-io/kairos/issues/2287), we decided to go further in the path of [systemd sysext}](https://github.com/kairos-io/kairos/issues/2608). This ticket is to investigate the limit of this solution and find ways to support extensions...

Merge oci2sysext with enki https://github.com/kairos-io/oci2sysext (or documentation)

Let make an enki command that does exactly the same. We should either make it a library and import it or otherwise archive the old repo (to avoid duplication).

Add reviews to Kairos website

Using the content from this card: https://github.com/kairos-io/devrel/issues/1 we can add a "talked about us" or "reviews" section in our website. Provided that this is done properly, this is also good...

Athens kubernetes meetup

5th of June in Athens: https://www.meetup.com/athens-kubernetes-meetup/events/301192369/ Prepare a presentation deck. Inspiration: - https://kairos.io/blog/2024/04/10/unlocking-the-mysteries-of-trusted-boot-a-deep-dive-into-secure-system-boot-processes/

question

lane/press