DynamicDevices
diff --git a/‎.gitignore‎
Lines changed: 3 additions & 0 deletions b/‎.gitignore‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 8 additions & 1 deletion b/‎CONTRIBUTING.md‎
Lines changed: 8 additions & 1 deletion
diff --git a/‎README.md‎
Lines changed: 33 additions & 4 deletions b/‎README.md‎
Lines changed: 33 additions & 4 deletions
diff --git a/‎examples/board_test_app/Makefile‎
Lines changed: 19 additions & 0 deletions b/‎examples/board_test_app/Makefile‎
Lines changed: 19 additions & 0 deletions
diff --git a/‎examples/board_test_app/README.md‎
Lines changed: 78 additions & 0 deletions b/‎examples/board_test_app/README.md‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎examples/board_test_app/debug_remote.sh‎
Lines changed: 82 additions & 0 deletions b/‎examples/board_test_app/debug_remote.sh‎
Lines changed: 82 additions & 0 deletions
@@ -1,3 +1,6 @@
+# Example board test binary (built locally)
+examples/board_test_app/board_test_app
+
 # Rust
 /target/
 **/*.rs.bk
 
@@ -117,7 +117,9 @@ Work is tracked in [GitHub issues](https://github.com/DynamicDevices/rsgdb/issue
 
 **Foundation (closed issues):** Part A (**#1–#3**), session recording (**#4**), SVD baseline (**#5**), breakpoint/semihosting spike (**#6**), flash (**#7**), RTOS decode/log (**#8**). **Phase A/B** in-tree: RSP matrix + proxy tests, gdbinit example, `rsgdb::rtos` decode logs — see README **Key Features**.
 
-**Current capabilities (same as README “Current”):** RSP codec + TCP proxy, **managed native stub spawn** (`transport = native`, `[backend.spawn]` with `{port}`), `tracing` logging, TOML/env config, JSONL **record** + **`rsgdb replay`**, SVD register/field/enum-name memory annotations, `rsgdb flash`, RTOS packet summaries, CI + optional GDB/Zephyr E2E scripts.
+**Current capabilities (same as README “Current”):** RSP codec + TCP proxy, **managed native stub spawn** (`transport = native`, `[backend.spawn]` with `{port}`), **SSH remote gdbserver** (`transport = remote_ssh`, `[backend.remote_ssh]`; optional **`upload_local`/`upload_remote`** → `scp` before `ssh`; local `ssh`/`scp` + optional `RSGDB_SSH_PASSWORD`/`sshpass`), `tracing` logging, TOML/env config, JSONL **record** + **`rsgdb replay`**, SVD register/field/enum-name memory annotations, `rsgdb flash`, RTOS packet summaries, CI + optional GDB/Zephyr E2E scripts.
+
+**Project aim — zero-touch remote debugging:** move toward **one configured flow** (target address, SSH user, credentials via key or env) that automates **upload → gdbserver → proxy** without ad-hoc copy steps; see README **Design principles**, **Project Goals**, and roadmap row **Zero-touch remote debug**.
 
 **Roadmap — follow-ups:** Deeper probe integration (beyond managed TCP spawn; CLI `backend_type` stays a label). **Optional:** SVD value decode + recording correlation (see [#11](https://github.com/DynamicDevices/rsgdb/issues/11) history); TUI, logging export, proxy-side breakpoint management — open an issue before large changes. [#9](https://github.com/DynamicDevices/rsgdb/issues/9) tracks native-spawn history; close with `Closes #9` when you consider it fully done from the project’s side.
 
@@ -131,6 +133,11 @@ Work is tracked in [GitHub issues](https://github.com/DynamicDevices/rsgdb/issue
 
 Use this when a probe and target are available.
 
