Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Introduce the Device Manufacturing Database, and private key extraction support #80

Merged
merged 8 commits into from
Nov 22, 2024
Merged

Introduce the Device Manufacturing Database, and private key extraction support #80

merged 8 commits into from
Nov 22, 2024

Conversation

tdewey-rpi
Copy link
Collaborator

@tdewey-rpi tdewey-rpi commented Nov 18, 2024
edited
Loading

Introduce support for a CSV device manufacturing database, and support for extracting device private keys as part of initial manufacturing to support device RMA and recovery scenarios.

Fixes #77
Fixes #79

@tdewey-rpi
Add metadata to CSV extraction
49ba263 
Additionally, expand the annotations extracted from the metadata JSON file, capturing devices not supported - but worth identifying for failure cases.
@torntrousers torntrousers mentioned this pull request Nov 20, 2024
Closed
@tdewey-rpi
Add device keypair extraction support
cf093ff 
This can be done by setting RPI_DEVICE_RETRIEVE_KEYPAIR inside your
configuration file, and can _only_ be performed immediately after
the key has been written during provisioning. Any subsequent reboot
will prevent retrieval without modifying the OS.
@tdewey-rpi tdewey-rpi force-pushed the dev/tdewey/device-db-and-pkeys branch from 165680d to cf093ff Compare November 20, 2024 12:50
@roliver-rpi
Copy link
Contributor

Hi @tdewey-rpi , the branch has been force-pushed but Github doesn't seem to have updated the PR for some reason?

roliver-rpi
roliver-rpi reviewed Nov 21, 2024
View reviewed changes
config/config_app.helper Outdated Show resolved Hide resolved
config/validator.py Outdated Show resolved Hide resolved
host-support/rpi-sb-provisioner Outdated Show resolved Hide resolved
README.adoc Outdated Show resolved Hide resolved
service/rpi-sb-provisioner.sh Show resolved Hide resolved
@tdewey-rpi
Copy link
Collaborator Author

Confirmed in testing that this does the right thing, provided you've read the docs. I will explore sqlite3 as a backing store for other state, too.

@tdewey-rpi tdewey-rpi merged commit 26f4277 into main Nov 22, 2024
@tdewey-rpi tdewey-rpi deleted the dev/tdewey/device-db-and-pkeys branch November 22, 2024 16:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@roliver-rpi roliver-rpi roliver-rpi left review comments

@torntrousers torntrousers torntrousers left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Decryption of provisioned device Export device data
3 participants
@tdewey-rpi @roliver-rpi @torntrousers