diff options
| author | Phil Wise <phil@advancedtelematic.com> | 2018-03-14 11:44:26 +0100 |
|---|---|---|
| committer | Phil Wise <phil@advancedtelematic.com> | 2018-03-14 16:00:09 +0100 |
| commit | bbce1809a921e627678947e9585ea15223b181d9 (patch) | |
| tree | c30b514d0ef05e5e1c915140bb0efa07f9b7057c | |
| parent | f1fd04ac20d778bed88727571359b4cf39e481c1 (diff) | |
| download | meta-updater-bbce1809a921e627678947e9585ea15223b181d9.tar.gz | |
Add secondary-image to meta-updater
This required splitting the aktualizr package into several components, in order
to be able to either install the primary 'aktualzr' or the secondary
'aktualizr-secondary'.
| -rw-r--r-- | README.adoc | 4 | ||||
| -rw-r--r-- | lib/oeqa/selftest/cases/updater.py | 45 | ||||
| -rw-r--r-- | recipes-sota/aktualizr/aktualizr_git.bb | 42 | ||||
| -rw-r--r-- | recipes-test/images/secondary-image.bb | 18 |
4 files changed, 87 insertions, 22 deletions
diff --git a/README.adoc b/README.adoc index 3562f52..980fa81 100644 --- a/README.adoc +++ b/README.adoc | |||
| @@ -80,8 +80,8 @@ Although we have used U-Boot so far, other boot loaders can be configured work w | |||
| 80 | * `OSTREE_INITRAMFS_IMAGE` - initramfs/initrd image that is used as a proxy while booting into OSTree deployment. Do not change this setting unless you are sure that your initramfs can serve as such a proxy. | 80 | * `OSTREE_INITRAMFS_IMAGE` - initramfs/initrd image that is used as a proxy while booting into OSTree deployment. Do not change this setting unless you are sure that your initramfs can serve as such a proxy. |
| 81 | * `SOTA_PACKED_CREDENTIALS` - when set, your ostree commit will be pushed to a remote repo as a bitbake step. This should be the path to a zipped credentials file in https://github.com/advancedtelematic/aktualizr/blob/master/docs/credentials.adoc[the format accepted by garage-push]. | 81 | * `SOTA_PACKED_CREDENTIALS` - when set, your ostree commit will be pushed to a remote repo as a bitbake step. This should be the path to a zipped credentials file in https://github.com/advancedtelematic/aktualizr/blob/master/docs/credentials.adoc[the format accepted by garage-push]. |
| 82 | * `SOTA_CLIENT_PROV` - which provisioning method to use. Valid options are https://github.com/advancedtelematic/aktualizr/blob/master/docs/automatic-provisioning.adoc[`aktualizr-auto-prov`], https://github.com/advancedtelematic/aktualizr/blob/master/docs/implicit-provisioning.adoc[`aktualizr-implicit-prov`], and `aktualizr-hsm-prov`. The default is `aktualizr-auto-prov`. This can also be set to an empty string to avoid using a provisioning recipe. | 82 | * `SOTA_CLIENT_PROV` - which provisioning method to use. Valid options are https://github.com/advancedtelematic/aktualizr/blob/master/docs/automatic-provisioning.adoc[`aktualizr-auto-prov`], https://github.com/advancedtelematic/aktualizr/blob/master/docs/implicit-provisioning.adoc[`aktualizr-implicit-prov`], and `aktualizr-hsm-prov`. The default is `aktualizr-auto-prov`. This can also be set to an empty string to avoid using a provisioning recipe. |
