Skip to content

ImprovProvisioningModule.md

Latest commit

 

History

History
78 lines (51 loc) · 9.71 KB

ImprovProvisioningModule.md

File metadata and controls

78 lines (51 loc) · 9.71 KB

ImprovProvisioningModule

What Improv is. Improv-Wifi (from Nabu Casa, the Home Assistant / ESPHome company) is an open standard for handing a device its WiFi credentials over a local link — USB serial here (it also has a BLE variant) — at the moment it has no network yet. That's the bootstrap chicken-and-egg it solves: a freshly-flashed ESP32 isn't on your WiFi, so you can't reach it over the network to tell it the WiFi password; Improv carries that first handoff over the cable the browser is already connected to from flashing. The name is short for improvise — the device has no pre-configured network, so it improvises its first connection from whatever local link is already there. projectMM extends this past credentials with the APPLY_OP vendor RPC — "Improv = REST over serial", see below — reusing the same already-there-before-the-network link to push the whole device config (including the deviceModel identity, which is just one of the config controls).

Browser-driven WiFi provisioning over USB-serial, using the Improv-WiFi protocol. Bridges credentials from a Chrome / Edge / Opera tab — or from scripts/build/improv_provision.py for rack/CI use — into NetworkModule::setWifiCredentials, which writes the same buffers the AP-fallback UI flow uses. The protocol parser + UART task live in the platform layer; this module is the status surface that polls a ready-flag and bridges credentials to NetworkModule on the scheduler thread.

A code-wired child of NetworkModule. The wiring calls markWiredByCode() so the persistence-apply step preserves the child across reboots even on devices whose Network.json predates the addition (see Persistence — code-wired children).

The browser flow runs immediately after a Web Serial flash (ESP Web Tools recognises Improv-capable firmware and offers a "Connect to Wi-Fi?" dialog automatically). The CLI flow uses scripts/build/improv_provision.py over the same USB cable for headless or rack provisioning.

Controls

Name Type Description
provision_status read-only string (64 chars) One of: listening, received credentials, connecting, connected: <ssid>, error: <reason>, or not supported on this platform (desktop).

ESP32-S3 USB-port footnote

The listener serves both serial transports: UART0 (external USB-to-UART bridges) and the S3's native USB-Serial-JTAG port — boards that only expose native USB (the ESP32-S3 N16R8 Dev among them) provision over that port directly (proven on the bench 2026-06-10). If neither serial path is available, the AP-mode flow remains: the device boots a SoftAP at 4.3.2.1, join from a phone, enter credentials.

Wire contract

Both transports speak the same Improv-WiFi serial protocol — frames of IMPROV + version byte + type + length + payload + checksum. Full protocol details: https://www.improv-wifi.com/serial/. The on-device implementation supports four standard RPC commands plus two vendor extensions:

  • GET_CURRENT_STATE — returns "authorized" or "provisioned" depending on whether WiFi STA is connected.
  • GET_DEVICE_INFO — returns [firmware, version, chipFamily, deviceName] (where firmware = "projectMM", version from kVersion in build_info.h, chipFamily from platform::chipModel(), deviceName from SystemModule).
  • GET_WIFI_NETWORKS — runs a synchronous WiFi scan, returns up to 10 SSIDs with RSSI + auth flag. Rejected while STA is connected (see below).
  • WIFI_SETTINGS — writes SSID + password to NetworkModule via setWifiCredentials, polls wifiStaConnected() for up to 30 s, replies with success (carrying http://<ip>/) or ERROR_UNABLE_TO_CONNECT.
  • SET_TX_POWER (vendor, 0xFD) — payload [1][dBm] (0–21; 0 lifts the cap); persists + applies Network.txPowerSetting before any association attempt. This is the provisioning escape hatch for boards whose LDO browns out at full TX power (a weak LDO / marginal supply): the cap MUST land before the first association or the board fails WiFi auth at 20 dBm before it is ever online. improv_provision.py --tx-power 8 (and the MoonDeck flow) sends this ahead of the credentials; error 0x81 on an out-of-range value.
  • APPLY_OP (vendor, 0xFC) — "Improv = REST over serial". Carries ONE REST operation as JSON, the same shape an HTTP POST /api/modules / /api/control body has: {"op":"add","type":…,"id":…,"parent":…} / {"op":"set","module":…,"control":…,"value":…} / {"op":"clearChildren","parent":…}. On the device the op is routed to HttpServerModule's apply-core — the exact same code the HTTP handlers call — so a REST call over the network and an APPLY_OP over serial execute identically. (One schema caveat: the serial add op names the parent parent, while the HTTP POST /api/modules body names it parent_id. Both feed the one applyAddModule() core but the two transports parse different keys, so an HTTP payload is not a drop-in APPLY_OP — rename parent_idparent. The serial key stays terse because every byte counts against the 128-byte frame.) The web installer pushes a device-model's whole catalog config this way during provisioning (a clearChildren pre-pass for any replaceChildren container, then an add per module + a set per control — the deviceModel identity is just one of those set ops on System.deviceModel, validated by that control's per-control validator like any other write), so the defaults apply over the serial port the installer already owns during the flash — which is what lets the HTTPS installer page configure an http:// device that a browser fetch can't reach (mixed-content). Frame payload: [0xFC][seq][last][chunk] — most ops are one frame; a long value (e.g. a big pins list) chunks across frames into a reassembly buffer, applied on the device's main loop when last=1. Single-buffered: the device errors a new op (0x82) while the previous is unconsumed. The installer paces ops open-loop (a fixed delay between frames sized to the worst-case consume window) rather than reading the ack back, so a lost op is improbable rather than impossible; each op is idempotent, so a re-flash re-applies cleanly. (To re-apply a model to an already-running device, use MoonDeck on the LAN, which talks plain HTTP REST with no mixed-content barrier.)

