Signed-off-by: Apertis CI <devel@lists.apertis.org>

Signed-off-by: Apertis CI <devel@lists.apertis.org>

This enables tests for the IoT image, as well as setting up and bringing
down the needed setup steps on our cloud2edge instance.

https://phabricator.apertis.org/T8949



Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>

The rk3399 image recipe introduced a new `sbc` (single-board computer)
variable for selecting the target device.

We now build the rk3399 image recipe for different target `sbc`. In
order to differentiate between the output images, the `sbc` variable (if
defined) needs to be appended to the image name.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

The rk3399 image recipe introduced a new `sbc` (single-board computer)
variable for selecting the target device. This variable needs to be
passed to the debos recipe as a template variable.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Christopher Obbard authored Oct 04, 2022 and Ariel D'Alessandro committed Nov 01, 2022

If building images in a different artifactdir from the recipedir,
for instance:
  $ debos --artifactdir=out image-uboot.yaml

the postprocessing steps which compress the images fail.

Fix the postprocessing step to save the resultant artifacts inside
the artifactdir rather than assuming the current directory is where
the artifacts should be saved.

Signed-off-by: Christopher Obbard <chris.obbard@collabora.com>

Since we have support for this board in Apertis u-boot and kernel package,
build the apt-iot and apt-fixedfunction images for this board: the same
images which we build for the rock-pi-4 board.

Signed-off-by: Christopher Obbard <chris.obbard@collabora.com>

The RPi loader tries to load dtbs and overlays for u-boot from the
firmware partition. Currently, this recipe is only copying the dtb files
from u-boot, not overlays.

The CANOPi board requires the VL805 overlay in order to properly
initialize the USB controller, otherwise it will hang during boot.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

The UP Squared 6000 board fails to bring up audio as it tries to load
the SOF firmware that is signed with the community key.

Starting from Linux v5.16, the following patch is included:

  commit 405e52f412b85b581899f5e1b82d25a7c8959d89 (bad)
  Author: Pierre-Louis Bossart <pierre-louis.bossart@linux.intel.com>

      ASoC: SOF: sof-pci-dev: use community key on all Up boards
  ---
   sound/soc/sof/sof-pci-dev.c | 10 +---------
   1 file changed, 1 insertion(+), 9 deletions(-)

Although the community key is the preferred option to allow developers
to sign their own firmware, the Skylake found in the UP Squared 6000
board only supports firmware signed with the production key.

Fix this by adding the module option (snd-sof-pci.fw_path="intel/sof")
to the kernel cmdline arguments, so the right firmware is picked up.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Commit 717dda2c

 ("image-rpi64: Install rpi64-autoconfig-connman package")
installed the rpi64-autoconfig-connman package on rpi64 recipes.
However, it missed the required overlay so connman enables wifi by
default.

Note that original purpose of this feature is to allow users to
configure the system wifi on a headless system without even a shell.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

The RPi loader tries to load a dtb for u-boot from the firmware
partition. Currently, the apertis-image-recipes recipes for RPi are
copying these dtb files from the kernel.

It makes more sense to copy these dtb blobs from u-boot rather than the
kernel, as the bootloader is the one using them. Moreover, these dtbs
are built supporting overlays, which we might use for the CANOPi
auto-detection support.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Signed-off-by: Apertis CI <devel@lists.apertis.org>

Edmund Smith authored Aug 14, 2022 and Sjoerd Simons committed Aug 31, 2022

In the previous commit we switched from using "submit" and "monitor"
to using "generate" and "run". This moves the template files to fit
that naming pattern too.

Edmund Smith authored Aug 14, 2022 and Sjoerd Simons committed Aug 31, 2022

We're no longer submitting jobs in the submit step, nor are we
monitoring jobs in the monitor step. This is only a separate commit
from the actual technical changes to make the earlier commit easier
to follow. This is just mechanical renaming of:

- submit -> generate
- monitor -> run

The actual files will be renamed in the next commit to make the
diffs cleaner and easier to follow.

Edmund Smith authored Aug 14, 2022 and Sjoerd Simons committed Aug 31, 2022

This matches the changes to the apertis-test-cases repo. Previously we
had a two stage process for Lava tests of:

- generate and submit
- monitor

for each set of test cases. This is a restrictive setup, because it is
impossible to use CI_JOB_TOKEN within the lava jobs themselves
(because the token expires on completion of the submission job, before
the lava job itself may even have started).

