From Fedora Project Wiki

Revision as of 17:31, 18 January 2024 by Amoloney (talk | contribs) (announcing the change)

IoT Simplified Provisioning

This is a proposed Change for Fedora Linux.
This document represents a proposed Change. As part of the Changes process, proposals are publicly announced in order to receive community feedback. This proposal will only be implemented if approved by the Fedora Engineering Steering Committee.

Summary

Offer Fedora IoT users a new, non-release blocking deliverable to deploy and configure Fedora IoT systems using a new tool called Simplified Provisioning.

Owner


Current status

[[Category:ChangeAnnounced]

  • Targeted release: Fedora Linux 40
  • Last updated: 2024-01-18
  • Announced
  • Discussion thread
  • FESCo issue: <will be assigned by the Wrangler>
  • Tracker bug: <will be assigned by the Wrangler>
  • Release notes tracker: <will be assigned by the Wrangler>

Detailed Description

The Fedora IoT Simplified Provisioning tool uses the coreos-installer to write an OStree raw image straight to a disk specified in a kernel argument, without the need for a kickstart or user interaction. This type of installation is ideal for devices connected at the edge where connectivity can be slow or intermittent. This new, non-release blocking deliverable, offers users the ability to easily configure the system with Fido Device Onboarding or Ignition and allows for headless, secure, zero touch installations including optional automated disk encryption with enrollment into TPM2.

Feedback

Benefit to Fedora

The addition of the Fedora IoT Simplified Provisioning deliverable will benefit IoT users by allowing them to easily deploy Fedora IoT systems and leverage existing tools like Fido Device Onboarding and Ignition for configuration.

Scope

  • Proposal owners:
    • Test building the new deliverable in Fedora infrastructure as part of the IoT compose process.
    • Update Fedora IoT documentation with usage details.
    • Update website so users can download artifacts.
  • Other developers:
  • N/A
  • Release engineering: N/A (not needed for this Change)
  • Policies and guidelines: N/A (not needed for this Change)
  • Trademark approval: N/A (not needed for this Change)
  • Alignment with Community Initiatives:

Upgrade/compatibility impact

  • Not applicable to this change.

How To Test

  • Testable by downloading the new ISO and deploying to a UEFI enabled edge device.

User Experience

This change will enhance the Fedora IoT user experience by allowing users to easily customize Fedora IoT deployments and leverage new technologies like FIDO Device Onboarding for secure zero touch device onboarding of edge devices as well as Ignition to configure the device.

Dependencies

N/A (not a System Wide Change)

Contingency Plan

  • Contingency deadline: Beta
  • Blocks release? No.
  • Blocks product? No.


Documentation

Release Notes