Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move provision-all to sdw-admin.py #1159

Merged
merged 4 commits into from
Sep 12, 2024
Merged

Move provision-all to sdw-admin.py #1159

merged 4 commits into from
Sep 12, 2024

Conversation

deeplow
Copy link
Contributor

@deeplow deeplow commented Aug 9, 2024
edited
Loading

Status

Work in progress - this is just a literal conversion. I will review to ensure none of the semantics were lost and pythonize some of the functions, where appropriate.

Description of Changes

Fixes #539

Changes proposed in this pull request:

Testing

Successful case:

  • run make dev and compare the output to make dev from main. Only debugging information should differ (something similar to what I did here)
  • run make test

Failure injection:

  • force some salt commands and confirm the script reported the appropriate failure

Deployment

Any special considerations for deployment?

Not that I can think of. If anything, it should improve deployment in case of failures. I didn't find any references to provision-all other than the ones modified, not even in the docs. But it is always possible some developer's workflows will break if they used provision-all.

Checklist

If you have made changes to the provisioning logic

  • All tests (make test) pass in dom0

If you have added or removed files

  • I have updated MANIFEST.in and rpm-build/SPECS/securedrop-workstation-dom0-config.spec

If documentation is required

  • I have opened a PR in the docs repo for these changes, or will do so later
  • I would appreciate help with the documentation

@deeplow deeplow marked this pull request as draft August 9, 2024 17:43
rocodes
rocodes reviewed Aug 13, 2024
View reviewed changes
files/sdw-admin.py Outdated

print("Provisioning complete. Please reboot to complete the installation.")

def qubesctl_call(step_description: str, args: List[str]):
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

(You might want a skip_dom0 parameter set to True, that can optionally be overridden, but that fails "safe" and defaults to skipping dom0)

@rocodes
Copy link
Contributor

rocodes commented Aug 13, 2024
edited
Loading

Thanks @deeplow - took a quick look through, have not tested it out since you mention WIP + draft mode, but very happy to do so if and when.

A couple thoughts:

  • we only have a few different Salt-related steps we run through (run the highstate with or without a list of targets, run a saltstate, basically), so you might want to have those be the methods that you create, rather than having separate methods that each pass a similar list to qubesctl_call. That way looking at your provision_all() it will be clear what's happening:
SD_STATE_PREFIX="securedrop_salt."
def provision_all():
    try:
        apply_state({SD_STATE_PREFIX}sls_name1, args...) # better method name but yknow
    except SDWAdminError:
        # do stuff
    apply_state({SD_STATE_PREFIX}sls_name2, args...) # error-handling omitted for readability
    apply_highstate(vmname, args...) # as above
    # etc
  • Same thought for the rebooting vms or syncing appmenus - we may be able to parameterize those methods further
  • I wonder if you can directly use the qubesadmin api for the run_cmd commands?
  • We'll probably want to figure out error handling (one nice thing about your changes is how easy it will be to tell which step was an error :) )
  • We might want check_output instead of check_call; we might want to be able to configurably see that output, for cases where we're trying to debug something, or to print the output of a failed state. I haven't looked into this though because it's quite a lot of output and could (potentially?) block the subprocess pipe - maybe you have thoughts here

In case it's helpful: I also have some related work in progress from the retreat (my branch - very much WIP/probably not runnable yet) - there, I took the approach of "every qubesctl call is a subprocess call" just in the interests of focusing on the gui installer part, but it would be quite easy to integrate your changes there if and when. :)

@deeplow
Copy link
Contributor Author

deeplow commented Aug 22, 2024

Thanks for taking a look. I was already planning to address all of those kinds of issues. But on the first commit / pass I just wanted to copy line by line almost literally to ensure I was not mistranslated some command.

I wonder if you can directly use the qubesadmin api for the run_cmd commands?

I did briefly try that, but unfortunately QubesVM.shutdown() is missing a wait parameter, but I'll explore other ways of doing that.

@deeplow deeplow self-assigned this Aug 22, 2024
@legoktm
Copy link
Member

legoktm commented Aug 22, 2024

I did briefly try that, but unfortunately QubesVM.shutdown() is missing a wait parameter, but I'll explore other ways of doing that.

Feel free to copy what Kev+I did in https://github.com/freedomofpress/securedrop-workstation-ci/blob/218b571d3047eeee53e391245e4077b82bb6790c/dom0/runner.py#L71

@deeplow deeplow force-pushed the 539-provision-all-py branch from 93d45fe to 628f714 Compare August 26, 2024 20:26
@deeplow
Copy link
Contributor Author

deeplow commented Aug 26, 2024
edited
Loading

we only have a few different Salt-related steps we run through (run the highstate with or without a list of targets, run a saltstate, basically), so you might want to have those be the methods that you create, rather than having separate methods that each pass a similar list to qubesctl_call. That way looking at your provision_all() it will be clear what's happening:

Made some progress on this (I hope) by grouping together provisioning and configuration calls. Provisioning targets dom0 and configuration targets regular qubes. This way there's no way of mixing those up.

On top of that that we call certain functions configure, we know those are the ones we want to get rid of as we move away from salt. And it also makes it salt-agnostic, should we ever move to something else.

@deeplow
Copy link
Contributor Author

deeplow commented Aug 26, 2024

Just in case, I ran now make dev on main (113d8ee) and then on the latest commit (628f714) and made the diff on the output as a sanity check. Here's the result: https://gist.github.com/deeplow/252c2acdd113424d89cbaa10c57a745e

@deeplow
Organize sdw-admin --apply into provision and config
c1fbe3c 
Better group sdw-admin apply-related functions into:

  - PROVISION: creating VMs and setting properties. These states
    are usually fast to apply since they don't require starting
    any VMs. Exclusively targets dom0.

  - CONFIGURE: uses salt to configure individual VMs. Does not
    target dom0.

Going forward, our aim is to reduce the ammount of configuration
code that we have and this gives us a visual indication of where
these salt calls are.
@deeplow deeplow force-pushed the 539-provision-all-py branch from 628f714 to c1fbe3c Compare August 26, 2024 20:36
@deeplow
Copy link
Contributor Author

deeplow commented Aug 29, 2024 

I did briefly try that, but unfortunately QubesVM.shutdown() is missing a wait parameter, but I'll explore other ways of doing that.

Feel free to copy what Kev+I did in https://github.com/freedomofpress/securedrop-workstation-ci/blob/218b571d3047eeee53e391245e4077b82bb6790c/dom0/runner.py#L71

Thanks. It turns out that even the upstream implementation of --wait is a bit convoluted.

I don't like calling sub-processes either and I avoid using internal APIs, but I wonder if this is fair game:

from qubesadmin.tools.qvm_shutdown import main as qvm_shutdown
qvm_shutdown("sd-app", "--wait")

Semantically it should be the same as subprocess.check_call(["qvm_shutdown", "sd_app", "--wait"]). Thoughts @legoktm @rocodes ?

@deeplow
Copy link
Contributor Author

deeplow commented Aug 29, 2024

We might want check_output instead of check_call; we might want to be able to configurably see that output, for cases where we're trying to debug something, or to print the output of a failed state. I haven't looked into this though because it's quite a lot of output and could (potentially?) block the subprocess pipe - maybe you have thoughts here

I do have some thoughts. check_call is just generally easier because it behaves closer to running a command on a shell (exactly what this PR is accomplishing). With check_output, then we also need boilerplate code do decode and print it and we loose on all the salt colors.

I'd say unless we know exactly the circumstances where to conditionally avoid printing output, or unless I have some oversight on the security implications of check_call in this context where output is already trusted, I'd say we skip it for now. But open to other opinions.

@deeplow
Copy link
Contributor Author

deeplow commented Sep 9, 2024

I was trying to find a better approach to the sync-appmenus step. But I couldn't find a more suitable approach, at least for as long as we have separate provision and configuration steps (which is something we want).

With that, I'm marking this as ready for review.

@deeplow deeplow marked this pull request as ready for review September 9, 2024 10:03
@cfm cfm unassigned deeplow Sep 10, 2024
@cfm cfm self-requested a review September 10, 2024 23:25
@cfm cfm self-assigned this Sep 11, 2024
cfm
cfm previously approved these changes Sep 11, 2024
View reviewed changes
Copy link
Member

@cfm cfm left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very nice. make dev succeeds and make test passes as expected.

I'm approving this with one nit inline. If you agree, I'll re-approve and merge; otherwise feel free to merge this right away.

@cfm
Copy link
Member

cfm commented Sep 11, 2024

(It also occurs to me that provisioning versus configuration is emerging as a clear architectural principle we should document, including in how it's implemented in this script. :-)

@deeplow
Copy link
Contributor Author

deeplow commented Sep 12, 2024

@cfm thanks for the review. Added your line and waiting for re-approval.

@deeplow @cfm
Better explain why logging VMs are configured early
507b903 
Co-authored-by: Cory Francis Myers <cfm@panix.com>
@deeplow deeplow force-pushed the 539-provision-all-py branch from eaa5015 to 507b903 Compare September 12, 2024 08:06
@deeplow
Copy link
Contributor Author

deeplow commented Sep 12, 2024

(ammended commit to comply with lintter)

cfm
cfm approved these changes Sep 12, 2024
View reviewed changes
Copy link
Member

@cfm cfm left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, @deeplow. Approving after 507b903 based on #1159 (review).

@cfm cfm added this pull request to the merge queue Sep 12, 2024
Merged via the queue into freedomofpress:main with commit 2860ca2 Sep 12, 2024
3 checks passed
@deeplow
Copy link
Contributor Author

deeplow commented Sep 16, 2024

  • run make dev and compare the output to make dev from main. Only debugging information should differ (something similar to what I did here)

Since this is a high-impact change and the above test plan was unchecked (not sure if missed @cfm) or just forgotten to uncheck, I decided to do it again just for due diligence. I compared main to this PR.