The new model is simply:

- generate tests and pipeline
- Run each test in its own job in the generated pipeline

That means we still have pairs of jobs at the top level, one job to
generate the tests, as before, which now also generates a pipeline;
the second job is a trigger job which executes the pipeline, bringing
in the generated tests.

One of the challenges in the BOM generation is to pick the correct license
and copyright information for a source file, due to:
- Copyright reports use wildcards
- Source files are obtain from debug information with not reliable path
  information.

To overcome this issues improve the generation by:
- Evaluate the trickiness of the debug information (unit)
- In case of a high level of trickiness only trust in copyright reports
  without wildcards (full report)

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

In order to provide a more reliable path prefix and have additional
information regarding it, improve its calculation

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

In order to have a clear code do a little rework, by creating more
general functions.

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

This service is failing on the UP Squared 6000 board, causing the sanity
check LAVA test to constantly fail.

This seems to be an issue on the asus-nb-wmi driver not being able to
drive the brightness properly on this device.

As the kbd-backlight is not really a requirement, let's disable this
service temporarily on Apertis.

apertis-issues#163



Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Detlev Casanova authored Aug 12, 2022 and Ariel D'Alessandro committed Aug 16, 2022

This packages is very conveniant for PI 4 users, because they can
enable Wifi without serial console or wired Ethernet connection.

Signed-off-by: Detlev Casanova <detlev.casanova@collabora.com>

The /etc/os-release file is edited in the chroot environment (chroot: true),
but that chroot env cannot be accessed after the "Reset rootfs before
deploying OSTree" step (chroot is failing because /etc/resolv.conf is
missing)

It also makes sense to edit /etc/os-release before running the "OSTree
commit" step to include the correct /etc/os-release in the ostree commit.
So the editing of /etc/os-release ("Customize image version metadata"
step) is moved right before that.

Fixes: apertis-issues#31


Signed-off-by: Detlev Casanova <detlev.casanova@collabora.com>

Amend changes in 598f1b98

 to correct the description and the command to
avoid confusion.

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

After a long investigation it was found that fstrim triggered filesystem
error on different boards (but not others of same model).

It was also found that on v2021 fstrim.timer is not enabled due to a bug
explaining why this issue was not found in that release.

As an initial fix disable fstrimtimer and service.

This fix is only needed in v2022 since the new version of util-linux landed
in `-security` and on the bootstrap process the previous version is installed
and then updated.

apertis-issues#70



Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

This new image type is based on the fixedfunction image and provides the
connector utility from the golang-github-eclipse-kanto-suite-connector
package.

Signed-off-by: Detlev Casanova <detlev.casanova@collabora.com>

This is required to enable audio on the UP Squared 6000 board.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Initramfs script `local-bottom/ostree` is calling the ash built-in
command `cd -`, which tries to print the target directory to stdout. In
the case the console is still unavailable, this command fails exitting
the ostree script early.

The following strace commands were run inside the initramfs ostree
local-bottom script:

```
strace sh -c "cd / ; cd - >> /dev/null"
[...]
chdir("/")                              = 0
openat(AT_FDCWD, "/dev/null", O_WRONLY|O_CREAT|O_APPEND, 0666) = 3
fcntl(1, F_DUPFD_CLOEXEC, 10)           = 10
dup2(3, 1)                              = 1
close(3)                                = 0
wait4(-1, 0x7ffc316043cc, WNOHANG, NULL) = -1 ECHILD (No child processes)
chdir("/")                              = 0
newfstatat(1, "", {st_mode=S_IFCHR|0666, st_rdev=makedev(0x1, 0x3), ...}, AT_EMPTY_PATH) = 0
ioctl(1, TCGETS, 0x7ffc31603a90)        = -1 ENOTTY (Inappropriate ioctl for device)
write(1, "/\n", 2)                      = 2
dup2(10, 1)                             = 1
close(10)                               = 0
getpid()                                = 219
exit_group(0)                           = ?
+++ exited with 0 +++
```

```
strace sh -c "cd / ; cd -"
[...]
chdir("/")                              = 0
wait4(-1, 0x7fff4d5351bc, WNOHANG, NULL) = -1 ECHILD (No child processes)
chdir("/")                              = 0
newfstatat(1, "", {st_mode=S_IFCHR|0600, st_rdev=makedev(0x5, 0x1), ...}, AT_EMPTY_PATH) = 0
ioctl(1, TCGETS, 0x7fff4d534880)        = -1 EIO (Input/output error)
write(1, "/\n", 2)                      = -1 EIO (Input/output error)
getpid()                                = 223
exit_group(1)                           = ?
+++ exited with 1 +++
```

Note that other calls to the ash built-in `cd` command aren't an issue,
as these are not trying to print anything to stdout, so they don't fail.
So let's explicitly set the target directory, instead of calling `cd -`.

