Project

General

Profile

Feature #7499

Extend the upgrader to allow full (self) upgrade

Added by alant almost 4 years ago. Updated 4 months ago.

Status:
Confirmed
Priority:
Normal
Assignee:
Category:
-
Target version:
Start date:
07/06/2014
Due date:
% Done:

0%

QA Check:
Feature Branch:
Type of work:
Research
Starter:
No
Affected tool:
Upgrader

Description

I would be very nice to be able to have a few-clicks away full upgrade process (incuding downloading the upgrade, veryfing it and installing it). This could either upgrade to an other device, or preferrabily the source device.

An usecase for that is: someone got a Tails device created by a trusted party using "Clone and upgrade", they trust it but never went through the manual verification and installation process and don't know how to use them, so they end up using an outdated version.

Team: kurono (research, ? (implementation)


Related issues

Related to Tails - Feature #11131: Endless automatic upgrades Rejected 01/05/2015
Related to Tails - Feature #11627: Consider updating the default system partition's size Resolved 08/10/2016
Duplicated by Tails - Feature #5981: hot upgrade Duplicate

History

#1 Updated by intrigeri almost 4 years ago

#2 Updated by intrigeri almost 4 years ago

  • Status changed from New to Confirmed

#3 Updated by BitingBird almost 4 years ago

  • Category set to Installation

#4 Updated by BitingBird over 3 years ago

  • Category changed from Installation to 178

Not sure about the category, but seems more "Incremental Upgrade" than "Installer".

#5 Updated by tchou over 3 years ago

  • Related to Feature #8534: Merge incremental upgrades to allow endless upgrading added

#6 Updated by sajolida over 3 years ago

#7 Updated by sajolida over 3 years ago

#8 Updated by BitingBird about 3 years ago

  • Affected tool set to Upgrader

#9 Updated by sajolida almost 3 years ago

  • Description updated (diff)
  • Assignee set to kurono
  • Target version set to 2016

#10 Updated by anonym over 2 years ago

#11 Updated by anonym over 2 years ago

  • Related to deleted (Feature #8534: Merge incremental upgrades to allow endless upgrading)

#12 Updated by intrigeri over 2 years ago

  • Blueprint set to https://tails.boum.org/blueprint/Endless_upgrades/

#13 Updated by intrigeri almost 2 years ago

  • Related to Feature #11627: Consider updating the default system partition's size added

#14 Updated by Dr_Whax almost 2 years ago

  • Target version changed from 2016 to 2018

#15 Updated by intrigeri 5 months ago

  • Status changed from Confirmed to Rejected
  • Assignee deleted (kurono)
  • Target version deleted (2018)

Deprecated (for now) by #15281. We'll reconsider depending on #15277.

#16 Updated by intrigeri 5 months ago

  • Status changed from Rejected to Confirmed
  • Assignee set to intrigeri
  • Target version set to Tails_3.10

Actually we still want to at least consider this option if it can be done without too much work on our busy core people. Next steps are:

  1. intrigeri specifies what exactly we would need from Tails Installer to enable Tails Upgrader to use it to apply a full upgrade; I'll try to do this by the end of 2018
  2. intrigeri asks other contributors (e.g. kurono) if they would be up to implementing the required Tails Installer changes
  3. depending on the above and the timing vs. #15277, we consider implementing this in Tails Installer and Tails Upgrader

#17 Updated by adamantium 4 months ago

An idea: Add upgrade functionality to the booting menu.

Instead of upgrading a Tails with a second tails (manual upgrade), why not allow Tails to download an .iso, save it perhaps in the persistent storage or in a third location (other usb, external hd, etc). Functionality could be added to the "4 seconds to automatic boot" screen allowing the option "Upgrade this Tails from .iso"

The need would be there that the .iso be verified as signed by a known tails signing key. We need to ensure no security holes are introduced by this procedure I'm brainstorming. But if the current Tails bootloader knows the current Tails key/credentials, it could verify if a .iso image came from the Tails developers or somewhere else.

After an upgrade, trigger a reboot, and the user has not had to remove their Tails USB.

I realize there would be a problem if the tails signing key changes, but this is not likely to be a frequent occurence right?

Also available in: Atom PDF