The serial listener runs on every ESP32 target, including Ethernet-only builds (--firmware esp32-eth*). An eth-only build compiles in the vendor RPCs (SET_TX_POWER, APPLY_OP) plus GET_CURRENT_STATE / GET_DEVICE_INFO, so the web installer pushes a device-model's config over serial to an eth device exactly as it does to a WiFi one; the WiFi-provisioning RPCs (WIFI_SETTINGS, GET_WIFI_NETWORKS) build only on WiFi targets, where there's an STA to provision and esp_wifi_* is available. On eth, GET_CURRENT_STATE reports "provisioned" + the device URL from the Ethernet link (platform::ethConnected() / ethGetIPv4) instead of the WiFi STA.

WIFI_SETTINGS and GET_WIFI_NETWORKS are both rejected with ERROR_UNABLE_TO_CONNECT while platform::wifiStaConnected() == true. The scan gate protects large installs: esp_wifi_scan_start puts the radio into scan mode for 2-5 s, during which inbound ArtNet packets are dropped. On a 16K-LED rig that's a visible glitch. To re-provision a running device, wipe ssid via the UI and reboot, then run Improv before STA reconnects. GET_CURRENT_STATE and GET_DEVICE_INFO stay available regardless — they're read-only and don't touch the radio.

How to test

MoonDeck button (the everyday flow):

ESP32 tab → pick the device's port → hit Improv WiFi. The script reads the host's currently-joined WiFi (macOS Keychain / Linux NetworkManager / Windows netsh) and pushes it to the device. The log pane shows ==> provisioned: http://<ip>/ on success.

Browser (alternate single-device flow):

  1. Open https://www.improv-wifi.com/ in Chrome / Edge / Opera on desktop.
  2. Click Connect, pick the device's USB-serial port from the dialog.
  3. Device name + chip + version appear in the page; click "Scan" to enumerate WiFi networks.
  4. Enter SSID + password → page advances "connecting" → "connected" + clickable URL → opens the device UI.

CLI (rack / CI / scripted):

# Reuse the host's currently-joined WiFi (same path as the MoonDeck button):
uv run scripts/build/improv_provision.py --port /dev/tty.usbserial-XXXX

# Or override to push a different network's credentials:
uv run scripts/build/improv_provision.py \
  --port /dev/tty.usbserial-XXXX \
  --ssid "MyWiFi" \
  --password "hunter2"
# Exit 0 + prints "==> provisioned: http://<ip>/" on success.

For multiple devices on a USB hub:

for port in /dev/tty.usbserial-*; do
  uv run scripts/build/improv_provision.py --port "$port"
done

Prior art

  • projectMM-v1's deploy/wifi.py + deploy/flashfs.py --wifi — wrote credentials to a local data/state/sta1.json, baked them into a LittleFS partition image, esptool-flashed the partition to each test: true device in deploy/devicelist.json. Same rack-provisioning use case; Improv replaces the partition-baking-and-reflashing path with live serial provisioning (devices stay running, no flash mode required).
  • Improv-WiFi is the standard ESPHome / Home Assistant uses for cross-firmware WiFi provisioning. Library: improv/improv on the ESP Component Registry (source: https://github.com/improv-wifi/sdk-cpp); specification: https://www.improv-wifi.com/serial/.

Source

ImprovProvisioningModule.h