Another option it's to redirect `cd -` output to /dev/null as that's not
really useful for logging/debugging anyway.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

Walter Lozano authored Jun 29, 2022 and Andre Moreira Magalhaes committed Jul 07, 2022

The script setup_image_version.sh is used to add additional metadata to
/etc/os-relase which is a file provided by base-files package. Later during
the build additional repositories -updates and -security are enabled and
packages are upgraded, which can cause this file to be overwritten is
a new version of base-files is found.

To avoid the problem of loosing the additional metadata move the call
to the script to the end of the recipe.

It is important to note that a later update of the packages can potentially
also overwrite this file, however, in that case the additional metadata
information will be not longer be valid, so there is no real issue.

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>

Now that, as part of T8881, we've dropped all clutter related packages,
this MR drops the same from the image recipes

Signed-off-by: Ritesh Raj Sarraf <ritesh.sarraf@collabora.com>

This is necessary for resizing to work reliably in VirtualBox.

In addition, this also includes an overlay configuration change to
ensure that our XFCE defaults are also applied to displays following
this driver's slightly different naming scheme.

https://phabricator.apertis.org/T8934



Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>

This is required by the Intel AX210 wifi module on the UP Squared 6000
board.

Signed-off-by: Ariel D'Alessandro <ariel.dalessandro@collabora.com>

The ref-bindings list is used to limit the branches a commit can come
from. The following MR:

tests/apertis-test-cases!446

changed the AUM tests to upgrade to v2023devX from v2022 instead of
v2022pre, but v2022 isn't in the ref-bindings, so upgrades were failing.

https://phabricator.apertis.org/T8979



Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>

Emanuele Aina authored Apr 04, 2022 and Andrej Shadura committed Jun 24, 2022

Ensure that we set the right expectations about the pain that importing
these recipes directly for downstream project may cause.

Signed-off-by: Emanuele Aina <emanuele.aina@collabora.com>

Emanuele Aina authored May 16, 2022 and Andrej Shadura committed Jun 24, 2022

Remove the seed as recommended by https://systemd.io/BUILDING_IMAGES/



Signed-off-by: Emanuele Aina <emanuele.aina@collabora.com>

Parse copyrights to ensure each item contains only one copyright
and not a string of several copyrights

Signed-off-by: Dylan Aïssi <dylan.aissi@collabora.com>

Signed-off-by: Apertis CI <devel@lists.apertis.org>

It's entirely possible for the primary report path to be None if it
wasn't found, in which case we shouldn't try loading it.

https://phabricator.apertis.org/T8554



Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>

There are two primary issues when applying the current mechanisms for
tracking source file licensing information to Rust binaries:

- They statically link in their crate dependencies, meaning that we
  need to manually include the licenses of those crates
- The compilation unit paths only include the primary "entry point"
  into the crate, and they're a mix of absolute and relative paths

In order to resolve this:

- pkg/debhelper!18 will
  gather the license information for any source files referenced that
  are part of other packages. We can read this in here and use it to
  search the copyright information for the source files part of other
  crates.
- Specifically when encountering Rust crates, combine all the licenses
  for source files within the same source directory as the "entry point"
  file, which should generally ensure that all the source files needed
  are handled.

As the amount of information that needs to be held per package has
increased drastically, a new PackageLicenseInfo class was introduced,
encapsulating the primary copyright, external copyrights, external
sources index, and the bin2sources data.

https://phabricator.apertis.org/T8554

This should also, specifically for Rust, resolve the spin-off issues:

https://phabricator.apertis.org/T8776
https://phabricator.apertis.org/T8777



Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>

During BOM file generation, a folder with a sub folder per package is
scanned to process the copyright information. With this folder
structure in mind, there is no need to make a recursive scan,
so simplify the implementation to avoid misleading warnings.

Signed-off-by: Walter Lozano <walter.lozano@collabora.com>