Getting (more) Debian into our civil infrastructure
-
Not SyncedWelcome back, the next talk will be
Jan Kiszka -
Not Syncedon Getting more Debian into our
civil infrastructure. -
Not SyncedThank you Michael.
-
Not SyncedSo my name is Jan Kiszka,
-
Not Syncedyou may not know me, I'm not a Debian
Developer, not a Debian Maintainer. -
Not SyncedI'm just an upstream hacker.
-
Not SyncedI'm working for Siemens
-
Not Syncedand part of the Linux team there
for now 10 years actually, -
Not Syncedmore than 10 years.
-
Not SyncedWe are supporting our business units
in getting Linux into the products successfully -
Not Syncedfor that long time, even longer actually.
-
Not SyncedToday, I'm representing a collaborative
project that has some relationship -
Not Syncedwith Debian, and more soon.
-
Not SyncedFirst of all, maybe a surprise to some
of you, -
Not Syncedour civilization is heavily running on Linux
and you may now think about -
Not Syncedthis kind of devices where some kind of
Linux inside, -
Not Syncedor you may think of the cloud servers
running Linux inside. -
Not SyncedBut actually, this is about devices closer
to us. -
Not SyncedIn all our infrastructure,
-
Not Syncedthere are control systems, there are
management systems included -
Not Syncedand many many of them run Linux inside.
-
Not SyncedMaybe if you are traveling with Deutsche
Bahn to this event these days, -
Not Syncedthere was some Linux system on the train
as well, -
Not Syncedas they were on the ???,
so on the control side. -
Not SyncedEnergy generation.
-
Not SyncedPower plants, they are also run with Linux
-
Not Syncedin very interesting ways, in positive ways
-
Not SyncedIndustry automation, the factories, they
have control systems inside -
Not Syncedand quite a few are running Linux inside.
-
Not SyncedAnd also other systems like health care,
diagnostic systems. -
Not SyncedThese big balls up there, they're magnetic
resonance imaging systems, -
Not Syncedthey're running on Linux for over
a decade now. -
Not SyncedBuilding automation, not at home but in
the professional building area. -
Not SyncedActually, as I said, the train systems are
going to be more on Debian soon. -
Not SyncedWe have Debian for quite a while in
power generation. -
Not Synced"We", in this case, Siemens.
-
Not SyncedWe have the box underneath,
on the third row, -
Not Syncedthe industrial switch there is running
Debian. -
Not SyncedAnd the health care device is still
on Ubuntu, but soon will be Debian as well. -
Not SyncedJust to give some examples.
-
Not SyncedThese are the areas where we, as a group,
and we, as Siemens, are active. -
Not SyncedBut there are some problems with this.
-
Not SyncedJust take an example from a railway
system. -
Not SyncedUsually, this kind of devices installation,
they have a lifetime -
Not Syncedof 25, 30 years.
-
Not SyncedIt used to be quite simple with these
old devices, -
Not Syncedsimple in the sense that it was mechanic,
it was pretty robust -
Not SyncedI was once told that one of these locking
systems, -
Not Syncedthey were basically left in a box out there
for 50 years and no one entered the ??? -
Not SyncedNo one touched the whole thing for 50 years
-
Not SyncedThese times are a little bit over.
-
Not SyncedNowadays, we have more electronic systems
in these systems -
Not Syncedand they contain of course software.
-
Not SyncedWhat does it mean?
-
Not SyncedJust to give you an idea, how this kind
of development looks like in this domain. -
Not SyncedSo ???
-
Not Synceddevelopment takes quite a long time
until the product is ready, -
Not Synced3 to 5 years.
-
Not SyncedThen, in the railway domain, it's mostly
about customizing the systems -
Not Syncedfor specific installations of the railway
systems, -
Not Syncednot only in Europe, they are kind of messy
regarding the differences. -
Not SyncedSo you have specific requirements of the
customer, the railway operators -
Not Syncedto adjust these systems for their needs.
