Tag: yocto
-
Yocto security: Kernel Hardening
This is another blog post about securing your Yocto built systems: Introduction The Linux kernel is the cornerstone and stronghold of a Linux based system. Unlike user-space applications which run with limited privileges, if it’s compromised, there is almost no limit to what an attacker can do. While nothing is unbreakable, there are two types…
-
Yocto bookmark and new training dates
Bookmark After a brief announcement two weeks ago, here is the new Yocto command reference bookmark, in a format you can print and modify, according to the terms of the Creative Commons Attribution-ShareAlike license. In particular, the PDF version is ready to be printed. This way you will get 5 bookmarks on double-sided A4 paper.…
-
Yocto Security: Production and Development Images
This blog post is part of a series about securing your Yocto built systems: What to avoid So, you use Yocto to build an image for your embedded device. You tweak the image and distribution settings to get the features you need, and other developers use the SDK built by Yocto to create and build…
-
“Securing Yocto Built Systems” presentation slides
Last week, I gave a “Making Yocto Built Images More Secure” presentation at the Embedded Linux Conference in Amsterdam. The main goal was to share the research I’ve done so far for a customer project, and gather feedback from the audience. Here are a few highlights: Check out the slides at https://rootcommit.com/pub/conferences/2025/elce/yocto-security/yocto-security.pdf. In the next…
-
Seven steps to grow your embedded Linux skills
Do you already have a job in embedded Linux but wish to be given more challenging goals? Or are you in IT, already using Linux on your own laptop, and dreaming about landing an embedded Linux job, possibly starting as your own boss? Follow my advice in a patient and consistent way, and you will…
-
Virtual Packages in Yocto Project / OpenEmbedded
Understanding Virtual Packages in Yocto Project / OpenEmbedded If you are using Yocto, this post will help you learn about Virtual Packages: how they work, why they are useful, and how to create them step by step. We assume you are already familiar with: What is a Virtual Package? Imagine you have multiple implementations of…
-
Yocto: variable overrides tricks
I discovered a intriguing phenomenon while preparing my How to test the latest mainline Linux kernel or bootloader presentation at OpenEmbedded Workshop 2025. It turned out there was something incomplete in my understanding of BitBake variable overrides. Let’s take the example of a meta-mainline recipe from my Kernel Recipes: SRC_URI = “git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git;branch=linux-6.13.y;protocol=https” Then, depending on…
-
Introducing Yocto Project Overview Seminars
Following discussions with a customer, and as a teaser for our Yocto Project and OpenEmbedded course, we are now offering a 1-day overview seminar on this topic. The main goal is to give you a clear view of the Yocto Project and the value it can bring to your embedded Linux device projects. You will…
-
Booting the Raspberry Pi 5 with the Mainline Linux Kernel
If you have other boards, read on, these instructions support multiple other Raspberry Pi boards. Hardware In this tutorial, we assume you have the Raspberry Pi Debug Probe to access the board’s serial port. You could use the GPIO UARTs too, but they are neither enabled by default at the bootloader level nor as a…
-
Video replay: Yocto Project devtool hands-on
I’ve just produced a 4K video replay of my Devtool Hands-on Class at Yocto Project Summit 2024.12. Here are the main reasons for shooting such a video: All this should make this tutorial easier to follow. Tutorial details Hands-on class that demonstrates the features of devtool devtool is a powerful set of features that can…