The diff is only:

  • timestamps
  • differing "repo getting" ordering
  • new print that document provision-all process
  • nopat kernel option removal (added to main since)

These are all expected :)

diff provision-all-bash.txt provision-all-python.txt 
[user@dom0 ~]$ diff make-dev-bash.txt make-dev-python.txt 
[2a3
> Updated config environment to 'dev'...
17c18
< Qubes OS Repository for Dom0                    390 kB/s | 2.1 kB     00:00    
---
> Qubes OS Repository for Dom0                                                                                               156 kB/s | 2.1 kB     00:00    
19,21c20,22
< ================================================================================
<  Package                             Arch    Version        Repository     Size
< ================================================================================
---
> ===========================================================================================================================================================
>  Package                                                Architecture               Version                          Repository                        Size
> ===========================================================================================================================================================
23c24
<  securedrop-workstation-dom0-config  noarch  1.0.0-1.fc37   @commandline   90 k
---
>  securedrop-workstation-dom0-config                     noarch                     1.0.0-1.fc37                     @commandline                      90 k
26c27
< ================================================================================
---
> ===========================================================================================================================================================
30c31
< Installed size: 270 k
---
> Installed size: 271 k
37,39c38,40
<   Preparing        :                                                        1/1 
<   Installing       : securedrop-workstation-dom0-config-1.0.0-1.fc37.noar   1/1 
<   Running scriptlet: securedrop-workstation-dom0-config-1.0.0-1.fc37.noar   1/1 
---
>   Preparing        :                                                                                                                                   1/1 
>   Installing       : securedrop-workstation-dom0-config-1.0.0-1.fc37.noarch                                                                            1/1 
>   Running scriptlet: securedrop-workstation-dom0-config-1.0.0-1.fc37.noarch                                                                            1/1 
44d44
<   Running scriptlet: securedrop-workstation-dom0-config-1.0.0-1.fc37.noarch                                                                            1/1 
110c110,113
< Configure Fedora-based system VMs
---
> 
> ..........................................................................
> Provisioning Fedora-based system VMs
> Running "sudo qubesctl --show-output -- state.sls securedrop_salt.sd-sys-vms"
125,126c128,129
<      Started: 10:51:42.399827
<     Duration: 390.835 ms
---
>      Started: 11:28:13.983312
>     Duration: 424.552 ms
133,134c136,137
<      Started: 10:51:42.792917
<     Duration: 701.1 ms
---
>      Started: 11:28:14.412576
>     Duration: 749.171 ms
138c141
<                   23139
---
>                   52905
153,154c156,157
<      Started: 10:51:43.494504
<     Duration: 3857.964 ms
---
>      Started: 11:28:15.162503
>     Duration: 867.181 ms
158c161
<                   23174
---
>                   52940
171,172c174,175
<      Started: 10:51:47.353022
<     Duration: 340.27 ms
---
>      Started: 11:28:16.030615
>     Duration: 315.805 ms
176c179
<                   23320
---
>                   53086
187,188c190,191
<      Started: 10:51:47.694146
<     Duration: 583.382 ms
---
>      Started: 11:28:16.347840
>     Duration: 652.713 ms
192c195
<                   23322
---
>                   53088
203,204c206,207
<      Started: 10:51:48.277699
<     Duration: 215.819 ms
---
>      Started: 11:28:17.000852
>     Duration: 162.164 ms
208c211
<                   23341
---
>                   53107
224,225c227,228
<      Started: 10:51:48.493686
<     Duration: 289.746 ms
---
>      Started: 11:28:17.163310
>     Duration: 271.115 ms
237,238c240,241
<      Started: 10:51:48.783834
<     Duration: 2260.938 ms
---
>      Started: 11:28:17.435104
>     Duration: 2492.454 ms
264,265c267,268
<      Started: 10:51:51.045545
<     Duration: 1577.322 ms
---
>      Started: 11:28:19.928230
>     Duration: 1595.669 ms
273,274c276,277
<      Started: 10:51:52.623637
<     Duration: 5008.778 ms
---
>      Started: 11:28:21.524770
>     Duration: 5007.809 ms
278c281
<                   23879
---
>                   53644
289,290c292,293
<      Started: 10:51:57.634062
<     Duration: 105.074 ms
---
>      Started: 11:28:26.534676
>     Duration: 140.618 ms
309,310c312,313
<      Started: 10:51:57.739508
<     Duration: 225.429 ms
---
>      Started: 11:28:26.675718
>     Duration: 250.565 ms
319,320c322,323
<      Started: 10:51:57.965947
<     Duration: 10140.607 ms
---
>      Started: 11:28:26.927245
>     Duration: 11248.013 ms
329c332,333
< Total run time:   25.697 s
---
> Total run time:   24.178 s
> 
331c335,336
< Configure base template
---
> Provisioning base template
> Running "sudo qubesctl --show-output -- state.sls securedrop_salt.sd-base-template"
339,340c344,345
<      Started: 10:52:10.646065
<     Duration: 12.767 ms
---
>      Started: 11:28:40.871833
>     Duration: 7.758 ms
353,354c358,359
<      Started: 10:52:10.659836
<     Duration: 50.825 ms
---
>      Started: 11:28:40.880221
>     Duration: 45.782 ms
358c363
<                   24216
---
>                   53976
369,370c374,375
<      Started: 10:52:10.710905
<     Duration: 3.374 ms
---
>      Started: 11:28:40.926163
>     Duration: 2.007 ms
385,386c390,391
<      Started: 10:52:10.714420
<     Duration: 615.378 ms
---
>      Started: 11:28:40.928248
>     Duration: 750.519 ms
390c395
<                   24218
---
>                   53978
401,402c406,407
<      Started: 10:52:11.330009
<     Duration: 1.312 ms
---
>      Started: 11:28:41.678886
>     Duration: 0.933 ms
410,411c415,416
<      Started: 10:52:11.331649
<     Duration: 6.953 ms
---
>      Started: 11:28:41.680080
>     Duration: 5.702 ms
428,429c433,434
<      Started: 10:52:11.338736
<     Duration: 4.525 ms
---
>      Started: 11:28:41.685863
>     Duration: 2.44 ms
446,447c451,452
<      Started: 10:52:11.343428
<     Duration: 1.322 ms
---
>      Started: 11:28:41.688406
>     Duration: 0.724 ms
460,461c465,466
<      Started: 10:52:11.345067
<     Duration: 0.789 ms
---
>      Started: 11:28:41.689313
>     Duration: 0.479 ms
469,470c474,475
<      Started: 10:52:11.346170
<     Duration: 1.628 ms
---
>      Started: 11:28:41.689950
>     Duration: 0.919 ms
492,493c497,498
<      Started: 10:52:11.354113
<     Duration: 13293.428 ms
---
>      Started: 11:28:41.694589
>     Duration: 15150.19 ms
537c542,546
< Total run time:   13.992 s
---
> Total run time:   15.967 s
> 
> ..........................................................................
> Configuring base template
> Running "sudo qubesctl --show-output --skip-dom0 --max-concurrency 2 --targets sd-base-bookworm-template state.highstate"
545,546c554,555
<        Started: 10:52:50.307072
<       Duration: 0.295 ms
---
>        Started: 11:29:23.179916
>       Duration: 0.297 ms
554,555c563,564
<        Started: 10:52:50.309112
<       Duration: 1398.738 ms
---
>        Started: 11:29:23.182058
>       Duration: 1304.571 ms
559c568
<                     823
---
>                     822
565,566c574,575
<                     Hit:2 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
<                     Get:3 https://deb.debian.org/debian-security bookworm-security InRelease [48.0 kB]
---
>                     Get:2 https://deb.debian.org/debian-security bookworm-security InRelease [48.0 kB]
>                     Hit:3 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
569c578
<                     Fetched 338 kB in 1s (522 kB/s)
---
>                     Fetched 338 kB in 1s (606 kB/s)
577,578c586,587
<        Started: 10:52:51.708098
<       Duration: 361.611 ms
---
>        Started: 11:29:24.486859
>       Duration: 349.481 ms
582c591
<                     1028
---
>                     1027
597,598c606,607
<        Started: 10:52:52.088587
<       Duration: 26.64 ms
---
>        Started: 11:29:24.854656
>       Duration: 26.049 ms
610,611c619,620
<        Started: 10:52:53.419514
<       Duration: 3040.627 ms
---
>        Started: 11:29:26.265252
>       Duration: 2341.161 ms
618,619c627,628
<        Started: 10:52:56.464900
<       Duration: 7394.253 ms
---
>        Started: 11:29:28.616885
>       Duration: 6463.64 ms
632,633c641,642
<        Started: 10:53:03.861798
<       Duration: 107212.919 ms
---
>        Started: 11:29:35.083072
>       Duration: 110576.781 ms
3001,3002c3010,3011
<        Started: 10:54:51.091328
<       Duration: 79507.86 ms
---
>        Started: 11:31:25.680655
>       Duration: 125696.735 ms
3790,3791c3799,3800
<        Started: 10:56:10.603694
<       Duration: 565.205 ms
---
>        Started: 11:33:31.379834
>       Duration: 388.173 ms
3799,3800c3808,3809
<        Started: 10:56:11.175193
<       Duration: 22.255 ms
---
>        Started: 11:33:31.771276
>       Duration: 19.956 ms
3809c3818
<   Total run time:  199.530 s
---
>   Total run time:  247.167 s
3811a3821,3822
> Running "qvm-shutdown --wait -- sd-base-bookworm-template"
> 
3813a3825
> Running "sudo qubesctl --show-output state.highstate"
3828,3829c3840,3841
<      Started: 10:56:22.091327
<     Duration: 355.691 ms
---
>      Started: 11:33:40.940408
>     Duration: 341.921 ms
3836,3837c3848,3849
<      Started: 10:56:22.450948
