-
Notifications
You must be signed in to change notification settings - Fork 0
AUTOSAR ucm
Theia edited this page Jun 19, 2026
·
1 revision
← back to AUTOSAR
ara::ucm is the platform's OTA/update agent — the "app-store manager." It
installs/updates/removes Software Clusters (executables + config + manifests,
treated as one atomic unit) and runs each update through a defined state machine
(transfer → verify → activate → confirm or roll back), coordinating with
Persistency and State Management.
Theia's ucm is an on-device update agent built around release directories +
symlink switching — NOT A/B partitions.
- The on-device FSM:
IDLE → DOWNLOADED → VALIDATED → STAGED → INSTALLING → RESTARTING → VERIFYING → ACTIVE → ROLLBACK(split across a control frontUcmDaemon, the executorUcmGate, and the FSMUcmFsm). -
Release-dir model:
/opt/theia/releases/<ver>/+current/previoussymlinks, atomicrename(2)switch. FULL = re-aimcurrent; PARTIAL = swap one FC's binary + restart just it. PHM-health-gated rollback in seconds. -
Delivery is decoupled from lifecycle: the bytes arrive via Mender (a
custom
theia-releaseupdate module that lands the release dir — the supported customization point, since we don't use Mender's rootfs A/B). Mender'sArtifactInstall_Leavestate-script hands off to UCM (RequestUpdate), which runs the AUTOSAR-shaped restart + PHM-verify the bare symlink switch skips. UCM never downloads; Mender never sequences services.
We keep ARA's atomic-Software-Cluster + state-machine + rollback model and drop the A/B-image assumption for a release-dir+symlink scheme that fits a POSIX/systemd box and a stock Mender client.