+**Linux target over SSH (`transport = remote_ssh`) — setup first**
+
+1. **One-time:** install your SSH public key on the target so `ssh`/`scp` and rsgdb do not depend on interactive passwords. From the repo root: `./examples/board_test_app/install_ssh_key.sh` (override host/user/port as needed; see `examples/board_test_app/README.md`).
+2. Point your config at `[backend.remote_ssh]` + `[proxy]` and connect GDB through rsgdb as in the main README. Optional: `examples/board_test_app/debug_remote.sh` for an end-to-end smoke.
+
 **Option A — stub already running (`transport = tcp`, default)**  
 1. Start your **backend** (e.g. OpenOCD) and note its **GDB TCP port** (often `3333`).  
 2. Start **rsgdb** so it listens for GDB and forwards to that port, e.g.  
 
@@ -7,6 +7,18 @@
 
 A Rust GDB **RSP proxy** with structured logging, optional CMSIS-SVD memory labels, JSONL session recording/replay, RTOS packet decode logs, and external flash orchestration — with room to grow into richer breakpoints and UIs.
 
+## Design principles
+
+rsgdb exists to make **remote debugging practical for embedded developers**: boards on the bench, in the lab, or over the network, without unnecessary ceremony. **Automation** and **reliability** are first-class goals, not afterthoughts.
+
+| Principle | What it means in practice |
+|-----------|---------------------------|
+| **Ease** | Few steps from “target is reachable” to GDB inspecting your ELF; sensible defaults; documented flows (config + helper scripts) that match how teams actually work. |
+| **Automation** | One place to describe the target (address, transport, optional binary upload); **`remote_ssh`** with optional **`scp`** so you are not hand-copying builds; preflight checks (e.g. SSH key access) before a long attach fails halfway. |
+| **Reliability** | Fail **early** with **actionable** errors (auth, ports, firewall, stub not listening); predictable behavior and exit codes; logging you can use in the field; CI and local E2E smoke where we can prove the path. |
+
+These principles align with **zero-touch remote debugging** below and inform roadmap work (fewer manual steps, clearer credential UX, stronger health checks over time).
+
 ## 🎯 Project Goals
 
 **rsgdb** aims to bridge the gap between traditional GDB debugging and modern embedded development needs by providing:
@@ -15,7 +27,8 @@ A Rust GDB **RSP proxy** with structured logging, optional CMSIS-SVD memory labe
 - **Advanced Breakpoint Management** (roadmap): Named breakpoints, conditional expressions, and hardware/software optimization — config and parsing exist; the proxy today **forwards** breakpoint RSP unchanged
 - **State Inspection** (partial today): Peripheral/register **labels** for memory traffic via CMSIS-SVD in logs; snapshots / deep state are not implemented yet
 - **Session Management**: JSONL **recording** and **`rsgdb replay`** mock-backend playback (see below)
-- **Backend Flexibility** (today): **`transport = tcp`** connects to an existing stub on **`proxy.target_host`:`proxy.target_port`**. **`transport = native`** spawns a configured command (`[backend.spawn] program` with `{port}`), waits for TCP on `bind_host`, then uses the same RSP path; the child is killed when the GDB session ends ([#9](https://github.com/DynamicDevices/rsgdb/issues/9)). `[backend].backend_type` / `--backend` is a **label** for logs only.
+- **Backend Flexibility** (today): **`transport = tcp`** connects to an existing stub on **`proxy.target_host`:`proxy.target_port`**. **`transport = native`** spawns a configured command (`[backend.spawn] program` with `{port}`), waits for TCP on `bind_host`, then uses the same RSP path; the child is killed when the GDB session ends ([#9](https://github.com/DynamicDevices/rsgdb/issues/9)). **`transport = remote_ssh`** runs **`gdbserver` on the target** over SSH; optional **`upload_local` / `upload_remote`** runs **`scp`** first so you are not forced to copy binaries by hand. `[backend].backend_type` / `--backend` is a **label** for logs only.
+- **Zero-touch remote debugging** (direction / aim): Reduce manual steps for **Linux targets** (e.g. Yocto boards): one config with **target address**, **login** (SSH user), and **credential** (SSH key or `RSGDB_SSH_PASSWORD` + `sshpass`) should drive **upload → gdbserver → proxy → GDB** where possible; more automation and polish are expected over time — see **Design principles** above and roadmap below.
 - **Modern Architecture**: Built with Rust for safety, performance, and reliability
 
