| Message ID | 20250922170445.1393839-1-alexander.heinisch@siemens.com |
|---|---|
| Headers | show
Return-Path: <isar-users+bncBCWNZPVHSYERBNUDY3DAMGQEE3X2XJA@googlegroups.com>
Received: from shymkent.ilbers.de ([unix socket])
by shymkent (Cyrus 2.5.10-Debian-2.5.10-3+deb9u2) with LMTPA;
Mon, 22 Sep 2025 19:05:05 +0200
X-Sieve: CMU Sieve 2.4
Received: from mail-pf1-f185.google.com (mail-pf1-f185.google.com
[209.85.210.185])
by shymkent.ilbers.de (8.15.2/8.15.2/Debian-8+deb9u1) with ESMTPS id
58MH52wE020768
(version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT)
for <iupwgm@isar-build.org>; Mon, 22 Sep 2025 19:05:03 +0200
Received: by mail-pf1-f185.google.com with SMTP id
d2e1a72fcca58-77df7f0d7a3sf3666607b3a.2
for <iupwgm@isar-build.org>; Mon, 22 Sep 2025 10:05:03 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1758560695; cv=pass;
d=google.com; s=arc-20240605;
b=RYV55TOXPIBY+GSHuKYB9zOCItUtgl21aBrYpKWvSgM1djpdqllUzz7mwYKnh2AGSZ
U/AiThTPJ/cE5IHsVLMN1+GsSt9RqyQmg+WI95dMLBbBjrXqgQwTcrswaD7mc8YHB6Wy
aCw6ysjYv2UTZH7hincZEo1QJiysRjg3uP1wMMY/vXvAEyu9wGL9D0XuAHJQmpmPqMK3
/99pzBDLMBBhx8QjQkgGRphstVRrj/2o3PkDMV7c5n/IreLR/h6BiRwq0w5Ipynf1f2G
e67FmA2OJ+p5frtNLii5Yiz24z8svEldUKNyhT8EKMBEa3dExeGzYcl45P2jm6MybOeO
lv6Q==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20240605;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to:feedback-id:mime-version
:message-id:date:subject:cc:to:from:dkim-signature;
bh=JWwwqqCfzV/eXjM7hf3cxTD1jiqpMkcfQnVsBBfwS9s=;
fh=kwgpaDyNVwPlSeQGSo3ihd/s4boEA3gWc6eTHGTrRWU=;
b=cNop6pxXggJff5yp2HVkm+/2dXBkTnGPT5NUQWFmS/8PTRiJgyIQXoXVp5MHf02PNu
+Kc6ykGumnjSdltmc2P16DHfiAiawF2CZPN/jQTnc9dd+XtssF1AJD/oXaEPj8r4zIhy
iFCNHqicDhZcfuwg4bGzfC6qkmdWlg+OMQAl9OtOLVgINGOjQub/VzK0z+ALLoQaPGeW
czjthYlGQ5Fd6lhFcMQ2/VT9EoOanbUwuU+1DagafbaWBNi0FveenIviILpyg167U7Mc
mNq6M0odqeQ11BjQxyC3XegJyibyyTHPVQJAf2Myqvm1SA186tKIPW/b+3eBijADXbvH
l4zg==;
darn=isar-build.org
ARC-Authentication-Results: i=2; gmr-mx.google.com;
dkim=pass header.i=@siemens.com header.s=fm1 header.b=b2WS97vD;
spf=pass (google.com: domain of
fm-1330684-202509221704507bab31c55e000207de-pe8dbr@rts-flowmailer.siemens.com
designates 185.136.65.228 as permitted sender)
smtp.mailfrom=fm-1330684-202509221704507bab31c55e000207de-Pe8dbR@rts-flowmailer.siemens.com;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=googlegroups.com; s=20230601; t=1758560695; x=1759165495;
darn=isar-build.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender:feedback-id
:mime-version:message-id:date:subject:cc:to:from:from:to:cc:subject
:date:message-id:reply-to;
bh=JWwwqqCfzV/eXjM7hf3cxTD1jiqpMkcfQnVsBBfwS9s=;
b=B851THDVMC0J62SU+/lz1yY+ftm8Fyf18iov2hakkPEMJXoYQ6I57TqGAqLBg+8HqH
fwUD+reZVeJPbmB0UIFrX6pad27KX7USxl/4e69H2bdC82lg5quDx5shjtuDlo5hGDMA
0ggEitMQyOyt7Vn+kfaiDhLqrJNKGwtunykdcsYzqnpwUsYfg8QjopCcLgTWWH4iug64
oHgiBU7gTtJTgvlZFX0icUgBMlPpbhsIXOfgBRSh4awoIm3AEhwKFVjbzPsMqr5RJeAd
IuDy3X48YVMNxAP9tYDVThaA3T1jL9UVBttV5LeajDwn0jkMeoqHVUm7fD4G3Btp7A6x
RXCQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1758560695; x=1759165495;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:x-spam-checked-in-group:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender:feedback-id