-
Not SyncedAnd you see by then,
-
Not Syncedafter 5 years already, a Debian version
would be out of maintenance and -
Not Syncedif you add an other year, you can start
over again. -
Not SyncedSo, in the development time, you may
change still the system -
Not Syncedbut later on, it's getting hard to change
the system ??? -
Not Syncedbecause then the interesting parts start
in this domain, not only in this domain, -
Not Syncedthat's safety and security assessment and
approval for these systems. -
Not SyncedAnd that also takes time.
-
Not SyncedFor example, in Germany, you go for the
Eisenbahn ??? -
Not Syncedand you ask to get a permission to run
that train on the track -
Not Syncedand if they say "Mmh, not happy with it",
you do it over again -
Not Syncedand it takes time
-
Not Syncedand if you change something in the
system, it becomes interesting -
Not Syncedbecause some of these certification
aspects become invalid, -
Not Syncedyou have to redo it.
-
Not SyncedAnd then of course, these trains on
the installation, -
Not Syncedthe have a long life as I mentioned
before. -
Not SyncedSo how do you deal with this in
an electronic device and -
Not Syncedin software-driven devices over
this long phase? -
Not SyncedThat's our challenge
-
Not Syncedand just one example and there are
more in this area. -
Not SyncedAt the same time, what we see now is
these fancy buzzwords -
Not Syncedfrom cloud business entering
our conservative, slowly moving domain. -
Not SyncedWe talk about IoT, industrial IoT, so
connected devices. -
Not SyncedWe talk about edge computing, it means
getting the power of the cloud -
Not Syncedto the device in the field, closer to
where the real things happen. -
Not SyncedSo, networking becomes a topic.
-
Not SyncedIn the past, you basically built a system,
you locked it up physically -
Not Syncedyou never touched it again, except
the customer complains that -
Not Syncedthere were some bug inside.
-
Not SyncedThese days, the customer asks us to
do a frequent update. -
Not SyncedAnd actually the customers ???
ask for this. -
Not SyncedSo you have to have some security
maintenance concept in this -
Not Syncedwhich means regular updates, regular fixes
-
Not Syncedand that is of course ???
for this kind of doing the way you have -
Not Syncedslow running and long running
support cycles. -
Not SyncedTo summarize, there's a very long time
we have to maintain our devices in the field -
Not Syncedand so far, this was mostly done
individually. -
Not SyncedSo each company, and sometimes quite
frequently also inside the company, -
Not Syncedeach product group, development ???
did it individually. -
Not SyncedSo everyone was having their own kernel,
everyone was having their own base system, -
Not Syncedit was easy to build up so it should be
easy to maintain. -
Not SyncedOf course it's not.
-
Not SyncedThis was one thing, one important thing.
-
Not SyncedAnd then, of course, we not always are
completely happy -
Not Syncedwith what the free software gives us.
-
Not SyncedThere are some needs to make things
more robust, -
Not Syncedto make things more secure, reliable.
-
Not SyncedSo we have to work with these components
and improve them, mostly upstream, -
Not Syncedand that, of course, is not a challenge
we have to address in this area. -
Not SyncedAnd catch up with a trend coming in from
the service space on the cloud space. -
Not SyncedSo with this challenge…
-
Not Syncedit was the point where we, in this case,
a number of big users of -
Not Syncedindustrial open source systems,
-
Not Syncedcame together and created a new
collaborative project. -
Not SyncedThat's what you do in the open source
area. -
Not SyncedThis project is called Civil Infrastructure
Platform. -
Not SyncedIt's under the umbrella of the Linux
Foundation, -
Not Syncedthere are many projects of the Linux
Foundation you may have seen, -
Not Syncedbut most of them are more in the area
of cloud computing -
Not Syncedor in the area of media.
-
Not SyncedAutomotive computing, this one is actually
even more conservative than the other ones -
Not Syncedand it's also comparably small.
-
Not SyncedOur goal is to build this open source
base layer for these application scenarios -
Not Syncedbased on free software, based on Linux.
-
Not SyncedWe started two years ago.
-
Not SyncedThat's basically our structure, to give
you an idea. -
Not SyncedMember companies, the 3 on the top are
founding platinum companies, -
Not SyncedHitachi, Toshiba and Siemens.
