feat: Add esp_custom_part_ota component (IEC-195) #328
Conversation
hmalpani
force-pushed
the
feat/non_app_ota_update
branch
2 times, most recently
from
a14c6c1
to
0bac912
Compare
hmalpani
changed the title
hmalpani
force-pushed
the
feat/non_app_ota_update
branch
2 times, most recently
from
3551754
to
a337719
Compare
esp_custom_part_ota/examples/custom_part_ota_example/CMakeLists.txt
Outdated
Show resolved
Hide resolved
esp_custom_part_ota/examples/custom_part_ota_example/main/CMakeLists.txt
Outdated
Show resolved
Hide resolved
esp_custom_part_ota/examples/custom_part_ota_example/main/non_app_ota_example.c
Outdated
Show resolved
Hide resolved
| ESP_LOGI(TAG, "No backup present in the backup partition. Nothing to restore"); | ||
| return ESP_OK; | ||
| } | ||
| if (handle->backup_len > 0) { |
There was a problem hiding this comment.
Could there be a scenario where this length is partial and not for full image? Do we need any image integrity checks (e.g., SHA sum) in the NVS?
There was a problem hiding this comment.
Yes, the user can set the length of the data to be backed-up. I don't think we need any image integrity checks. We store the size of data in NVS. Also in case of any error, the APIs will return relevant error code.
hmalpani
force-pushed
the
feat/non_app_ota_update
branch
2 times, most recently
from
6f3f35c
to
553bc57
Compare
| return ESP_ERR_NO_MEM; | ||
| } | ||
|
|
||
| esp_err_t ret = esp_partition_erase_range(ctx->backup_partition, 0, ctx->backup_len); |
There was a problem hiding this comment.
Can we allow this API to be executed twice for 2 different partitions? If not, how can we detect if there exist a backup for any previous partition? Do we need some API to invalidate the previous backup here?
There was a problem hiding this comment.
Oh right. I didn't think of this case. I think we can store some information in NVS regarding this and iterate over the data to check if some other backup is stored in the partition.
| static const char *TAG = "esp_custom_part_ota"; | ||
|
|
||
| #define BACKUP_STORAGE_NAMESPACE "esp_custom_ota" | ||
| #define BACKUP_STORAGE_DATA_LEN "backup_len" |
There was a problem hiding this comment.
Would it help if we make this variable partition specific:
snprintf(str, size, "%s_backup_len", part_name)
This component can be used for performing OTA upgrades for custom partitions in ESP-IDF
hmalpani
force-pushed
the
feat/non_app_ota_update
branch
from
553bc57
to
7a712e4
Compare
| @@ -0,0 +1,43 @@ | |||
| # ESP Non-App OTA Updates | |||
|
|
|||
| This component provides an API interface to update the Non-App type partitions using ESP_IDF. | |||
There was a problem hiding this comment.
| This component provides an API interface to update the Non-App type partitions using ESP_IDF. | |
| This component provides an API interface to update the Non-App type partitions using ESP-IDF. |
|
|
||
| `esp_custom_part_ota` component supports OTA update using two schemes: | ||
|
|
||
| ### Scheme 1 |
There was a problem hiding this comment.
It would be better to provide a name for these schemes rather than just calling them Scheme 1 and Scheme 2
There was a problem hiding this comment.
given name as custom_part_ota_backup and custom_part_ota
| Here the non-app partition which we are trying to update is spiffs. When the user wants to update the spiffs partition, the workflow will be as follows: | ||
|
|
||
| * Consider that ota_0 is the current running partition. | ||
| * Copy the data from the spiffs partition to the backup partition. |
There was a problem hiding this comment.
We should first explain what the backup partition is.
There was a problem hiding this comment.
added this line (backup partition will be always ota passive partition), backup word.
| Backup partition can be specified using `backup_partition` field in `esp_custom_part_ota_cfg_t` structure. If no backup partition is specified, the passive app partition will be set as the backup partition by default. | ||
|
|
||
| ### Scheme 2 | ||
|
|
There was a problem hiding this comment.
It would be better if we provide some clear reasoning for when to choose scheme 1 and when to use scheme 2.
One might be as follows
- There is limited flash available on the chip and no backup partition can be assigned for the OTA process. In that case scheme 2 might be helpful
- This is unsafe and can result in loss of data if the OTA is interrupted.
| esp_http_client_cleanup(client); | ||
| } | ||
|
|
||
| static void custom_part_ota_example_task(void *pvParameter) |
There was a problem hiding this comment.
This is question more related to the structure of the component itself.
Considering this is the core logic of the component which performs the actual OTA process. Should this be located in the src directory rather than the shown as an example?
I would prefer if simple APIs are provided to the user just to perform the OTA process.
| esp_http_client_cleanup(client); | ||
| task_fatal_error(); | ||
| } | ||
| esp_http_client_fetch_headers(client); |
There was a problem hiding this comment.
Should we take backup of the partition here after ensuring the ability to perform OTA has been confirmed?
There was a problem hiding this comment.
We should also add the check here that the data length given to us by the server fits in the partition to be updated.
There was a problem hiding this comment.
added checks which ensures whether the firmware length is greater than partition length
| ret = nvs_set_u32(backup_info_handle, BACKUP_STORAGE_DATA_LEN, 0); | ||
| if (ret != ESP_OK) { | ||
| ESP_LOGE(TAG, "Failed to store backup information: %s", esp_err_to_name(ret)); | ||
| return ret; |
There was a problem hiding this comment.
I was wondering if we should give an option to explicitly clear the backup information in the NVS
| ESP_LOGE(TAG, "Failed to store backup information: %s", esp_err_to_name(ret)); | ||
| return ret; | ||
| } | ||
| ret = nvs_set_u32(backup_info_handle, BACKUP_STORAGE_DATA_LEN, 0); |
There was a problem hiding this comment.
Should we also store the name of the backup partition?
| return ESP_ERR_INVALID_ARG; | ||
| } | ||
| esp_custom_part_ota_t *ctx = (esp_custom_part_ota_t *)handle; | ||
| free(ctx); |
There was a problem hiding this comment.
maybe we should update the NVS entry at this point
github-actions
bot
changed the title
Add new component to support OTA updates for non-app type partitions in ESP-IDF
Checklist
urlfield definedChange description
Please describe your change here