Age | Commit message (Collapse) | Author | Files | Lines |
|
Google authenticator PAM module enables two-factor authentication for
logging in to servers. It provides both HMAC-based and Time-based OTPs
as the second factor on top of usual password authentication.
This commit adds a new distro feature for google authenticator and can
be enabled or disabled for any machine based on the requirement.
Tested By:
* Built openbmc for p10bmc
* Verified that the google-authenticator was pulled and the binary is
installed
Change-Id: I586715a924eddd90c9cb6f967db35824767330ca
Signed-off-by: Asmitha Karunanithi <asmitk01@in.ibm.com>
|
|
The huygens machine is based on the new pstbmc machine family from IBM.
It will be our first redundant BMC system [1]. This new system expects
to have chrony daemon to run along with the existing systemd-
timesyncd deamon.
The purpose of installing chrony in rootfs is to run chrony only in
time server mode so that it can allow other BMC to obtain time
from it.
This commit adds an override to the chrony configuration and allows
us to run both the daemons as per our use case.
[1]: https://gerrit.openbmc.org/c/openbmc/docs/+/70233
Tested: Both the daemons run parallely without any conflict.
Change-Id: I9de73ab135977847121daabefaf81265000e371e
Signed-off-by: Pavithra Barithaya <pavithrabarithaya07@gmail.com>
|
|
IBM 1s4u systems required a separate device tree with a few
modifications on top of the standard rainier system.
Change-Id: I50a713448b03238995057d40a3dda844661ed336
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
The huygens machine is based on the new pstbmc machine family from IBM.
It will be our first redundant BMC system [1].
The initial focus on this machine will be the redundant BMC feature.
The simulation model we use will just be 2 BMCs initially. Due to this
focus and simulation model, this commit strips out all of the host
firmware and host processor related features.
Tested:
- Confirmed in our 2 BMC simulation model that both BMCs come to Ready
and only the expected vpd services have failed
- Confirmed network into the BMCs worked as expected
[1]: https://gerrit.openbmc.org/c/openbmc/docs/+/70233
Change-Id: Ieb42337980c0ec39d16c492c77810473d5105aa0
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
The pstbmc machine (the acronym meaning is still confidential) will be
IBMs next generation server line.
For now, just have it based on p10bmc.
Change-Id: If980484b3acc44455f558661247886a15955c6bb
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
This machine is no longer in use
Change-Id: Icad284c92fa1cf9c5fc5f0afacb58e287a9557e2
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
We are pursuing a different design point and no longer have use for this
machine.
Change-Id: I68f9333ebdb9f3a88efa784eaef2226d9d59478b
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
bitbake uses double-quotes for strings. Switch the stray single-quoted
string to use double-quote.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Icbc9295ce2468ed7646ab0039b9bc5480a43e6fa
|
|
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I28ee50fa55ae47dd7fd8c99f8f6db8f5f6dfa53d
|
|
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I85272779478b66452acd11be93f5fea99e4c3a34
|
|
The latest yocto has moved us close to our flash size limit so remove
some more image features, fru-ipmi and remote-logging-mgmt
Witherspoon HW CI continues to provide some useful regression testing
so we want to continue as long as possible.
Change-Id: I6093483e00844ba65c1836958f76c9a9ea98a13f
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
The 'mctp' distro feature (and df-mctp override flag) is now
enabled as a side-effect of openpower-hostfw-over-pldm.inc.
Remove the explicit feature flag enablement to clean up.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ia34e1d045d048e5953d0e991fe070ab0aaad37ba
|
|
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: If72ad1be6df2e1782128ce1aeba8d025c42e9454
|
|
This moves the OpenBMC kernel to a v6.5 base for ASPEED.
The 6.5 kernel moved all 32-bit ARM device trees, so our BMC device
tress are now under an 'aspeed' subdirectory. This change means systems
must describe the KERNEL_DEVICETREE with the aspeed directory prefix.
There are 78 patches in the tree, with 40 of those patches not
yet queued for merging in v6.6.