-
Not SyncedWe have Codethink and Plat'Home
on board, -
Not Syncedwe had them on board for the first time
as well. -
Not SyncedRenesas joined us and just recently also
Moxa. -
Not SyncedSo if you compare this with other
collaborative projects, -
Not Syncedit's a pretty small one, comparatively
small one, -
Not Syncedso our budget is also limited.
-
Not SyncedIt's still decent enough, but, well,
we are growing. -
Not SyncedAnd based on this budget, we have
some developers being paid, -
Not SyncedBen is paid this way, you will see
later on why. -
Not SyncedAnd we have people working from
the companies in the communities -
Not Syncedand we are ramping up on working with
communities -
Not Syncedto improve the base layers for our needs.
-
Not SyncedEverything is open source, we have
a GitLab repo as well and -
Not Syncedyou can look up there what's going on there.
-
Not SyncedSo, the main areas of activities where
we are working on right now. -
Not Synced4 areas.
-
Not SyncedKernel maintenance,
-
Not Syncedwe started with declaring one kernel as
the CIP kernel to have -
Not Syncedan extended support phase for this kernel
of 10 years. -
Not SyncedThis is what we're aiming for, which is
feasible already -
Not Syncedfor some enterprise distros
in a specific area -
Not Syncedbut here we are talking about an industrial
area, an embedded area -
Not Syncedso there is some challenge.
-
Not SyncedI'm saying 10 years, there's sometimes
written 15 years, -
Not Syncedwe will see after 10 years if we follow
on to this. -
Not SyncedAlong with this, of course, comes the need
for real time support. -
Not SyncedCurrently, it's a separated branch, but
it's going to be integrated eventually -
Not Syncedto have the PREEMPT_RT branch
??? doing this. -
Not SyncedAs I mentioned before, Ben is currently
our 4.4 CIP kernel maintainer. -
Not SyncedThis is the core, basically where we
started activities. -
Not SyncedWe continued in extending this on
test infrastructure, -
Not Syncedso we invested a bit in improving on
??? infrastructure, -
Not Syncedwe are now ramping up an internal
??? just to enable -
Not Syncedthe kernel testing of course.
-
Not SyncedAnd then, that's actually what I'd like
to talk about today a bit more, -
Not Syncedthere's a CIP core.
-
Not SyncedThe kernel alone doesn't make a system,
you need a user space, -
Not Syncedyou need a user land and that's basically
where we are now focusing on, -
Not Syncedramping up.
-
Not SyncedOur activity is to define this CIP core,
means a base system, -
Not Synceduser space base system which you want
to maintain as long as the kernel, -
Not Syncedso an other 10 years thing.
-
Not SyncedOur group had a couple of members which
were already familiar with Debian before. -
Not SyncedSo it was pretty easy for that group
to decide on -
Not Syncedchoosing Debian as the base source
for our core, CIP core package. -
Not SyncedSo, why was Debian chosen?
-
Not SyncedWell, it has an outstanding maturity and
a focus on stability, -
Not Syncedso we are pretty much aligned regarding
how conservative we see certain things -
Not Syncedwhich is a positive thing for us.
-
Not SyncedIt has very professional security properties
but we also rely on heavily. -
Not SyncedAnd also another interesting aspect for us
is the license hygiene that you are after -
Not Syncedto ensure that there is only free software
in these packages -
Not Syncedand that is properly documented.
-
Not SyncedWe, when we are using and redistributing
software, -
Not Syncedin contrast to, for example, the service space
-
Not Syncedwhen you don't usually redistribute things,
-
Not Syncedwe are redistributing devices, so we are
redistributing software, -
Not Syncedwe have to take care of the licenses
that we are redistributing -
Not Syncedand that we are compliant with all these
licenses included. -
Not SyncedSo it's very important for us that this is
a consistent picture we get from the package. -
Not SyncedSomeone looked at this already, we are still
looking ourselves on this -
Not Syncedbut that's a very important thing.
-
Not SyncedWith these characters, we chose Debian
as the base system. -
Not SyncedSo, what does it mean right now?