 ## ✨ Key Features
@@ -29,7 +42,8 @@ A Rust GDB **RSP proxy** with structured logging, optional CMSIS-SVD memory labe
 - ▶️ **`rsgdb replay`** — load a recording and serve a **mock TCP backend** for one client (order-preserving playback / tests)
 - 📝 **SVD annotation (read-only)** — CMSIS-SVD → log labels for memory RSP (`m` / `M`): `Peripheral.REGISTER`, overlapping **fields**, and enumerated **variant names** where present (`target: rsgdb::svd`, debug)
 - ⚡ **`rsgdb flash`** — run a configured external flash tool (`[flash].program` with `{image}` substitution; OpenOCD/probe-rs/etc.)
-- 🔌 **`transport = native`** — spawn a GDB stub per session (`[backend.spawn] program` with `{port}`); TCP to loopback; teardown on disconnect
+- 🔌 **`transport = native`** — spawn a GDB stub **on this machine** per session (`[backend.spawn]` + `{port}`); teardown on disconnect
+- 🖧 **`transport = remote_ssh`** — run **`gdbserver` on the target** via **`ssh user@host …`** (`[backend.remote_ssh]` + `{port}`); optional **`upload_local`/`upload_remote`** → **`scp`** first; TCP to `proxy.target_host`:`proxy.target_port`; optional `RSGDB_SSH_PASSWORD` + `sshpass`
 - 🧵 **RTOS RSP decode / log (Zephyr-first)** — thread-extension packets are decoded and logged at `target: rsgdb::rtos` (debug). Thread *data* comes from your stub (e.g. OpenOCD **Zephyr** RTOS awareness); other RTOSes use the same GDB RSP when the stub implements them (see below).
 - 🧪 **CI + local E2E smoke** — `gdbserver` → `rsgdb` → `gdb` (batch), `scripts/e2e_gdb_smoke.sh` (Ubuntu job in **CI** workflow). **Zephyr `native_sim`** E2E (`scripts/e2e_zephyr_native_sim.sh`) runs in the **Zephyr E2E** workflow when those scripts/app change, on `main`/`develop`, weekly, or manually. See [CONTRIBUTING.md](CONTRIBUTING.md).
 - ✅ **Phase A (trust path)** — RSP codec matrix tests (`tests/rsp_codec_matrix.rs`, `scripts/e2e_rsp_regression.sh`), proxy TCP integration tests (`tests/proxy_integration.rs`).
@@ -86,12 +100,25 @@ rsgdb is a **transparent TCP proxy**: GDB speaks RSP to rsgdb; rsgdb forwards th
 | **rsgdb** | `0.0.0.0:3333` → `target_host:target_port` | `target extended-remote host:3333` |
 | **GDB** | — | rsgdb listen port |
 
