Speaker
Description
When we designed the OpenWrt One, the OpenWrt build system allowed us to easily create a self-contained source tarball that included everything needed for GPL and other compliance purposes. Because of its history in supporting embedded OS deployment on a wide range of heterogeneous devices, the OpenWrt build system has a variety of features that lend themselves to this swift assemblage of the right sources, which allows one to quickly assess supply chain security properties, among other benefits.
We'll briefly explore a bit of that build system history and how it got us the OpenWrt One sources before opening up discussion on how these features vary across build systems, and how we can achieve similar "ease of compliance" with GPL, FCC, CRA, and other agreements or regulations that are most efficiently handled early in the device development process, and are largely in the build system's purview.