| 83 | * `SOTA_CLIENT_FEATURES` - extensions to aktualizr. Multiple can be specified if separated by spaces. Valid options are `hsm` (to build with HSM support) and `secondary-example` (to install an example https://github.com/advancedtelematic/aktualizr/blob/master/docs/legacysecondary.adoc[legacy secondary interface] in the image). | 83 | * `SOTA_CLIENT_FEATURES` - extensions to aktualizr. The only valid option is `hsm` (to build with HSM support) |
| 84 | * `SOTA_LEGACY_SECONDARY_INTERFACE` - path to a legacy secondary interface installed on the device. To use the example interface from the Aktualizr repo, use `/usr/bin/example-interface` and make sure `SOTA_CLIENT_FEATURES = "secondary-example"`. | 84 | * `SOTA_LEGACY_SECONDARY_INTERFACE` - path to a https://github.com/advancedtelematic/aktualizr/blob/master/docs/legacysecondary.adoc[legacy secondary interface] installed on the device. To use the example interface from the Aktualizr repo, use `/usr/bin/example-interface` and make sure `IMAGE_INSTALL_append` includes `aktualizr-examples`. |
| 85 | * `SOTA_SECONDARY_ECUS` - a list of paths separated by spaces of JSON configuration files for virtual secondaries on the host. These will be installed into `/var/sota/ecus` on the device. | 85 | * `SOTA_SECONDARY_ECUS` - a list of paths separated by spaces of JSON configuration files for virtual secondaries on the host. These will be installed into `/var/sota/ecus` on the device. |
| 86 | * `SOTA_VIRTUAL_SECONDARIES` - a list of paths separated by spaces of JSON configuration files for virtual secondaries installed on the device. If `SOTA_SECONDARY_ECUS` is used to install them, then you can expect them to be installed in `/var/sota/ecus`. | 86 | * `SOTA_VIRTUAL_SECONDARIES` - a list of paths separated by spaces of JSON configuration files for virtual secondaries installed on the device. If `SOTA_SECONDARY_ECUS` is used to install them, then you can expect them to be installed in `/var/sota/ecus`. |
| 87 | 87 | ||
diff --git a/lib/oeqa/selftest/cases/updater.py b/lib/oeqa/selftest/cases/updater.py index adb4061..a5072e8 100644 --- a/lib/oeqa/selftest/cases/updater.py +++ b/lib/oeqa/selftest/cases/updater.py | |||
| @@ -504,14 +504,55 @@ class HsmTests(OESelftestTestCase): | |||
| 504 | 504 | ||
| 505 | verifyProvisioned(self, machine) | 505 | verifyProvisioned(self, machine) |
| 506 | 506 | ||
| 507 | class SecondaryTests(OESelftestTestCase): | ||
| 508 | @classmethod | ||
| 509 | def setUpClass(cls): | ||
| 510 | super(SecondaryTests, cls).setUpClass() | ||
| 511 | logger = logging.getLogger("selftest") | ||
| 512 | logger.info('Running bitbake to build secondary-image') | ||
| 513 | bitbake('secondary-image') | ||
| 514 | |||
| 515 | def setUpLocal(self): | ||
| 516 | layer = "meta-updater-qemux86-64" | ||
| 517 | result = runCmd('bitbake-layers show-layers') | ||
| 518 | if re.search(layer, result.output) is None: | ||
| 519 | # Assume the directory layout for finding other layers. We could also | ||
