What is Amazon IoT Greengrass?

Improved resilience if sudden power loss occurs during a deployment.

Fixed an issue where stream manager data corruption could prevent the Amazon IoT Greengrass Core software from starting.

Fixed an issue where new client devices couldn't connect to the core in certain scenarios.

Fixed an issue where stream manager stream names couldn't contain .log.

General performance improvements and bug fixes.

Fixed an issue with stream manager that prevented upgrades to Amazon IoT Greengrass Core software v1.11.3. If you are using stream manager to export data to the cloud, you can now use an OTA update to upgrade an earlier v1.x version of the Amazon IoT Greengrass Core software to v1.11.4.

General performance improvements and bug fixes.

Fixed an issue that caused Amazon IoT Greengrass Core software running in a snap on an Ubuntu device to stop responding after a sudden power loss to the device.

Fixed an issue that caused delayed delivery of MQTT messages to long-lived Lambda functions.

Fixed an issue that caused MQTT messages to not be sent correctly when the maxWorkItemCount value was set to a value greater than 1024.

Fixed an issue that caused the OTA update agent to ignore the MQTT KeepAlive period specified in the keepAlive property in config.json.

General performance improvements and bug fixes.

Fixed an issue that caused increased memory use for stream manager.

Fixed an issue that caused stream manager to reset the sequence number of the stream to 0 if the Greengrass core device was turned off for longer than the specified time-to-live (TTL) period of the stream data.

Fixed an issue that prevented stream manager from correctly stopping retry attempts to export data to the Amazon Web Services Cloud.

A telemetry agent on the Greengrass core collects local telemetry data and publishes it to Amazon Web Services Cloud. To retrieve the telemetry data for further processing, customers can create an Amazon EventBridge rule and subscribe to a target. For more information, see Gathering system health telemetry data from Amazon IoT Greengrass core devices.

A local HTTP API returns a snapshot of the current state of local worker processes started by Amazon IoT Greengrass. For more information, see Calling the local health check API.

A stream manager automatically exports data to Amazon S3 and Amazon IoT SiteWise.

New stream manager parameters let you update existing streams and pause or resume data export.

Support for running Python 3.8.x Lambda functions on the core.

A new ggDaemonPort property in config.json that use to configure the Greengrass core IPC port number. The default port number is 8000.

A new systemComponentAuthTimeout property in config.json that you use to configure the timeout for Greengrass core IPC authentication. The default timeout is 5000 milliseconds.

Increased the maximum number of Amazon IoT devices per Amazon IoT Greengrass group from 200 to 2500.

Increased the maximum number of subscriptions per group from 1000 to 10000.

For more information, see Amazon IoT Greengrass endpoints and quotas.

General optimization that can reduce the memory utilization of the Greengrass service processes.

A new runtime configuration parameter (mountAllBlockDevices) lets Greengrass use bind mounts to mount all block devices into a container after setting up the OverlayFS. This feature resolved an issue that caused Greengrass deployment failure if /usr isn't under the / hierarchy.

Fixed an issue that caused Amazon IoT Greengrass core failure if /tmp is a symlink.

Fixed an issue to let the Greengrass deployment agent remove unused machine learning model artifacts from the mlmodel_public folder.

General performance improvements and bug fixes.

General performance improvements and bug fixes.

Fixed an issue that caused Amazon IoT Greengrass Core software running in a snap on an Ubuntu device to stop responding after a sudden power loss to the device.

Fixed an issue that caused delayed delivery of MQTT messages to long-lived Lambda functions.

Fixed an issue that caused MQTT messages to not be sent correctly when the maxWorkItemCount value was set to a value greater than 1024.

Fixed an issue that caused the OTA update agent to ignore the MQTT KeepAlive period specified in the keepAlive property in config.json.

General performance improvements and bug fixes.

A new systemComponentAuthTimeout property in config.json that you use to configure the timeout for Greengrass core IPC authentication. The default timeout is 5000 milliseconds.

Fixed an issue that caused increased memory use for stream manager.

A new mqttOperationTimeout property in config.json that you use to set the timeout for publish, subscribe, and unsubscribe operations in MQTT connections with Amazon IoT Core.

General performance improvements and bug fixes.

Stream manager is more resilient to file data corruption.

Fixed an issue that causes a sysfs mount failure on devices using Linux kernel 5.1 and later.

General performance improvements and bug fixes.

