eliot icon indicating copy to clipboard operation
eliot copied to clipboard

Published 20 hours ago verified publisher icon ernoaapa

OTA Updates for IoT devices

Open gswebspace opened this issue 6 years ago • 5 comments

Hi,

Is it possible to use elliot to deploy application updates to many( > hundreds) remote IoT devices in a secure manner ?

Assuming the devices are connected to the internet after initial setup.

(something similar to https://mender.io server)

(The only manual user action required should be to provide the new build/image and group of devices to deploy the update to, on a web page to complete the update )

gswebspace avatar May 05 '18 18:05 gswebspace

Hi @gswebspace! Sorry for the late response (need to find out why I don't get GitHub notifications about issues :/ ).

I have been thinking few variations how I should implement that into Eliot. There are some commercial options (like mender.io) but I would like to also keep the interface open and standardized so that it doesn't lock down the user to any specific provider. So that it would be pluggable one way or another.

I'm open to all kind of suggestions and ideas.

ernoaapa avatar May 16 '18 18:05 ernoaapa

Hi!

First of all, I want to say that I am fascinated with this project. I have some experience developing for IoT devices like raspberry, and this project is something really needed. I will try to dive into the code and help in everything I can.

About this issue, a solution could be to create a generic manager/broker service where devices could be attached to, all attached devices to it can be monitored and deployed. Obviously, this service should be running in a public server.

If you consider it interesting we can discuss more deeply

jmorte avatar Aug 09 '18 16:08 jmorte

Also since the new Raspberry Pi 3B+ came out with support for power over ethernet (PoE), There will be many such IoT devices connected to the internet in future.

Having large amount of devices to update manually is a pain. Especially if they are deployed in a place far from you. (Think different states and countries)

A secure (self-hosted) web interface for managing container image uploads and device monitoring can do the trick.

gswebspace avatar Aug 09 '18 18:08 gswebspace

Something like the manager/worker architecture used in docker swarm will suit perfectly. An HTTP API over the eliot engine to interact from a remote server would be nice.

jmorte avatar Aug 09 '18 21:08 jmorte

Hi @gswebspace and @JMorte! Happily take more contributors into the project. Have been quite busy lately so havent had time to continue this project.

Simple HTTP API where Eliot engine fetch list of desired Pods regularly would be doable quite easily (actually I already implemented it once in the past). The only challenge here is how we manage the desired state, because if there's the "remote Pods" what Eliot fetch over the HTTP and then there's the "local Pods" what are created with CLI.

I see few options:

  1. You need to select remote or CLI, either Eliot fetch the desired state over HTTP or you use the CLI to manage the Pods
  2. We mark the Pods to be created by remote state or CLI and you can manage the Pods only through the original source.

The second option quickly feels like good idea, but I'm not sure how confusing it is if you see the pods in eli get pods listing, but you cannot remove them. The first option would be more easy. For example, cleaning up removed Pods would be really easy, just remove everything what is not part of the latest state. But not sure how nice it is if you cannot run ad-hoc Pods with CLI. For example, to debug something.

ernoaapa avatar Aug 10 '18 07:08 ernoaapa