Building and maintaining and embedded product nearly always requires taking care of security metrics. In this talk Marta is going to show how to use YP cve-check in practice. The talk will include, the legacy text and JSON format, checking an image or all recipes, managing the database update interval, using additional tools in addition to cve-check. It will also cover a workflow to fix a security issue or update the security database record.
Multiarchitecture SoCs are more widely used, usually containing a large architecture where it can run a full operating system such as Linux, and one or more small architectures designed to run an RTOS or a baremetal application,requiring less hardware resources,leveraging suitable tasks from one to another creating a more efficient product.
While the OpenEmbedded is well known for its capabilities on creating customized Embedded Linux Distributions,bitbake is also capable of building a toolchain to create Baremetal applications or an RTOS.
In this presentation Alejandro will show how to create baremetal applications using the same flow currently used in OpenEmbedded to develop Linux applications, using recipes, classes and user configuration files, he will show how users from the community can benefit from a single flow, showcasing how to run these applications on QEMU and create tests for them to be automatically tested using the OpenEmbedded infrastructure along with their corresponding Linux distributions. Anyone from the community interested in learning about baremetal programming or about the Yocto Project and OpenEmbedded might find the contents of this presentation interesting.
The meta-zephyr Yocto layer has had a recent resurgence and we are using it at Arm to support reference stacks for automotive use cases. Find out what’s new, how we are using meta-zephyr at Arm and how to start integrating Zephyr into your stack.
When configuring an FPGA using a processor, the bootloader has to be extended with an additional command set, and you have to add dedicated applications to configure the FPGA in Linux.
Connecting the configuration interface to an ordinary SPI bus using an Memory Technology Device (MTD) driver with the FPGA installed as a "Write-Only Memory" allows the FPGA to be configured using standard tools.
Three years have passed since the previous talk on PKCS#11-based code signing (OE Workshop 2020) and this approach has be used successfully for several projects. Also, there's been interest from the community and from customers to have this properly upstream in oe-core.
In this session, Jan will first explain the infrastructure (signing.bbclass) and the recipe-level integration submitted for inclusion and then show some examples on how to use the class with custom recipes and keys.
“testing is hard and complex” they say!?
Maintaining a comprehensive description of the Software Supply Chain has become increasingly important in software development today. As the industry has started to form around standardized mechanisms for reporting the Software Supply Chain via a Software Bill of Materials, OpenEmbedded has a unique position to be able to describe complex supply chains owing to the rich, complex, and comprehensive metadata it uses to build software.
There are many approaches used to manage a collection of layers for OpenEmbedded projects. One of the more popular, yet polarizing methods uses the submodules feature of git. This talk will attempt to demystify the process and show you how to manage layers without any custom tooling.