-
Notifications
You must be signed in to change notification settings - Fork 31
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
(From yocto-docs rev: c78e03e8b02cc475ea8ca819917861610d7d8ee5) Signed-off-by: Richard Purdie <[email protected]>
- Loading branch information
Showing
3 changed files
with
110 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,56 @@ | ||
| .. SPDX-License-Identifier: CC-BY-SA-2.0-UK | ||
| ******************* | ||
| Reproducible Builds | ||
| ******************* | ||
|
|
||
| ================ | ||
| How we define it | ||
| ================ | ||
|
|
||
| The Yocto Project defines reproducibility as being where a given input build configuration will give the same binary output regardless of when it is built (now or in 5 years time), regardless of the path on the filesystem the build is run in and regardless of the distro and tools on the underlying host system the build is running on. | ||
|
|
||
| ============== | ||
| Why it matters | ||
| ============== | ||
|
|
||
| The project aligns with the Reproducibile Builds project (https://reproducible-builds.org/) and they have information about why it matters. In addition to being able to validate for security issues being introduced which they talk about at length, from a Yocto Project perspective, it is hugely important that our builds are deterministic. We expect that when you build a given input set of metadata, you get consistent output. This has always been a key focus but is now true down to the binary level including timestamps. | ||
|
|
||
| For example, if you find at some point in the future life of a product that you need to rebuild to add a security fix, only the components that have changed should change at the binary level leading to much easier and clearer bounds on where validation is needed. | ||
|
|
||
| This also gives an additional benefit to the project builds themselves, our hash equivalence for sstate object reuse works much more effecitvely when the binary outputis unchanging. | ||
|
|
||
| =================== | ||
| How we implement it | ||
| =================== | ||
|
|
||
| We add mappings to the compiler options to ensure debug filepaths are mapped to consistent target compatible paths | ||
|
|
||
| We are explict about recipe dependencies and their configuration (no floating configure options or host dependencies creeping in) | ||
|
|
||
| We have recipe specific sysroots to isolate recipes so they only see their dependencies. | ||
|
|
||
| We filter the tools availble from the host's PATH through HOSTTOOLS. | ||
|
|
||
| ========================================= | ||
| Can we prove the project is reproducible? | ||
| ========================================= | ||
|
|
||
| Yes, we can prove it and we now regularlly test this on the autobuilder. At the time of writing, OE-Core is 100% reproducible for all it's recipes (i.e. world builds) apart from go-lang and ruby's docs package. go-lang has some fundamental problems with reproducibility as it currently always depends upon the paths it is build in unfortunately. | ||
|
|
||
| [Info about what we run] | ||
|
|
||
| [Add info about diffoscope] | ||
|
|
||
| You can see the current status at: https://www.yoctoproject.org/reproducible-build-results/ | ||
|
|
||
| ==================== | ||
| Can I test my layer? | ||
| ==================== | ||
|
|
||
| [Yes, add instructions] | ||
|
|
||
|
|
||
|
|
||
|
|
||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,52 @@ | ||
| .. SPDX-License-Identifier: CC-BY-SA-2.0-UK | ||
| ************************ | ||
| Yocto Project Compatible | ||
| ************************ | ||
|
|
||
| ============ | ||
| Introduction | ||
| ============ | ||
|
|
||
| After the introduction of layers to OpenEmbedded, it quickly became clear that some layers were popular and worked well, others developed a reputation for being 'problematic'. Those were layers which didn't inter-operate well with other layers and tended to assume they controlled all the aspects of the end resulting output. This isn't usually intentional but because they're often developed by developers with a particular focus (e.g. a company's BSP) whilst the end users have a different focus (e.g. integrating that BSP into a product). | ||
|
|
||
| As a result of noticing patterns like this and friction between layers, the project developed the "Yocto Project Compatible" badge programme where layers modelling the best known practises could be marked as being widely compatible with other layers. This takes the form of a set of yes/no binary answer questions where layers can declare if they have met the appropriate criteria. In the second version of the programme, a script was added to make validation easier and clearer, the script is called 'yocto-check-layer' and is available in OpenEmbedded-Core. | ||
|
|
||
| ======== | ||
| Benefits | ||
| ======== | ||
|
|
||
| The OpenEmbedded Layer model is powerful and flexible, it gives users the ultimate power to change pretty much any aspect of the system but as with most things, power comes with responsibility. The Yocto Project would like to see people able to mix and match BSPs with distro configs or software stacks and be able to merge these together such that the result inter-operates well together. Over time, the project has realised that there were things that work well in layers to allow them to operate together. There were also 'anti-patterns' which stopped layers working well together. | ||
|
|
||
| The intent of the compatibility programme is simple, if the layer passes the compatibility tests, it is considered “well behaved” and should operate and cooperate well with other compatible layers. | ||
|
|
||
| The benefits of compatibility apply from multiple different user and member perspectives. From a hardware perspective (a BSP layer), compatibility means the hardware can be used in many different products and use cases without impacting the software stacks being run with it. For a company developing a product, compatibility gives you a specification/standard you can require in a contract and then know it will have certain desired characteristics for interoperability. It also puts constraints on how invasive these code bases are into the rest of the system, meaning that multiple different separate hardware support layers can coexist (e.g. for multiple product lines from different manufacturers). This can also influence how easily those system components might be upgraded or maintained for security purposes by one or more parties during the lifecycle of a product through development and widespread use. | ||
|
|
||
| ================== | ||
| Validating a layer | ||
| ================== | ||
|
|
||
| The badges are available to members of the project or open source projects run on a non-commercial basis and are tried to the project member level as a member benefit but anyone can answer the questions and run the script. | ||
|
|
||
| The project encourages all layer maintainers to consider the questions and the output from the script against their layer as there are often unintentional consequences of the way some layers are constructed and the questions and script are designed to highlight commonly known issues which can often easily be solved leading to easier and wider layer use. | ||
|
|
||
| It is intended that over time, the tests will evolve as best known practices are identified and as new interoperability issues are identified which unnecessarily restrict layer interoperability. If anyone becomes aware of either issue, please do mention it to the project (in our tech calls, on the mailing list or to the TSC). The TSC is holds overall responsibility for the technical criteria used by the programme. | ||
|
|
||
| Layers are divided into three types: | ||
|
|
||
| * "BSP" or "hardware support" layers contain support for particular pieces of hardware. This would include kernel and boot loader configuration, any recipes needed for firmware/modules needed for the hardware. They would usually correspond to a MACHINE setting. | ||
|
|
||
| * "distro" layers defined as layers providing configuration options and settings such as a choice of init system, compiler/optimisation options or configuration and choices of software components. This would usually correspond to a DSITRO setting. | ||
|
|
||
| * "software" layers are usually recipes. A layer might target a particular graphical UI or software stack component. | ||
|
|
||
| Key best practises the programme tries to encourage: | ||
|
|
||
| * A layer should clearly show who maintains it, where change submissions and bug reports should be sent | ||
| * Where multiple types of functionality are present, the layer be internally subdivided into layers to separate these components as users would likely want to use only one of them and separability is a key best practise. | ||
| * Adding a layer to a build should not change that build without the user taking some additional step of configuration to active the layer (such as selecting a MACHINE, a DISTRO or a DISTRO_FEATURE) | ||
|
|
||
| The project does test the compatibility status of the core project layers on the project autobuilder. | ||
|
|
||
| The official form to submit compatibility requests with is at https://www.yoctoproject.org/ecosystem/branding/compatible-registration/. Successful applicants can display the appropraiate badge which would be provided to them on success of the application. | ||
|
|