-
Not SyncedWe are currently in the process to select
the core packages from the Debian packages -
Not SyncedThere is still a little bit of ???
obviously. -
Not SyncedSo we are already working with Debian on
certain long term support aspects -
Not SyncedJust to mention 2 activities,
-
Not Syncedwe were sponsoring already the staging
repo for security master. -
Not SyncedActually I'm ??? aware of the current
state of the project -
Not Syncedbut we got the feedback that it's
apparently a valuable thing for LTS activity -
Not SyncedWe just joined LTS platinum sponsoring
and we are now involved in discussion -
Not Syncedfor this extended LTS activity,
-
Not Syncedso anything beyond 5 years
-
Not Syncedand in the end, that's what we committed
to our users. -
Not SyncedWe want to ensure that for the base system
the 10 years is reached. -
Not SyncedOf course, ideally, in the community,
not only based on our personal activities -
Not Syncedbut in the end, we have to fill the gap
-
Not Syncedand that's basically our commitment
on this. -
Not SyncedDon't take literally what is written here.
-
Not SyncedThis is basically to reflect the package set
we are discussing -
Not Syncedand there are some 30 to 300 packages
on the discussion, so to say right now -
Not SyncedWe're condensing basically all the input
from our users, from our members, -
Not Syncedwhat they are using already
-
Not Syncedand there is a difference we will later
on where this comes from -
Not Syncedin the amount of packages, if the way
they're using. -
Not SyncedSo, the kernel currently is not part of
the Debian thing we import, -
Not Syncedalthough some of our users would directly
use a Debian kernel -
Not Syncedbut as I said, when there's a need for
additional activities and -
Not Syncedthat's why CIP Core comes in
-
Not Syncedbut then we have a set of base packages
-
Not Syncedand then of course, we also have to have
a certain set of packages that we need to keep -
Not Syncedin a usable way to ensure reproducibility
of this base set. -
Not SyncedBecause if we want to fix something
after 9 years in the field -
Not Syncedon a base system produced in the past,
-
Not Syncedwe have to ensure if we can come up
with the same result -
Not Syncedplus the delta.
-
Not SyncedSo there are different ways how to build
a system -
Not Syncedand compared to the classic installation
-
Not Syncedyou may know from a desktop or a server
you're not installing, -
Not Syncedwe are prebuilding images and then deploy
these images on the devices -
Not Syncedeither in the factory or out there
in the field. -
Not SyncedSo the challenge for us is, if we have
this package list, -
Not Syncedhow to get to the device image.
-
Not SyncedSo just to give you a brief idea, of course
there is some input -
Not Syncedfrom the CIP kernel in source form
-
Not Syncedthen we are using ???
prebuilt binary packages from Debian -
Not Syncedand/or source package, the source feed
from Debian, -
Not Syncedthe upstream source but the Debian patches
as input feeds -
Not Syncedand that comes bound to a minimum
base system to be generated -
Not Syncedand we are currently working on this.
-
Not SyncedThere is no defined way of producing
this image within CIP at this point, -
Not Syncedwe are basically following two paths.
-
Not SyncedOne of them is the path which is dominated
by the idea -
Not Synced"Ok, we have to ensure we, in this case
the ??? environments -
Not Syncedhave to ensure to reproduce the image
ourself, the binaries ourself" -
Not Syncedso we take the maintain sources from
the Debian community -
Not Syncedbut we rebuilt and then generate a new
binary ??? out of this. -
Not SyncedThat's one way and that's an activity
which you have heard about, -
Not Syncedmeta-debian project prominently driven
by Toshiba, -
Not Syncedwhich uses the ???
way of producing a base system -
Not Syncedbut out of Debian sources so that you have
a maintained source input feed -
Not Syncedfor this production.
-
Not SyncedThat's one path.
-
Not SyncedThe other path is using predominantly
binary packages -
Not Syncedand personally and specific also at Siemens
we are more following this path here. -
Not SyncedSo there is for example the ISAR project,
-
Not Synced??? is one of their developers here
as well -
Not SyncedWe are working on this path, it means that
95 or 99% of your image consists originally -
Not Syncedof binaries, Debian binaries as they are
shipped, as they are released -
Not Syncedand then there is often the need to modify
a little bit, -
Not Syncedit might be the kernel, it might be
the bootloader, -
Not Syncedit might be a special patched package
for whatever reason, -
Not Syncedhopefully good ones.
