Note: The configurations mentioned in the document are not supported yet. This document will be updated in a future release when the source code implementation is updated to support the same.
- STM32 Nucleo*-144 development board with STM32F767ZI or STM32F429ZI MCU.
- Serial Peripheral Interface (SPI)-based microSD* card breakout board.
- SanDisk* 8 or 16GB microSD memory card.
- Ethernet cable.
- Jumper wires.
- MICROUSB cable.
- Linux* OS (Ubuntu* OS version 20.04 LTS) as host machine.
- Arm* Mbed* CLI (mbed-cli) (version 1.7.5) can also be installed using this link.
- Arm cross-compiler toolchain (
gcc 7-2018-q2-update) can be downloaded from this link. - Configure the Arm cross-compiler toolchain globally by setting
GCC_ARM_PATHthrough mbed-cli:. Use this link for detailed steps.$ mbed config -G GCC_ARM_PATH <Path to gcc cross compiler>/bin
You do not have to build the safestringlib library for the Arm Mbed OS-based implementation because this will be done by FDO Client SDK build system.
Provide the safestringlib path:
$ export SAFESTRING_ROOT=path/to/safestringlibThe FDO Client SDK build system is based on GNU Make tool. FDO assumes that all requirements are set up from FDO Compilation Setup . The application is built using make [options] in the root of the repository for all supported platforms. The debug and release build modes are supported.
-
To build STM32F767ZI:
$ make pristine $ cmake -DTARGET_OS=mbedos -DBUILD=debug -DBOARD=NUCLEO_F767ZI . $ make -
To build STM32F429ZI:
$ make pristine $ cmake -DTARGET_OS=mbedos -DBUILD=debug -DBOARD=NUCLEO_F429ZI . $ make
NOTE: To build the Arm Mbed OS (STM32F767ZI or STM32F429ZI) platforms, only the microSD* card is used as a data-store to store FDO device credentials (device internal flash is not supported).
For an advanced build configuration, refer to Advanced Build Configuration.
The FDO for the Linux* device is compatible with the FDO PRI implementation of the Manufacturer, Rendezvous, and Owner. These implementations can be downloaded from their appropriate directories.
After a successful compilation, the FDO M4/M7 device executable can be found at
<path-to-client-sdk-fidoiot>/build/fdo.bin.
NOTE: Build can be either
debugorrelease, depending on the compilation step. Board can be eitherNUCLEO_F767ZIorNUCLEO_F429ZI, depending on the compilation step.
To flash the M4/M7-based device executable fdo.bin, mount the /media/${user}/NODE_FXXXZI1/ and then copy the compiled FDO executable file to the respective device:
$ cp build/fdo.bin /media/${user}/NODE_FXXXZI1/
$ umount /media/${user}/NODE_FXXXZI1/NOTE: Copy all FDO device credentials (located under the
<path-to-client-sdk-fidoiot>/datadirectory) to the microSD* card attached to the M4/M7 device before onboarding is started. The microSD card needs to be FAT formatted. When the device is ready to run the onboarding process, the application will read the FDO device credentials from the microSD card and proceeds further for onboarding. Ensure that the microSD card with the microSD card module breakout board is properly connected to the M4/M7-based device before running the FDO application. Hardware connection and pin details can be found in the following diagram:------------------ -------------------- | M4/M7 Board | | MMC Breakout Board | ------------------ -------------------- | CS/SSEL | PE_4 |<-------------->| CS | ------------------ -------------------- | SCK/SCLK | PE_2 |<-------------->| SCK | ------------------ -------------------- | MOSI | PE_6 |<-------------->| MOSI | ------------------ -------------------- | MISO | PE_5 |<-------------->| MISO | ------------------ -------------------- | VCC | 5V |<-------------->| VCC | ------------------ -------------------- | GND | GND |<-------------->| GND | ------------------ --------------------
- After
fdo.binis flashed to the device, the device will run the device initialization (DI) protocol.
- Before booting the board, you need to prepare for DI using the FDO PRI Manufacturer. Refer to DI Setup. After this, open four terminals:
- Terminal#1: Starts the FDO PRI Manufacturer.
- Terminal#2: Starts the FDO PRI Rendezvous.
- Terminal#3: Starts the FDO PRI Owner.
- Terminal#4: Starts the FDO Client SDK device application (for the FDO M4/M7-based device, use the terminal to open the serial port, to view the stdout).
Boot up the board. The device will be flashed with the credentials and becomes ready for ownership transfer. On successful execution of the DI protocol, the device will be configured with the required FDO credentials and the ownership voucher file will be generated.
- To enable the device for ownership transfer, you need to configure the FDO PRI Rendezvous and Owner. Refer to Ownership Transfer Setup. After these servers are set up and are ready for device onboarding.
To Onboard the Device:
Reset the device to start onboarding.
Because fdo.bin is already flashed to the device, the device will run the TO1 or TO2 protocol, depending on the FDO device credentials.
Using the following command, the serial port can be opened using a tool for Arm Mbed OS to view the device logs in standard output:
$ mbed sterm --port /dev/ttyACMX -b 115200NOTE:
/dev/ttyACMXcan be/dev/ttyACM0,/dev/ttyACM1, or/dev/ttyACM2, depending on the OS assignment.