The gadget snap is responsible for defining and configuring system properties specific to one or more devices.
The gadget metadata and content defines:
connections:
section are executed on the device’s first boot only. Later changes to this section – that is, changes added to the device at run time through gadget refreshes – are not applied.See Building a gadget snap for details on how a gadget snap can be built. For store deployment, gadget snaps must be produced by the device brand, as defined in the model assertion, or a reference gadget must be used. It is perfectly possible for different models to share a gadget snap.
A typical gadget snap will consist of the following:
In addition to traditional snap metadata, the gadget snap also holds some setup files fundamental to the initialisation and lifecycle of the device:
type: gadget
explicitly defined.The following gadget repositories contain the gadget snap definitions for amd64 (64 bit PC Gadget Snap) and the Raspberry Pi family of devices supported by Ubuntu Core:
In addition to the above, the IoT Devices Field team maintains a GitHub repository with source code branches that contain templates for the following device architectures:
In the near future, we expect to add a RISC-V reference gadget snap to this list.
Two YAML keys are used to describe your target device:
defaults:
<snap id>:
<key>: <value>
In addition to <snap id>
, it is also possible to use system
to define system-wide configuration options, similar to running snap set system key=value
:defaults:
system:
<key>: <value>
Defaults only become available during snap installation.
Values in defaults:
(other than system:
) are not consumed and do not become available until either the configure hook or the default-configure hook are run as part of the corresponding snap installation. system:
values are set immediately.
Each volume entry is described by:
grub
, u-boot
)mbr
. Defaults to gpt
if unspecified.Volumes define the structure and content of the images to be written into one or more block devices of the gadget device. Each volume in the mapping represents a different image for a “disk” in the device.
Ubuntu Core typically uses the following storage partitions:
ubuntu-save is mandatory on an encrypted system. The initramfs bootstrapped from ubuntu-boot is responsible for decrypting both the ubuntu-save and ubuntu-data partitions.
ubuntu-data needs to be the last partition. No extra partitions can be inserted between ubuntu-boot, ubuntu-save and ubuntu-data. If extra partitions are required, they need to be declared and created before ubuntu-boot.
The structure section lists entities with gadget data inside the image, most of which are partitions with a file system inside, with the exception of structures of type: bare, which can describe a region of data without a corresponding entry in the partition table.
There are two system options that can be used to add new kernel boot parameters to a system that has been deployed and is running:
The second setting can be run (dangerously) without any prior configuration, but the first setting will permit only boot parameters verified against an allow list defined within the gadget snap.
The allow list defines both parameters and their possible arguments, and takes takes following format:
kernel-cmdline:
allow:
- kernel-parameter-1=1
- kernel-parameter-2=*
The *
character can be used as a wildcard to accept any parameter argument. It can not be used to limit an argument’s scope. For example, kernel-parameter-2=*
is acceptable, but kernel-parameter-2=a*
is not.
See Modifying kernel boot parameters for more details on defining kernel boot parameters.
kernel-cmdline:
allow:
- kernel-parameter-1=1
- kernel-parameter-2=*
To which we should add
append:
- kernel-parameters-3=value
remove:
- console=ttyS0
- panic=*
The parameters from append
will be added to the default command line. The parameters matched by remove
will be removed from the default command line.
The meta/gadget.yaml
file contains the basic metadata for gadget-specific functionality, including a detailed specification of which structure items compose an image. The latter is used both by snapd and by ubuntu-image when creating images for these devices.
A gadget snap’s boot assets can also be automatically updated when the snap is refreshed. See Updating gadget boot assets for further details.