-**Choosing `tcp` vs `native`**
+**Choosing `tcp` vs `native` vs `remote_ssh`**
 
 | Use | When |
 |-----|------|
 | **`transport = tcp`** (default) | The stub is **already running** (you started OpenOCD, probe-rs gdb, gdbserver, …). rsgdb **dials** `proxy.target_host`:`proxy.target_port`. |
-| **`transport = native`** | You want rsgdb to **spawn** the stub per GDB session with `[backend.spawn] program` and `{port}`, then connect to `bind_host` at that port. Ignores `target_host` / `target_port` for the backend. Kills the stub when GDB disconnects. |
+| **`transport = native`** | You want rsgdb to **spawn** the stub **on this machine** per GDB session with `[backend.spawn] program` and `{port}`, then connect to `bind_host` at that port. Kills the stub when GDB disconnects. |
+| **`transport = remote_ssh`** | The stub runs **on a remote host** (e.g. Yocto board). Optional **`upload_local`** + **`upload_remote`** run **`scp`** first (same auth as SSH). Then rsgdb runs **`ssh user@host …`** with `[backend.remote_ssh] program` (must include `{port}` → `proxy.target_port`), then connects TCP to **`proxy.target_host`:`proxy.target_port`**. Kills the **local** `ssh` process when GDB disconnects (typically ends remote `gdbserver`). Requires **OpenSSH** `ssh`/`scp` on PATH; optional **`RSGDB_SSH_PASSWORD`** + **`sshpass`** for non-interactive password auth. |
+
+#### Setting up a Linux target for `remote_ssh` debugging
+
+Do this **once per host/user** so `ssh`, `scp`, and rsgdb agree on the same auth (no password prompts in normal use).
+
+1. **Install your SSH public key on the target (recommended)** — from the repository root, run [`examples/board_test_app/install_ssh_key.sh`](examples/board_test_app/install_ssh_key.sh). Defaults match the example [`examples/board_test_app/rsgdb.remote.toml`](examples/board_test_app/rsgdb.remote.toml) (`fio` @ `192.168.2.139`). Override with `SSH_HOST`, `SSH_USER`, `SSH_PORT`, or positional `host` / `user`:
+   ```bash
+   ./examples/board_test_app/install_ssh_key.sh
+   ```
+   If you must pass the account password non-interactively (e.g. first-time automation), set `RSGDB_SSH_PASSWORD` and install **`sshpass`**; the script uses the same variable as rsgdb.
+2. **Or use password auth** — omit keys and rely on interactive prompts, or set **`RSGDB_SSH_PASSWORD`** + **`sshpass`** for rsgdb/`scp` (see table above).
+3. **Verify** — `ssh -p <port> user@host` should succeed without a password after step 1. Then use your `[backend.remote_ssh]` + `[proxy]` config, or follow [`examples/board_test_app/README.md`](examples/board_test_app/README.md) for a full smoke (`debug_remote.sh`).
 
 **Config:** `[proxy] listen_port`, `target_host`, `target_port`. **`timeout_secs`** applies only to **establishing** the TCP connection to the backend, not to idle GDB sessions (no read timeout on open connections).
 
@@ -307,11 +334,13 @@ Source of truth for ordering and scope: **[GitHub Issues](https://github.com/Dyn
 | **Native spawn backend** | `BackendTransport::Native` + `[backend.spawn]` (`{port}`), managed `Child` lifecycle, stderr capture | [#9](https://github.com/DynamicDevices/rsgdb/issues/9) (implemented) |
 | **Replay** | `rsgdb replay` + mock TCP backend from `.jsonl` | [#10](https://github.com/DynamicDevices/rsgdb/issues/10) (closed) |
 | **Richer SVD** | Overlapping fields + enum variant names in annotations; value decode / recording correlation follow-ups | [#11](https://github.com/DynamicDevices/rsgdb/issues/11) (baseline closed; follow-ups optional) |
+| **Zero-touch remote debug** | Fewer manual steps: remote IP + SSH identity + optional `scp` upload + `remote_ssh` gdbserver orchestration; expand credential UX and workflows over time | Aim (see **Project Goals**) |
 
 Older versioned bullets (v0.2–v0.4) below are **aspirational**; issue titles supersede them.
 
 ### Aspirational (not scheduled per-issue yet)
 - Enhanced logging export (JSON/CSV), advanced breakpoints, TUI, performance work — see **Planned** under Key Features and open an issue when starting.
+- Deeper **zero-touch remote debugging** (beyond current `scp` + `remote_ssh`): e.g. integrated workflows, fewer external tools, clearer security story for secrets — track as project aim above.
 
