modern update approaches for embedded linux
play

Modern Update Approaches for Embedded Linux Petros Angelatos April - PowerPoint PPT Presentation

Feb 21, 2024 •22 likes •352 views

Bringing DevOps to Devices Modern Update Approaches for Embedded Linux Petros Angelatos April 2016 About me Petros Angelatos CTO & Founder of resin.io @petrosagg Agenda The need for updates Update techniques Our

  1. Bringing DevOps to Devices Modern Update Approaches for Embedded Linux Petros Angelatos April 2016

  2. About me ● Petros Angelatos ● CTO & Founder of resin.io @petrosagg

  3. Agenda ● The need for updates ● Update techniques ● Our solution ○ Device software architecture ○ Yocto architecture ○ Host OS updates ○ Application updates ● Drone demo ● Questions

  4. The need for updates

  5. More powerful devices, more complex software Embedded software now demands the full lifecycle support we’ve been giving to web, cloud, and mobile.

  6. Importance of updates ● Recalling products costs money ● Higher exposure to security exploits ● Longer release cycles

  7. Importance of updates

  8. Importance of updates

  9. Importance of updates

  10. Importance of updates

  11. We’ve been there We’ve been supporting a network with hundreds of screens in 5 countries, for two years. We’ve had to go out on weekends, in the snow, with drills and USB sticks, upgrading software. We spent a lot of resources on infrastructure that had little to do with our specific application.

  12. Updates are difficult ● Poor connectivity ● Intermittent power ● Devices can be anywhere ● Devices could be in the middle of a critical operation ● A failed updated is a bricked device

  13. Various update techniques ● Image based ● Package based ● Containers

  14. Our solution

  15. On-device software architecture RESIN.IO APPLICATION EXTENSION CONTAINER CONTAINER CONTAINER(S) The Vision: 100% updateable User Resin Application Agent ● All containers update safely and reversibly. Our own agent (Supervisor) runs in its own Language Language Packages Packages container add-on Language functionality Language Runtime Runtime containers ● Layers shared between containers are (future) stored only once OS OS packages packages Base ● Docker and Yocto userspace update using Base Image Image conventional methods Container Engine (Docker) All software projects we depend on are ● under open source licenses Userspace Linux Kernel + Kernel Modules

  16. Yocto layer architecture Jethro overlayer Fido overlayer Daisy overlayer meta-resin meta-resin-common BSP BSP BSP BSP BSP BSP BSP BSP BSP poky (yocto) meta-openembedded

  17. Host OS updates ● Green/Blue method ● Has been discussed in Yocto mailing list ● Used by ○ CoreOS ○ ChromiumOS ○ Ubuntu Snappy ○ Probably others too

  18. Typical partition layout Linux and root Inactive Data Bootloader

  19. Atomic updates ● Immutable filesystem images ● Image as unit of deployment

  20. Host OS updates Linux and OS v1 Inactive Data Bootloader ● Initial device state ● Bootloader points to first root partition

  21. Host OS updates Linux and OS v1 Inactive Data Bootloader OS v2 ● Version 2 of the OS is downloaded into the inactive partition ● This operation can be interrupted without issues ● At the end, we can verify integrity and sync to disk

  22. Host OS updates Linux and OS v1 OS v2 Data Bootloader ● Copy bootfiles from the OS image to boot partition ○ Kernel ○ DTBs ○ Initrd ○ etc. ● Do it in a atomic fashion ○ Write tmp file ○ Sync to disk ○ Rename to destination ○ Sync again

  23. Host OS updates Linux and OS v1 OS v2 Data Bootloader ● Flip flag in bootloader to point to the new OS image and to the new OS kernel ● Reboot

  24. Host OS updates Linux and Inactive OS v2 Data Bootloader ● Final device state after reboot

  25. Failsafe updates ● With the help of hardware watchdogs ● With the help of bootloader logic ● The new version marks itself as stable after running self-test

  26. Container updates ● We use Docker ○ Originally ported Docker to ARM ● No reboot required ○ Move fast, brick nothing ● Efficient in bandwidth through layer sharing ● Efficient in disk IO through layer sharing ○ But we can do better with binary diffs

  27. Container updates ● We can build update strategies depending on requirements ● Can achieve true downtime updates

  28. Update strategies Strategy 1: Download then Kill (default) 3. OLD CONTAINER KILLED, 2. UPDATE DOWNLOADED 1. DOWNLOAD THE UPDATE NEW ONE STARTED DEVICE DEVICE DEVICE Supervisor Supervisor Supervisor Old New Old Old New New New Container Container Container Container Container Container Container

  29. Update strategies Strategy 2: Hand Over 1. DOWNLOAD THE 3. NEW CONTAINER 4. NEW CONTAINER ASKS 2. UPDATE DOWNLOADED UPDATE STARTED OLD CONTAINER TO GIVE UP DEVICE DEVICE DEVICE DEVICE Supervisor Supervisor Supervisor Supervisor Old Old New Old New Old New New Container Container Container Container Container Container Container Container On Timeout On Timeout DEVICE DEVICE Supervisor Supervisor Notifies Old New Old New Container Container Container Container 5. OLD CONTAINER 6. OLD CONTAINER KILLED IS READY TO DIE