| 520 | # make assumptions by using 'show-layers', but either way, if the | ||
| 521 | # layers we need aren't where we expect them, we are out of like. | ||
| 522 | path = os.path.abspath(os.path.dirname(__file__)) | ||
| 523 | metadir = path + "/../../../../../" | ||
| 524 | self.meta_qemu = metadir + layer | ||
| 525 | runCmd('bitbake-layers add-layer "%s"' % self.meta_qemu) | ||
| 526 | else: | ||
| 527 | self.meta_qemu = None | ||
| 528 | self.append_config('MACHINE = "qemux86-64"') | ||
| 529 | self.append_config('SOTA_CLIENT_PROV = " aktualizr-auto-prov "') | ||
| 530 | self.qemu, self.s = qemu_launch(machine='qemux86-64', imagename='secondary-image') | ||
| 531 | |||
| 532 | def tearDownLocal(self): | ||
| 533 | qemu_terminate(self.s) | ||
| 534 | if self.meta_qemu: | ||
| 535 | runCmd('bitbake-layers remove-layer "%s"' % self.meta_qemu, ignore_status=True) | ||
| 536 | |||
| 537 | def qemu_command(self, command): | ||
| 538 | return qemu_send_command(self.qemu.ssh_port, command) | ||
| 539 | |||
| 540 | def test_secondary_present(self): | ||
| 541 | print('Checking aktualizr-secondary is present') | ||
| 542 | stdout, stderr, retcode = self.qemu_command('aktualizr-secondary --help') | ||
| 543 | self.assertEqual(retcode, 0, "Unable to run aktualizr-secondary --help") | ||
| 544 | self.assertEqual(stderr, b'', 'Error: ' + stderr.decode()) | ||
| 507 | 545 | ||
| 508 | def qemu_launch(efi=False, machine=None): | 546 | def qemu_launch(efi=False, machine=None, imagename=None): |
| 509 | logger = logging.getLogger("selftest") | 547 | logger = logging.getLogger("selftest") |
| 510 | logger.info('Running bitbake to build core-image-minimal') | 548 | logger.info('Running bitbake to build core-image-minimal') |
| 511 | bitbake('core-image-minimal') | 549 | bitbake('core-image-minimal') |
| 512 | # Create empty object. | 550 | # Create empty object. |
| 513 | args = type('', (), {})() | 551 | args = type('', (), {})() |
| 514 | args.imagename = 'core-image-minimal' | 552 | if imagename: |
| 553 | args.imagename = imagename | ||
| 554 | else: | ||
| 555 | args.imagename = 'core-image-minimal' | ||
| 515 | args.mac = None | 556 | args.mac = None |
| 516 | # Could use DEPLOY_DIR_IMAGE here but it's already in the machine | 557 | # Could use DEPLOY_DIR_IMAGE here but it's already in the machine |
| 517 | # subdirectory. | 558 | # subdirectory. |
diff --git a/recipes-sota/aktualizr/aktualizr_git.bb b/recipes-sota/aktualizr/aktualizr_git.bb index 4c4e975..ad06339 100644 --- a/recipes-sota/aktualizr/aktualizr_git.bb +++ b/recipes-sota/aktualizr/aktualizr_git.bb | |||
| @@ -20,7 +20,7 @@ SRC_URI = " \ | |||
| 20 | file://aktualizr.service \ | 20 | file://aktualizr.service \ |
| 21 | file://aktualizr-serialcan.service \ | 21 | file://aktualizr-serialcan.service \ |
| 22 | " | 22 | " |
| 23 | SRCREV = "1a6432175b9fb7326173e8db35d326cc1a1011a1" | 23 | SRCREV = "dca6271f4ec06eb2272cc99b4b9cf76a9805f18d" |
| 24 | BRANCH ?= "master" | 24 | BRANCH ?= "master" |
| 25 | 25 | ||
| 26 | S = "${WORKDIR}/git" | 26 | S = "${WORKDIR}/git" |