A stream manager that processes data streams locally and exports them to the Amazon Web Services Cloud automatically. This feature requires Java 8 on the Greengrass core device. For more information, see Manage data streams on the Amazon IoT Greengrass core.

A new Greengrass Docker application deployment connector that runs a Docker application on a core device. For more information, see Docker application deployment connector.

A new IoT SiteWise connector that sends industrial device data from OPC-UA servers to asset properties in Amazon IoT SiteWise. For more information, see IoT SiteWise connector.

Lambda functions that run without containerization can access machine learning resources in the Greengrass group. For more information, see Access machine learning resources from Lambda functions.

Support for MQTT persistent sessions with Amazon IoT. For more information, see MQTT persistent sessions with Amazon IoT Core.

Local MQTT traffic can travel over a port other than the default port 8883. For more information, see Configure the MQTT port for local messaging.

New queueFullPolicy options in the Amazon IoT Greengrass Core SDK for reliable message publishing from Lambda functions.

Support for running Node.js 12.x Lambda functions on the core.

Over-the-air (OTA) updates with hardware security integration can be configured with OpenSSL 1.1.

General performance improvements and bug fixes.

General performance improvements and bug fixes.

Support for Armv6l. Amazon IoT Greengrass Core software v1.9.3 or later can be installed on Raspbian distributions on Armv6l architectures (for example, on Raspberry Pi Zero devices).

OTA updates on port 443 with ALPN. Greengrass cores that use port 443 for MQTT traffic now support over-the-air (OTA) software updates. Amazon IoT Greengrass uses the Application Layer Protocol Network (ALPN) TLS extension to enable these connections. For more information, see OTA updates of Amazon IoT Greengrass Core software and Connect on port 443 or through a network proxy.

Fixes a bug introduced in v1.9.0 that prevented Python 2.7 Lambda functions from sending binary payloads to other Lambda functions.

General performance improvements and bug fixes.

Support for OpenWrt. Amazon IoT Greengrass Core software v1.9.2 or later can be installed on OpenWrt distributions with Armv8 (AArch64) and Armv7l architectures. Currently, OpenWrt does not support ML inference.

Fixes a bug introduced in v1.9.0 that drops messages from the cloud that contain wildcard characters in the topic.

Support for Python 3.7 and Node.js 8.10 Lambda runtimes. Lambda functions that use Python 3.7 and Node.js 8.10 runtimes can now run on an Amazon IoT Greengrass core. (Amazon IoT Greengrass continues to support the Python 2.7 and Node.js 6.10 runtimes.)

Optimized MQTT connections. The Greengrass core establishes fewer connections with the Amazon IoT Core. This change can reduce operational costs for charges that are based on the number of connections.

Elliptic Curve (EC) key for the local MQTT server. The local MQTT server supports EC keys in addition to RSA keys. (The MQTT server certificate has an SHA-256 RSA signature, regardless of the key type.) For more information, see Amazon IoT Greengrass core security principals.

General performance improvements and bug fixes.

Configurable default access identity for Lambda functions in the group. This group-level setting determines the default permissions that are used to run Lambda functions. You can set the user ID, group ID, or both. Individual Lambda functions can override the default access identity of their group. For more information, see Setting the default access identity for Lambda functions in a group.

HTTPS traffic over port 443. HTTPS communication can be configured to travel over port 443 instead of the default port 8443. This complements Amazon IoT Greengrass support for the Application Layer Protocol Network (ALPN) TLS extension and allows all Greengrass messaging traffic—both MQTT and HTTPS—to use port 443. For more information, see Connect on port 443 or through a network proxy.

Predictably named client IDs for Amazon IoT connections. This change enables support for Amazon IoT Device Defender and Amazon IoT lifecycle events, so you can receive notifications for connect, disconnect, subscribe, and unsubscribe events. Predictable naming also makes it easier to create logic around connection IDs (for example, to create subscribe policy templates based on certificate attributes). For more information, see Client IDs for MQTT connections with Amazon IoT.

Fixed an issue with shadow synchronization and device certificate manager reconnection.

General performance improvements and bug fixes.

Greengrass connectors provide built-in integration with local infrastructure, device protocols, Amazon, and other cloud services. For more information, see Integrate with services and protocols using Greengrass connectors.

