• Diff for "Teams/Cloud/VagrantBaseBoxes"

General guidelines

We want to build official Debian base boxes for Vagrant that shall be available in Atlas, the vagrant cloud backend, and maybe via debian-cd.

• Why do we need official base boxes as seen by the problem of images from the docker.io registry

Current Status

Content

Standard Debian system, as created by the Debian Installer, with the task "standard" selected, with the following Vagrant specif enhancements:

• ?Chef and Puppet provisioners, python-apt for ?Ansible, as specified in the preseed file we use

• vagrant unix user, setup according to Upstream recommendations

• Speed improvements, such as tweak sshd to prevent DNS resolution (speed up logins) and remove 5s grub timeout to speed up booting

• Virtual Box Guest additions, build with ?DKMS using the virtualbox-guest-additions-iso package

• Disk size improvement, such as removing kernel-headers and build-essential after the DKMS step

Build process

The boxes are currently with Packer from the following git repository http://anonscm.debian.org/cgit/cloud/debian-vm-templates.git/ and uploaded to Hashicorps's Atlas.

DFSG

The build process requires the non-free virtualbox-guest-additions-iso package, but Templates, Builder, and installed packages are DFSG compliant.

Security

When using vagrant init debian/jessie64, boxes are downloaded via HTTPS, and then checksummed from a md5sum stored in Atlas.

For end to end verification, vagrant has also built-in checksumming support, so if checksums of the boxes are available on a separate site, this coud be used like:

vagrant box add --checksum 00e88116f98368a25b73018dac9478f2 --checksum-type md5 http://cloud-images.debian.org/wheezy64 debian-780-wheezy.box

Debian account on Atlas

Currently owned by EmmanuelKasper, will be shared in the future with ?JanNiggeman and AntonioTerceiro

Todo list

We use this trello board: https://trello.com/b/lVRI6QJt/offical-debian-vagrant-base-boxes

People Involved

JanNiggemann, EmmanuelKasper