F40 Change Proposal: IoT Simplified Provisioning (Self-Contained)

IoT Simplified Provisioning

:link: Summary

Offer Fedora IoT users a new, non-release blocking deliverable to deploy and configure Fedora IoT systems using a new tool called Simplified Provisioning.

:link: Owner

:link: Detailed Description

The Fedora IoT Simplified Provisioning tool uses the coreos-installer to write an OStree raw image straight to a disk specified in a kernel argument, without the need for a kickstart or user interaction. This type of installation is ideal for devices connected at the edge where connectivity can be slow or intermittent. This new, non-release blocking deliverable, offers users the ability to easily configure the system with Fido Device Onboarding or Ignition and allows for headless, secure, zero touch installations including optional automated disk encryption with enrollment into TPM2.

:link: Feedback

:link: Benefit to Fedora

The addition of the Fedora IoT Simplified Provisioning deliverable will benefit IoT users by allowing them to easily deploy Fedora IoT systems and leverage existing tools like Fido Device Onboarding and Ignition for configuration.

:link: Scope

  • Proposal owners:

    • Test building the new deliverable in Fedora infrastructure as part of the IoT compose process.
    • Update Fedora IoT documentation with usage details.
    • Update website so users can download artifacts.
  • Other developers:

  • N/A

  • Release engineering: N/A (not needed for this Change)

  • Policies and guidelines: N/A (not needed for this Change)

  • Trademark approval: N/A (not needed for this Change)

  • Alignment with Community Initiatives:

:link: Upgrade/compatibility impact

  • Not applicable to this change.

:link: How To Test

  • Testable by downloading the new ISO and deploying to a UEFI enabled edge device.

:link: User Experience

This change will enhance the Fedora IoT user experience by allowing users to easily customize Fedora IoT deployments and leverage new technologies like FIDO Device Onboarding for secure zero touch device onboarding of edge devices as well as Ignition to configure the device.

:link: Dependencies

N/A (not a System Wide Change)

:link: Contingency Plan

  • Contingency deadline: Beta
  • Blocks release? No.
  • Blocks product? No.

:link: Documentation

:link: Release Notes

I’m interested in taking part in provisioning test and user experience. I could work on documentation draft and ideas.