-
Not SyncedYou have an infrastructure to assemble
the binary images and -
Not Syncedto produce the source packages
on demand -
Not Syncedand install that into an image that you
then can flash on the device. -
Not SyncedThat's the second path we are following,
as I said, -
Not Syncedthat's just to describe the workflows,
the technology behind it is -
Not Syncednot yet standardized in the CIP.
-
Not SyncedFor us at Siemens, currently,
??? -
Not Syncedit's also ??? based
-
Not Syncedyocto-like production,
-
Not Syncedbut based on the Debian binaries
producing a ready-to-install device image. -
Not SyncedWe look at the situation.
-
Not SyncedSo what is Debian providing?
-
Not SyncedWell, a large set of packages, a nice
level of support, 3 + 2 years LTS mostly. -
Not SyncedThat's already great, I mean there's
everything available, -
Not Syncedalmost everything in the world of
Free Software, we can get via Debian. -
Not SyncedThe build, it supports native build.
-
Not SyncedThat's also an advantage, because finding
after 10 years, 15 years with cross build… -
Not SyncedThere's always a problem with
cross building, even a little bit. -
Not SyncedSo this is a good strategy to go, although
you're also working on cross build -
Not Syncedthat may be interesting for certain
scenarios as well for us -
Not Syncedand we're all discussing this these days,
-
Not Syncedreproducible builds is also very important
for us -
Not Syncedbecause we also have to prove that
the delta is really only on the delta -
Not Syncedthat has to be changed and not anything
else and -
Not Syncedwe have to rebuild something for
whatever reason, -
Not Syncedwe don't want to produce a completely
different image in the end. -
Not SyncedSo it's a very important topic.
-
Not SyncedI mentioned already before the license
compliance topics. -
Not SyncedI'm not really deep expert on all the
licensing thing, -
Not Syncedexcept when I have to be because some
customer asks us internally -
Not Syncedhow to be compliant and how to solve
certain compliance findings. -
Not SyncedA colleague of mine, ??? example
who's maintaining the fossology project -
Not Syncedis way more in this because we have also
our infrastructure -
Not Syncedto ensure license compliance and identify
packages, ??? -
Not Syncedand the idea, as far as I heard, is to
combine these kinds of activity -
Not Syncedso that Debian can also use the information
that this kind of scanners produce -
Not Syncedlike spdx formats and build it into
the Debian 5 next generations. -
Not SyncedIn turn, we can extract this information
and ensure that they are still valid -
Not Syncedwhen we take a package.
-
Not SyncedSo there's a lot of activity already
in this area -
Not Syncedand of course testing, not to mention.
-
Not SyncedSo, what we need to require here,
as I said. -
Not SyncedOne thing is we will need a longer support
phase. -
Not SyncedThe number of packages fortunately is
much lower. -
Not SyncedAs I said, something like 200 at most is
what we're currently heading for -
Not Syncedfor most of our devices.
-
Not SyncedWe have the need to both build natively and
cross build predominantly -
Not Syncedin the development phase,
-
Not Syncedbut there might also cases where it might
be useful for a product image -
Not Syncedbut predominantly it's for development
phase, you want to -
Not Synced??? when you are building on on x64 ARM
for example. -
Not SyncedThe binary source packages should be
managed and reproducible. -
Not SyncedThe license compliance already
mentioned. -
Not SyncedAnd the testing activity is also something
that we want to improve on further.
- Title:
- Getting (more) Debian into our civil infrastructure
- Description:
-
more » « less
Talk given by Jan Kiszka at Minidebconf Hamburg 2018
https://meetings-archive.debian.net/pub/debian-meetings/2018/miniconf-hamburg/2018-05-20/civil_infrastructure.webm - Video Language:
- English
- Team:
Debconf
- Project:
- 2018_mini-debconf-hamburg
- Duration:
- 35:02
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure | |
|
|
tvincent edited English subtitles for Getting (more) Debian into our civil infrastructure |