mender-mcu is a fork of the mender-mcu-client project, created to extend its functionality and provide continued support from Northern.tech, the creators of Mender. This project is currently under construction, with the primary goal of enhancing the original work while integrating it more closely with Northern.tech's suite of products.
This repository is a work in progress. As we continue development, features and functionality may evolve significantly. We are actively working on expanding the capabilities of the original mender-mcu-client to better support a wider range of use cases.
While working on the first release of the project, we consider the main branch to be experimental,
while the stable versions can be found in separate Git branches like vX.Y-alias.
The decision to fork the original mender-mcu-client was made to:
- Extend Functionality: Introduce new features and enhancements that align with the broader Mender ecosystem.
- Provide Official Support: Ensure that the project receives the necessary attention and resources from Northern.tech to meet the needs of the community and enterprise users.
This guide is based on our Zephyr reference application mender-mcu-integration.
The reference application is intended to be used as a reference and a demonstration of how to
use mender-mcu as a Zephyr module. We therefore recommend that you start with this to
familiarize yourself with the API and how we set it up.
The policy is that the reference application's main branch will follow the latest stable branch of mender-mcu
(this repository).
In the mender-mcu-integration repository you will find:
- A reference
westworkspace for Zephyr OS builds, includingCMakeandKConfigconfigurations. - Sample application for how to use
mender-mcuAPIs. - A list of boards that we have so far tested.
We recommend starting there to understand how we have designed our solution and then coming back here for more in-depth information.
| Zephyr OS version |
|---|
| v3.7.0 |
The reference board for mender-mcu is the ESP32-S3-DevKitC.
See the Zephyr documentation for more information on getting started with Zephyr.
In order to use mender-mcu as a Zephyr module
in a West project, you will
need to add mender-mcu to your project's west manifest:
manifest:
projects:
- name: mender-mcu
url: https://github.com/mendersoftware/mender-mcu
revision: main
path: modules/mender-mcu
import: trueIf you already have a west workspace, you can simply add mender-mcu with the following command
inside the workspace after adding the project to the manifest:
west update
If you're starting from scratch, you can initialize a new workspace based on the manifest like so:
west init workspace --manifest-url https://url/to/repository-containing-manifest
cd workspace && west update
Zephyr provides tools for configuring projects, which are used to set Kconfig options. These options are used by Zephyr modules to configure their behavior.
The options for configuring mender-mcu are found in the menuconfig under Modules -> mender-mcu,
and are prefixed with MENDER_.
You can use either west build -t menuconfig or west build -t guiconfig to open
the configuration menu.
The following option must be set in any configuration:
MENDER_SERVER_TENANT_TOKENwhich is a token that identifies which tenant a device belongs to.
The most common options to modify are:
MENDER_SERVER_HOSTMENDER_CLIENT_UPDATE_POLL_INTERVALMENDER_CLIENT_INVENTORY_REFRESH_INTERVAL
See descriptions of the options in the menuconfig for more information.
The main API is exposed in mender-client.h. The most notable parts are:
-
Identity callback. The user needs to provide a callback that will return the identity. In most cases, this would be reading a unique device number like a MAC address. Read more about Mender identity in Mender Docs.
-
Network connect / Network release callbacks. In systems where the network is not always available, the client will invoke the network connect callback before doing operations that require connectivity (for example, checking for an update). Once network operations are completed, the network release callback will be invoked. They can be set to
NULLif the network is assumed to be always ready. -
Restart callback. To be called to trigger a device reset, for example after a fatal error.
-
Inventory setting. There is an explicit call to set the inventory. This will update the internal inventory of the client and sent to the Mender Server in the next inventory report.
-
User Provided Keys. The client can be configured to use a provided a keypair. If set to
NULL, the client will auto-generate its own keypair using ECDSA.
The Update Module API is exposed in mender-update-module.h.
Mender MCU models the Update Modules API which we have been using in the regular Mender client for years. Refer to the Update Modules chapter in Mender Docs for an introduction. In Mender MCU, the modules are not "executables" but rather rather a custom C function that is integrated with the client to handle each type of update.
We provide the zephyr-image Update Module, which implements the update process for a Zephyr OS
update integrated with MCUboot. Its source code
can be inspected for inspiration and a better understanding of the expected behavior of each state.
To use the zephyr-image Update Module, you need a board that supports
MCUboot. The following link will filter the officially supported boards that also support MCUboot:
As stated above, an Update Module for Mender MCU is set of customizable C functions. Concretely, once created, all Update Modules are identified by a C struct. The most important part of the struct is the array of callbacks, one to be called for each state.
See the state machine workflow diagram to learn about the flow between each state. An Update Module does not need to implement all of them, only the ones that are relevant for a particular type of update.
After writing the code, you need to register the Update Module into the Mender MCU. See the register
update module function in mender-client.h.
See this example from mender-mcu-integration for a demo. This implementation uses Zephyr's native networking APIs, see Zephyr's Networking Guide.
See this example from mender-mcu-integration for a demo.
The client expects the users to add the certificates using tls_credentials_add. See the
TLS credentials management
documentation for more information.