 ## 📄 License
 
 
@@ -0,0 +1,19 @@
+# Cross-compile for the target board (aarch64 example).
+# Yocto/Poky:  source <sdk>/environment-setup-aarch64-poky-linux  &&  make CC="$CC"
+#
+# Default is aarch64 cross; a shell-exported CC overrides this — use `make CC=aarch64-linux-gnu-gcc`
+# or `env -u CC make` if your environment forces host cc.
+CC := aarch64-linux-gnu-gcc
+CFLAGS ?= -O0 -g -Wall -Wextra -std=c11
+LDFLAGS ?=
+TARGET := board_test_app
+
+.PHONY: all clean
+
+all: $(TARGET)
+
+$(TARGET): main.c
+	$(CC) $(CFLAGS) -o $@ $< $(LDFLAGS)
+
+clean:
+	rm -f $(TARGET)
@@ -0,0 +1,78 @@
+# board_test_app — GDB smoke test on a Linux target
+
+Tiny C program: infinite loop, `volatile` globals/locals you can watch in GDB (`print g_counter`, breakpoints on `printf`, etc.).
+
+## First-time target setup (SSH)
+
+Before debugging with **`transport = remote_ssh`** (so `scp` + `ssh` work without typing a password every time):
+
+1. **Install your public key on the board** (one-time). From the **repository root**:
+   ```bash
+   ./examples/board_test_app/install_ssh_key.sh
+   ```
+   Defaults match `rsgdb.remote.toml` in this directory (`fio` @ `192.168.2.139`). Use `SSH_HOST`, `SSH_USER`, `SSH_PORT`, or `./examples/board_test_app/install_ssh_key.sh <host> <user>` to match your board. For a non-interactive password on that first run: `export RSGDB_SSH_PASSWORD=…` (requires **`sshpass`**).
+2. Confirm **`ssh`** to the target works without a password.
+3. Continue with **Build** and **Debug** below. See the main README **Setting up a Linux target for `remote_ssh` debugging** for the full project-wide checklist.
+
+## Build (aarch64 default)
+
+The Makefile defaults to **`aarch64-linux-gnu-gcc`**:
+
+```bash
+cd examples/board_test_app
+make
+```
+
+Host-only smoke build (x86_64): `make CC=gcc`
+
+With a **Yocto/Poky SDK** (adjust path), use the SDK compiler:
+
+```bash
+source /path/to/sdk/environment-setup-aarch64-poky-linux
+cd examples/board_test_app
+make CC="$CC"
+```
+
+## Deploy to the board
+
+**Manual:** `scp` the binary and `chmod +x` on the target.
+
+**With rsgdb** (`transport = remote_ssh`): set `upload_local` to this built `board_test_app` path and `upload_remote` to e.g. `/tmp/board_test_app` — rsgdb can **`scp`** before starting `gdbserver` (see main README).
+
+## Debug (gdbserver on board)
+
+### Automated (rsgdb `remote_ssh` + `scp`)
+
+From the **repository root**, with the board reachable at the address in `rsgdb.remote.toml` (default `192.168.2.139`):
+
+```bash
+cargo build --release
+cd examples/board_test_app && make && cd ../..
+export RSGDB_SSH_PASSWORD=…   # if using password auth; prefer SSH keys
+./examples/board_test_app/debug_remote.sh
+```
+
+Use **`gdb-multiarch`** on Ubuntu (not always `aarch64-linux-gnu-gdb`). Pass an **absolute** path to `file` if you run GDB by hand:
+
+```bash
+gdb-multiarch -ex "set debuginfod enabled off" \
+  -ex "file $(pwd)/examples/board_test_app/board_test_app" \
+  -ex "target extended-remote 127.0.0.1:3333"
+```
+
