[nrf fromlist] west: runners: Add ncs-provision to west flash command #2894
Conversation
gchwier
changed the title
There was a problem hiding this comment.
I really do not want this amount of out-of-tree code in this file. It will be a nightmare to keep in sync.
Our options are:
- Have everything, including provisioning, upstream (we could call it
--provisioninstead). We already did something similar with the H20 SUIT support, where it was upstream although only needed for downstream - Use an extension command
west ncs-provision - Change the bare minimum in this file, put the logic elsewhere
I fully agree, which is why I added the DNM label (unfortunately, I can't change the PR to draft status). I created this as a POC to demonstrate how we can test a simple application without manual steps, eliminating the need for pytest harness in Twister. Where is the issue with west ncs-provision? FYI @nvlsianpu |
There is a |
I forgot about
or
An option would be to extend |
gchwier
force-pushed
the
grch-west-flash-with-provision
branch
from
505a62b to
0d6a1a7
Compare
gchwier
changed the title
gchwier
force-pushed
the
grch-west-flash-with-provision
branch
2 times, most recently
from
f391ea9 to
cb24635
Compare
Added automatic KMU key provisioning, when keyfile.json file exists in the build directory. This enables automated key provisioning during the flashing process to enable testing nRF54L aplications using Twister. Only applicable on nrfutil runner. Upstream PR #: 90605 Signed-off-by: Grzegorz Chwierut <[email protected]>
gchwier
force-pushed
the
grch-west-flash-with-provision
branch
from
cb24635 to
696147c
Compare
|
Added automatic KMU key provisioning for both NSIB and MCUboot.
A new
--ncs-provisioncommand line option added to nrfutil runner.This enables automated key provisioning during the flashing process, to enable testing nRF54L aplications (with NSIB and/or MCUboot) using Twister.
For testing:
app with NSIB:
west build -p -b nrf54l15dk/nrf54l15/cpuapp $ZEPHYR_BASE/samples/hello_world -d build-54l-nsib -- -DSB_CONFIG_SECURE_BOOT_APPCORE=ywest flash --skip-rebuild -d build-54l-nsib --erase --ncs-provisionapp with NSIB + MCUboot (with enabled KMU keys)
west build -p -b nrf54l15dk/nrf54l15/cpuapp $ZEPHYR_BASE/samples/hello_world -d build-54l-nsib_mcuboot_kmu -- -DSB_CONFIG_SECURE_BOOT_APPCORE=y -DSB_CONFIG_BOOTLOADER_MCUBOOT=y -DSB_CONFIG_MCUBOOT_SIGNATURE_USING_KMU=ywest flash --skip-rebuild -d build-54l-nsib_mcuboot_kmu --erase --ncs-provisionFor testing with Twister, one can revert that commit:
nrfconnect/sdk-nrf@f4c0cc0
and run:
$ZEPHYR_BASE/scripts/twister -c -T tests/subsys/bootloader/boot_chains -p nrf54l15dk/nrf54l15/cpuapp --device-testing --device-serial /dev/ttyACM1 --west-flash="--recover,--ncs-provision" --enable-slow -vv -ll debug(only boot_chains, bacause b0_lock causing rolling reboot)