<     Duration: 707.495 ms
---
>      Started: 11:33:41.286296
>     Duration: 722.311 ms
3841c3853
<                   26837
---
>                   56713
3855,3856c3867,3868
<      Started: 10:56:23.159310
<     Duration: 608.901 ms
---
>      Started: 11:33:42.009413
>     Duration: 641.844 ms
3860c3872
<                   26872
---
>                   56749
3873,3874c3885,3886
<      Started: 10:56:23.769478
<     Duration: 409.656 ms
---
>      Started: 11:33:42.652815
>     Duration: 411.138 ms
3878c3890
<                   26944
---
>                   56838
3889,3890c3901,3902
<      Started: 10:56:24.180801
<     Duration: 773.532 ms
---
>      Started: 11:33:43.066097
>     Duration: 572.871 ms
3894c3906
<                   27015
---
>                   56896
3905,3906c3917,3918
<      Started: 10:56:24.954601
<     Duration: 206.517 ms
---
>      Started: 11:33:43.639391
>     Duration: 227.831 ms
3910c3922
<                   27038
---
>                   56915
3926,3927c3938,3939
<      Started: 10:56:25.161352
<     Duration: 295.781 ms
---
>      Started: 11:33:43.867607
>     Duration: 282.978 ms
3941,3942c3953,3954
<      Started: 10:56:25.457672
<     Duration: 295.23 ms
---
>      Started: 11:33:44.151624
>     Duration: 270.561 ms
3950,3951c3962,3963
<      Started: 10:56:25.757408
<     Duration: 10.439 ms
---
>      Started: 11:33:44.429360
>     Duration: 13.883 ms
3959,3960c3971,3972
<      Started: 10:56:25.768080
<     Duration: 48.985 ms
---
>      Started: 11:33:44.443755
>     Duration: 40.924 ms
3964c3976
<                   27079
---
>                   56956
3975,3976c3987,3988
<      Started: 10:56:25.817238
<     Duration: 1.26 ms
---
>      Started: 11:33:44.484971
>     Duration: 2.252 ms
3986,3987c3998,3999
<      Started: 10:56:25.818568
<     Duration: 736.251 ms
---
>      Started: 11:33:44.487347
>     Duration: 772.569 ms
3991c4003
<                   27081
---
>                   56958
4002,4003c4014,4015
<      Started: 10:56:26.555020
<     Duration: 1.219 ms
---
>      Started: 11:33:45.260089
>     Duration: 1.353 ms
4011,4012c4023,4024
<      Started: 10:56:26.556609
<     Duration: 6.729 ms
---
>      Started: 11:33:45.261928
>     Duration: 7.123 ms
4020,4021c4032,4033
<      Started: 10:56:26.563467
<     Duration: 2.798 ms
---
>      Started: 11:33:45.269185
>     Duration: 2.925 ms
4029,4030c4041,4042
<      Started: 10:56:26.566384
<     Duration: 0.93 ms
---
>      Started: 11:33:45.272242
>     Duration: 1.083 ms
4038,4039c4050,4051
<      Started: 10:56:26.567635
<     Duration: 0.91 ms
---
>      Started: 11:33:45.273706
>     Duration: 1.232 ms
4050,4051c4062,4063
<      Started: 10:56:26.568880
<     Duration: 1.658 ms
---
>      Started: 11:33:45.275286
>     Duration: 1.797 ms
4068,4069c4080,4081
<      Started: 10:56:26.570671
<     Duration: 860.358 ms
---
>      Started: 11:33:45.277223
>     Duration: 929.191 ms
4073c4085
<                   27104
---
>                   57010
4095,4096c4107,4108
<      Started: 10:56:27.433131
<     Duration: 701.148 ms
---
>      Started: 11:33:46.208496
>     Duration: 763.123 ms
4113,4114c4125,4126
<      Started: 10:56:28.135307
<     Duration: 15166.393 ms
---
>      Started: 11:33:46.972469
>     Duration: 17838.968 ms
4148,4149c4160,4161
<      Started: 10:56:43.303037
<     Duration: 13891.219 ms
---
>      Started: 11:34:04.813262
>     Duration: 19936.173 ms
4174,4175c4186,4187
<      Started: 10:56:57.194676
<     Duration: 597.489 ms
---
>      Started: 11:34:24.750434
>     Duration: 835.414 ms
4179c4191
<                   28662
---
>                   58569
4218,4219c4230,4231
<      Started: 10:56:57.792323
<     Duration: 163.409 ms
---
>      Started: 11:34:25.586004
>     Duration: 141.871 ms
4227,4228c4239,4240
<      Started: 10:56:57.955886
<     Duration: 163.763 ms
---
>      Started: 11:34:25.728040
>     Duration: 198.882 ms
4236,4237c4248,4249
<      Started: 10:56:58.120934
<     Duration: 122.953 ms
---
>      Started: 11:34:25.928139
>     Duration: 210.751 ms
4247,4248d4258
<                               apparmor=1 security=apparmor
<                           old:
4249a4260,4261
>                           old:
>                               apparmor=1 security=apparmor
4256,4257c4268,4269
<      Started: 10:56:58.244688
<     Duration: 145.642 ms
---
>      Started: 11:34:26.139366
>     Duration: 205.915 ms
4267,4268d4278
<                               apparmor=1 security=apparmor
<                           old:
4269a4280,4281
>                           old:
>                               apparmor=1 security=apparmor
4277,4278c4289,4290
<      Started: 10:56:58.390868
<     Duration: 26.884 ms
---
>      Started: 11:34:26.346373
>     Duration: 30.334 ms
4287,4288c4299,4300
<      Started: 10:56:58.418330
<     Duration: 19.883 ms
---
>      Started: 11:34:26.377156
>     Duration: 21.902 ms
4304,4305c4316,4317
<      Started: 10:56:58.438467
<     Duration: 3785.315 ms
---
>      Started: 11:34:26.399325
>     Duration: 3955.162 ms
4379,4380c4391,4392
<      Started: 10:57:02.225477
<     Duration: 644.114 ms
---
>      Started: 11:34:30.356270
>     Duration: 624.331 ms
4384c4396
<                   29018
---
>                   58928
4403,4404c4415,4416
<      Started: 10:57:02.869934
<     Duration: 3243.588 ms
---
>      Started: 11:34:30.980949
>     Duration: 3226.426 ms
4475,4476c4487,4488
<      Started: 10:57:06.115333
<     Duration: 2395.395 ms
---
>      Started: 11:34:34.208533
>     Duration: 2613.549 ms
4515,4516c4527,4528
<      Started: 10:57:08.511271
<     Duration: 3017.94 ms
---
>      Started: 11:34:36.822661
>     Duration: 3665.294 ms
4578,4579c4590,4591
<      Started: 10:57:11.530165
<     Duration: 4053.504 ms
---
>      Started: 11:34:40.488492
>     Duration: 4369.563 ms
4611c4623
<                               apparmor=1 security=apparmor
---
>                               nopat apparmor=1 security=apparmor
4652,4653c4664,4665
<      Started: 10:57:15.583924
<     Duration: 555.0 ms
---
>      Started: 11:34:44.859167
>     Duration: 512.179 ms
4687,4688c4699,4700
<      Started: 10:57:16.139668
<     Duration: 3317.977 ms
---
>      Started: 11:34:45.372277
>     Duration: 3480.949 ms
4750,4751c4762,4763
<      Started: 10:57:19.459705
<     Duration: 2744.369 ms
---
>      Started: 11:34:48.854693
>     Duration: 2647.028 ms
4786,4787c4798,4799
<      Started: 10:57:22.205666
<     Duration: 150.865 ms
---
>      Started: 11:34:51.502671
>     Duration: 227.272 ms
4812,4813c4824,4825
<      Started: 10:57:22.356888
<     Duration: 3288.053 ms
---
>      Started: 11:34:51.730170
>     Duration: 3928.396 ms
4881,4882c4893,4894
<      Started: 10:57:25.646308
<     Duration: 200.64 ms
---
>      Started: 11:34:55.659354
>     Duration: 289.804 ms
4886c4898
<                   31685
---
>                   61520
4905,4906c4917,4918
<      Started: 10:57:25.847308
<     Duration: 3509.533 ms
---
>      Started: 11:34:55.949361
>     Duration: 3886.085 ms
4973,4974c4985,4986
<      Started: 10:57:29.357269
<     Duration: 268.104 ms
---
>      Started: 11:34:59.835760
>     Duration: 390.274 ms
4999,5000c5011,5012
<      Started: 10:57:29.626303
<     Duration: 621.182 ms
---
>      Started: 11:35:00.227749
>     Duration: 715.514 ms
5004c5016
<                   32083
---
>                   61975
5015,5016c5027,5028
<      Started: 10:57:30.248265
<     Duration: 164.963 ms
---
>      Started: 11:35:00.943979
>     Duration: 148.155 ms
5020c5032
<                   32173
---
>                   62067
5040c5052,5053
< Total run time:   68.284 s
---
> Total run time:   80.109 s
> 
5042c5055,5056
< Set up logging VMs early
---
> Configuring template for log sink before anything else
> Running "sudo qubesctl --show-output --skip-dom0 --max-concurrency 2 --targets sd-small-bookworm-template state.highstate"
5050,5051c5064,5065
<        Started: 10:57:57.966028
<       Duration: 0.28 ms
---
>        Started: 11:35:30.902843
>       Duration: 0.478 ms
5059,5060c5073,5074
<        Started: 10:57:57.968146
<       Duration: 2056.277 ms
---
>        Started: 11:35:30.906452
>       Duration: 1799.403 ms
5064c5078
<                     1254
---
>                     1252
5072,5073c5086,5087
<                     Ign:4 https://apt.freedom.press bookworm InRelease
<                     Hit:5 https://apt-test.freedom.press bookworm InRelease
---
>                     Hit:4 https://apt-test.freedom.press bookworm InRelease
>                     Ign:5 https://apt.freedom.press bookworm InRelease
5082,5083c5096,5097
<        Started: 10:58:00.024683
<       Duration: 370.912 ms
---
>        Started: 11:35:32.706248
>       Duration: 207.205 ms
5087c5101
<                     1529
---
>                     1533
5102,5103c5116,5117
<        Started: 10:58:00.416291
<       Duration: 27.769 ms
---
>        Started: 11:35:32.949660
>       Duration: 45.839 ms
5110,5111c5124,5125
<        Started: 10:58:01.938121
<       Duration: 1950.519 ms
---
>        Started: 11:35:35.473524
>       Duration: 2038.963 ms
5118,5119c5132,5133
<        Started: 10:58:03.894749
<       Duration: 41.139 ms
---
>        Started: 11:35:37.523023
>       Duration: 52.694 ms
5126,5127c5140,5141
<        Started: 10:58:03.936099
<       Duration: 16361.31 ms
---
>        Started: 11:35:37.575998
>       Duration: 15546.042 ms
5140,5141c5154,5155
<        Started: 10:58:20.300091
<       Duration: 5129.14 ms
---
>        Started: 11:35:53.124727
>       Duration: 5539.025 ms
5174,5175c5188,5189
<        Started: 10:58:25.432038
<       Duration: 345.71 ms
---
>        Started: 11:35:58.666642
>       Duration: 408.582 ms
5183,5184c5197,5198
<        Started: 10:58:25.780887
<       Duration: 14.247 ms
---
>        Started: 11:35:59.078596
>       Duration: 23.511 ms
5191,5192c5205,5206
<        Started: 10:58:25.795233
<       Duration: 19952.304 ms