:mime-version:message-id:date:subject:cc:to:from:x-beenthere
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=JWwwqqCfzV/eXjM7hf3cxTD1jiqpMkcfQnVsBBfwS9s=;
b=VCCDKZ5n/8wZFvE5C+VMA3cIDHZLY/buL5Jw4mv2XMDvz7iv5CwJcW8XEBj3wve/lK
31dNQD0iv1dpQp/JB0LFOukraPYRBXFwMSqI4fyagBOBHNhzq1qyHTymU4Ye+Th8OZ2E
+tJMNOQGvraEEwGxDuyMulrcFd6kzJvH4XwDniG0pMm8fjDEP4h1mXSvtUuCSza2zoly
qsUCNvcCRtjZxW2PxqBbi+cqvMBo5GYa/mo/QmZPsyQI2p5LWKufAbqQDCGPsC+WUUZK
ivlujSz2rMkqPLD42CiB5rdW0GL8F8PAUgCppooKam58aUMQVOhiHRWnALV+2ikxYkyX
Geyg==
X-Forwarded-Encrypted: i=2;
AJvYcCU/Zhw79gRBbbmp2yC4f+XnArrTAokv9U1baWg+g6upj+BECVassNCJeDBQnF0AMKK9e04sxDU=@isar-build.org
X-Gm-Message-State: AOJu0YzrITOMb9IJ4c5RxWB6ho3CWJtpPLgeMqBxIO4xosV6+QNIhkUu
v/5iQCWSs9ZMNALaqZUqbf6ZuN7HKG/Oq55cioLLgAPIe4wXJfi6F2zS
X-Google-Smtp-Source:
AGHT+IELXjRn+q/t6ZRLmTlklMU0yJvMWS7RH/JicR2k4IiHy2onBsWAmxzYjEMejHwyk438sln/GA==
X-Received: by 2002:a05:6a00:10c1:b0:776:8bcc:f1d5 with SMTP id
d2e1a72fcca58-77e4d909d18mr14546012b3a.10.1758560694703;
Mon, 22 Sep 2025 10:04:54 -0700 (PDT)
X-BeenThere: isar-users@googlegroups.com;
h=ARHlJd42/+LQqGu5o+R3Ra8ofdJnBh0FwFCnpm5fzXsk1uxwRw==
Received: by 2002:a05:6a00:2d1f:b0:772:6b0d:37ce with SMTP id
d2e1a72fcca58-77f34d3fb24ls1564097b3a.1.-pod-prod-02-us; Mon, 22 Sep 2025
10:04:53 -0700 (PDT)
X-Received: by 2002:a05:6a20:914d:b0:27b:dcba:a8f3 with SMTP id
adf61e73a8af0-2925f76be25mr17130577637.15.1758560692863;
Mon, 22 Sep 2025 10:04:52 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1758560692; cv=none;
d=google.com; s=arc-20240605;
b=CdxbDVvVLrhFBV37ojkfm5N2nPGqHy+RVhBvb5AXMYnqIwyaUChn4LQtDqEvOGhv4g
lGn2NvhmPqEFW4CoHPNQL22ue2D1XKtDikNgrt3wuzx0eIRTxdEukkupyZ6bloAOk7ot
y4f8siXSkifRVLSwohSpEuO1k9lbRZASNnfoTmlKY6F7a/sHrmLdUBKo7P6YnBWYtXQU
SyclYCpJdnuWoKUzgNliHAGJvn8Y5vKtnWwwoGmDRyHNRGq8maKL8ydnrbvKyoxtAVzD
92wBxHHIb/LlMgkdVN4uORkd/MIuD3wvMaZg40Mc+X6OWNDse6nXKO2RgsH2yOcr49ZP
SKcw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20240605;
h=feedback-id:content-transfer-encoding:mime-version:message-id:date
:subject:cc:to:from:dkim-signature;
bh=6rjYA3d4iZwh1elcpL69Y6cmZjVuxhKaICGA1fb5YK8=;
fh=p2NZNdSy+UicSjYUSvZGU+QYmFFPVZWXjWkELGSBm8Q=;
b=IAvlW86oSso3TJRGnHMpm0EBOZLx2IkVi2XQq+CFAqxMhWjSV91KTLvEEUWoTiXIy5
7fUj7n71jhs2crb3q34h26FUR+8hG9C89BsnxVeOtrVpEahJdvty1YSVB7uX0lnfBVad
oNg2UsTl2pczImYl/9SVZ4HOcjMdZGkAtXHwKYsB1EsMX3mTNTufeewbrr8hKfL/VOoG
smvfcCthrQ+NwnP5mGatH9M2RTe7v2TicM0k/1ZlMoH3JAm5PHRKSZsfu3GPFFjwEcaz
2EQu80wH6ZO+KubJNhwhPkx7LOGYBpctOO8kEu58LxVRQCxKf+++KXMcfI6D6SajPM+w
4RJg==;
dara=google.com
ARC-Authentication-Results: i=1; gmr-mx.google.com;
dkim=pass header.i=@siemens.com header.s=fm1 header.b=b2WS97vD;
spf=pass (google.com: domain of
fm-1330684-202509221704507bab31c55e000207de-pe8dbr@rts-flowmailer.siemens.com
designates 185.136.65.228 as permitted sender)
smtp.mailfrom=fm-1330684-202509221704507bab31c55e000207de-Pe8dbR@rts-flowmailer.siemens.com;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com
Received: from mta-65-228.siemens.flowmailer.net
(mta-65-228.siemens.flowmailer.net. [185.136.65.228])
by gmr-mx.google.com with ESMTPS id
41be03b00d2f7-b54ff356417si479920a12.2.2025.09.22.10.04.52
for <isar-users@googlegroups.com>
