jmg
/
fbsdembdev
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Information and documentation on building an embedded board test lab.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
24 Commits
1 Branch
120 KiB
 
 
 
 
Tree: 86cd092139
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '86cd092139'
${ noResults }
fbsdembdev/lab.doc.md.html

199 lines
9.2 KiB
Raw Blame History 

  1. <meta charset="utf-8">

  2. <meta http-equiv="refresh" content="2">

  3. 

  4. **Embedded Board Dev Lab**

  5. 

  6. Overview

  7. ========

  8. 

  9. This is the description of how the lab is architected and setup.  There

  10. are a few design decisions that are likely to be different in other

  11. environments, but hopefully the overall architecture will be similar.

  12. The differences should be laid the documentation for their instances.

  13. 

  14. Goal

  15. ----

  16. 

  17. The goal of this setup is to allow users to be able to install and test

  18. FreeBSD patches and images on boards that they do not have locally.

  19. 

  20. Definitions

  21. -----------

  22. 

  23. - Board - The system that is available for testing.  This can be an SBC,

  24.   another computer, or any other system that needs to be tested.

  25. - Board class - A set of boards of similar type.

  26. - Board Handle - An identifier for a specific board instance.  It will be

  27.   consistent until the lab is reconfigured.  It can be used to help debug

  28.   issues that affect a specific board, or reserve a specific board that

  29.   has special hardware, such as an SDWire attached to it.

  30. - Controller - The machine that controls and grants access to the boards.

  31. - Jail - A jail on the controller that the User is able to log into.  It

  32.   has access to the board, such as serial and ethernet.  It will also be

  33.   able to power cycle the board.

  34. - User - A person or entity that is able to reserve a board, and use it.

  35. 

  36. Features

  37. --------

  38. 

  39. - Remote power control

  40. - serial console access

  41. - Network boot

  42. - Internet connectivity for boards w/ ethernet

  43. - Isolation between board environments

  44.   Likely implemented via VLANs+jails w/ VNET to provide complete control

  45. - Long term goals:

  46.   - Emulated microSD cards

  47. 

  48. Physical Architecture

  49. ---------------------

  50. 

  51. The following diagrams the connections between the components.  There will

  52. be many different instances of the board.

  53. 

  54. The switch will have a unique VLAN assigned to each board.  The controller

  55. will receive the VLANs tag to deliver them to the correct jail.  This

  56. allows a jail on the host machine to have a direct control over the

  57. broadcast domain for the device.  It will allow running dhcp/bootp/tftp

  58. services for netbooting.  As fusefs is jail friendly, the root FS could

  59. even be mounted via sshfs and exported to the board via NFS.

  60. 

  61. The PoE part of the switch will be used for power control.  PoE splitters

  62. (~$10) are readily available and inexpensive, and the cost per port is

  63. realatively inexpensive.  The switch will be able to provide granular power

  64. consumption on a per board basis.

  65. 

  66. Some instances of the board will use an

  67. [SDWire](https://wiki.tizen.org/SDWire).  The SD reader will be accessible

  68. in the jail, and a mechanism will be provided to switch the microSD card

  69. between the jail and the board.  This will allow easier testing of images.

  70. 

  71. ************************************************************************

  72. *                                                                      *

  73. * +------------+                                   +-----------------+ *

  74. * | Controller +-------------------------+         |    Internet     | *

  75. * +-+----------+                         |         +-+---------------+ *

  76. *   |                                    |           |                 *

  77. *   |                                    |           |                 *

  78. *   |                                    |           |                 *

  79. * +-+----------+     +----------------+  |         +-+---------------+ *

  80. * |  USB Hub   +-----+ Serial adapter |  +---------+ PoE/VLAN Switch | *

  81. * +-+----------+     +-+--------------+            +-+---------------+ *

  82. *   |                  |                             |                 *

  83. *   |                  |                             |                 *

  84. *   |                  |                             |                 *

  85. * +-+----------+     +-+--------------+  Network   +-+---------------+ *

  86. * |   SDWire   +-----+     Board      +------------+  PoE Splitter   | *

  87. * +------------+     +-+--------------+            +-+---------------+ *

  88. *                      |                Power        |                 *

  89. *                      +-----------------------------+                 *

  90. *                                                                      *

  91. ************************************************************************

  92. 

  93. Logical Architecture

  94. --------------------

  95. 

  96. No user will be able to log into the controller directly.  The only

  97. interface exposed to the user on the controller will be via an RPC

  98. interface, e.g. `echo function xxx | ssh labhost labcli`, or via a control

  99. socket from within the jail.

  100. 