The remaining out of tree patches include:
Andrew Jeffery (6):
dt-bindings: hwmon: pmbus: Add Maxim MAX31785 documentation
pmbus (max31785): Add support for devicetree configuration
pmbus (core): One-shot retries for failure to set page
pmbus (max31785): Wrap all I2C accessors in one-shot failure handlers
ARM: dts: aspeed: witherspoon: Update max31785 node
ipmi: kcs_bmc: Add a "raw" character device interface
Cédric Le Goater (1):
/dev/mem: add a devmem kernel parameter to activate the device
Eddie James (16):
ARM: dts: aspeed: bonnell: Add reserved memory for TPM event log
dt-bindings: soc: Add Aspeed XDMA Engine
soc: aspeed: Add XDMA Engine Driver
soc: aspeed: xdma: Add user interface
soc: aspeed: xdma: Add reset ioctl
soc: aspeed: xdma: Add trace events
i2c: core: Add mux root adapter operations
iio: si7020: Lock root adapter to wait for reset
eeprom: ee1004: Enable devices on multiple busses
dt-bindings: trivial-devices: Add Atmel AT30TSE004A serial eeprom
eeprom: ee1004: Add OF matching support
leds: pca955x: Refactor with helper functions and renaming
leds: pca955x: Use pointers to driver data rather than I2C client
leds: pca955x: Optimize probe led selection
leds: pca955x: Add HW blink support
leds: Ensure hardware blinking turns off when requested
Jae Hyun Yoo (1):
clk: ast2600: enable BCLK for PCI/PCIe bus always
Joel Stanley (14):
net: ftgmac100: Ensure tx descriptor updates are visible
ARM: aspeed: Add debugfs directory
ARM: soc: aspeed: Add secure boot controller support
dt-bindings: trivial-devices: Remove Infineon SLB9673 TPM
ARM: dts: nuvoton: npmc750-evb: Add default console
tpm: tis-i2c: Add more compatible strings
leds: pca955x: Revert "Remove the unused function pca95xx_num_led_regs()"
arm64: configs: Add Nuvoton NPCM defconfig
ARM: configs: aspeed: Add new FSI drivers
ARM: config: aspeed_g5: Enable SSIF BMC driver
ARM: config: aspeed: Remove FIRMWARE_MEMMAP
ARM: config: aspeed: Add Ampere SMPro drivers
ARM: config: Add openbmc defconfig
ARM: config: openbmc: Add HPE GPX and Nuvoton 7xx
Johannes Holland (1):
dt-bindings: tpm: Add schema for TIS I2C devices
Potin Lai (1):
mtd: spi-nor: winbond: Add support for w25q01jvq
Change-Id: Ib97af192391af6e71c96fe14e12cfc88c23d7a7d
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
There is a desire to add non-openpower systems to the meta-ibm layer. To
do that, need to ensure the bbappend files that are appending to
openpower recipes are only included if the machine being built includes
the meta-openpower layer.
Tested:
- Confirmed a system not including meta-openpower builds ok with this
- Confirmed p10bmc still uses the bbappend files
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I32a08e9f20a20152d51c77cdfca6bbc15b5e93d4
|
|
The first dtb listed in the KERNEL_DEVICETREE list is the default used
for the BMC's genesis boot. The Bonnell device tree specifies an eeprom
that's larger in size than other p10bmc systems. Therefore the device
driver currently truncates the data on this eeprom when doing a genesis
boot on Bonnell since the default device tree is for Rainier.
Move Bonnell to the top of the list to be the default since it has the
larger eeprom size.
Tested: Booted Rainier and Everest on simulation to test a genesis BMC
boot. Verified they first booted with the Bonnell's device tree, then
the BMC automatically rebooted after the machine type was identified and
the device tree corresponding to the system was loaded.
Change-Id: Icb9abe7d8b04d42befd9eb906d095f4fa046ab3c
Signed-off-by: Adriana Kobylak <anoo@us.ibm.com>
|
|
The switch enables AF_MCTP and adds the `mctp` tool and `mctpd` so we
can setup and manage an in-kernel MCTP network.
Enable it for p10bmc and also add CONFIG_TUN so we can use a tun device
to transport packets between the kernel and the astlpc interface
implemented in libmctp.
Change-Id: I21d0af9e751f91975c760b4b4708b3b401b95417
Signed-off-by: Rashmica Gupta <rashmica@linux.ibm.com>
|
|
This new machine will be based on the p10bmc machine. It will be
utilized to prototype and develop next generation distributed OpenBMC
technology.
Change-Id: Id9cef6fae52867a8eabf9e38a210c26dfa04ed25
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Similar to previous generation of the POWER processor, introduce a
p10.inc that can be included on P10 systems.
Without this, the needed op-proc-control services and functions are not
brought in.