The following specification defines what is supported in gadget.yaml
:
# Define the format of this file. The default and latest format is zero.
# Clients reading this file must reject it the format is greater than
# the supported one. (optional)
format: <int>
# Default configuration options for defined snaps, applied on installation.
# The snap ID may be discovered via the snap info command.
# Since 2.33 snap ID can be the "system" nick to cover the system
# configuration. (optional)
defaults:
<snap id>:
<key>: <value>
# Interface connection instructions for plugs and slots of seeded
# snaps to connect at first boot. snap IDs can be the "system"
# nick as well. Omitting "slot" in an instruction is allowed
# and equivalent then to: slot: system:<plug>
# (since 2.34) (optional)
connections:
- plug: <plug snap id>:<plug>
slot: <slot snap id>:<slot>
# Defines the kernel boot parameter allow list. The * character can be used
# as a wildcard to accept any parameter argument. It can not be used to limit an
# argument’s scope. For example, kernel-parameter-2=* is acceptable, but
# kernel-parameter-2=a* is not.
kernel-cmdline:
allow:
- kernel-parameter-1=1
- kernel-parameter-2=*
# Volumes defining the structure and content for the images to be written
# into one or more block devices of the gadget device. Each volume in
# in the structure represents a different image for a "disk" in the device.
# (optional)
volumes:
# Name of volume and output image file. Must match [a-z-]+. (required)
<volume name>:
# 2-digit hex code for MBR disk ID or GUID for GPT disk id. (optional)
id: <id>
# Bootloader in the volume. Required in one volume. (required/optional)
bootloader: grub | u-boot
# Which partitioning schema to use. Defaults to gpt. (optional)
schema: mbr | gpt | mbr,gpt
# Structure defines layout of the volume, including partitions,
# Master Boot Records, or any other relevant content. (required)
structure:
- # Structure value is a list.
# Structure item name. There's an implementation-specific constraint
# on the maximum length. The maximum length of a partition name
# for GPT is 36 characters in the UTF-16 character set. (optional)
name: <name>
# GPT unique partition id, disallowed on MBR volumes. (optional)
id: <id>
# Role defines a special role for this item in the image. (optional)
# Must be either unset, or one of:
# mbr - Master Boot Record of the image.
# system-seed - Partition holding first-stage/recovery boot loader and at
# least one recovery system containing the following
# set of snaps: base, kernel, gadget and application snaps
# system-boot - Partition holding the boot assets.
# system-data - Partition holding the main operating system data.
# system-boot-image - Partition holding kernel images for the Little Kernel bootloader.
# system-boot-select - Partition holding state for snapd Little Kernel support.
# system-save - Partition for Ubuntu Core to store backup data relative to device
# identity and to facilitate recovery or re-install.
#
# A structure with role:system-data must either have an implicit
# file system label, or 'writable'.
# A structure with role:system-boot-select must have 'snapbootsel' label.
role: mbr | system-boot | system-data | system-boot-image | system-boot-select | system-save
# Type of structure. May be specified as a two-hex-digit MBR partition
# type, a GPT partition type GUID, or both on hybrid schemas. The
# special value `bare` says to not create a disk partition for this
# structure. (required)
type: <mbr type> | <gpt guid> | <mbr type>,<gpt guid> | bare
# Size for structure item. Maximum of 446 for the mbr role. (required)
size: <bytes> | <bytes/2^20>M | <bytes/2^30>G
# The offset from the beginning of the image. Defaults to right after
# prior structure item. (optional)
offset: <bytes> | <bytes/2^20>M | <bytes/2^30>G
# OffsetWrite describes a 32-bit address within the volume at which the
# offset of the current structure will be written. When this feature was
# first implemented, the position could be specified as a byte-offset
# relative to the start of any named structure in the volume. However,
# its scope has now been limited to only accept a structure with an
# offset of 0, which implies the offset will always be absolute. This
# should not cause any issues as the only known use case for this is to
# set an address in an MBR. Writes outside of the first structure
# now also blocked.
# (optional)
offset-write: [<name>+]<bytes> |
[<name>+]<bytes/2^20>M |
[<name>+]<bytes/2^30>G
# Filesystem type. Defaults to none. (optional)
filesystem: none | fat16 | vfat | ext4
# Filesystem label. Defaults to name of structure item. (optional)
filesystem-label: <label>
# Content to be copied from gadget snap into the structure. This
# field takes a list of one of the following formats. (required)
content:
# Copy source (relative to gadget base directory) into filesystem
# at target (relative to root). Directories must end in a slash.
- source: <filename> | <dir>/ # (required)
target: <filename> | <dir>/ # (required)
# Dump image (relative to gadget base directory) of the raw data
# as-is into the structure at offset. If offset is omitted it
# defaults to right after the prior content item.
- image: <filename> # (required)
offset: <bytes> | <bytes/2^20>M | <bytes/2^30>G # (optional)
offset-write: (see respective item above) # (optional)
size: <bytes> | <bytes/2^20>M | <bytes/2^30>G # (optional)
# Support automatic asset updates. (optional)
update:
# update only if the new edition is higher than the old edition.
edition: uint32
# This field takes a list of files to be preserved.
# No support for preserving inside images.
# i.e. update will overwrite the whole image in this case.
preserve:
- <filename>
device-tree: bcm2709-rpi-3-b-plus
volumes:
pi:
schema: mbr
bootloader: u-boot
structure:
- name: ubuntu-seed
role: system-seed
filesystem: vfat
type: 0C
size: 1200M
content:
- source: boot-assets/
target: /
- name: ubuntu-boot
role: system-boot
filesystem: vfat
type: 0C
# what's the appropriate size?
size: 750M
content:
# TODO:install the boot.sel via snapd instead of via the gadget
- source: boot.sel
target: uboot/ubuntu/boot.sel
# NOTE: ubuntu-save is optional for unencrypted devices like the pi, so
# this structure can be dropped in favor of a different partition for
# users who wish to instead use a different partition, since with MBR we
# are limited to only 4 primary partitions.
# TODO: look into switching over to GPT, the pi bootloader firmware now
# has support for this
- name: ubuntu-save
role: system-save
filesystem: ext4
type: 83,0FC63DAF-8483-4772-8E79-3D69D8477DE4
size: 16M
- name: ubuntu-data
role: system-data
filesystem: ext4
type: 83,0FC63DAF-8483-4772-8E79-3D69D8477DE4
# XXX: make auto-grow to partition
size: 1500M
connections:
- plug: LVkazk0JLrL0ivuHRlv3wp3bK1nAgwtN:account-control
- plug: LVkazk0JLrL0ivuHRlv3wp3bK1nAgwtN:network-manager
slot: RmBXKl6HO6YOC2DE4G2q1JzWImC04EUy:service
- plug: LVkazk0JLrL0ivuHRlv3wp3bK1nAgwtN:shell-config-files
slot: system:system-files
The optional prepare-device
hook will be called on the gadget at the start of the device initialisation process, after the gadget snap has been installed.
The hook will also be called if this process is retried later from scratch in case of initialisation failures.
The device initialisation process is, for example, responsible for setting the serial identification of the device through an exchange with a device service.
The prepare-device
hook can for example redirect this exchange and dynamically set options relevant to it.
One must ensure that registration.proposed-serial
is set to a unique value across all devices of the brand and model and that it does not contain a /
. It is going to be used as the “serial number” (a string, not necessarily a number) part of the identification in case the device service supports setting it or requires it, as is the case with the serial-vault. Important: Ensure the -s
option is used with set
when setting the serial.
#!/bin/sh
# optionally set the url of the service
snapctl set device-service.url="https://device-service"
# set optional extra HTTP headers for requests to the service
snapctl set device-service.headers='{"api-key": "API-KEY-VALUE"}'
# set as offline to prevent the system from fetching a device serial assertion
# and unset to restore the default functionality
snapctl set device-service.access=offline
# If device-service.access and device-service.url are both unset, then the
# store.access system option will be used to determine whether or not a device
# serial assertion should be fetched
# set an optional proposed serial identifier, depending on the service
# this can end up being ignored
#
# this might need to be obtained dynamically. as the expected value must be a JSON string
# one must be careful with proper shell quotation especially if using command
# substitution, e.g.:
# snapctl set -s registration.proposed-serial='"'"$(get-serial-number)"'"'
snapctl set -s registration.proposed-serial="DEVICE-SERIAL"
# optionally pass details of the device as the body of registration request,
# the body is text, typically YAML;
# this might need to be obtained dynamically
snapctl set registration.body='mac: "00:00:00:00:ff:00"'
Last updated 5 months ago.