Amazon IoT Greengrass extends Amazon Secrets Manager to core devices, which makes your passwords, tokens, and other secrets available to connectors and Lambda functions. Secrets are encrypted in transit and at rest. For more information, see Deploy secrets to the Amazon IoT Greengrass core.

Support for a hardware root of trust security option. For more information, see Hardware security integration.

Isolation and permission settings that allow Lambda functions to run without Greengrass containers and to use the permissions of a specified user and group. For more information, see Controlling execution of Greengrass Lambda functions by using group-specific configuration.

You can run Amazon IoT Greengrass in a Docker container (on Windows, macOS, or Linux) by configuring your Greengrass group to run with no containerization. For more information, see Running Amazon IoT Greengrass in a Docker container.

MQTT messaging on port 443 with Application Layer Protocol Negotiation (ALPN) or connection through a network proxy. For more information, see Connect on port 443 or through a network proxy.

The SageMaker AI Neo deep learning runtime, which supports machine learning models that have been optimized by the SageMaker AI Neo deep learning compiler. For information about the Neo deep learning runtime, see Runtimes and libraries for ML inference.

Support for Raspbian Stretch (2018-06-27) on Raspberry Pi core devices.

General performance improvements and bug fixes.

The Amazon IoT Device Tester for Amazon IoT Greengrass, which you can use to verify that your CPU architecture, kernel configuration, and drivers work with Amazon IoT Greengrass. For more information, see Using Amazon IoT Device Tester for Amazon IoT Greengrass V1.

The Amazon IoT Greengrass Core software, Amazon IoT Greengrass Core SDK, and Amazon IoT Greengrass Machine Learning SDK packages are available for download through Amazon CloudFront. For more information, see Amazon IoT Greengrass downloads.

Lambda executables that run binary code on the Greengrass core. Use the new Amazon IoT Greengrass Core SDK for C to write Lambda executables in C and C++. For more information, see Lambda executables.

Optional local storage message cache that can persist across restarts. You can configure the storage settings for MQTT messages that are queued for processing. For more information, see MQTT message queue for cloud targets.

Configurable maximum reconnect retry interval for when the core device is disconnected. For more information, see the mqttMaxConnectionRetryInterval property in Amazon IoT Greengrass core configuration file.

Local resource access to the host /proc directory. For more information, see Access local resources with Lambda functions and connectors.

Configurable write directory. The Amazon IoT Greengrass Core software can be deployed to read-only and read-write locations. For more information, see Configure a write directory for Amazon IoT Greengrass.

Performance improvement for publishing messages in the Greengrass core and between devices and the core.

Reduced the compute resources required to process logs generated by user-defined Lambda functions.

Amazon IoT Greengrass Machine Learning (ML) Inference is generally available. You can perform ML inference locally on Amazon IoT Greengrass devices using models that are built and trained in the cloud. For more information, see Perform machine learning inference.

Greengrass Lambda functions now support binary data as input payload, in addition to JSON. To use this feature, you must upgrade to Amazon IoT Greengrass Core SDK version 1.1.0, which you can download from the Amazon IoT Greengrass Core SDK downloads page.

Reduced the overall memory footprint.

Performance improvements for sending messages to the cloud.

Performance and stability improvements for the download agent, Device Certificate Manager, and OTA update agent.

Minor bug fixes.

Over-the-air (OTA) update agent capable of handling cloud-deployed, Greengrass update jobs. The agent is found under the new /greengrass/ota directory. For more information, see OTA updates of Amazon IoT Greengrass Core software.

Local resource access feature allows Greengrass Lambda functions to access local resources, such as peripheral devices and volumes. For more information, see Access local resources with Lambda functions and connectors.

Deployed Amazon IoT Greengrass groups can be reset by deleting Lambda functions, subscriptions, and configurations. For more information, see Reset deployments.

Support for Node.js 6.10 and Java 8 Lambda runtimes, in addition to Python 2.7.

Copy certificates from the /greengrass/configuration/certs folder to /greengrass/certs.

Copy /greengrass/configuration/config.json to /greengrass/config/config.json.

Run /greengrass/ggc/core/greengrassd instead of /greengrass/greengrassd.

Deploy the group to the new core.

Improved resilience if sudden power loss occurs during a deployment.

Fixed an issue where stream manager data corruption could prevent the Amazon IoT Greengrass Core software from starting.

Fixed an issue where new client devices couldn't connect to the core in certain scenarios.