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I58490e95e69ef8b4b31b0f4bc9213787058f0bba
|
|
Witherspoon uses UBI instead of static partitioning for flash
management, so make sure the qemu helper script can find the flash
image.
Tested: Reached a login prompt with `runqemu nographic slirp`.
Change-Id: I513d0a5b878c553456d70bef25adedfa25bf9c90
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
|
|
The witherspoon-tacoma server has the larger flash and will be utilized
for some OpenBMC prototype work. Add in some useful debug tools.
Change-Id: Ie3276088b1137a838a72e22a68a2c9fcf9bacb82
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Tested:
- Confirmed tools are in p10bmc flash image
Change-Id: I808f38f410eaaad3077bb7eeaf36a166faf5beb4
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Explicitly set FLASH_SIZE to prevent SPI-flash related configurations
being pulled into the build. Specifically this prevents the default
value provided by meta-phosphor triggering the uboot-flash-32768
override. The override pulls the u-boot_flash_32M.cfg configuration into
the build, breaking the environment handling for p10bmc machines which
exclusively use eMMC.
Change-Id: Ice0e2be27d5bd7ca207dcaf91ea311137fc55439
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
|
|
A recent refactoring requires the mmc include be first to ensure we
build an mmc based image
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I7d4112dc5b39f0f21cc1dbc61e88b12ae3418215
|
|
We have reached branch-capacity in the bb.utils.contains checks
at 3 image types. In order to be able to more easily add additional
image types, split the differences out into additional inc-snippets
for each image type.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ibcdb5c885c67cb6d8728dfd315eb07f99b1a2173
|
|
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I8e54833ac78e540e9dd5011533d53ff9a3af6763
|
|
The org.freedesktop interfaces have the same "use everywhere" status
as xyz.openbmc_project, since they are not specific to any company
or architecture. Enable them in meta-phosphor.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I3261a6777b2c9003f5476061e4df30811321f73d
|
|
Since the p10 machine relies on the org/freedesktop, but it is disabled
by default, resulting in failure to build the bmc image.
This commit needs to modify OBMC_ORG_YAML_SUBDIRS and enable
org/freedesktop by default.
Tested: built p10bmc image successfully.
Signed-off-by: George Liu <liuxiwei@inspur.com>
Change-Id: Ife87f359bf5a0f8c682ccb56ddbdeec84b12ca3a
|
|
Qemu boots kernel+dtb directly, and mounts wic image (full filesystem)
as an emulated mmc device.
We add zImage as a KERNEL_IMAGETYPES (plural is important) so it is
copied to the deploy directory.
Currently there is only a wic.xz which cannot be booted directly. We add
wic.qcow2 so the wic image is exported as a usable image for Qemu. This
is a sparse image so empty space does not take up disk.
TODO:
1. qemu requires the image size to be a power of two. Current
workaround:
qemu-img resize p10bmc/tmp/deploy/images/p10bmc/*.wic.qcow2 16G
2. Boot via u-boot. Requires qemu mmc patches from Cédric's tree, and
creating an image with the boot0/boot1 partitions in it.
Change-Id: Ic64023b2d7f9bce80a025a1d847228e90e0b72bd
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
A fork of it is maintained but its upstream layer has largely been
unmaintained.
No future products are planned to be based on this layer.
Mihawk is similar to Witherspoon.
Signed-off-by: Myung Bae <myungbae@us.ibm.com>
Change-Id: I82f7d777b78cd126237d51e42f1e11abdf80ae68
|
|
Witherspoon has a Qemu model called witherspoon-bmc.
Change-Id: I086b350182c0deb990b93d88461162181c29e815
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I65febeeec11e6e5b40ee728f42cfbe77023dae1e
|
|
Bonnell is a new IBM system which will be supported within the p10bmc
image. Load its device tree into the p10bmc image.
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: Idad1aed9aebafcca847a1c2a7749bb29f432601f
|
|
We also need to move the conf-notes.txt files.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ic44e015c0216b526de4fec277ad42f162bca1f33
|
|
The latest poky commit is requiring us to have all of
our template configs in a subdirectory instead of directly in
the `conf` directory. Without this we end up with errors during
setup like:
```
Error: TEMPLATECONF value (which is .../openbmc/meta-facebook/meta-bletchley/conf) must point to meta-some-layer/conf/templates/template-name
```
Fix this by moving all of our template files into the 'default'
template subdirectory (following the pattern of poky) and modifying
`setup` as necessary to follow.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Iecefde73d55acbb6bc63ae3d68c4311adaf327ae
|
|
Joel Stanley (2):
ARM: dts: Rename Rainier to P10 BMC
ARM: dts: ast2600: Fix indentation
Change-Id: I732324d89b7c0f731160d69942051e4d4cadc778
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
This configures the distro name printed at system boot to indicate that
p10bmc is a combination of OpenBMC and custom components.