| @@ -34,27 +34,19 @@ BBCLASSEXTEND =+ "native" | |||
| 34 | 34 | ||
| 35 | EXTRA_OECMAKE = "-DWARNING_AS_ERROR=OFF -DCMAKE_BUILD_TYPE=Release -DAKTUALIZR_VERSION=${PV} " | 35 | EXTRA_OECMAKE = "-DWARNING_AS_ERROR=OFF -DCMAKE_BUILD_TYPE=Release -DAKTUALIZR_VERSION=${PV} " |
| 36 | EXTRA_OECMAKE_append_class-target = " -DBUILD_OSTREE=ON -DBUILD_ISOTP=ON ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'hsm', '-DBUILD_P11=ON', '', d)} " | 36 | EXTRA_OECMAKE_append_class-target = " -DBUILD_OSTREE=ON -DBUILD_ISOTP=ON ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'hsm', '-DBUILD_P11=ON', '', d)} " |
| 37 | EXTRA_OECMAKE_append_class-native = " -DBUILD_SOTA_TOOLS=ON -DBUILD_OSTREE=OFF " | 37 | EXTRA_OECMAKE_append_class-native = " -DBUILD_SOTA_TOOLS=ON -DBUILD_OSTREE=OFF -DBUILD_SYSTEMD=OFF " |
| 38 | 38 | ||
| 39 | do_install_append () { | 39 | do_install_append () { |
| 40 | rm -fr ${D}${libdir}/systemd | 40 | rm -fr ${D}${libdir}/systemd |
| 41 | rm -f ${D}${libdir}/sota/sota.toml # Only needed for the Debian package | ||
| 41 | } | 42 | } |
| 42 | do_install_append_class-target () { | 43 | do_install_append_class-target () { |
| 43 | rm -f ${D}${bindir}/aktualizr_cert_provider | ||
| 44 | rm -f ${D}${bindir}/aktualizr_implicit_writer | ||
| 45 | rm -f ${D}${libdir}/sota/sota.toml | ||
| 46 | ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'secondary-example', '', 'rm -f ${D}${bindir}/example-interface', d)} | ||
| 47 | ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'secondary-isotp-example', '', 'rm -f ${D}${bindir}/isotp-test-interface', d)} | ||
| 48 | |||
| 49 | install -d ${D}${systemd_unitdir}/system | 44 | install -d ${D}${systemd_unitdir}/system |
| 50 | aktualizr_service=${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'serialcan', '${WORKDIR}/aktualizr-serialcan.service', '${WORKDIR}/aktualizr.service', d)} | 45 | aktualizr_service=${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'serialcan', '${WORKDIR}/aktualizr-serialcan.service', '${WORKDIR}/aktualizr.service', d)} |
| 51 | install -m 0644 ${aktualizr_service} ${D}${systemd_unitdir}/system/aktualizr.service | 46 | install -m 0644 ${aktualizr_service} ${D}${systemd_unitdir}/system/aktualizr.service |
| 52 | } | 47 | } |
| 53 | 48 | ||
| 54 | do_install_append_class-native () { | 49 | do_install_append_class-native () { |
| 55 | rm -f ${D}${bindir}/aktualizr | ||
| 56 | rm -f ${D}${bindir}/aktualizr-info | ||
| 57 | rm -f ${D}${bindir}/example-interface | ||
| 58 | install -d ${D}${libdir}/sota | 50 | install -d ${D}${libdir}/sota |
| 59 | install -m 0644 ${S}/config/sota_autoprov.toml ${D}/${libdir}/sota/sota_autoprov.toml | 51 | install -m 0644 ${S}/config/sota_autoprov.toml ${D}/${libdir}/sota/sota_autoprov.toml |
| 60 | install -m 0644 ${S}/config/sota_hsm_prov.toml ${D}/${libdir}/sota/sota_hsm_prov.toml | 52 | install -m 0644 ${S}/config/sota_hsm_prov.toml ${D}/${libdir}/sota/sota_hsm_prov.toml |
| @@ -65,23 +57,37 @@ do_install_append_class-native () { | |||
