Over-the-Air (OTA) Update Walkthrough

Use the Golioth Firmware SDK for all Zephyr projects

The Golioth Zephyr SDK is deprecated. Please use the Golioth Firmware SDK. (Migration Guide)

Over-the-Air (OTA) updates are a type of Device Firmware Upgrade (DFU); for this sample let's consider the two terms synonymous. In this page we'll walk through the DFU sample found in the Golioth Zephyr (and NCS) SDK.

We will target the Nordic nRF9160dk, however these step are portable to all other supported boards.

Overview

Expected Outcome

By the end of this page your device will download, verify, install, and run an updated firmware version and report the results to the Golioth Console.

OTA Update Sample Workflow

Build and flash the initial DFU sample application
Use the serial shell to set the device credentials
Rebuild the firmware with new version number (the update)
Upload the signed/versioned firmware as an artifact
Create a release from the artifact and roll it out to the device
Observe the device reporting the update version number

Running the OTA Sample

1. Initial build and flash

Navigate to the Golioth module in your zephyr install. If you followed Golioth NCS Build Environment this will be in the golioth-ncs-workspace/module/lib/golioth directory. Build and flash the sample code.

west build -b nrf9160dk_nrf9160_ns samples/dfu -p
west flash

This will build and run v0.0.0 firmware on the Nordic nRF9160 development kit.

Building and flashing MCUboot to other devices

Images for Nordic targets are automatically signed during the build process and do not require an extra manual step for signing.

Click to reveal details on MCUboot and signing binaries

The README in the Golioth DFU sample discusses building MCUBoot for other architectures.

Signing application code is also discussed in the sample's README. It should follow a process similar to the following:

# After building your app image, sign the binary:
west sign -t imgtool -- --key WEST_ROOT/bootloader/mcuboot/root-rsa-2048.pem
# Flash a signed app to a device already running the MCUboot bootloader:
west flash --bin-file build/zephyr/zephyr.signed.bin --hex-file build/zephyr/zephyr.signed.hex

2. Pass credentials to the device

The Golioth DFU sample stores the device credentials in the settings partition of device. Use a serial terminal to connect to the nRF9160dk. The settings set command should be used to set golioth/psk-id and golioth/psk.

You will receive confirmation after setting each of these values:

uart:~$ settings set golioth/psk-id my-device@my-project
Setting golioth/psk-id to my-device@my-project
Setting golioth/psk-id saved as my-device@my-project
uart:~$ settings set golioth/psk my_strong_password
Setting golioth/psk to my_strong_password
Setting golioth/psk saved as my_strong_password
uart:~$

Where do I find my device credentials?

Credentials can be copied from the Device details page in the Golioth Console.

3. Rebuild firmware with new version number

Now build the application a second time. Adding the -DCONFIG_MCUBOOT_IMAGE_VERSION flag incorporates a new version number in the firmware.

west build -p -b nrf9160dk_nrf9160_ns samples/dfu -- -DCONFIG_MCUBOOT_IMAGE_VERSION=\"1.2.3\"

note

Do not run the west flash command. We will upload this binary to the Golioth Console and it will be loaded on the device via Over-The-Air (OTA) update.

4. Upload new firmware to the Golioth Console

The new binary is located at build/zephyr/app_update.bin and can now be used to create an artifact on the Golioth Console.

Log into the Golioth Console
Navigate to Firmware-Updates→Artifacts menu and click the Create button
Enter the version number you used at compile time into the Artifact Version box
Click the upload icon and choose your app_update.bin file
Click Upload Artifact

5. Create a release and rollout the firmware update

You must create a release based on the artifact you just uploaded, then rollout that release to tell your devices there is an update available.

Log into the Golioth Console
Navigate to Firmware-Updates→Releases menu and click the Create button
Choose your newly updated artifact from the Artifacts dropdown box, then click Create Release
You will see a list of releases, click the Rollout button next to your new release.

Each time the device establishes an active connection with the Golioth Cloud it will compare the firmware version currently running with what is available from the server. Newer firmware releases will be automatically downloaded, verified, and flashed to the device.

6. Verify the new version

By default, the device will use MCUboot to verify the signature of new firmware and ensure that it can be run before switching. Once the new release is running, the device will report the version to Golioth which can be viewed in the Firmware tab of the Golioth Console.

Golioth Console showing firmware version

Summary

Over-the-Air updates are one of the most powerful tools in IoT. Running the Golioth DFU sample application has demonstrated how the firmware updates are compiled and versioned, the process for creating the artifact and rollout on the Golioth Console, and the device reporting back a new version number after a successful update.

Overview​

Expected Outcome​

OTA Update Sample Workflow​

Running the OTA Sample​

1. Initial build and flash​

2. Pass credentials to the device​

3. Rebuild firmware with new version number​

4. Upload new firmware to the Golioth Console​

5. Create a release and rollout the firmware update​

6. Verify the new version​

Summary​