Skip to content
Permalink
Branch: master
Find file Copy path
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
186 lines (175 sloc) 4.83 KB
# SWUpdate configuration file
#
# This is responsible to pass configuration and parameters
# to SWUpdate. Most of configuration can be overwritten
# with command line parameters.
#
# globals : general configuration for the installer
#
# verbose
# Default Value: false
#
# loglevel : integer
# level for logging from 1 (no log) to 6
# syslog : boolean
# enable sending logs to syslog daemon
# public-key-file : string
# file with public key for
# image verification
# mtd-blacklist : list integers
# MTD devices where SWUpdate
# must not try to check for UBI filesystem.
# aes-key-file : string
# file containing the symmetric key for
# image decryption
# preupdatecmd : string
# command to be executed right before the update
# is installed
# postupdatecmd : string
# command to be executed after a successful update
globals :
{
verbose = true;
loglevel = 5;
syslog = true;
/* public-key-file = "test.pem";*/
mtd-blacklist = "0 1 2 3 4 5 6";
};
#
# download : setup for the downloader
# It requires that SWUpdate is started with -d
#
# url : string
# complete URL pointing to the SWU image of the update package
# retries : integer
# Number of retries (0=forever)
# timeout : integer
# it is the number of seconds that can be accepted without
# receiving any packets. If it elapses, the connection is
# considered broken.
# authentication : string
# credentials needed to get software if server
# enables Basic Auth to allow this downloading
download :
{
authentication = "user:password";
retries = 3;
timeout = 1800;
url = "http://example.com/software.swu";
};
#
# versions : list of installed artifacts
# they are used when installed-if-differently is set
versions : (
{
name = "uboot";
version = "2016.03";
},
{
name = "kernel";
version = "4.4";
}
);
#
# identify section : it is just used to inform a backend about the running target
# any entry is a copule of <key, vealue>. For example, MAC address, serial number,
# and so on.
identify : (
{ name = "versionSpC"; value = "1.0"; },
{ name = "hwId"; value = "ipse"; },
{ name = "hwVersion"; value = "333"; },
{ name = "serialNo"; value = "1234567890"; },
{ name = "swCompatibility"; value = "unknown";}
);
#
# suricatta section: setup for backend
#
# Currently, they refer to the Hawkbit agent.
#
# tenant : string
# Hawkbit tenant
# id : string
# target identifier
# url : string
# URL of the Hawkbit server
# polldelay : integer
# polling cycle (seconds)
# retry : integer
# number of retries to connect to server
# retrywait : integer
# cafile : Certificate Authority certificate
# sslkey : string
# path of the file containing the key for ssl connection
# sslcert : string
# path of the file containing the certificate for SSL connection
# targettoken : string
# hawkBit target security token
# gatewaytoken : string
# hawkBit gateway security token
# proxy : string
# in case the server is reached via a proxy
# ciphers : string in the format used by CURL to set the allowed ciphers suite
# This allows to disable some ciphers, for example
# ciphers = "!eNULL:!aNULL:!EXP:!LOW:!MEDIUM:!ADH:!AECDH:!IDEA:!SEED:!MD5:!SHA:!RC4:HIGH+EECDH:HIGH+EDH";
suricatta :
{
tenant = "default";
id = "123456";
confirm = 0;
url = "http://papero.fritz.box:8080";
polldelay = 20;
nocheckcert = true;
retry = 4;
retrywait = 200;
loglevel = 10;
userid = 1000;
groupid = 1000;
/*
cafile = "/etc/ssl/cafile";
sslkey = "/etc/ssl/sslkey";
sslcert = "/etc/ssl/sslcert";
targettoken = "3bc13b476cb3962a0c63a5c92beacfh7";
gatewaytoken = "99616d4fae39167deddf21cd90047861";
*/
};
#
# webserver : setup for the embedded webserver
# see ./swupdate -h for details
#
# document_root : string
# directory to the website
# userid : integer
# userID for Webserver process
# groupid : integer
# groupId for Webserver process
# listening_ports : integer
# Webserver listening ports
# enable_directory_listing : boolean
# true to list directories
# ssl_certificate : string
# path to SSL certificat
# ssl_certificate_key : string
# path to SSL private key
# api : integer
# 1 = simple REST API for M2M communication
# 2 = WebApp with Websockets support
# global-auth-file : string
# path to the global authorization file, if any
# default = none
# auth-domain : string
# path to auth-domain, if any
# default = none
# run-postupdate : boolean (default true)
# run the postupdate command automatically after
# a successful update
# timeout : timeout in seconds to monitor the connection
# when an update is started. If no data is received
# during this time, connection is closed by the Webserver
# and update is aborted.
webserver :
{
document_root = "./www";
userid = 1000;
groupid = 1000;
timeout = 20;
};
You can’t perform that action at this time.