+### Manual gdbserver on target
+
+On the **target**:
+
+```bash
+/tmp/board_test_app &
+/tmp/gdbserver :2345 --attach $!
+# or: gdbserver :2345 /tmp/board_test_app
+```
+
+On the **host**: `transport = tcp` in rsgdb; point GDB at `127.0.0.1:<rsgdb listen port>`.
+
+```text
+(gdb) file /absolute/path/to/board_test_app
+(gdb) target extended-remote 127.0.0.1:3333
+```
@@ -0,0 +1,82 @@
+#!/usr/bin/env bash
+# End-to-end smoke: rsgdb (remote_ssh + scp) + gdb-multiarch to the board.
+# Usage from repository root:
+#   export RSGDB_SSH_PASSWORD=yourpassword   # if not using SSH keys
+#   ./examples/board_test_app/debug_remote.sh
+set -euo pipefail
+
+ROOT="$(cd "$(dirname "$0")/../.." && pwd)"
+cd "$ROOT"
+
+BIN="${ROOT}/examples/board_test_app/board_test_app"
+CFG="${ROOT}/examples/board_test_app/rsgdb.remote.toml"
+
+if [[ ! -f "$BIN" ]]; then
+	echo "Build the app first: cd examples/board_test_app && make" >&2
+	exit 1
+fi
+
+RSGDB_BIN="${ROOT}/target/release/rsgdb"
+if [[ ! -x "$RSGDB_BIN" ]]; then
+	echo "Building rsgdb release…" >&2
+	( cd "$ROOT" && cargo build --release )
+fi
+
+command -v gdb-multiarch >/dev/null || {
+	echo "Install gdb-multiarch (e.g. sudo apt install gdb-multiarch)" >&2
+	exit 1
+}
+
+# Match rsgdb.remote.toml (same defaults as install_ssh_key.sh). Skipped when using password auth.
+check_ssh_key_access() {
+	if [[ -n "${RSGDB_SSH_PASSWORD:-}" ]]; then
+		echo "RSGDB_SSH_PASSWORD is set; skipping SSH key check." >&2
+		return 0
+	fi
+	local ssh_host ssh_user ssh_port
+	ssh_host=$(awk -F'"' '/target_host/ {print $2; exit}' "$CFG")
+	ssh_user=$(awk -F'"' '/^user =/ {print $2; exit}' "$CFG")
+	ssh_port="${SSH_PORT:-}"
+	if [[ -z "$ssh_port" ]] && grep -qE '^ssh_port[[:space:]]*=' "$CFG" 2>/dev/null; then
+		ssh_port=$(awk -F'=' '/^ssh_port/ {gsub(/[^0-9]/,"",$2); print $2; exit}' "$CFG")
+	fi
+	[[ -z "$ssh_port" ]] && ssh_port=22
+	if [[ -z "$ssh_host" || -z "$ssh_user" ]]; then
+		echo "Could not parse target_host / user from $CFG" >&2
+		exit 1
+	fi
+	if ! ssh -p "$ssh_port" -o BatchMode=yes -o ConnectTimeout=10 -o StrictHostKeyChecking=accept-new \
+		"${ssh_user}@${ssh_host}" "echo ok" >/dev/null 2>&1; then
+		echo "SSH key access check failed for ${ssh_user}@${ssh_host} (port ${ssh_port})." >&2
+		echo "Install your key: ./examples/board_test_app/install_ssh_key.sh" >&2
+		echo "Or use password auth: export RSGDB_SSH_PASSWORD=... && $0" >&2
+		exit 1
+	fi
+	echo "SSH key access OK (${ssh_user}@${ssh_host}:${ssh_port})" >&2
+}
+
+check_ssh_key_access
+
+fuser -k 3333/tcp 2>/dev/null || true
+sleep 1
+
+echo "Starting rsgdb (scp + ssh gdbserver on connect)…" >&2
+"$RSGDB_BIN" --config "$CFG" 2>&1 &
+RPID=$!
+sleep 2
+
+cleanup() {
+	kill "$RPID" 2>/dev/null || true
+	wait "$RPID" 2>/dev/null || true
+}
+trap cleanup EXIT
+
+echo "Connecting GDB (batch)…" >&2
+gdb-multiarch -batch -nx \
+	-ex "set debuginfod enabled off" \
+	-ex "file $BIN" \
+	-ex "target extended-remote 127.0.0.1:3333" \
+	-ex "print g_counter" \
+	-ex "detach" \
+	-ex "quit"
+echo "OK." >&2