redundant booting with u boot
play

Redundant Booting with U-Boot Welcome to the Redundancy Theater - PowerPoint PPT Presentation

Sep 03, 2023 •307 likes •428 views

Redundant Booting with U-Boot Welcome to the Redundancy Theater Playhouse Thomas Rini 1 2 Overview Historically how redundancy has been developed and implemented What we have today And have had for a while What we hope to have

  1. Redundant Booting with U-Boot Welcome to the Redundancy Theater Playhouse Thomas Rini 1

  2. 2 Overview • Historically how redundancy has been developed and implemented • What we have today – And have had for a while • What we hope to have soon • Sample use cases – Deployed product – Developers • Example

  3. 3 Historically... • One-off custom creations • Hacks to U-Boot • And sometimes, working with upstream and leveraging existing features

  4. 4 Features Available Now (v2014.10) • Redundant U-Boot environment • Hardware Watchdogs • Boot counting Requires a “good” location to work with – • Cryptographic image signature checking Software only, currently – • TPM (Trusted Platform Module) support • “Falcon Mode”, aka SPL boots OS Some of this is relatively new, much of it is not. We're working to address needs and enhance support, as developers come forward.

  5. 5 How it looks

  6. 6 Features In Progress • Linux Kernel side of Boot counting Have to clear the counter once the system decides it's up and – stable Work in Progress: http://goo.gl/ES0tYf – • Hardware / ROM Cryptographic image signature checking • “Falcon Mode” enhancements • SPL / Bootcount enhancements using environment – Work in Progress: https://github.com/trini/u-boot/tree/v2014.10- plus-spl-bootcount • More FS support Read from extN not just FAT –

  7. 7 Features that have been talked about • Wider environment use in Falcon Mode Today “FAT” supports environment saying what to load, but not – “raw” modes • zImage support and/or FIT image support – Today only legacy uImages are supported Both of these would require additional work to know where to put – the payloads (in some cases) • Integrate altbootcmd into Falcon Mode Today when bootcount is exceeded we fall back to full U-Boot, but – in some cases we may not need to.

  8. 8 Sample Use Cases: Deployed Products • ROM provides a level of security and redundancy • SPL OS boot provides quick path into the Linux kernel • Redundant environment is consulted for where to find what to boot, how many times to try • A fail-safe alternative exists as backup (failed upgrades, etc) • Watchdog is enabled to reset the board when things have gone bad • Images are cryptographically signed • A TPM is enabled to allow for only trusted upgrades to happen

  9. 9 Sample Use Cases: Developer • SPL OS boot enabled, environment consulted for what Linux kernel to be booting and testing • Watchdog enabled, relatively short timeout set Catch failure quicker – • Bootlimit is set low, just 1 or 2 Again, catch failure quicker – • Environment again points to a known working backup image to use, for when things fail • fw_setenv in Linux to point at new test images / etc Development cycle improved, fallback available without external hardware.

  10. 1 0 Example • BeagleBone Black Watchdog Support – SPL OS boot enabled – Bootlimit is set, clearable from the kernel – Persistent Environment (redundant) – ● fw_setenv/getenv supports this

Recommend

Redundant Booting with U-Boot Welcome to the Redundancy Theater Playhouse Thomas Rini 1 2

Redundant Booting with U-Boot Welcome to the Redundancy Theater Playhouse Thomas Rini 1 2

Redundant Booting with U-Boot Welcome to the Redundancy Theater Playhouse Thomas Rini 1 2 Overview Historically how redundancy has been developed and implemented What we have today And have had for a while What we'll have soon

344 views • 9 slides
Marrying U-Boot, UEFI and grub About Me Alexander Graf KVM and QEMU developer for SUSE

Marrying U-Boot, UEFI and grub About Me Alexander Graf KVM and QEMU developer for SUSE

Marrying U-Boot, UEFI and grub About Me Alexander Graf KVM and QEMU developer for SUSE Server class PowerPC KVM port Nested SVM Founding member of SUSE ARM team Booting on ARM Booting on ARM Boot ROM Booting on ARM Boot

2.09k views • 160 slides
Section 15 Section 15 ADSP-BF533 Booting a 15-1 1 What is Booting? What is Booting?

Section 15 Section 15 ADSP-BF533 Booting a 15-1 1 What is Booting? What is Booting?

Section 15 Section 15 ADSP-BF533 Booting a 15-1 1 What is Booting? What is Booting? Booting is the process of loading application code, stored in an external memory device, into the various internal and external memories of the

505 views • 23 slides
GELI Boot Booting from Encrypted Disks on FreeBSD Allan Jude -- ScaleEngine Inc.

GELI Boot Booting from Encrypted Disks on FreeBSD Allan Jude -- ScaleEngine Inc.

