Remove sd-whonix and whonix-gateway FPF packages and repos

[deeplow]

Follow-up to #1414 (to be rebased after it is merged).

• Removes sd-whonix and tries to remove all code tries between the workstation and its whonix dependency.
• Added unofficial support for an installation where Whonix is not installed

TODO:

• update threat model in README
• remove sd-sys-whonix-vms.sls (including removing apparmor kernel arguments)
• Conditional removal of packages from whonix templates, depending on presence of whonix VMs

Test plan

• visual review
• Ensure no other lingering references to Whonix exist
• ensure FPF packages, repositories and keyring absent from sys-whonix or whonix-gateway-17
• make dev does not run qvm.anon-whonix or other system default formulas

Checklist

This change accounts for:

• any necessary RPM packaging updates (e.g., added/removed files, see MANIFEST.in and rpm-build/SPECS/securedrop-workstation-dom0-config.spec)
• any required documentation

[legoktm]

I just rebased against main, didn't look at it or anything.

[deeplow]

Rebased again to pick the OpenQA fixes (now on FPF's fork of the openqa-tests-qubesos).

[deeplow]

This must be removed before merging.

[deeplow]

All tests passed, but sadly the uploading of the sdw-admin --apply logs timed out. So I coudn't evaluate the result on a clean system. I've started it again here.

[deeplow]

Marking this as ready for review, possibly for @legoktm, but I'll do another pass tomorrow after reading the sdw-admin --apply output. (Update: changed my mind as I needed to rebase from main. I'll wait for the test to run on the rebased to mark it as ready for review).

[deeplow]

(Marked as ready for review before confirmation from OpenQA, but the diff is minimal, so I assume it'll succeed)

[deeplow]

Also I think we can remove securedrop-qubesdb-tools from securedrop_salt/sd-base-template-packages.sls (IMO we don't need to actively clean it up right now).

I have included logic to remove it in sd-remove-whonix-packages.sls on an updater run. Are you suggesting we also remove that logic?

[deeplow]

Last thing, do you want to include a fix for #1410 in this? Or handle that separately?

Separately, I'd say. This PR is already trying to do too many changes at once.

[deeplow]

In case everything is addressed, prior to merging I'd like to:

• do some light commit squashing
• remove the OpenQA change here and have Remove sd-whonix set up openqa-tests-qubesos#3 approved

[legoktm]

I have included logic to remove it in sd-remove-whonix-packages.sls on an updater run. Are you suggesting we also remove that logic?

No, I got confused and thought it was being installed and it isn't.

[legoktm]

One more thing I think on the whonixless install and then we should be set

[legoktm]

I still see a failure on a whonixless install, and I think this is the culprit, because configure() does run_cmd(["qvm-shutdown", "--wait", "--"] + targets), which fails with a non-zero exit because no such VM/template exists.

Maybe we can have configure learn some kind of skip_if_missing where it doesn't do anything if the target(s) don't exist?

(fwiw I commented out this line and then the install worked fine all the way through so this should be the last/only thing to fix)

[deeplow]

I think this is kind off an edge-case that is going away pretty soon IMO. So my preference would be to just add an if before we go into that configure step. Once it goes away we just remove it. Otherwise we're adding logic to configure() to handle this specific situation, which we're unlikely to encounter in the future.

[legoktm]

Works for me!

[deeplow]

Because in general we do want the targets to exist, otherwise it may be doing something we don't want it to. But perhaps that's more on the testing territory.

[deeplow]

Done in 4952035. Thanks for testing the code ahead of time :)

[deeplow]

I'll just re-arrange the PRs a tiny bit and force-push.

[deeplow]

Rebase done and OpenQA commit removed. Feel free to give it the final stamp of approval @legoktm.

[legoktm]

LGTM, my whonixless fresh install worked :) ty!