an idea by oholecek
Saltboot is a system of salt states and custom initrd for automated image deployment integrated with SUSE Manager/Uyuni.
During the very first deployment of the image, salt client key must be accepted on the salt master server. This is manual task and so salt added an option to have shared secret to automatically accept client salt key. This shared secret can be distributed either in the initrd itself or by passing on kernel command line which are not secure as these files are available to anyone on the network.
Goal for this Hackweek
Implement an option to automatically load autosign grain from the USB drive or from disk. I imagine similar mechanism as is used for combustion/ignition where saltboot initrd will look for devices with partition label 'saltboot' and load data from there.
Anyone wanting to get some understanding about salt, uyuni or saltboot is welcome. Implementation is not the hardest part of the project. Getting familiar with saltboot ecosystem and initrd debugging will take most time.
No Hackers yet
Looking for hackers with the skills:
Nothing? Add some keywords!
This project is part of:
Hack Week 21 Hack Week 22
This project is one of its kind!
Be the first to comment!