  30. Drone demo

  31. Food for thought ● If you squint, containers look a lot like host OS images and vice versa Can we unify? We think yes . Come to our booth to talk about it :)

  32. Open source ● Resin OS Github Organisation https://github.com/resin-os ○ ● Resin device supervisor https://github.com/resin-io/resin-supervisor ○ ● Gitter https://gitter.im/resin-io/chat ○

  33. Questions? Get in touch: Petros Angelatos // petrosagg@resin.io // @petrosagg

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Bluetooth on modern Linux Szymon Janc szymon.janc@codecoup.pl Embedded Linux Conference, San

Bluetooth on modern Linux Szymon Janc szymon.janc@codecoup.pl Embedded Linux Conference, San

Bluetooth on modern Linux Szymon Janc szymon.janc@codecoup.pl Embedded Linux Conference, San Diego, 2016 Agenda Introduction Bluetooth technology recap Linux Bluetooth stack architecture Linux kernel BlueZ 5

743 views • 28 slides
A Comparison of Linux Software Update Technologies Matt Porter, Konsulko Group Embedded Linux

A Comparison of Linux Software Update Technologies Matt Porter, Konsulko Group Embedded Linux

A Comparison of Linux Software Update Technologies Matt Porter, Konsulko Group Embedded Linux Conference Europe 2016 Overview Background of Linux software update Linux software update strategies Detailed look at each FOSS project

400 views • 26 slides
. Linux/Moose endangered or extinct? An update on this atypical embedded Linux botnet by

. Linux/Moose endangered or extinct? An update on this atypical embedded Linux botnet by

. Linux/Moose endangered or extinct? An update on this atypical embedded Linux botnet by Olivier Bilodeau $ apropos Statically linked stripped ELF challenges Moose DNA (description) Moose Herding (the Operation) A Strange Animal Latest

727 views • 55 slides
Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux

Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux

Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux Conference Europe 2017, Prague Diego Rondini, www.kynetics.com What this session is about Manage and rollout software updates on Embedded Linux devices

664 views • 45 slides
GCC/Clang Optimizations for Embedded Linux Khem Raj, Comcast Embedded Linux Conference &

GCC/Clang Optimizations for Embedded Linux Khem Raj, Comcast Embedded Linux Conference &

GCC/Clang Optimizations for Embedded Linux Khem Raj, Comcast Embedded Linux Conference & OpenIOT summit Portland, OR Introduction To Clang Native compiler FrontEnd to LLVM Infrastructure Supports C/C++ and Objective-C The

517 views • 20 slides
TOMOYO Linux A Lightweight and Manageable Security System for PC and Embedded Linux

TOMOYO Linux A Lightweight and Manageable Security System for PC and Embedded Linux

CE Linux Forum Worldwide Embedded Linux Conference 2007 April 17-19, 2007 TOMOYO Linux A Lightweight and Manageable Security System for PC and Embedded Linux http://tomoyo.sourceforge.jp/ Toshiharu Harada Tetsuo Handa NTT DATA

654 views • 47 slides
Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference 2017 Walt Miner ( @VStarWalt ) Community Manager, AGL , The Linux FoundaGon

721 views • 55 slides
Khem Raj Embedded Linux Conference 2014, San Jose, CA } What is GCC } General Optimizations

Khem Raj Embedded Linux Conference 2014, San Jose, CA } What is GCC } General Optimizations

Khem Raj Embedded Linux Conference 2014, San Jose, CA } What is GCC } General Optimizations } GCC specific Optimizations } Embedded Processor specific Optimizations } Approaches to speed up compile time } Additional tools }

419 views • 29 slides
Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan

Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan

Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan Lbbe <j.luebbe@pengutronix.de> Slide 1 - http://www.pengutronix.de 2017-10-23 Some Background Embedded Linux integration and

466 views • 32 slides
Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan

Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan

Automation beyond Testing and Embedded System Validation Embedded Linux Conference Europe Jan Lbbe <j.luebbe@pengutronix.de> Slide 1 - http://www.pengutronix.de 2017-10-23 Some Background Embedded Linux integration and

368 views • 20 slides
Virtual Memory and Linux Alan Ott Embedded Linux Conference April 4-6, 2016 About the Presenter

Virtual Memory and Linux Alan Ott Embedded Linux Conference April 4-6, 2016 About the Presenter

Virtual Memory and Linux Alan Ott Embedded Linux Conference April 4-6, 2016 About the Presenter Linux Architect at SoftIron 64-bit ARM servers and data center appliences Linux Kernel Firmware Userspace Training USB

1.04k views • 71 slides
Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014 September 7 th , Novi Sad, Serbia Agenda About Embedded Systems Hardware Specifics of Embedded Systems Embedded Linux Linux Device

244 views • 11 slides
How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester,

How to avoid writing device drivers for embedded Linux Chris Simmonds 2net Limited Winchester, UK chris@2net.co.uk Abstract Modern Linux kernels provide interfaces that use of the basic I/O functions that the driver provides. Writing