---
>        Started: 11:35:59.102219
>       Duration: 19741.028 ms
5400,5401c5414,5415
<        Started: 10:58:45.749921
<       Duration: 13378.221 ms
---
>        Started: 11:36:18.845642
>       Duration: 12845.517 ms
5416c5430
<   Total run time:   59.628 s
---
>   Total run time:   58.248 s
5418a5433,5436
> Running "qvm-shutdown --wait -- sd-small-bookworm-template"
> Running "qvm-shutdown --wait -- sd-log"
> Running "qvm-start -- sd-log"
> 
5420a5439
> Running "sudo qubesctl --show-output --skip-dom0 --max-concurrency 2 --targets whonix-gateway-17 state.highstate"
5428,5429c5447,5448
<        Started: 09:59:37.503434
<       Duration: 0.301 ms
---
>        Started: 10:37:05.319029
>       Duration: 0.313 ms
5437,5438c5456,5457
<        Started: 09:59:37.505614
<       Duration: 4309.676 ms
---
>        Started: 10:37:05.321126
>       Duration: 2177.618 ms
5442c5461
<                     5751
---
>                     5585
5447,5454c5466,5473
<                     Hit:1 tor+https://deb.kicksecure.com bookworm InRelease
<                     Hit:2 tor+https://deb.debian.org/debian bookworm InRelease
<                     Hit:3 tor+https://deb.whonix.org bookworm InRelease
<                     Hit:4 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
<                     Get:5 tor+https://fasttrack.debian.net/debian bookworm-fasttrack InRelease [12.9 kB]
<                     Get:6 tor+https://deb.debian.org/debian bookworm-updates InRelease [55.4 kB]
<                     Hit:7 tor+https://deb.debian.org/debian-security bookworm-security InRelease
<                     Get:8 tor+https://deb.debian.org/debian bookworm-backports InRelease [59.0 kB]
---
>                     Hit:1 tor+https://deb.debian.org/debian bookworm InRelease
>                     Hit:2 tor+https://deb.debian.org/debian bookworm-updates InRelease
>                     Hit:3 tor+https://fasttrack.debian.net/debian bookworm-fasttrack InRelease
>                     Hit:4 tor+https://deb.debian.org/debian-security bookworm-security InRelease
>                     Hit:5 tor+https://deb.kicksecure.com bookworm InRelease
>                     Hit:6 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
>                     Hit:7 tor+https://deb.whonix.org bookworm InRelease
>                     Hit:8 tor+https://deb.debian.org/debian bookworm-backports InRelease
5457d5475
<                     Fetched 127 kB in 4s (34.3 kB/s)
5465,5466c5483,5484
<        Started: 09:59:41.815708
<       Duration: 342.05 ms
---
>        Started: 10:37:07.499109
>       Duration: 252.795 ms
5470c5488
<                     6345
---
>                     6180
5485,5486c5503,5504
<        Started: 09:59:42.177030
<       Duration: 27.405 ms
---
>        Started: 10:37:07.783376
>       Duration: 29.507 ms
5498,5499c5516,5517
<        Started: 09:59:44.058445
<       Duration: 4140.38 ms
---
>        Started: 10:37:09.269992
>       Duration: 3194.312 ms
5506,5507c5524,5525
<        Started: 09:59:48.208830
<       Duration: 9902.572 ms
---
>        Started: 10:37:12.474867
>       Duration: 10490.106 ms
5520,5521c5538,5539
<        Started: 09:59:58.115794
<       Duration: 6619.993 ms
---
>        Started: 10:37:22.969379
>       Duration: 6882.087 ms
5541c5559
<   Total run time:  25.342 s
---
>   Total run time:  23.027 s
5543a5562,5563
> Running "qvm-shutdown --wait -- whonix-gateway-17"
> 
5545c5565,5566
< Provision all SecureDrop Workstation VMs with service-specific configs
---
> Configure all SecureDrop Workstation VMs with service-specific configs
> Running "sudo qubesctl --show-output --skip-dom0 --max-concurrency 2 --targets sd-app,sd-base-bookworm-template,sd-devices,sd-devices-dvm,sd-gpg,sd-large-bookworm-template,sd-log,sd-proxy,sd-proxy-dvm,sd-small-bookworm-template,sd-viewer,sd-whonix state.highstate"
5553,5554c5574,5575
<        Started: 11:00:33.369423
<       Duration: 0.493 ms
---
>        Started: 11:38:06.634562
>       Duration: 0.312 ms
5562,5563c5583,5584
<        Started: 11:00:33.372952
<       Duration: 1415.047 ms
---
>        Started: 11:38:06.636709
>       Duration: 1981.081 ms
5567c5588
<                     1027
---
>                     1026
5575,5576c5596,5597
<                     Ign:4 https://apt.freedom.press bookworm InRelease
<                     Hit:5 https://apt-test.freedom.press bookworm InRelease
---
>                     Hit:4 https://apt-test.freedom.press bookworm InRelease
>                     Ign:5 https://apt.freedom.press bookworm InRelease
5585,5586c5606,5607
<        Started: 11:00:34.788436
<       Duration: 255.07 ms
---
>        Started: 11:38:08.618039
>       Duration: 232.592 ms
5590c5611
<                     1306
---
>                     1309
5605,5606c5626,5627
<        Started: 11:00:35.079859
<       Duration: 45.546 ms
---
>        Started: 11:38:08.883879
>       Duration: 33.391 ms
5613,5614c5634,5635
<        Started: 11:00:37.577628
<       Duration: 2538.372 ms
---
>        Started: 11:38:10.475267
>       Duration: 1756.768 ms
5621,5622c5642,5643
<        Started: 11:00:40.124996
<       Duration: 47.83 ms
---
>        Started: 11:38:12.236713
>       Duration: 33.694 ms
5629,5630c5650,5651
<        Started: 11:00:40.172906
<       Duration: 10.349 ms
---
>        Started: 11:38:12.270458
>       Duration: 4.779 ms
5637,5638c5658,5659
<        Started: 11:00:40.183554
<       Duration: 10.437 ms
---
>        Started: 11:38:12.275436
>       Duration: 4.757 ms
5645,5646c5666,5667
<        Started: 11:00:40.194113
<       Duration: 10.23 ms
---
>        Started: 11:38:12.280259
>       Duration: 4.663 ms
5654,5655c5675,5676
<        Started: 11:00:40.209678
<       Duration: 14.977 ms
---
>        Started: 11:38:12.287986
>       Duration: 14.825 ms
5664c5685
<   Total run time:    4.348 s
---
>   Total run time:    4.067 s
5674,5675c5695,5696
<        Started: 11:01:12.429281
<       Duration: 0.303 ms
---
>        Started: 11:38:45.358764
>       Duration: 0.475 ms
5683,5684c5704,5705
<        Started: 11:01:12.431410
<       Duration: 2540.605 ms
---
>        Started: 11:38:45.362367
>       Duration: 1967.354 ms
5688c5709
<                     1267
---
>                     1262
5693,5698c5714,5719
<                     Hit:1 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
<                     Hit:2 https://apt-test.freedom.press bookworm InRelease
<                     Ign:3 https://apt.freedom.press bookworm InRelease
<                     Hit:4 https://apt.freedom.press bookworm Release
<                     Hit:6 https://deb.debian.org/debian bookworm InRelease
<                     Hit:7 https://deb.debian.org/debian-security bookworm-security InRelease
---
>                     Hit:1 https://deb.debian.org/debian bookworm InRelease
>                     Hit:2 https://deb.debian.org/debian-security bookworm-security InRelease
>                     Hit:3 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
>                     Hit:4 https://apt-test.freedom.press bookworm InRelease
>                     Ign:5 https://apt.freedom.press bookworm InRelease
>                     Hit:6 https://apt.freedom.press bookworm Release
5706,5707c5727,5728
<        Started: 11:01:14.972404
<       Duration: 375.879 ms
---
>        Started: 11:38:47.330100
>       Duration: 208.144 ms
5711c5732
<                     1548
---
>                     1543
5726,5727c5747,5748
<        Started: 11:01:15.369511
<       Duration: 28.925 ms
---
>        Started: 11:38:47.575511
>       Duration: 45.665 ms
5734,5735c5755,5756
<        Started: 11:01:16.943414
<       Duration: 4037.596 ms
---
>        Started: 11:38:50.074782
>       Duration: 2996.248 ms
5742,5743c5763,5764
<        Started: 11:01:20.986916
<       Duration: 32.591 ms
---
>        Started: 11:38:53.082019
>       Duration: 37.468 ms
5750,5751c5771,5772
<        Started: 11:01:21.019700
<       Duration: 4.814 ms
---
>        Started: 11:38:53.119787
>       Duration: 10.84 ms
5758,5759c5779,5780
<        Started: 11:01:21.024586
<       Duration: 4.795 ms
---
>        Started: 11:38:53.130740
>       Duration: 10.481 ms
5766,5767c5787,5788
<        Started: 11:01:21.029470
<       Duration: 4.683 ms
---
>        Started: 11:38:53.141347
>       Duration: 10.48 ms
5775,5776c5796,5797
<        Started: 11:01:21.037360
<       Duration: 24.546 ms
---
>        Started: 11:38:53.157054
>       Duration: 17.799 ms
5783,5784c5804,5805
<        Started: 11:01:21.061997
<       Duration: 4.844 ms
---
>        Started: 11:38:53.175003
>       Duration: 10.396 ms
5791,5792c5812,5813
<        Started: 11:01:21.066925
<       Duration: 4.731 ms
---
>        Started: 11:38:53.185509
>       Duration: 10.267 ms
5801c5822
<   Total run time:    7.064 s
---
>   Total run time:    5.326 s
5811,5812c5832,5833
<        Started: 11:00:30.377123
<       Duration: 0.308 ms
---
>        Started: 11:38:03.887922
>       Duration: 0.491 ms
5820,5821c5841,5842
<        Started: 11:00:30.379589
<       Duration: 1690.552 ms
---
>        Started: 11:38:03.891637
>       Duration: 2030.737 ms
5825c5846
<                     1250
---
>                     1251
5830,5832c5851,5853
<                     Hit:1 https://deb.debian.org/debian bookworm InRelease
<                     Hit:2 https://deb.debian.org/debian-security bookworm-security InRelease
<                     Hit:3 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
---
>                     Hit:1 https://deb.qubes-os.org/r4.2/vm bookworm InRelease
>                     Hit:2 https://deb.debian.org/debian bookworm InRelease
>                     Hit:3 https://deb.debian.org/debian-security bookworm-security InRelease
5843,5844c5864,5865
<        Started: 11:00:32.070396
<       Duration: 242.146 ms
---
>        Started: 11:38:05.922823
>       Duration: 231.355 ms
5848c5869
<                     1525
---
>                     1532