Change-Id: I130ce058244bd989a36855000cb4412215a74015
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
This was added with cde0f094f for libseccomp, but shortly after that
upstream moved libseccomp from meta-security to core (241c7d2e6). As
such, meta-security is no longer used or required.
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
Change-Id: I371e54b11f6336720dfc6edf0ef733d22b7fb4f2
|
|
Per [1][2], Yocto is starting to deprecate ABORT and has replaced
the "ABORT" action in BB_DISKMON_DIRS entries with "HALT".
1. https://wiki.yoctoproject.org/wiki/Inclusive_language
2. https://git.yoctoproject.org/poky/commit/?id=4f77505d94a8f6260933f457e9848d1d2fa98ce5
Tested:
Built obmc-phosphor-image successfully and eliminate the following
warnings:
```
WARNING: The BB_DISKMON_DIRS "ABORT" action has been renamed to
"HALT", update configuration
```
Signed-off-by: George Liu <liuxiwei@inspur.com>
Change-Id: If57d0ded9fac41e23b31b01e2a0e309ac7388148
|
|
* Deprecate N-1 release (hardknott).
* Enable N+1 release (kirkstone).
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I39e027e02dab64b4390b46ffbd9c299c858f403e
|
|
Providing `opkg` in the image allows us to easily install packages
after-the-fact, usually to debug systems in the lab.
This is not a mechanism for providing firmware updates.
No specific configuration is supplied to enable its use, and hosting of
package archives is left as an exercise to the user. That said, bitbake
generates its own package archive in the course of creating the output
image. It also provides a `package-index` target, which after execution,
allows you to expose the archive with no more work than:
```
$ python3 -m http.server --directory tmp/deploy/ipk 8080`
```
The addition of opkg with the chosen options increases the uncompressed
filesystem size by 3855360 bytes (~3.68MiB).
Change-Id: I7731a4ebe08249e2216e8ca1984f8e8d87558687
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
|
|
Don't support the hardware root-of-trust on Tacoma boards.
Change-Id: I144d3bf445063f6341ae1958611873f79c9c00c7
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
|
|
Per [1], Yocto is going to start requiring both branch names and
`protocol=https` in GitHub SRC_URI variables. Ran the upstream tool to
automatically fix our URIs.
1. https://git.yoctoproject.org/poky/tree/documentation/migration-guides/migration-3.5.rst#n10
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I5f9619f7ff707050b469ae74c8aa16846568c5e4
|
|
This enables the TPM driver in the kernel configuration.
Signed-off-by: Joel Stanley <joel@jms.id.au>
Change-Id: I0278543d753c7526d14eb971ac678ff364719d49
|
|
This sets u-boot to the package containing the v2016.07-aspeed-openbmc
branch. This ensures there will be no change if the default changes in
the future.
Change-Id: Iea12e1691dbdda34a3f95d6d0862add0b15bcf37
Signed-off-by: Joel Stanley <joel@jms.id.au>
|
|
Witherspoon is running tight on space, and as our primary hardware CI
machine, we need to keep it going.
The GUI has already been pulled out so the KVM package doesn't make much
sense anyway.
Tested:
- Reduced image size by ~200KB
- Will rely on CI to regression test
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
Change-Id: I3e55702da764e4e1ca1673e158c7acf4f74c9bda
|
|
`BBLAYERS_NON_REMOVABLE` is obsolete and no longer required.
As it said by Yocto documentation it can be used by `Hob`
https://www.yoctoproject.org/docs/1.5.2/ref-manual/ref-manual.html#var-BBLAYERS_NON_REMOVABLE
that already removed since Yocto-2.1
https://www.yoctoproject.org/tools-resources/projects/hob
Change-Id: Ibc2d8268a9d837a81e9cf6b0131dba8d0a030a3f
Signed-off-by: Alexander Filippov <a.filippov@yadro.com>
|
|
Modify the machine meta-layer configs to remove the use of the
OBMC_MACHINE_FEATURES indirection and favor the Yocto MACHINE_FEATURES
variable instead.