GELI Boot Booting from Encrypted Disks on FreeBSD Allan Jude -- ScaleEngine Inc. allanjude@freebsd.org twitter: @allanjude Introduction Allan Jude 13 Years as FreeBSD Server Admin FreeBSD src/doc committer (focus: ZFS, bhyve, ucl,

494 views • 34 slides
Diskless Booting via AFS Summary of Advantages of AFS over NFS as a network subsystem for

Diskless Booting via AFS Summary of Advantages of AFS over NFS as a network subsystem for

Diskless Booting via AFS Summary of Advantages of AFS over NFS as a network subsystem for diskless booting and a Micro-Mini-HowTo Motivation Diskless booting in general Ease of management Cost (disk hardware, OS upgrades) NFS vs

472 views • 12 slides
Booting PROM (BIOS) perform basic self-test (POST) Lecture 13 and access parameters from

Booting PROM (BIOS) perform basic self-test (POST) Lecture 13 and access parameters from

Booting PROM (BIOS) perform basic self-test (POST) Lecture 13 and access parameters from nvram OS Loader locate and run kernel on disk Located in the MBR (first sector of boot device) May call secondary loader on some

468 views • 11 slides
PC Hardware & Booting Chester Rebeiro IIT Madras Outline Memory and Device Addresses

PC Hardware & Booting Chester Rebeiro IIT Madras Outline Memory and Device Addresses

PC Hardware & Booting Chester Rebeiro IIT Madras Outline Memory and Device Addresses PC Organization x86 Evolution Powering up Booting xv6 Multiprocessor booting 2 CPUs Processor i386 3 Everything has an

599 views • 29 slides
Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer

Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer

Automating Boot Camp and Windows Deployment Joe Hall Systems Support and Development Officer Goldsmiths, University of London Department of Computing slack jhall twitter iamjoehall github joe-hall Is dual-booting the right solution? No!

229 views • 22 slides
CT 320: Network and System 2 Booting Administration 1. Bootstrap loaders 2. Run levels 3.

CT 320: Network and System 2 Booting Administration 1. Bootstrap loaders 2. Run levels 3.

9/10/12 Topics CT 320: Network and System 2 Booting Administration 1. Bootstrap loaders 2. Run levels 3. CHAPTER 3: BOOTING AND SHUTTING DOWN Startup scripts 4. Shutdown and reboot 5. COLORADO STATE UNIVERSITY COMPUTER SCIENCE DEPARTMENT

411 views • 8 slides
Reliable network booting of cluster computers Matthew Steggink July 2nd, 2008 Matthew Steggink

Reliable network booting of cluster computers Matthew Steggink July 2nd, 2008 Matthew Steggink

Outline Theory Research question Test methods Observations Alternative booting Conclusion and future work Questions Reliable network booting of cluster computers Matthew Steggink July 2nd, 2008 Matthew Steggink Reliable network booting

381 views • 26 slides
Q U A R K U S & G R A A L V M Q U A R K U S & G R A A L V M booting Hibernate at

Q U A R K U S & G R A A L V M Q U A R K U S & G R A A L V M booting Hibernate at

Q U A R K U S & G R A A L V M Q U A R K U S & G R A A L V M booting Hibernate at supersonic speed, subatomic size @SanneGrinovero S A N N E G R I N O V E R O S A N N E G R I N O V E R O Dutch, Italian, now in London. S A N N E

969 views • 80 slides
RE-FRAME LET'S MAKE A CLOCK (WOW!) TO UNDERSTAND RE-FRAME, YOU MUST BE ABLE TO LIVE WITHOUT IT.

RE-FRAME LET'S MAKE A CLOCK (WOW!) TO UNDERSTAND RE-FRAME, YOU MUST BE ABLE TO LIVE WITHOUT IT.

RE-FRAME LET'S MAKE A CLOCK (WOW!) TO UNDERSTAND RE-FRAME, YOU MUST BE ABLE TO LIVE WITHOUT IT. BOOT https://github.com/boot-clj/boot BOOT TEMPLATES boot -d seancorfield/boot-new new -t tenzing -n <name> [+a <option>]* $ cd

566 views • 22 slides
Experiences booting one million virtual machines (and a few tools we developed) Ron Minnich Don

Experiences booting one million virtual machines (and a few tools we developed) Ron Minnich Don

Experiences booting one million virtual machines (and a few tools we developed) Ron Minnich Don Rudish 08961 - Scalable Computing R & D Eurosys 2010 Minnich, Rudish, Gentile, Armstrong, Wylie, Pedretti, Thompson Experiences booting one

692 views • 38 slides
Chapt er 14: Redundant Arit hmet ic Keshab K. Parhi A non-redundant radix-r number has

