Simple Streams
- Canonical BootStack Charmers
| Channel | Revision | Published | Runs on |
|---|---|---|---|
| latest/stable | 23 | 17 Oct 2024 | |
| latest/stable | 10 | 28 Apr 2023 | |
| latest/candidate | 23 | 17 Oct 2024 | |
| latest/candidate | 10 | 13 Apr 2023 | |
| latest/edge | 24 | 12 Dec 2024 | |
| latest/edge | 11 | 11 May 2023 |
juju deploy simple-streams
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
Simple Streams
Description
Simple Streams describe streams of like items in a structural fashion. A client provides a way to sync or act on changes in a remote stream.
Cryptography
Data in transit
HTTP/HTTPS
The simplestreams debian package fetches images from a URL over either HTTP or HTTPS. The charm configuration image-source is set to https://images.maas.io/ephemeral-v3/daily/ by default and transfers will thus normally be encrypted.
Integrity Validation
GPG key
The simplestreams package fetches a signed file from the image-source and validates its signature using the public GPG key specified in the keyring-file charm configuration, which defaults to /usr/share/keyrings/ubuntu-cloudimage-keyring.gpg.
Signature verification can be disabled by unsetting the keyring-file option, but this is not recommended because GPG helps to prevent the usage of compromised or malicious images.
Data at rest
The downloaded images are left unencrypted and will be stored at /var/www/html/maas/images/ephemeral-v3/daily by default. This is configurable using the image-dir charm configuration.