5863,5864c5884,5885
<        Started: 11:00:32.346479
<       Duration: 41.147 ms
---
>        Started: 11:38:06.192203
>       Duration: 47.93 ms
5871,5872c5892,5893
<        Started: 11:00:33.928214
<       Duration: 2411.769 ms
---
>        Started: 11:38:08.683460
>       Duration: 2396.002 ms
5879,5880c5900,5901
<        Started: 11:00:36.354184
<       Duration: 39.209 ms
---
>        Started: 11:38:11.085082
>       Duration: 41.193 ms
5887,5888c5908,5909
<        Started: 11:00:36.393729
<       Duration: 17360.975 ms
---
>        Started: 11:38:11.126472
>       Duration: 16579.942 ms
5901,5902c5922,5923
<        Started: 11:00:53.758512
<       Duration: 315.005 ms
---
>        Started: 11:38:27.709254
>       Duration: 469.545 ms
5910,5911c5931,5932
<        Started: 11:00:54.076964
<       Duration: 21.065 ms
---
>        Started: 11:38:28.184355
>       Duration: 14.942 ms
5914c5935
<             ID: sd-devices-install-package
---
>             ID: sd-devices-install-libreoffice
5916c5937
<           Name: securedrop-export
---
>           Name: libreoffice
5918,5920c5939,5941
<        Comment: The following packages were installed/updated: securedrop-export
<        Started: 11:00:54.098143
<       Duration: 108292.27 ms
---
>        Comment: The following packages were installed/updated: libreoffice
>        Started: 11:38:28.199378
>       Duration: 53688.863 ms
5923,5957d5943
<                 acl:
<                     ----------
<                     new:
<                         2.3.1-3
<                     old:
<                 ant:
<                     ----------
<                     new:
<                         1.10.13-1
<                     old:
<                 ant-optional:
<                     ----------
<                     new:
<                         1.10.13-1
<                     old:
<                 avahi-daemon:
<                     ----------
<                     new:
<                         0.8-10
<                     old:
<                 avahi-utils:
<                     ----------
<                     new:
<                         0.8-10
<                     old:
<                 bc:
<                     ----------
<                     new:
<                         1.07.1-3+b1
<                     old:
<                 ca-certificates-java:
<                     ----------
<                     new:
<                         20230710~deb12u1
<                     old:
5988,6142d5973
<                 colord:
<                     ----------
<                     new:
<                         1.4.6-2.2
<                     old:
<                 colord-data:
<                     ----------
<                     new:
<                         1.4.6-2.2
<                     old:
<                 cracklib-runtime:
<                     ----------
<                     new:
<                         2.9.6-5+b1
<                     old:
<                 cups:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-browsed:
<                     ----------
<                     new:
<                         1.28.17-3
<                     old:
<                 cups-client:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-common:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-core-drivers:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-daemon:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-filters:
<                     ----------
<                     new:
<                         1.28.17-3
<                     old:
<                 cups-filters-core-drivers:
<                     ----------
<                     new:
<                         1.28.17-3
<                     old:
<                 cups-ipp-utils:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-pk-helper:
<                     ----------
<                     new:
<                         0.2.6-1+b1
<                     old:
<                 cups-ppdc:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 cups-server-common:
<                     ----------
<                     new:
<                         2.4.2-3+deb12u7
<                     old:
<                 default-jre:
<                     ----------
<                     new:
<                         2:1.17-74
<                     old:
<                 default-jre-headless:
<                     ----------
<                     new:
<                         2:1.17-74
<                     old:
<                 firebird3.0-common:
<                     ----------
<                     new:
<                         3.0.11.33637.ds4-2
<                     old:
<                 firebird3.0-common-doc:
<                     ----------
<                     new:
<                         3.0.11.33637.ds4-2
<                     old:
<                 firebird3.0-server-core:
<                     ----------
<                     new:
<                         3.0.11.33637.ds4-2+b1
<                     old:
<                 firebird3.0-utils:
<                     ----------
<                     new:
<                         3.0.11.33637.ds4-2+b1
<                     old:
<                 fonts-crosextra-caladea:
<                     ----------
<                     new:
<                         20200211-1
<                     old:
<                 fonts-crosextra-carlito:
<                     ----------
<                     new:
<                         20220224-1
<                     old:
<                 fonts-dejavu:
<                     ----------
<                     new:
<                         2.37-6
<                     old:
<                 fonts-dejavu-extra:
<                     ----------
<                     new:
<                         2.37-6
<                     old:
<                 fonts-liberation:
<                     ----------
<                     new:
<                         1:1.07.4-11
<                     old:
<                 fonts-liberation2:
<                     ----------
<                     new:
<                         2.1.5-1
<                     old:
<                 fonts-linuxlibertine:
<                     ----------
<                     new:
<                         5.3.0-6
<                     old:
<                 fonts-noto-core:
<                     ----------
<                     new:
<                         20201225-1
<                     old:
<                 fonts-noto-extra:
<                     ----------
<                     new:
<                         20201225-1
<                     old:
<                 fonts-noto-ui-core:
<                     ----------
<                     new:
<                         20201225-1
<                     old:
6148,6212d5978
<                 fonts-sil-gentium:
<                     ----------
<                     new:
<                         20081126:1.03-4
<                     old:
<                 fonts-sil-gentium-basic:
<                     ----------
<                     new:
<                         1.102-1.1
<                     old:
<                 gir1.2-handy-1:
<                     ----------
<                     new:
<                         1.8.1-1
<                     old:
<                 gir1.2-notify-0.7:
<                     ----------
<                     new:
<                         0.8.1-1
<                     old:
<                 gir1.2-packagekitglib-1.0:
<                     ----------
<                     new:
<                         1.2.6-5
<                     old:
<                 gir1.2-polkit-1.0:
<                     ----------
<                     new:
<                         122-3
<                     old:
<                 gir1.2-secret-1:
<                     ----------
<                     new:
<                         0.20.5-3
<                     old:
<                 gnome-disk-utility:
<                     ----------
<                     new:
<                         43.0-1
<                     old:
<                 gstreamer1.0-plugins-ugly:
<                     ----------
<                     new:
<                         1.22.0-2+deb12u1
<                     old:
<                 ipp-usb:
<                     ----------
<                     new:
<                         0.9.23-1+b4
<                     old:
<                 java-common:
<                     ----------
<                     new:
<                         0.74
<                     old:
<                 java-wrappers:
<                     ----------
<                     new:
<                         0.4
<                     old:
<                 liba52-0.7.4:
<                     ----------
<                     new:
<                         0.7.4-20
<                     old:
6218,6272d5983
<                 libactivation-java:
<                     ----------
<                     new:
<                         1.2.0-2
<                     old:
<                 libapache-pom-java:
<                     ----------
<                     new:
<                         29-2
<                     old:
<                 libatk-wrapper-java:
<                     ----------
<                     new:
<                         0.40.0-3
<                     old:
<                 libatk-wrapper-java-jni:
<                     ----------
<                     new:
<                         0.40.0-3
<                     old:
<                 libavahi-core7:
<                     ----------
<                     new:
<                         0.8-10
<                     old:
<                 libbase-java:
<                     ----------
<                     new:
<                         1.1.6-3
<                     old:
<                 libbatik-java:
<                     ----------
<                     new:
<                         1.16+dfsg-1+deb12u1
<                     old:
<                 libbcmail-java:
<                     ----------
<                     new:
<                         1.72-2
<                     old:
<                 libbcpkix-java:
<                     ----------
<                     new:
<                         1.72-2
<                     old:
<                 libbcprov-java:
<                     ----------
<                     new:
<                         1.72-2
<                     old:
<                 libbcutil-java:
<                     ----------
<                     new:
<                         1.72-2
<                     old:
6293,6312d6003
<                 libbsh-java:
<                     ----------
<                     new:
<                         2.0b4-20
<                     old:
<                 libcanberra-gtk3-0:
<                     ----------
<                     new:
<                         0.30-10
<                     old:
<                 libcanberra-gtk3-module:
<                     ----------
<                     new:
<                         0.30-10
<                     old:
<                 libcanberra0:
<                     ----------
<                     new:
<                         0.30-10
<                     old:
6333,6372d6023
<                 libcolorhug2:
<                     ----------
<                     new:
<                         1.4.6-2.2
<                     old:
<                 libcommons-collections3-java:
<                     ----------
<                     new:
<                         3.2.2-2
<                     old:
<                 libcommons-io-java:
<                     ----------
<                     new:
<                         2.11.0-2
<                     old:
<                 libcommons-logging-java:
<                     ----------
<                     new:
<                         1.2-3
<                     old:
<                 libcommons-parent-java:
<                     ----------
<                     new:
<                         56-1
<                     old:
<                 libcrack2:
<                     ----------
<                     new:
<                         2.9.6-5+b1
<                     old:
<                 libcupsfilters1:
<                     ----------
<                     new:
<                         1.28.17-3
<                     old:
<                 libdaemon0:
<                     ----------
<                     new:
<                         0.14-7.1
<                     old:
6378,6387d6028
<                 libehcache-java:
<                     ----------
<                     new:
<                         2.6.11-5
<                     old:
<                 libel-api-java:
<                     ----------
<                     new:
<                         3.0.0-3
<                     old:
6413,6442d6053
<                 libfbclient2:
<                     ----------
<                     new:
<                         3.0.11.33637.ds4-2+b1
<                     old:
<                 libfltk1.1:
<                     ----------
<                     new:
<                         1.1.10-30
<                     old:
<                 libflute-java:
<                     ----------
<                     new:
<                         1:1.1.6-5
<                     old:
<                 libfontembed1:
<                     ----------
<                     new:
<                         1.28.17-3
<                     old:
<                 libfonts-java:
<                     ----------
<                     new:
<                         1.1.6.dfsg2-1
<                     old:
<                 libformula-java:
<                     ----------
<                     new:
<                         1.1.7.dfsg-3
<                     old:
6453,6468c6064
<                 libgusb2:
<                     ----------
<                     new:
<                         0.3.10-1
<                     old:
<                 libhandy-1-0:
<                     ----------
<                     new:
<                         1.8.1-1
<                     old:
<                 libhpmud0:
<                     ----------
<                     new:
<                         3.22.10+dfsg0-2
<                     old:
<                 libhsqldb1.8.0-java:
---
>                 liblangtag-common:
6471c6067
<                         1.8.0.10+dfsg-11+deb12u1
---
>                         0.6.4-2
6473c6069
<                 libib-util:
---
>                 liblangtag1:
6476c6072
<                         3.0.11.33637.ds4-2+b1
---
>                         0.6.4-2
6478c6074
<                 libieee1284-3:
---
>                 libmhash2:
6481c6077
<                         0.2.11-14
---
>                         0.9.9.9-9
6483c6079
<                 libitext-java:
---
>                 libmspub-0.1-1:
6486c6082
<                         2.1.7-14
---
>                         0.1.4-3+b3
6488c6084
<                 libjaxp1.3-java:
---
>                 libmwaw-0.3-3:
6491c6087
<                         1.3.05-6
---
>                         0.3.21-1
6493c6089
<                 libjcommon-java:
---
>                 libmythes-1.2-0:
6496c6092
<                         1.0.23-2
---
>                         2:1.2.5-1
6498c6094
<                 libjsp-api-java:
---
>                 libnumbertext-1.0-0:
6501c6097
<                         2.3.4-3
---
>                         1.0.11-1
6503c6099
<                 liblangtag-common:
---
>                 libnumbertext-data:
6506c6102
<                         0.6.4-2
---
>                         1.0.11-1
6508c6104
<                 liblangtag1:
---
>                 libodfgen-0.1-1:
6511c6107
<                         0.6.4-2
---
>                         0.1.8-2
6513c6109
<                 liblayout-java:
---
>                 liborcus-0.17-0:
6516c6112
<                         0.2.10-5
---
>                         0.17.2-2+b2
6518c6114
<                 liblibreoffice-java:
---
>                 liborcus-parser-0.17-0:
6521c6117
<                         4:7.4.7-1+deb12u4
---
>                         0.17.2-2+b2
6523c6119
<                 libloader-java:
---
>                 libpagemaker-0.0-0:
6526c6122
<                         1.1.6.dfsg-5
---
>                         0.0.4-1
6528c6124
<                 liblouis-data:
---
>                 libqxp-0.0-0:
6531c6127
<                         3.24.0-1
---
>                         0.0.2-1+b3
6533c6129
<                 liblouis20:
---
>                 librasqal3:
6536c6132
<                         3.24.0-1
---
>                         0.9.33-2
6538c6134
<                 liblouisutdml-bin:
---
>                 librdf0:
6541c6137
<                         2.11.0-2
---
>                         1.0.17-3
6543c6139
<                 liblouisutdml-data:
---
>                 libreoffice:
6546c6142
<                         2.11.0-2
---
>                         4:7.4.7-1+deb12u4
6548c6144
<                 liblouisutdml9:
---
>                 libreoffice-base:
6551c6147
<                         2.11.0-2
---
>                         4:7.4.7-1+deb12u4
6553c6149
<                 libmail-java:
---
>                 libreoffice-base-core:
6556c6152
<                         1.6.5-2
---
>                         4:7.4.7-1+deb12u4
6558c6154
<                 libmariadb3:
---
>                 libreoffice-base-drivers:
6561c6157
<                         1:10.11.6-0+deb12u1
---
>                         4:7.4.7-1+deb12u4
6563c6159
<                 libmhash2:
---
>                 libreoffice-calc:
6566c6162
<                         0.9.9.9-9
---
>                         4:7.4.7-1+deb12u4
6568c6164
<                 libmpeg2-4:
---
>                 libreoffice-common:
6571c6167
<                         0.5.1-9
---
>                         4:7.4.7-1+deb12u4
6573c6169
<                 libmspub-0.1-1:
---
>                 libreoffice-core:
6576c6172
<                         0.1.4-3+b3
---
>                         4:7.4.7-1+deb12u4
6578c6174
<                 libmwaw-0.3-3:
---
>                 libreoffice-draw:
6581c6177
<                         0.3.21-1
---
>                         4:7.4.7-1+deb12u4
6583c6179
<                 libmythes-1.2-0:
---
>                 libreoffice-impress:
6586c6182
<                         2:1.2.5-1
---
>                         4:7.4.7-1+deb12u4
6588c6184
<                 libnss-mdns:
---
>                 libreoffice-math:
6591c6187
<                         0.15.1-3
---
>                         4:7.4.7-1+deb12u4
6593c6189
<                 libnumbertext-1.0-0:
---
>                 libreoffice-report-builder-bin:
6596c6192
<                         1.0.11-1
---
>                         4:7.4.7-1+deb12u4
6598c6194
<                 libnumbertext-data:
---
>                 libreoffice-style-colibre:
6601c6197
<                         1.0.11-1
---
>                         4:7.4.7-1+deb12u4
6603c6199
<                 libodfgen-0.1-1:
---
>                 libreoffice-writer:
6606c6202
<                         0.1.8-2
---
>                         4:7.4.7-1+deb12u4
6608c6204
<                 libopencore-amrnb0:
---
>                 librevenge-0.0-0:
6611c6207
<                         0.1.6-1
---
>                         0.0.5-3
6613c6209
<                 libopencore-amrwb0:
---
>                 libstaroffice-0.0-0:
6616c6212
<                         0.1.6-1
---
>                         0.0.7-1
6618c6214
<                 liborcus-0.17-0:
---
>                 libsuitesparseconfig5:
6621c6217
<                         0.17.2-2+b2
---
>                         1:5.12.0+dfsg-2
6623c6219
<                 liborcus-parser-0.17-0:
---
>                 libuno-cppu3:
6626c6222
<                         0.17.2-2+b2
---