412 views • 4 slides
Embedded-Linux Wie komme ich zu einem Embedded-Linux-System? Andreas Klinger ak@it-klinger.de

Embedded-Linux Wie komme ich zu einem Embedded-Linux-System? Andreas Klinger ak@it-klinger.de

Embedded-Linux Wie komme ich zu einem Embedded-Linux-System? Andreas Klinger ak@it-klinger.de IT - Klinger http://www.it-klinger.de Linux-Tag Berlin 22.05.2013 Andreas Klinger 1 / 68 Teil I Embedded-Linux-System Andreas Klinger 2 / 68

717 views • 68 slides
TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux

TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux

TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux PDF version of ELC2007 slide is available: CE Linux Forum Wiki TomoyoLinux http://tree.celinuxforum.org/CelfPubWiki/TomoyoLinux (bookmark and

890 views • 48 slides
ELCE 2013 - Secure Embedded Linux Product (A Success Story) Marcin Bis http://bis-linux.com

ELCE 2013 - Secure Embedded Linux Product (A Success Story) Marcin Bis http://bis-linux.com

ELCE 2013 - Secure Embedded Linux Product (A Success Story) Marcin Bis http://bis-linux.com marcin@bis-linux.com Edinburgh - 2013.10.25 1 / 31 About me Marcin Bis Entrepreneur Embedded Linux: system development, kernel

623 views • 31 slides
GPU Direct IO with HDF5 John Ravi Quincey Koziol Suren Byna Motivation With

GPU Direct IO with HDF5 John Ravi Quincey Koziol Suren Byna Motivation With

GPU Direct IO with HDF5 John Ravi Quincey Koziol Suren Byna Motivation With large-scale computing systems are moving towards using GPUs as workhorses of computing file I/O to move data between GPUs and storage devices becomes

714 views • 34 slides
Preparatory Course in Computer programming experience Science Computer Science 1 : Theoretical

Preparatory Course in Computer programming experience Science Computer Science 1 : Theoretical

Context of this Lecture Computer Science 0 (Preparatory Course): Gain first Preparatory Course in Computer programming experience Science Computer Science 1 : Theoretical and practical foundations of computer science (D-ITET) Computer Science 2

641 views • 20 slides
Anne Bracy CS 3410 Computer Science Cornell University [K. Bala, A. Bracy, S. McKee, E. Sirer,

Anne Bracy CS 3410 Computer Science Cornell University [K. Bala, A. Bracy, S. McKee, E. Sirer,

Anne Bracy CS 3410 Computer Science Cornell University [K. Bala, A. Bracy, S. McKee, E. Sirer, and H. Weatherspoon] How does a processor interact with its environment? Computer System = Memory + Datapath + Control + Input + Output

460 views • 12 slides
RESTful Microservices from the Ground Up Mike Amundsen API Academy @mamund Agenda 9:00 -

RESTful Microservices from the Ground Up Mike Amundsen API Academy @mamund Agenda 9:00 -

RESTful Microservices from the Ground Up Mike Amundsen API Academy @mamund Agenda 9:00 - 9:45 : What are RESTful Microservices? 9:45 - 10:30 : Models, Messages, and Vocabularies 10:30 - 10:45 : BREAK 10:45 - 11:30 :

687 views • 65 slides
SWARM SWARM INTELLIGENCE INTELLIGENCE Milad Abolhassani Supervisor: Hamid Mir Vaziri 3 WHY?

SWARM SWARM INTELLIGENCE INTELLIGENCE Milad Abolhassani Supervisor: Hamid Mir Vaziri 3 WHY?

SWARM SWARM INTELLIGENCE INTELLIGENCE Milad Abolhassani Supervisor: Hamid Mir Vaziri 3 WHY? WHY? 4 WHAT KIND OF PROBLEMS? WHAT KIND OF PROBLEMS? 5 WHAT KIND OF PROBLEMS? WHAT KIND OF PROBLEMS? Optimization 5 WHAT KIND OF PROBLEMS?

1.55k views • 120 slides
Reference Monitors Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security

Reference Monitors Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security

Reference Monitors Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security Defense Mechanisms for Software Security Static enforcement of security properties Analyze the code before it is run (e.g., during compile

661 views • 34 slides
Jameson Rollins August 26, 2013 LIGO-G1300872-v1 Outline 1 Introduction 2 System description and

Jameson Rollins August 26, 2013 LIGO-G1300872-v1 Outline 1 Introduction 2 System description and

Advanced LIGO Guardian Review Jameson Rollins August 26, 2013 LIGO-G1300872-v1 Outline 1 Introduction 2 System description and behavior 3 Case study: IMC 4 Technical Issues and open questions 5 Status and Plans 6 Appendices Guardian scripts

1.48k views • 74 slides
Revealed 1 Zoom Webinar Etiquette Participants are muted, to speak unmute and introduce

Revealed 1 Zoom Webinar Etiquette Participants are muted, to speak unmute and introduce

Revealed 1 Zoom Webinar Etiquette Participants are muted, to speak unmute and introduce yourself Also utilize the raise hand feature or chat window for questions or comments We will use Zoom polls for questions and breakout rooms for

996 views • 56 slides

More recommend