| 65 | install -m 0644 ${B}/src/sota_tools/garage-sign-prefix/src/garage-sign/lib/* ${D}${libdir} | 57 | install -m 0644 ${B}/src/sota_tools/garage-sign-prefix/src/garage-sign/lib/* ${D}${libdir} |
| 66 | } | 58 | } |
| 67 | 59 | ||
| 68 | FILES_${PN}_append = " \ | 60 | PACKAGES =+ " ${PN}-common ${PN}-examples ${PN}-host-tools ${PN}-secondary " |
| 69 | ${libdir}/sota \ | ||
| 70 | " | ||
| 71 | 61 | ||
| 72 | FILES_${PN}_class-target = " \ | 62 | FILES_${PN} = " \ |
| 73 | ${bindir}/aktualizr \ | 63 | ${bindir}/aktualizr \ |
| 74 | ${bindir}/aktualizr-info \ | 64 | ${bindir}/aktualizr-info \ |
| 75 | ${systemd_unitdir}/system/aktualizr.service \ | 65 | ${systemd_unitdir}/system/aktualizr.service \ |
| 76 | " | 66 | " |
| 77 | 67 | ||
| 78 | FILES_${PN}_append_class-target = " ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'secondary-example', ' ${bindir}/example-interface', '', d)} " | 68 | FILES_${PN}-common = " \ |
| 79 | FILES_${PN}_append_class-target = " ${@bb.utils.contains('SOTA_CLIENT_FEATURES', 'secondary-isotp-example', ' ${bindir}/isotp-test-interface', '', d)} " | 69 | ${libdir}/sota/schemas \ |
| 80 | FILES_${PN}_class-native = " \ | 70 | " |
| 71 | |||
| 72 | FILES_${PN}-examples = " \ | ||
| 73 | ${libdir}/sota/demo_secondary.json \ | ||
| 74 | ${bindir}/example-interface \ | ||
| 75 | ${bindir}/isotp-test-interface \ | ||
| 76 | " | ||
| 77 | |||
| 78 | FILES_${PN}-host-tools = " \ | ||
| 81 | ${bindir}/aktualizr_cert_provider \ | 79 | ${bindir}/aktualizr_cert_provider \ |
| 82 | ${bindir}/aktualizr_implicit_writer \ | 80 | ${bindir}/aktualizr_implicit_writer \ |
| 83 | ${bindir}/garage-deploy \ | 81 | ${bindir}/garage-deploy \ |
| 84 | ${bindir}/garage-push \ | 82 | ${bindir}/garage-push \ |
| 85 | " | 83 | " |
| 86 | 84 | ||
| 85 | FILES_${PN}-secondary = " \ | ||
| 86 | ${bindir}/aktualizr-secondary \ | ||
| 87 | " | ||
| 88 | |||
| 89 | # Both primary and secondary need the SQL Schemas | ||
| 90 | RDEPENDS_${PN}_class-target =+ "${PN}-common" | ||
| 91 | RDEPENDS_${PN}-secondary_class-target =+ "${PN}-common" | ||
| 92 | |||
| 87 | # vim:set ts=4 sw=4 sts=4 expandtab: | 93 | # vim:set ts=4 sw=4 sts=4 expandtab: |
diff --git a/recipes-test/images/secondary-image.bb b/recipes-test/images/secondary-image.bb new file mode 100644 index 0000000..c7a91db --- /dev/null +++ b/recipes-test/images/secondary-image.bb | |||
| @@ -0,0 +1,18 @@ | |||
| 1 | include recipes-core/images/core-image-minimal.bb | ||
| 2 | |||
| 3 | SUMMARY = "A minimal Uptane Secondary image running aktualizr-secondary" | ||
| 4 | |||
| 5 | LICENSE = "MIT" | ||
| 6 | |||
| 7 | |||
| 8 | # Remove default aktualizr primary, and the provisioning configuration (which | ||
| 9 | # RDEPENDS on aktualizr) | ||
| 10 | IMAGE_INSTALL_remove = " \ | ||
| 11 | aktualizr \ | ||
| 12 | aktualizr-auto-prov \ | ||
| 13 | aktualizr-ca-implicit-prov \ | ||
| 14 | aktualizr-hsm-prov \ | ||
| 15 | aktualizr-implicit-prov \ | ||
| 16 | " | ||
| 17 | |||
| 18 | IMAGE_INSTALL_append = " aktualizr-secondary " \ No newline at end of file | ||