>                         4:7.4.7-1+deb12u4
6628c6224
<                 libpackagekit-glib2-18:
---
>                 libuno-cppuhelpergcc3-3:
6631c6227
<                         1.2.6-5
---
>                         4:7.4.7-1+deb12u4
6633c6229
<                 libpagemaker-0.0-0:
---
>                 libuno-purpenvhelpergcc3-3:
6636c6232
<                         0.0.4-1
---
>                         4:7.4.7-1+deb12u4
6638c6234
<                 libpci3:
---
>                 libuno-sal3:
6641c6237
<                         1:3.9.0-4
---
>                         4:7.4.7-1+deb12u4
6643c6239
<                 libpentaho-reporting-flow-engine-java:
---
>                 libuno-salhelpergcc3-3:
6646c6242
<                         0.9.4-5.1
---
>                         4:7.4.7-1+deb12u4
6648c6244
<                 libpixie-java:
---
>                 libvisio-0.1-1:
6651c6247
<                         1:1.1.6-5
---
>                         0.1.7-1+b3
6653c6249
<                 libpoppler-cpp0v5:
---
>                 libwpd-0.10-10:
6656c6252
<                         22.12.0-2+b1
---
>                         0.10.3-2+b1
6658c6254
<                 libpq5:
---
>                 libwpg-0.3-3:
6661c6257
<                         15.8-0+deb12u1
---
>                         0.3.3-1
6663c6259
<                 libpwquality-common:
---
>                 libwps-0.4-4:
6666c6262
<                         1.4.5-1
---
>                         0.4.13-1
6668c6264
<                 libpwquality1:
---
>                 libxmlsec1:
6671c6267
<                         1.4.5-1+b1
---
>                         1.2.37-2
6673c6269
<                 libqpdf29:
---
>                 libxmlsec1-nss:
6676c6272
<                         11.3.0-1+deb12u1
---
>                         1.2.37-2
6678c6274
<                 libqxp-0.0-0:
---
>                 libzmf-0.0-0:
6681c6277
<                         0.0.2-1+b3
---
>                         0.0.2-1+b5
6683c6279
<                 librasqal3:
---
>                 lp-solve:
6686c6282
<                         0.9.33-2
---
>                         5.5.2.5-2
6688c6284
<                 librdf0:
---
>                 python3-uno:
6691c6287
<                         1.0.17-3
---
>                         4:7.4.7-1+deb12u4
6693c6289
<                 libreoffice:
---
>                 uno-libs-private:
6698c6294
<                 libreoffice-base:
---
>                 ure:
6703c6299,6309
<                 libreoffice-base-core:
---
>   ----------
>             ID: sd-devices-install-package
>       Function: pkg.installed
>           Name: securedrop-export
>         Result: True
>        Comment: The following packages were installed/updated: securedrop-export
>        Started: 11:39:21.891492
>       Duration: 32978.019 ms
>        Changes:   
>                 ----------
>                 acl:
6706c6312
<                         4:7.4.7-1+deb12u4
---
>                         2.3.1-3
6708c6314
<                 libreoffice-base-drivers:
---
>                 avahi-daemon:
6711c6317
<                         4:7.4.7-1+deb12u4
---
>                         0.8-10
6713c6319
<                 libreoffice-calc:
---
>                 avahi-utils:
6716c6322
<                         4:7.4.7-1+deb12u4
---
>                         0.8-10
6718c6324
<                 libreoffice-common:
---
>                 bc:
6721c6327
<                         4:7.4.7-1+deb12u4
---
>                         1.07.1-3+b1
6723c6329
<                 libreoffice-core:
---
>                 colord:
6726c6332
<                         4:7.4.7-1+deb12u4
---
>                         1.4.6-2.2
6728c6334
<                 libreoffice-draw:
---
>                 colord-data:
6731c6337
<                         4:7.4.7-1+deb12u4
---
>                         1.4.6-2.2
6733c6339
<                 libreoffice-impress:
---
>                 cracklib-runtime:
6736c6342
<                         4:7.4.7-1+deb12u4
---
>                         2.9.6-5+b1
6738c6344
<                 libreoffice-java-common:
---
>                 cups:
6741c6347
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6743c6349
<                 libreoffice-math:
---
>                 cups-browsed:
6746c6352
<                         4:7.4.7-1+deb12u4
---
>                         1.28.17-3
6748c6354
<                 libreoffice-nlpsolver:
---
>                 cups-client:
6751c6357
<                         4:0.9+LibO7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6753c6359
<                 libreoffice-report-builder:
---
>                 cups-common:
6756c6362
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6758c6364
<                 libreoffice-report-builder-bin:
---
>                 cups-core-drivers:
6761c6367
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6763c6369
<                 libreoffice-script-provider-bsh:
---
>                 cups-daemon:
6766c6372
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6768c6374
<                 libreoffice-script-provider-js:
---
>                 cups-filters:
6771c6377
<                         4:7.4.7-1+deb12u4
---
>                         1.28.17-3
6773c6379
<                 libreoffice-script-provider-python:
---
>                 cups-filters-core-drivers:
6776c6382
<                         4:7.4.7-1+deb12u4
---
>                         1.28.17-3
6778c6384
<                 libreoffice-sdbc-firebird:
---
>                 cups-ipp-utils:
6781c6387
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6783c6389
<                 libreoffice-sdbc-hsqldb:
---
>                 cups-pk-helper:
6786c6392
<                         4:7.4.7-1+deb12u4
---
>                         0.2.6-1+b1
6788c6394
<                 libreoffice-sdbc-mysql:
---
>                 cups-ppdc:
6791c6397
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6793c6399
<                 libreoffice-sdbc-postgresql:
---
>                 cups-server-common:
6796c6402
<                         4:7.4.7-1+deb12u4
---
>                         2.4.2-3+deb12u7
6798c6404
<                 libreoffice-style-colibre:
---
>                 gir1.2-handy-1:
6801c6407
<                         4:7.4.7-1+deb12u4
---
>                         1.8.1-1
6803c6409
<                 libreoffice-wiki-publisher:
---
>                 gir1.2-notify-0.7:
6806c6412
<                         4:1.2.0+LibO7.4.7-1+deb12u4
---
>                         0.8.1-1
6808c6414
<                 libreoffice-writer:
---
>                 gir1.2-packagekitglib-1.0:
6811c6417
<                         4:7.4.7-1+deb12u4
---
>                         1.2.6-5
6813c6419
<                 librepository-java:
---
>                 gir1.2-polkit-1.0:
6816c6422
<                         1.1.6-4
---
>                         122-3
6818c6424
<                 librevenge-0.0-0:
---
>                 gir1.2-secret-1:
6821c6427
<                         0.0.5-3
---
>                         0.20.5-3
6823c6429
<                 libsac-java:
---
>                 gnome-disk-utility:
6826c6432
<                         1.3+dfsg-6
---
>                         43.0-1
6828c6434
<                 libsane-common:
---
>                 ipp-usb:
6831c6437
<                         1.2.1-2
---
>                         0.9.23-1+b4
6833c6439
<                 libsane1:
---
>                 libavahi-core7:
6836c6442
<                         1.2.1-2
---
>                         0.8-10
6838c6444
<                 libserializer-java:
---
>                 libcanberra-gtk3-0:
6841c6447
<                         1.1.6-6
---
>                         0.30-10
6843c6449
<                 libservlet-api-java:
---
>                 libcanberra-gtk3-module:
6846c6452
<                         4.0.1-2
---
>                         0.30-10
6848c6454
<                 libservlet3.1-java:
---
>                 libcanberra0:
6851c6457
<                         1:4.0.1-2
---
>                         0.30-10
6853c6459
<                 libsidplay1v5:
---
>                 libcolorhug2:
6856c6462
<                         1.36.60-1
---
>                         1.4.6-2.2
6858c6464
<                 libsnmp-base:
---
>                 libcrack2:
6861c6467
<                         5.9.3+dfsg-2
---
>                         2.9.6-5+b1
6863c6469
<                 libsnmp40:
---
>                 libcupsfilters1:
6866c6472
<                         5.9.3+dfsg-2
---
>                         1.28.17-3
6868c6474
<                 libstaroffice-0.0-0:
---
>                 libdaemon0:
6871c6477
<                         0.0.7-1
---
>                         0.14-7.1
6873c6479
<                 libsuitesparseconfig5:
---
>                 libfltk1.1:
6876c6482
<                         1:5.12.0+dfsg-2
---
>                         1.1.10-30
6878c6484
<                 libtommath1:
---
>                 libfontembed1:
6881c6487
<                         1.2.0-6+deb12u1
---
>                         1.28.17-3
6883c6489
<                 libuno-cppu3:
---
>                 libgusb2:
6886c6492
<                         4:7.4.7-1+deb12u4
---
>                         0.3.10-1
6888c6494
<                 libuno-cppuhelpergcc3-3:
---
>                 libhandy-1-0:
6891c6497
<                         4:7.4.7-1+deb12u4
---
>                         1.8.1-1
6893c6499
<                 libuno-purpenvhelpergcc3-3:
---
>                 libhpmud0:
6896c6502
<                         4:7.4.7-1+deb12u4
---
>                         3.22.10+dfsg0-2
6898c6504
<                 libuno-sal3:
---
>                 libieee1284-3:
6901c6507
<                         4:7.4.7-1+deb12u4
---
>                         0.2.11-14
6903c6509
<                 libuno-salhelpergcc3-3:
---
>                 liblouis-data:
6906c6512
<                         4:7.4.7-1+deb12u4
---
>                         3.24.0-1
6908c6514
<                 libunoloader-java:
---