  101. The user will be able to log into the jail that is created for the

  102. reservation of a board.  Any modifications to the jail will be rolled

  103. back and discarded after the system has been released, or the reservation

  104. has expired.  A persistant user directory will be mounted and shared

  105. between all jails, i.e. if the user has three different boards reserved,

  106. each jail will have a nullfs mount of the user's directory.

  107. 

  108. Workflow

  109. ========

  110. 

  111. Functions

  112. ---------

  113. 

  114. The functions that take a board handle argument can be executed from within

  115. the jail and the board handle of that jail will be used.  The board handle

  116. argument will be ignored and is optional when used from withing the jail.

  117. 

  118. These are the functions a user can execute:

  119. 1. List board classes (onlyavailable=false)

  120.    List the board classes that are on the controller.  If onlyavailable is

  121.    true, than only the classes that have boards available for reservation

  122.    are returned.

  123. 2. Board status (reserved=false)

  124.    List all the board statuses.  This includes the status, reserved or

  125.    unreserved.  If the board is reserved, it includes the user who reserved

  126.    it.  If reserved is true, only list boards that are currently reserved

  127.    by you.  The default is to list all boards.

  128. 3. Reserve board (board class or board id, power=false)

  129.    A user can use this to reserve a board.  This will return a board handle

  130.    with the board information, such as the board's jail's IP address, or an

  131.    error.  Once the user has obtained a board, it will not be allocated to

  132.    another user till they have release this board (or a timeout has

  133.    expired).  The user's ssh keys will be automatically populated in the

  134.    jail.  By default, the board will be in the power off state.  When a

  135.    default configuration is provided for the board, it can be automatically

  136.    powered on, via the power arugment being true to make it easier to

  137.    integrate w/ systems like CI.

  138.    It is expected that in the future, additional arguments will allow the

  139.    user to specify different environments (e.g. stable/12).

  140. 4. Reinit board (board handle)

  141.    This will kill all processes and remove the current jail.  The jail will

  142.    be recreated as if it was reserved for the first time.  This allows the

  143.    jail to be in a clean state w/o losing the reservation by releasing it

  144.    and then reclaiming it.  This will be important if there are pending

  145.    reservations for the board.  If the user has not claimed the board, an

  146.    error will be returned.  If the reinit fails, an error will be returned,

  147.    but the claim will be maintained if possible.

  148. 5. Release board (board handle)

  149.    Release a reservation on the board handle returned by reserve board

  150.    function.  This will make the board available to users again.  All data

  151.    in the jail will be deleted.  The function will return an error if the

  152.    user does not have a claim on the board.

  153. 6. Power off (board handle)

  154.    Turn off the power to the board.

  155. 7. Power on (board handle)

  156.    Turn on the power to the board.

  157. 

  158. Services provided in the jail

  159. -----------------------------

  160. 

  161. Once logged in, the jail will have the following services:

  162. 1. ssh

  163.    Incoming ssh must be provided for the user to login.

  164. 2. One interface for internet

  165.    nat setup so that all traffic appears from jail's IP.

  166. 3. One interface for board

  167. 4. Serial port for console access

  168.    The configuration will identify which board to put in the jail.  For

  169.    USB devices, they will be able to be specified via a list of ports on

  170.    the hubs so that there is no issue w/ device probe order.

  171. 5. dhcpd for boards w/ tftp already configured

  172. 6. inetd w/ tftpd setup

  173. 7. nfsd setup w/ exports configured

  174. 8. power control for board

  175. 

  176. As the user will have root access, all of these can be modified.

  177. 

  178. Future Work

  179. ===========

  180. 

  181. There are a number of ideas to make developing boards remotely more doable.

  182. We can use devices that support OTG, to emulate USB devices for test boards.

  183. This would allow the simulate a keyboard and or a mouse.  With the addition

  184. of an HDMI to ethernet adapter (there are cheap ones for ~$40/each), a user

  185. can work on making X or other GUI work remotely.

  186. 

  187. Open Questions

  188. ==============

  189. 

  190. Should the jail's host key for the board be kept between invocations.

  191. Pros: Users don't have to modify the known_hosts every time.

  192. Cons: Malicious user could impersonate the jail as they can copy out the key.

  193. 

  194. IPv6 support?

  195. 	I have enough that each device can get a /64, but this remove privacy in

  196. 	that the network will tell which board was active at the time

  197. 

  198. <!-- Markdeep: --><style class="fallback">body{visibility:hidden;white-space:pre;font-family:monospace}</style><script src="markdeep.min.js" charset="utf-8"></script><script src="https://casual-effects.com/markdeep/latest/markdeep.min.js" charset="utf-8"></script><script>window.alreadyProcessedMarkdeep||(document.body.style.visibility="visible")</script>