(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);
Mon, 22 Sep 2025 10:04:52 -0700 (PDT)
Received-SPF: pass (google.com: domain of
fm-1330684-202509221704507bab31c55e000207de-pe8dbr@rts-flowmailer.siemens.com
designates 185.136.65.228 as permitted sender) client-ip=185.136.65.228;
Received: by mta-65-228.siemens.flowmailer.net with ESMTPSA id
202509221704507bab31c55e000207de
for <isar-users@googlegroups.com>;
Mon, 22 Sep 2025 19:04:50 +0200
From: "alexander.heinisch via isar-users" <isar-users@googlegroups.com>
To: isar-users@googlegroups.com
Cc: Alexander Heinisch <alexander.heinisch@siemens.com>
Subject: [PATCH 0/6] Add target bootstrapper framework
Date: Mon, 22 Sep 2025 19:04:39 +0200
Message-Id: <20250922170445.1393839-1-alexander.heinisch@siemens.com>
MIME-Version: 1.0
X-Flowmailer-Platform: Siemens
Feedback-ID: 519:519-1330684:519-21489:flowmailer
X-Original-Sender: alexander.heinisch@siemens.com
X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass
header.i=@siemens.com header.s=fm1 header.b=b2WS97vD; spf=pass
(google.com: domain of
fm-1330684-202509221704507bab31c55e000207de-pe8dbr@rts-flowmailer.siemens.com
designates 185.136.65.228 as permitted sender)
smtp.mailfrom=fm-1330684-202509221704507bab31c55e000207de-Pe8dbR@rts-flowmailer.siemens.com;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com
X-Original-From: alexander.heinisch@siemens.com
Reply-To: alexander.heinisch@siemens.com
Content-Type: text/plain; charset="UTF-8"
Precedence: list
Mailing-list: list isar-users@googlegroups.com;
contact isar-users+owners@googlegroups.com
List-ID: <isar-users.googlegroups.com>
X-Spam-Checked-In-Group: isar-users@googlegroups.com
X-Google-Group-Id: 914930254986
List-Post: <https://groups.google.com/group/isar-users/post>,
<mailto:isar-users@googlegroups.com>
List-Help: <https://groups.google.com/support/>,
<mailto:isar-users+help@googlegroups.com>
List-Archive: <https://groups.google.com/group/isar-users
List-Subscribe: <https://groups.google.com/group/isar-users/subscribe>,
<mailto:isar-users+subscribe@googlegroups.com>
List-Unsubscribe:
<mailto:googlegroups-manage+914930254986+unsubscribe@googlegroups.com>,
<https://groups.google.com/group/isar-users/subscribe>
X-Spam-Status: No, score=-4.9 required=5.0 tests=DKIMWL_WL_MED,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI,
RCVD_IN_DNSWL_BLOCKED,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,
RCVD_IN_RP_CERTIFIED,RCVD_IN_RP_RNBL,RCVD_IN_RP_SAFE,SPF_PASS
autolearn=unavailable autolearn_force=no version=3.4.2
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on shymkent.ilbers.de
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
|
| Series |
Add target bootstrapper framework
|
expand
|