Chapt er 14: Redundant Arit hmet ic Keshab K. Parhi A non-redundant radix-r number has

Chapt er 14: Redundant Arit hmet ic Keshab K. Parhi A non-redundant radix-r number has digit s f rom t he set {0, 1, , r - 1} and all numbers can be represent ed in a unique way. A radix-r redundant signed-digit number syst em

346 views • 21 slides
Redundant Feature Elimination Redundant Feature Elimination for Multi-Class Problems for

Redundant Feature Elimination Redundant Feature Elimination for Multi-Class Problems for

1 Redundant Feature Elimination Redundant Feature Elimination for Multi-Class Problems for Multi-Class Problems Annalisa Appice, Michelangelo Ceci Dipartimento di Informatica, Universit degli Studi di Bari, Italy Simon Rawles, Peter Flach

512 views • 50 slides
Secure Boot mistakes Jasper van Woudenberg (Job de Haas) jasper@riscure.com @jzvw 1 Secure

Secure Boot mistakes Jasper van Woudenberg (Job de Haas) jasper@riscure.com @jzvw 1 Secure

Top 10 Secure Boot mistakes Jasper van Woudenberg (Job de Haas) jasper@riscure.com @jzvw 1 Secure Boot Theory Internal boot ROM 1 st stage boot loader N th stage Verify signature Optional decrypt boot loader OS / Application 2

517 views • 25 slides
I Boot when U-Boot @bernardomr (MIA) @_evict 1 / 44 Agenda 1. Introduction 2. The target device

I Boot when U-Boot @bernardomr (MIA) @_evict 1 / 44 Agenda 1. Introduction 2. The target device

I Boot when U-Boot @bernardomr (MIA) @_evict 1 / 44 Agenda 1. Introduction 2. The target device 3. The bootkit 4. Defending / Detecting 2 / 44 Introduction Vincent Works at KPN REDteam Likes Linux and low-level stu Located in Amsterdam

792 views • 44 slides
Trending Boot Technology The Most Determinate Piece of Equipment in Skiing is the Boot. Boots are

Trending Boot Technology The Most Determinate Piece of Equipment in Skiing is the Boot. Boots are

Trending Boot Technology The Most Determinate Piece of Equipment in Skiing is the Boot. Boots are the transmitters of body movement to the ski. Proper support, comfort, and performance application make the difference between a good day on the snow

431 views • 29 slides
Securing Secure Boot on Xen Ross Lagerwall Software Engineer, Citrix Systems 1 / 15

Securing Secure Boot on Xen Ross Lagerwall Software Engineer, Citrix Systems 1 / 15

Securing Secure Boot on Xen Ross Lagerwall Software Engineer, Citrix Systems 1 / 15 Presentation licensed CC-By-SA-4.0 Why Secure Boot? How can we prevent running malware at boot? With Secure Boot! What if the machine is a VM in

303 views • 15 slides
Dec 08 Backup Boot Flash Tools (BBF): Introduction Introduction The Backup Boot Flash (BBF) is

Dec 08 Backup Boot Flash Tools (BBF): Introduction Introduction The Backup Boot Flash (BBF) is

Dec 08 Backup Boot Flash Tools (BBF): Introduction Introduction The Backup Boot Flash (BBF) is an innovative SPI tool created by DediProg to force the application controller to work (read, program, update..) on the backup memory inserted in the

1.06k views • 17 slides
2/19/09 Mac Admin Meeting You just want to get your files! Firewire target booting

2/19/09 Mac Admin Meeting You just want to get your files! Firewire target booting

2/19/09 Mac Admin Meeting You just want to get your files! Firewire target booting deprecated Mac OS X Server expensive/overkill Features are built in to OS X Client http://www.instructables.com/id/Make-Your-

557 views • 12 slides
Master Boot Record (MBR) A Forensic Perspective Villanova University Department of

Master Boot Record (MBR) A Forensic Perspective Villanova University Department of

Master Boot Record (MBR) A Forensic Perspective Villanova University Department of Computing Sciences D. Justin Price Spring 2014 Master Boot Record Occupies the first 512-byte sector Boot Code Assembly Language

65 views • 6 slides
Lollipop MR1 Verified Boot Andrew Boie Open Source Technology Center Intel Corporation Agenda

Lollipop MR1 Verified Boot Andrew Boie Open Source Technology Center Intel Corporation Agenda

Lollipop MR1 Verified Boot Andrew Boie Open Source Technology Center Intel Corporation Agenda What is Verified Boot? Description of Verified Boot Components Q&A What Is Verified Boot? Verified Boot establishes a chain of

432 views • 19 slides
Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop

Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop

Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop Hardware Enablement Team This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License Topics What / why? Pre-kernel:

434 views • 16 slides

More recommend