>                 liblouis20:
6911c6517
<                         4:7.4.7-1+deb12u4
---
>                         3.24.0-1
6913c6519
<                 libvisio-0.1-1:
---
>                 liblouisutdml-bin:
6916c6522
<                         0.1.7-1+b3
---
>                         2.11.0-2
6918c6524
<                 libwebsocket-api-java:
---
>                 liblouisutdml-data:
6921c6527
<                         1.1-2
---
>                         2.11.0-2
6923c6529
<                 libwpd-0.10-10:
---
>                 liblouisutdml9:
6926c6532
<                         0.10.3-2+b1
---
>                         2.11.0-2
6928c6534
<                 libwpg-0.3-3:
---
>                 libnss-mdns:
6931c6537
<                         0.3.3-1
---
>                         0.15.1-3
6933c6539
<                 libwps-0.4-4:
---
>                 libpackagekit-glib2-18:
6936c6542
<                         0.4.13-1
---
>                         1.2.6-5
6938c6544
<                 libxcb-shape0:
---
>                 libpci3:
6941c6547
<                         1.15-1
---
>                         1:3.9.0-4
6943c6549
<                 libxml-commons-external-java:
---
>                 libpoppler-cpp0v5:
6946c6552
<                         1.4.01-5
---
>                         22.12.0-2+b1
6948c6554
<                 libxml-java:
---
>                 libpwquality-common:
6951c6557
<                         1.1.7-1
---
>                         1.4.5-1
6953c6559
<                 libxmlgraphics-commons-java:
---
>                 libpwquality1:
6956c6562
<                         2.8-2
---
>                         1.4.5-1+b1
6958c6564
<                 libxmlsec1:
---
>                 libqpdf29:
6961c6567
<                         1.2.37-2
---
>                         11.3.0-1+deb12u1
6963c6569
<                 libxmlsec1-nss:
---
>                 libsane-common:
6966c6572
<                         1.2.37-2
---
>                         1.2.1-2
6968c6574
<                 libxxf86dga1:
---
>                 libsane1:
6971c6577
<                         2:1.1.5-1
---
>                         1.2.1-2
6973c6579
<                 libzmf-0.0-0:
---
>                 libsnmp-base:
6976c6582
<                         0.0.2-1+b5
---
>                         5.9.3+dfsg-2
6978c6584
<                 lp-solve:
---
>                 libsnmp40:
6981c6587
<                         5.5.2.5-2
---
>                         5.9.3+dfsg-2
6993,7012d6598
<                 mariadb-common:
<                     ----------
<                     new:
<                         1:10.11.6-0+deb12u1
<                     old:
<                 mysql-common:
<                     ----------
<                     new:
<                         5.8+1.1.0
<                     old:
<                 openjdk-17-jre:
<                     ----------
<                     new:
<                         17.0.12+7-2~deb12u1
<                     old:
<                 openjdk-17-jre-headless:
<                     ----------
<                     new:
<                         17.0.12+7-2~deb12u1
<                     old:
7038,7042d6623
<                 python3-uno:
<                     ----------
<                     new:
<                         4:7.4.7-1+deb12u4
<                     old:
7083,7092d6663
<                 uno-libs-private:
<                     ----------
<                     new:
<                         4:7.4.7-1+deb12u4
<                     old:
<                 unzip:
<                     ----------
<                     new:
<                         6.0-28
<                     old:
7098,7107d6668
<                 ure:
<                     ----------
<                     new:
<                         4:7.4.7-1+deb12u4
<                     old:
<                 ure-java:
<                     ----------
<                     new:
<                         4:7.4.7-1+deb12u4
<                     old:
7113,7117d6673
<                 x11-utils:
<                     ----------
<                     new:
<                         7.7+5
<                     old:
7128,7129c6684,6685
<        Started: 11:02:42.392865
<       Duration: 38753.363 ms
---
>        Started: 11:39:54.874075
>       Duration: 41450.026 ms
7191a6748,6757
>                 fonts-dejavu:
>                     ----------
>                     new:
>                         2.37-6
>                     old:
>                 fonts-dejavu-extra:
>                     ----------
>                     new:
>                         2.37-6
>                     old:
7221a6788,6792
>                 gstreamer1.0-plugins-ugly:
>                     ----------
>                     new:
>                         1.22.0-2+deb12u1
>                     old:
7231a6803,6807
>                 liba52-0.7.4:
>                     ----------
>                     new:
>                         0.7.4-20
>                     old:
7346a6923,6927
>                 libmpeg2-4:
>                     ----------
>                     new:
>                         0.5.1-9
>                     old:
7361a6943,6952
>                 libopencore-amrnb0:
>                     ----------
>                     new:
>                         0.1.6-1
>                     old:
>                 libopencore-amrwb0:
>                     ----------
>                     new:
>                         0.1.6-1
>                     old:
7446a7038,7042
>                 libsidplay1v5:
>                     ----------
>                     new:
>                         1.36.60-1
>                     old:
7496a7093,7097
>                 libxcb-shape0:
>                     ----------
>                     new:
>                         1.15-1
>                     old:
7581a7183,7187
>                 unzip:
>                     ----------
>                     new:
>                         6.0-28
>                     old:
7596a7203,7211
>   ----------
>             ID: sd-viewer-install-libreoffice
>       Function: pkg.installed
>           Name: libreoffice
>         Result: True
>        Comment: All specified packages are already installed
>        Started: 11:40:36.326665
>       Duration: 335.913 ms
>        Changes:   
7600c7215
<   Succeeded: 11 (changed=5)
---
>   Succeeded: 13 (changed=6)
7603,7604c7218,7219
<   Total states run:     11
<   Total run time:  169.168 s
---
>   Total states run:     13
>   Total run time:  150.265 s
7622,7623c7237,7238
<        Started: 11:03:56.108886
<       Duration: 48.959 ms
---
>        Started: 11:41:11.332517
>       Duration: 24.199 ms
7642,7643c7257,7258
<        Started: 11:03:56.157952
<       Duration: 1.678 ms
---
>        Started: 11:41:11.356792
>       Duration: 0.705 ms
7656,7657c7271,7272
<        Started: 11:03:56.159897
<       Duration: 8.2 ms
---
>        Started: 11:41:11.357660
>       Duration: 4.626 ms
7672,7673c7287,7288
<        Started: 11:03:56.171230
<       Duration: 43.178 ms
---
>        Started: 11:41:11.364208
>       Duration: 61.365 ms
7677c7292
<                     1306
---
>                     1313
7697c7312
<   Total run time: 102.015 ms
---
>   Total run time:  90.895 ms
7699a7315,7317
> Running "qvm-shutdown --wait -- sd-app sd-base-bookworm-template sd-devices sd-devices-dvm sd-gpg sd-large-bookworm-template sd-log sd-proxy sd-proxy-dvm sd-small-bookworm-template sd-viewer sd-whonix"
> Running "qvm-start --skip-if-running sd-small-bookworm-template"
> Running "qvm-sync-appmenus sd-small-bookworm-template"
7718a7337,7339
> Running "qvm-shutdown sd-small-bookworm-template"
> Running "qvm-start --skip-if-running sd-large-bookworm-template"
> Running "qvm-sync-appmenus sd-large-bookworm-template"
7752a7374,7376
> Running "qvm-shutdown sd-large-bookworm-template"
> Running "qvm-start --skip-if-running whonix-gateway-17"
> Running "qvm-sync-appmenus whonix-gateway-17"
7789a7414,7415
> Running "qvm-shutdown whonix-gateway-17"
> Running "qvm-sync-appmenus --regenerate-only sd-devices"
7790a7417
> Running "qvm-sync-appmenus --regenerate-only sd-whonix"
7791a7419
> 
7793c7421,7422
< Add SecureDrop export device handling to sys-usb
---
> Add SecureDrop export device handling to sys-usb (disposable)
> Running "sudo qubesctl --show-output --skip-dom0 --max-concurrency 2 --targets sd-fedora-40-dvm state.highstate"
7801,7802c7430,7431
<        Started: 11:05:00.777207
<       Duration: 66.249 ms
---
>        Started: 11:42:26.902949
>       Duration: 77.282 ms
7815,7816c7444,7445
<        Started: 11:05:00.843745
<       Duration: 4.962 ms
---
>        Started: 11:42:26.980516
>       Duration: 4.749 ms
7837,7838c7466,7467
<        Started: 11:05:00.852539
<       Duration: 105.979 ms
---
>        Started: 11:42:26.989048
>       Duration: 102.794 ms
7842c7471
<                     1273
---
>                     1277
7853,7854c7482,7483
<        Started: 11:05:00.958626
<       Duration: 25.21 ms
---
>        Started: 11:42:27.091965
>       Duration: 17.641 ms
7868c7497
<   Total run time: 202.400 ms
---
>   Total run time: 202.466 ms
7870a7500,7502
> Running "qvm-shutdown --wait -- sd-fedora-40-dvm"
> Running "qvm-shutdown --wait -- sys-usb"
> Running "qvm-start -- sys-usb"](https://github.com/freedomofpress/securedrop-workstation/commit/ea79a48e9bb8adf04c3ffd453275f5e678802725)

@zenmonkeykstop zenmonkeykstop added this to the 1.1.0 milestone Jan 27, 2025
@deeplow deeplow mentioned this pull request Feb 24, 2025
Open
45 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rocodes rocodes rocodes left review comments

@cfm cfm cfm approved these changes

Assignees

@cfm cfm

Labels
None yet
Projects
SecureDrop dev cycle
Archived in project
Milestone
1.1.0
Development

Successfully merging this pull request may close these issues.

Call qubesctl from securedrop-admin Python code
5 participants
@deeplow @rocodes @legoktm @cfm @zenmonkeykstop