summaryrefslogtreecommitdiffstats
path: root/recipes-sota
Commit message (Collapse)AuthorAgeFilesLines
* aktualizr: Upgrade to 2019.10 release and latest garage-sign.feat/thud/2019.10Laurent Bonnans2019-11-201-4/+4
| | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: Remove systemd packaging.Patrick Vacek2019-11-201-1/+0
| | | | | | That dependency and build flag have been removed as they were unused. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Indicate an OSTree boot on startEugene Smirnov2019-11-202-0/+36
| | | | | Signed-off-by: Mykhaylo Sul <ext-mykhaylo.sul@here.com> Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Fix aktualizr-ptest breakagefeat/thud/2019.9-backportLaurent Bonnans2019-10-291-0/+4
| | | | | | The compile step was removed by mistake in ec1ac0617b120813d6450dffe1aa8d4868e37332! Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* aktualizr: remove systemd from PACKAGECONFIG.Patrick Vacek2019-10-291-1/+1
| | | | | | | The systemd functionality in aktualizr is not currently used for anything, so there's no reason to use it. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: Bump to 2019.9 release and latest garage-sign.Patrick Vacek2019-10-291-4/+4
| | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr-device-prov-creds: remove it.Patrick Vacek2019-10-213-69/+0
| | | | | | | | | | Originally I was just trying to remove the reference to DEPLOY_DIR_IMAGE because it depends on MACHINE, but then I realized that this recipe is just plain not worth keeping. It isn't viable for anything except the most limited testing, since it bakes device-specific credentials into an image, but we weren't even using it for testing. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Specify more configs as MACHINE_ARCH.Patrick Vacek2019-10-211-0/+1
| | | | | | | If they depend on MACHINE, that's what we gotta do. Still haven't sorted out aktualizr-device-prov-creds, though. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Split aktualizr hwid config to another recipeLaurent Bonnans2019-10-212-5/+24
| | | | | | So that we can fix the ${MACHINE} dependency issues Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* aktualizr: use SIGGEN_EXCLUDE_SAFE_RECIPE_DEPS for config recipes.Patrick Vacek2019-10-216-1/+28
| | | | | | | | | | | | | This is a bit of a compromise. These recipes are allarch, since they do not depend on an architecture, but they depend on aktualizr, which is definitely not allarch. Therefore, we must tell bitbake not to treat the aktualizr architecture as a dependency of these recipes. However, this means that if one of the config files changes in the aktualizr repo, we need to bump the version of the recipe that uses it to make sure bitbake picks up that change. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: fix secondary recipes' dependencies.Patrick Vacek2019-10-216-16/+17
| | | | | | | Most do not need to depend on aktualizr-native and do not need to be rebuilt if the credentials change. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Fix aktualizr version reporting in yocto imageLaurent Bonnans2019-10-211-5/+9
| | | | | | | | | | Stop overriding AKTUALIZR_VERSION with the recipe version which is mostly bogus. And bump aktualizr to make sure we're using a version which fails at configure time if no version was specified. Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Give names to different SRC_URI in aktualizr recipeLaurent Bonnans2019-10-211-5/+4
| | | | | | To make it self-documenting and extendable Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Example config for a virtual secondary.Patrick Vacek2019-10-213-0/+44
| | | | | | Useful for updating an arbitrary file in /var. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: aktualizr-repo was renamed to uptane-generator.backport/thud/2019.7Patrick Vacek2019-09-111-5/+5
| | | | | | Also bump to 2019.7 release of aktualizr and latest garage-sign. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: latest garage-sign with expiration support.Patrick Vacek2019-09-111-3/+3
| | | | | | | Use GARAGE_TARGET_EXPIRES or GARAGE_TARGET_EXPIRE_AFTER (but not both!) to set the garage-sign parameters. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Bump aktualizr and garage-sign versions to the latest.Patrick Vacek2019-08-151-4/+4
| | | | | | | Both include support for mutual TLS in the garage tools. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com> (cherry-picked from commit 8fa3a60d39476903745cb80f6130bb8c412e0694)
* Dont patch credentialsZee3141592019-08-151-8/+11
| | | | | | | | | | | | | Unzip files in tmp directory, updated comments Fixed a zip bug Grouped elements with warnings With a fancier loop Signed-off-by: Zee314159 <252806294@qq.com> (cherry-picked from commit 672fcc51d92522c8e2de794ef561e8dd281f7f20)
* Fix ptest build after recent aktualizr changesLaurent Bonnans2019-07-191-1/+1
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* OTA-2488: Remove SOTA_SECONDARY_CONFIG_DIR configuration variable (old way ↵Mike Sul2019-07-191-11/+1
| | | | | | to configure secondaries). Bump corresponding version of aktualizr. Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com>
* Remove executable access control bits from aktualizr recipe.Patrick Vacek2019-06-051-0/+0
| | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Rename provisioning methods.Patrick Vacek2019-06-059-83/+83
| | | | | | | | | | | | "Autoprovisioning" or "automatic provisioning" is now known as "shared credential provisioning". "Implicit provisioning" is now known as "device credential provisioning". "HSM provisioning" was always a misnomer, so it is now refered to as "device credential provisioning with an HSM". This includes a bump of the aktualizr version as well. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: bump garage sign to version 0.7.0-3-gf5ba640.Patrick Vacek2019-06-051-3/+3
| | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* OTA-2541: Switch to Aktualizr's version that supports IP Secondaries ↵Mike Sul2019-06-051-1/+1
| | | | | | | preconfig and its tests Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com> Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* OTA-2541: Use local.conf's variables to configure Primary with ↵Mike Sul2019-06-051-8/+0
| | | | | | | Secondary(ies) and vice versa Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com> Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* OTA-2541: Remove Secondary's socket service. Use a regular systemd service ↵Mike Sul2019-06-053-11/+6
| | | | | | | to start Seconadry daemon Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com> Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* OTA-2541: Network configuration on IP/Posix SecondaryMike Sul2019-06-051-0/+8
| | | | | Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com> Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr-polling-interval: new config fragment.Patrick Vacek2019-06-052-0/+31
| | | | | | | | | Can be used for testing purposes after we increase the default polling interval in aktualizr. We no longer recommend anything less than an hour for production use cases, but it's still convenient to poll more frequently while testing. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Make aktualizr-ptest depend on python3-miscLaurent Bonnans2019-05-131-1/+1
| | | | | | Some of our tests use pathlib which ends up in there... Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* aktualizr: Remove aktualizr-check-discovery dependency.Patrick Vacek2019-04-291-2/+1
| | | | | | It no longer exists. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* aktualizr: Bump to latest for recovery fixes.Patrick Vacek2019-04-291-1/+1
| | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
* Bump aktualizr and garage toolsLaurent Bonnans2019-04-291-4/+4
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Use PARALLEL_MAKE when building aktualizr-ptestLaurent Bonnans2019-04-291-1/+1
| | | | | | | The trick to add it in do_compile from cmake.bbclass does not work with do_compile_ptest_base Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Parametrizable AKTUALIZR_PTEST_PARALLEL_LEVELLaurent Bonnans2019-04-291-2/+4
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Add openssl-bin as a aktualizr-ptest requirementLaurent Bonnans2019-04-291-1/+1
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Add aktualizr-resource-controlLaurent Bonnans2019-04-292-1/+31
| | | | | | For controlling systemd cgroups configuration of the aktualizr daemon Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Set 'allarch' to aktualizr config recipesLaurent Bonnans2019-04-299-1/+19
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Save space in deployed aktualizr ptestLaurent Bonnans2019-04-291-2/+5
| | | | | | | | | * remove whole RIOT repo * remove intermediary static libraries, only useful during build Should be around 500MB saving in total Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Depend on python3-modules and curl for aktualizr-ptestLaurent Bonnans2019-04-291-1/+1
| | | | | | | For python: less headaches, it's already huge anyway. Curl is needed by some shell-backed tests. Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Disable ptest for aktualizr by defaultLaurent Bonnans2019-04-291-0/+4
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Add working ptest suite for aktualizrLaurent Bonnans2019-04-292-1/+33
| | | | Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* aktualizr: draft of enabling ptestPatrick Vacek2019-04-291-1/+6
| | | | | | | | | Original work from Patrick. Laurent: dropped a patch for a change in aktualizr we now support directly Signed-off-by: Patrick Vacek <patrickvacek@gmail.com> Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Use 'printf' instead of 'echo -e'Laurent Bonnans2019-04-291-2/+2
| | | | | | Should be less surprising Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* aktualizr: use echo -e when using escape sequencesStefan Agner2019-04-291-2/+2
| | | | | | | | | Some shell require the -e argument when using escape sequences in echo. This has been observed when building images on a Fedora machine, where the configuration files ended up including "\n" sequences instead of newlines. Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
* fit-conf: se PACKAGE_ARCH to ${MACHINE_ARCH}Ming Liu2019-04-261-0/+2
| | | | | | | fit-conf should be a machine specific package instead of being a arch specific package. Signed-off-by: Ming Liu <liu.ming50@gmail.com>
* Simplify garage-sign fetching for aktualizrLaurent Bonnans2019-04-262-41/+8
| | | | | | | | | Two modes: - `GARAGE_SIGN_AUTOVERSION=0`: use archive and version from aktualizr's recipe - `GARAGE_SIGN_AUTOVERSION=1`: let aktualizr fetching it automatically Signed-off-by: Laurent Bonnans <laurent.bonnans@here.com>
* Move warning about insecure practise to the correct recipeStefan Agner2019-04-262-3/+4
| | | | | | | | When SOTA_DEPLOY_CREDENTIALS got introduced deployment of the provisioning credientials has been moved to aktualizr-ca-implicit-prov-creds. Move the warning accordingly. Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
* README: document auto-reboot config feature.backport/thud/auto-reboot-etcPatrick Vacek2019-02-271-1/+1
| | | | | Signed-off-by: Patrick Vacek <patrickvacek@gmail.com> Suggested-by: Ben Luck <benjamin.luck@here.com>
* Switch to the aktualizr's master headMike Sul2019-02-261-1/+1
| | | | Signed-off-by: Mike Sul <ext-mykhaylo.sul@here.com>
* aktualizr-auto-prov-creds: remove API Gateway URL if it exists.Patrick Vacek2019-02-261-1/+6
| | | | | | It will only be used by garage-sign. Signed-off-by: Patrick Vacek <patrickvacek@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-07-02 12:29:33 +0000