add check for appvms already attached to base template at install time

freedomofpress · Mar 31, 2024 · 2986581 · 2986581
1 parent 952d38e
commit 2986581
Showing 1 changed file with 32 additions and 1 deletion.
diff --git a/files/sdw-admin.py b/files/sdw-admin.py
@@ -1,4 +1,4 @@
-#!/usr/bin/env python3
+!/usr/bin/env python3
 """
 Admin wrapper script for applying salt states for staging and prod scenarios. The rpm
 packages only puts the files in place `/srv/salt` but does not apply the state, nor
@@ -8,6 +8,7 @@
 import argparse
 import subprocess
 import os
+import qubesadmin
 
 SCRIPTS_PATH = "/usr/share/securedrop-workstation-dom0-config/"
 SALT_PATH = "/srv/salt/sd/"
@@ -95,6 +96,18 @@ def validate_config(path):
         raise SDWAdminException("Error while validating configuration")
 
 
+def get_appvms_for_template(vm_name:str) -> list[str]:
+    """
+    Return a list of AppVMs that use the specified VM as a template
+    """
+    app = qubesadmin.Qubes
+    try:
+       template_vm = app.domains[vm_name]
+    except KeyError:
+       raise SDWAdminException(f"Error: template VM not found")
+    return [x.name for x in list(template_vm.appvms)]
+
+
 def refresh_salt():
     """
     Cleans the Salt cache and synchronizes Salt to ensure we are applying states
@@ -142,6 +155,24 @@ def main():
         print("Validating...")
         validate_config(SCRIPTS_PATH)
     elif args.apply:
+        print(
+            "SecureDrop Workstation should be installed on a fresh Qubes OS install.\n"
+            "The installation process will overwrite any user modifications to the\n"
+            f"{BASE_TEMPLATE} TemplateVM, and will disable old-format qubes-rpc\n"
+            "policy directives.\n"
+        )
+        affected_appvms = get_appvms_for_template(BASE_TEMPLATE)
+        if len(affected_appvms) > 0:
+            print(
+                f"{BASE_TEMPLATE} is already in use by the following AppVMS:\n"
+                f"{affected_appvms}\n"
+                "Applications and configurations in use by these AppVMs will be\n"
+                f"removed from {BASE_TEMPLATE}."
+                )
+            response = input("Are you sure you want to proceed (y/N)? ")
+            if response.lower() != "y":
+                print("Exiting.")
+                sys.exit(0)
         print("Applying configuration...")
         validate_config(SCRIPTS_PATH)
         copy_config()