The mender-mcu client can take up to two certificates; typically one for the Server API calls, and
one for downloading Mender Artifacts from the Server storage. The latter is optional.
Example of how to add certificates to the client:
generate_inc_file_for_target(app
"path/to/certificates/Certificate1.cer"
"${ZEPHYR_BINARY_DIR}/include/generated/Cerficiate1.cer.inc"
)generate_inc_file_for_target
is a Zephyr CMake extension.
The certificates should be guarded by the CONFIG_NET_SOCKETS_SOCKOPT_TLS option,
Use CONFIG_MENDER_NET_CA_CERTIFICATE_TAG_SECONDARY_ENABLED to check if a secondary certificate is enabled.
The API for adding the certificates is provided by Zephyr, and can be used by including
zephyr/include/net/tls_credentials.h
You can add the certificate by calling tls_credential_add with the following arguments:
tag- The tag of the certificate - configured by setting either:CONFIG_MENDER_NET_CA_CERTIFICATE_TAG_PRIMARY- The tag for the primary certificateCONFIG_MENDER_NET_CA_CERTIFICATE_TAG_SECONDARY- The tag for the secondary certificate
type- The type of the certificate - should beTLS_CREDENTIAL_CA_CERTIFICATEdata- The certificate data - should be an array of unsigned characterslen- The length of the certificate data - should be the size of the array of unsigned characters
Example:
#include <zephyr/net/tls_credentials.h>
#if defined(CONFIG_NET_SOCKETS_SOCKOPT_TLS)
static const unsigned char ca_certificate_one[] = {
#include "Certificate1.cer.inc"
};
#endif
int add_cert(void) {
//...
ret = tls_credential_add(CONFIG_MENDER_NET_CA_CERTIFICATE_TAG_PRIMARY, TLS_CREDENTIAL_CA_CERTIFICATE, ca_certificate_one, sizeof(ca_certificate_one));
//...
}See this example from mender-mcu-integration for a demo.
Before intializing the client, you must set up the network connection, certificates, and an Update Module.
You must also define two structs:
mender_client_config_t with the fields defined in mender-client.h.
- The
device_typecan be set toNULL, as it is defined at build time
and
mender_client_callbacks_t with the callbacks defined in mender-client.h.
See The Mender client API .
After implementing the necessary callbacks and creating the structs,
the client can be initialized by calling mender_client_init, which
is defined in mender-client.h:
Example:
mender_client_init(&mender_client_config, &mender_client_callbacks));As mentioned in Update Modules API, you must also register one or more Update Modules. Without an Update Module, the client can run and report inventory, but it will not be able to perform any updates.
Registering zephyr-image Update Module (compiled in by default):
mender_zephyr_image_register_update_module());Inventory is enabled/disabled by setting the MENDER_CLIENT_INVENTORY option.
To use inventory, you will need a mender_keystore_t struct, which is defined in mender-client.h.
This struct contains the inventory of the client, and is enabled in the code by calling mender_inventory_set.
Example:
mender_keystore_t inventory[] = { { .name = "demo", .value = "demo" }, { .name = "foo", .value = "bar" }, { .name = NULL, .value = NULL } };
mender_inventory_set(inventory));Finally, you can activate the client by calling mender_client_activate:
mender_client_activate();After the client is activated, it will run on a workqueue thread, either a dedicated one
(default) or the system one (configurable with the options starting with CONFIG_SYSTEM_WORKQUEUE_).
From this thread, the client will regularly poll for updates and submit inventory.
See the building section in mender-mcu-integration for a list of the boards that we have tested, and for examples on how to build for them.
NOTE: Compression of artifacts is not supported, which is why we use --compression none
After building the client, you can create a Mender Artifact.
The update module must correspond with one of the ones registered during initialization of the client.
The device type must match the one set at build time - if you're unsure what this is, you can
check the value of MENDER_DEVICE_TYPE in the menuconfig, by default it uses Zephyr's BOARD.
The Artifact Name is arbitrary, but should be unique.
UPDATE_MODULE=<update_module>
ARTIFACT_NAME=<artifact_name>
DEVICE_TYPE=<device_type>
mender-artifact write module-image \
--type $UPDATE_MODULE \
--file build/zephyr/zephyr.signed.bin \
--artifact-name $ARTIFACT_NAME \
--device-type $DEVICE_TYPE \
--compression noneAfter creating the Artifact, you can upload it to the Mender Server and deploy it to your device.
See the documentation on deployments for more information.
We welcome and ask for your contribution. If you would like to contribute to Mender, please read our guide on how to best get started contributing code or documentation.
Mender is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.
The mender-mcu project is a fork from Joel Guittet's
mender-mcu-client licensed under the Apache
License, Version 2.0. See
LICENSE
We take security very seriously. If you come across any issue regarding security, please disclose the information by sending an email to [email protected]. Please do not create a new public issue. We thank you in advance for your cooperation.
- Join the Mender Hub discussion forum
- Follow us on Twitter. Please feel free to tweet us questions.
- Fork us on Github
- Create an issue in the bugtracker
- Email us at [email protected]
- Connect to the #mender IRC channel on Libera