From: Alexander Heinisch <alexander.heinisch@siemens.com> Currently the installer deploys images embedded to itself. In many situations this is fine, but for some more demanding requirements are in place. e.g.: - enrollment of keys (e.g. Secure Boot), - setup for disk encryption, - collection and reporting of device information (serial number, mac addresses, ...) - resize / repartition of disk during comissioning - generation of a commissioning report While many of these tasks can be done on first-boot doing so during device setup can be beneficial in many cases. e.g. - additional time required for "first-boot" when performing tasks with high effort on site may not be desired - the comissioning environment oftentimes allows for failures during that phase - worst case the device is put aside. On site failures during the wrong bootstrapping phases (secure boot setup, disk encryption) can be severe. This patch extends current installer behaviour to support a flexible framework to define multiple tasks to be executed in sequence during the "target (device) bootstrapping" phase. Note: Current patchset uses installer and target-bootstrapper interchangeably. Imo the name target-bootstrapper fits better to the actual purpose, while installer is already established for some time in isar and changing the naming would probably break some downstream. Although, that could be fixed in a backwards compatible way, I left this exercise open upon agreement. Alexander Heinisch (6): isar-installer: Moved installer related Kconfig to separate file. isar-installer: Added target bootstrapper framework isar-installer: Use target-bootstrapper-service in favour of deploy-image-service isar-installer: Removed deploy-image-service isar-installer: Fixing race between ttys in unattended mode. isar-installer: Added example target bootstrapper task to collect device information. kas/image/Kconfig | 83 ++------------ kas/image/isar-image-installer.yaml | 6 + kas/installer/Kconfig | 104 ++++++++++++++++++ kas/installer/add-device-info-collector.yaml | 14 +++ kas/installer/unattended.yaml | 18 +++ meta-isar/classes/target-bootstrapper.bbclass | 37 +++++++ .../images/isar-image-installer.bb | 2 +- .../deploy-image-service.bb | 21 ---- .../files/install.override.conf | 5 - .../device-info-collector.bb | 27 +++++ .../files/usr/bin/device-info-collector.sh | 28 +++++ .../files/target-bootstrapper.override.conf | 3 + .../target-bootstrapper-service.bb | 38 +++++++ .../files/target-bootstrapper.sh.tmpl | 44 ++++++++ .../target-bootstrapper.bb | 41 +++++++ 15 files changed, 369 insertions(+), 102 deletions(-) create mode 100644 kas/installer/Kconfig create mode 100644 kas/installer/add-device-info-collector.yaml create mode 100644 kas/installer/unattended.yaml create mode 100644 meta-isar/classes/target-bootstrapper.bbclass delete mode 100644 meta-isar/recipes-installer/deploy-image-service/deploy-image-service.bb delete mode 100644 meta-isar/recipes-installer/deploy-image-service/files/install.override.conf create mode 100644 meta-isar/recipes-installer/device-info-collector/device-info-collector.bb create mode 100755 meta-isar/recipes-installer/device-info-collector/files/usr/bin/device-info-collector.sh create mode 100644 meta-isar/recipes-installer/target-bootstrapper-service/files/target-bootstrapper.override.conf create mode 100644 meta-isar/recipes-installer/target-bootstrapper-service/target-bootstrapper-service.bb create mode 100644 meta-isar/recipes-installer/target-bootstrapper/files/target-bootstrapper.sh.tmpl create mode 100644 meta-isar/recipes-installer/target-bootstrapper/target-bootstrapper.bb -- 2.39.5