diff options
| author | Stefan Agner <stefan.agner@toradex.com> | 2019-02-27 18:36:06 +0100 |
|---|---|---|
| committer | Patrick Vacek <patrickvacek@gmail.com> | 2019-04-26 15:13:28 +0200 |
| commit | 464e6e725d9739d0982dd04356a80a48e0aa4620 (patch) | |
| tree | 696b433e6ebc17b4d903b6ddef665c2f8adcd6eb | |
| parent | 7824e3e9ac71300d7f5796ca7ab00c3b568f0578 (diff) | |
| download | meta-updater-464e6e725d9739d0982dd04356a80a48e0aa4620.tar.gz | |
Move warning about insecure practise to the correct recipe
When SOTA_DEPLOY_CREDENTIALS got introduced deployment of the
provisioning credientials has been moved to
aktualizr-ca-implicit-prov-creds. Move the warning accordingly.
Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
| -rw-r--r-- | recipes-sota/aktualizr/aktualizr-ca-implicit-prov-creds.bb | 4 | ||||
| -rw-r--r-- | recipes-sota/aktualizr/aktualizr-ca-implicit-prov.bb | 3 |
2 files changed, 4 insertions, 3 deletions
diff --git a/recipes-sota/aktualizr/aktualizr-ca-implicit-prov-creds.bb b/recipes-sota/aktualizr/aktualizr-ca-implicit-prov-creds.bb index 7420983..b9bb1f6 100644 --- a/recipes-sota/aktualizr/aktualizr-ca-implicit-prov-creds.bb +++ b/recipes-sota/aktualizr/aktualizr-ca-implicit-prov-creds.bb | |||
| @@ -3,6 +3,10 @@ SECTION = "base" | |||
| 3 | LICENSE = "MPL-2.0" | 3 | LICENSE = "MPL-2.0" |
| 4 | LIC_FILES_CHKSUM = "file://${COMMON_LICENSE_DIR}/MPL-2.0;md5=815ca599c9df247a0c7f619bab123dad" | 4 | LIC_FILES_CHKSUM = "file://${COMMON_LICENSE_DIR}/MPL-2.0;md5=815ca599c9df247a0c7f619bab123dad" |
| 5 | 5 | ||
| 6 | # WARNING: it is NOT a production solution. The secure way to provision devices | ||
| 7 | # is to create certificate request directly on the device (either with HSM/TPM | ||
| 8 | # or with software) and then sign it with a CA stored on a disconnected machine. | ||
| 9 | |||
| 6 | DEPENDS = "aktualizr aktualizr-native" | 10 | DEPENDS = "aktualizr aktualizr-native" |
| 7 | ALLOW_EMPTY_${PN} = "1" | 11 | ALLOW_EMPTY_${PN} = "1" |
| 8 | 12 | ||
diff --git a/recipes-sota/aktualizr/aktualizr-ca-implicit-prov.bb b/recipes-sota/aktualizr/aktualizr-ca-implicit-prov.bb index 5893ed2..9a4166c 100644 --- a/recipes-sota/aktualizr/aktualizr-ca-implicit-prov.bb +++ b/recipes-sota/aktualizr/aktualizr-ca-implicit-prov.bb | |||
| @@ -1,9 +1,6 @@ | |||
| 1 | SUMMARY = "Aktualizr configuration for implicit provisioning with CA" | 1 | SUMMARY = "Aktualizr configuration for implicit provisioning with CA" |
| 2 | DESCRIPTION = "Configuration for implicitly provisioning Aktualizr using externally provided or generated CA" | 2 | DESCRIPTION = "Configuration for implicitly provisioning Aktualizr using externally provided or generated CA" |
| 3 | 3 | ||
| 4 | # WARNING: it is NOT a production solution. The secure way to provision devices is to create certificate request directly on the device | ||
| 5 | # (either with HSM/TPM or with software) and then sign it with a CA stored on a disconnected machine | ||
| 6 | |||
| 7 | HOMEPAGE = "https://github.com/advancedtelematic/aktualizr" | 4 | HOMEPAGE = "https://github.com/advancedtelematic/aktualizr" |
| 8 | SECTION = "base" | 5 | SECTION = "base" |
| 9 | LICENSE = "MPL-2.0" | 6 | LICENSE = "MPL-2.0" |