Skip to content

Rename and refactor bootstrap, implement basic provisioning functions #140

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
swagner-de wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Rename and refactor bootstrap, implement basic provisioning functions #140

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
108 changes: 91 additions & 17 deletions api/core/v1alpha1/device_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,10 @@
package v1alpha1

import (
"crypto/rand"
"encoding/hex"
"fmt"

metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
)

Expand All @@ -16,7 +20,7 @@ type DeviceSpec struct {
// Bootstrap is an optional configuration for the device bootstrap process.
Copy link
Contributor

@felix-kaestner felix-kaestner Dec 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// Bootstrap is an optional configuration for the device bootstrap process.
// Provisioning is an optional configuration for the device provisioning process.

nit: this comment should be updated.

// It can be used to provide initial configuration templates or scripts that are applied during the device provisioning.
// +optional
Bootstrap *Bootstrap `json:"bootstrap,omitempty"`
Provisioning *Provisioning `json:"provisioning,omitempty"`
}

// Endpoint contains the connection information for the device.
Expand Down Expand Up @@ -48,11 +52,40 @@ type TLS struct {
Certificate *CertificateSource `json:"certificate,omitempty"`
}

// Bootstrap defines the configuration for device bootstrap.
type Bootstrap struct {
// Template defines the multiline string template that contains the initial configuration for the device.
// Provisioning defines the configuration for device bootstrap.
type Provisioning struct {
// Image defines the image to be used for provisioning the device.
// +required
Template TemplateSource `json:"template"`
Image Image `json:"image"`

// BootScript defines the script delivered by a TFTP server to the device during bootstrapping.
// +optional
BootScript TemplateSource `json:"bootScript"`
}

// ChecksumType defines the type of checksum used for image verification.
// +kubebuilder:validation:Enum=SHA256;MD5
type ChecksumType string

const (
ChecksumTypeSHA256 ChecksumType = "SHA256"
ChecksumTypeMD5 ChecksumType = "MD5" //nolint: usestdlibvars
)

type Image struct {
// URL is the location of the image to be used for provisioning.
// +required
URL string `json:"url"`

// Checksum is the checksum of the image for verification.
// +required
// kubebuilder:validation:MinLength=1
Checksum string `json:"checksum"`

// ChecksumType is the type of the checksum (e.g., sha256, md5).
// +required
// +kubebuilder:default=MD5
ChecksumType ChecksumType `json:"checksumType"`
}

// TemplateSource defines a source for template content.
Expand Down Expand Up @@ -105,6 +138,14 @@ type DeviceStatus struct {
// +optional
FirmwareVersion string `json:"firmwareVersion,omitempty"`

// Provisioning is the list of provisioning attempts for the Device.
//+listType=map
//+listMapKey=startTime
//+patchStrategy=merge
//+patchMergeKey=startTime
//+optional
Provisioning []ProvisioningInfo `json:"provisioning,omitempty"`

// Ports is the list of ports on the Device.
// +optional
Ports []DevicePort `json:"ports,omitempty"`
Expand All @@ -122,6 +163,47 @@ type DeviceStatus struct {
Conditions []metav1.Condition `json:"conditions,omitempty" patchStrategy:"merge" patchMergeKey:"type"`
}

type ProvisioningInfo struct {
StartTime metav1.Time `json:"startTime"`
Token string `json:"token"`
//+optional
EndTime metav1.Time `json:"endTime,omitzero"`
//+optional
RebootTime metav1.Time `json:"reboot,omitzero"`
//+optional
Error string `json:"error,omitempty"`
}

func (d *Device) GetActiveProvisioning() *ProvisioningInfo {
for i := range d.Status.Provisioning {
if d.Status.Provisioning[i].EndTime.IsZero() {
return &d.Status.Provisioning[i]
}
}
return nil
}

func (d *Device) CreateProvisioningEntry() (*ProvisioningInfo, error) {
if d.Status.Phase != DevicePhaseProvisioning {
return nil, fmt.Errorf("device is in phase %s, expected %s", d.Status.Phase, DevicePhaseProvisioning)
}
active := d.GetActiveProvisioning()
if active != nil {
return nil, fmt.Errorf("device has an active provisioning with StartTime %s", active.StartTime.String())
}
token := make([]byte, 32)
_, err := rand.Read(token)
if err != nil {
return nil, err
}
entry := ProvisioningInfo{
StartTime: metav1.Now(),
Token: hex.EncodeToString(token),
}
d.Status.Provisioning = append(d.Status.Provisioning, entry)
return &entry, nil
}

type DevicePort struct {
// Name is the name of the port.
// +required
Expand All @@ -137,7 +219,7 @@ type DevicePort struct {

// Transceiver is the type of transceiver plugged into the port, if any.
// +optional
Trasceiver string `json:"transceiver,omitempty"`
Transceiver string `json:"transceiver,omitempty"`

// InterfaceRef is the reference to the corresponding Interface resource
// configuring this port, if any.
Expand All @@ -146,14 +228,16 @@ type DevicePort struct {
}

// DevicePhase represents the current phase of the Device as it's being provisioned and managed by the operator.
// +kubebuilder:validation:Enum=Pending;Provisioning;Active;Failed
// +kubebuilder:validation:Enum=Pending;Provisioning;Active;Failed;ProvisioningCompleted
type DevicePhase string

const (
// DevicePhasePending indicates that the device is pending and has not yet been provisioned.
DevicePhasePending DevicePhase = "Pending"
// DevicePhaseProvisioning indicates that the device is being provisioned.
DevicePhaseProvisioning DevicePhase = "Provisioning"
// DevicePhaseProvisioningCompleted indicates that the device provisioning has completed and the operator is performing post-provisioning tasks.
DevicePhaseProvisioningCompleted DevicePhase = "ProvisioningCompleted"
// DevicePhaseActive indicates that the device has been successfully provisioned and is now ready for use.
DevicePhaseActive DevicePhase = "Active"
// DevicePhaseFailed indicates that the device provisioning has failed.
Expand Down Expand Up @@ -211,11 +295,6 @@ func (d *Device) GetSecretRefs() []SecretReference {
refs = append(refs, d.Spec.Endpoint.TLS.Certificate.SecretRef)
}
}
if d.Spec.Bootstrap != nil {
if d.Spec.Bootstrap.Template.SecretRef != nil {
refs = append(refs, d.Spec.Bootstrap.Template.SecretRef.SecretReference)
}
}
for i := range refs {
if refs[i].Namespace == "" {
refs[i].Namespace = d.Namespace
Expand All @@ -227,11 +306,6 @@ func (d *Device) GetSecretRefs() []SecretReference {
// GetConfigMapRefs returns the list of configmaps referenced in the [Device] resource.
func (d *Device) GetConfigMapRefs() []ConfigMapReference {
refs := []ConfigMapReference{}
if d.Spec.Bootstrap != nil {
if d.Spec.Bootstrap.Template.ConfigMapRef != nil {
refs = append(refs, d.Spec.Bootstrap.Template.ConfigMapRef.ConfigMapReference)
}
}
for i := range refs {
if refs[i].Namespace == "" {
refs[i].Namespace = d.Namespace
Expand Down
Loading
Loading