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ifafb79e4e4c010e9476b9547cd4982f5b645060e
|
|
openpower-pnor-code-mgmt: srcrev bump 9c2ef681e3..6fc7fcd6b1
Adriana Kobylak (2):
Add a new pldm feature option
Add support for the host PLDM transport that takes place of hiomap
(mboxd). Add this new feature to p10bmc.
Tested: Verified that tacoma (that doesn't support pldm) and p10bmc
(supports pldm) reached runtime.
Change-Id: I31e8beba5ff8a413b7b7fa7476f5f2403d3781dd
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Adriana Kobylak <anoo@us.ibm.com>
|
|
bitbake offers a choice of DEB, RPM or IPK packaging. To a degree the
choice is functionally arbitrary for image generation but control over
the package format becomes important if we want to:
1. Include runtime package management functionality in the firmware image
2. Mess about with the packages on the build system
With respect to 1 the IPK format and opkg (an ipk package manager) are
designed for embedded systems[1] - by contrast to RPMs have heavier
dependencies and a greater impact on the size and complexity of the
firmware image.
Regarding 2, the embedded nature and the need for opkg to work without
much fuss leads to a lower configuration barrier by comparison to RPMs.
With ipk it becomes possible to reuse the packages built during image
preparation for core analysis without needing to generate an SDK:
```
$ export LD_LIBRARY_PATH=./tmp/work/x86_64-linux/opkg-native/*/recipe-sysroot-native/usr/lib
$ MY_DEBUG_ROOT=tmp/rootfs-debug
$ ./tmp/sysroots-components/x86_64/opkg-native/usr/bin/opkg \
-f ./tmp/work/p10bmc-openbmc-linux-gnueabi/obmc-phosphor-image/*/opkg.conf \
-o $MY_DEBUG_ROOT \
update
$ fakeroot ./tmp/sysroots-components/x86_64/opkg-native/usr/bin/opkg \
-f ./tmp/work/p10bmc-openbmc-linux-gnueabi/obmc-phosphor-image/1.0-r0/opkg.conf \
-o $MY_DEBUG_ROOT \
install dbus-sensors dbus-sensors-dbg
$ gdb-multiarch
(gdb) set solib-absolute-prefix .../tmp/rootfs-debug
(gdb) add-auto-load-safe-path .../tmp/rootfs-debug
(gdb) file tmp/rootfs-debug/usr/bin/nvmesensor
(gdb) core-file obmcdump_17_9597/core.nvmesensor.0.aae91b519d0e4e0e8bbe746e3f6cd25f.2779.9594000000
Core was generated by `/usr/bin/nvmesensor'.
Program terminated with signal SIGABRT, Aborted.
pthread_kill.c:45
45 pthread_kill.c: No such file or directory.
(gdb) bt
pthread_kill.c:45
../sysdeps/posix/raise.c:26
/home/andrew/src/openbmc/openbmc/build/p10bmc/tmp/rootfs-debug/usr/lib/libstdc++.so.6
/home/andrew/src/openbmc/openbmc/build/p10bmc/tmp/rootfs-debug/usr/lib/libstdc++.so.6
/home/andrew/src/openbmc/openbmc/build/p10bmc/tmp/rootfs-debug/usr/lib/libstdc++.so.6
/home/andrew/src/openbmc/openbmc/build/p10bmc/tmp/rootfs-debug/usr/lib/libstdc++.so.6
"xyz.openbmc_project.NVMeSensor", this=0x488f04) at
/usr/include/sdbusplus/bus.hpp:234
../../../../../../workspace/sources/dbus-sensors/src/NVMeSensorMain.cpp:159
(gdb)
```
This approach documented in the Poky Reference Manual:
https://www.yoctoproject.org/docs/1.0/poky-ref-manual/poky-ref-manual.html#platdev-gdb-remotedebug-launch-gdb-inferiorbins
Switch all machines to IPK to align the debugging experience with
upstream's documentation and to facilitate efficient use of packaged
software at runtime.
[1] https://openwrt.org/docs/guide-user/additional-software/opkg
Change-Id: I8ef526add2d7a6790de1b3eb3fb85cd39b864f23
Signed-off-by: Andrew Jeffery <andrew@aj.id.au>
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
|