Fixed an issue where stream manager stream names couldn't contain .log.

General performance improvements and bug fixes.

Fixed an issue with stream manager that prevented upgrades to Amazon IoT Greengrass Core software v1.11.3. If you are using stream manager to export data to the cloud, you can now use an OTA update to upgrade an earlier v1.x version of the Amazon IoT Greengrass Core software to v1.11.4.

General performance improvements and bug fixes.

Fixed an issue that caused Amazon IoT Greengrass Core software running in a snap on an Ubuntu device to stop responding after a sudden power loss to the device.

Fixed an issue that caused delayed delivery of MQTT messages to long-lived Lambda functions.

Fixed an issue that caused MQTT messages to not be sent correctly when the maxWorkItemCount value was set to a value greater than 1024.

Fixed an issue that caused the OTA update agent to ignore the MQTT KeepAlive period specified in the keepAlive property in config.json.

General performance improvements and bug fixes.

Fixed an issue that caused increased memory use for stream manager.

Fixed an issue that caused stream manager to reset the sequence number of the stream to 0 if the Greengrass core device was turned off for longer than the specified time-to-live (TTL) period of the stream data.

Fixed an issue that prevented stream manager from correctly stopping retry attempts to export data to the Amazon Web Services Cloud.

A telemetry agent on the Greengrass core collects local telemetry data and publishes it to Amazon Web Services Cloud. To retrieve the telemetry data for further processing, customers can create an Amazon EventBridge rule and subscribe to a target. For more information, see Gathering system health telemetry data from Amazon IoT Greengrass core devices.

A local HTTP API returns a snapshot of the current state of local worker processes started by Amazon IoT Greengrass. For more information, see Calling the local health check API.

A stream manager automatically exports data to Amazon S3 and Amazon IoT SiteWise.

New stream manager parameters let you update existing streams and pause or resume data export.

Support for running Python 3.8.x Lambda functions on the core.

A new ggDaemonPort property in config.json that use to configure the Greengrass core IPC port number. The default port number is 8000.

A new systemComponentAuthTimeout property in config.json that you use to configure the timeout for Greengrass core IPC authentication. The default timeout is 5000 milliseconds.

Increased the maximum number of Amazon IoT devices per Amazon IoT Greengrass group from 200 to 2500.

Increased the maximum number of subscriptions per group from 1000 to 10000.

For more information, see Amazon IoT Greengrass endpoints and quotas.

General optimization that can reduce the memory utilization of the Greengrass service processes.

A new runtime configuration parameter (mountAllBlockDevices) lets Greengrass use bind mounts to mount all block devices into a container after setting up the OverlayFS. This feature resolved an issue that caused Greengrass deployment failure if /usr isn't under the / hierarchy.

Fixed an issue that caused Amazon IoT Greengrass core failure if /tmp is a symlink.

Fixed an issue to let the Greengrass deployment agent remove unused machine learning model artifacts from the mlmodel_public folder.

General performance improvements and bug fixes.

A stream manager that processes data streams locally and exports them to the Amazon Web Services Cloud automatically. This feature requires Java 8 on the Greengrass core device. For more information, see Manage data streams on the Amazon IoT Greengrass core.

A new Greengrass Docker application deployment connector that runs a Docker application on a core device. For more information, see Docker application deployment connector.

A new IoT SiteWise connector that sends industrial device data from OPC-UA servers to asset properties in Amazon IoT SiteWise. For more information, see IoT SiteWise connector.

Lambda functions that run without containerization can access machine learning resources in the Greengrass group. For more information, see Access machine learning resources from Lambda functions.

Support for MQTT persistent sessions with Amazon IoT. For more information, see MQTT persistent sessions with Amazon IoT Core.

Local MQTT traffic can travel over a port other than the default port 8883. For more information, see Configure the MQTT port for local messaging.

New queueFullPolicy options in the Amazon IoT Greengrass Core SDK for reliable message publishing from Lambda functions.

Support for running Node.js 12.x Lambda functions on the core.

Over-the-air (OTA) updates with hardware security integration can be configured with OpenSSL 1.1.

Stream manager is more resilient to file data corruption.

Fixed an issue that causes a sysfs mount failure on devices using Linux kernel 5.1 and later.

A new mqttOperationTimeout property in config.json that you use to set the timeout for publish, subscribe, and unsubscribe operations in MQTT connections with Amazon IoT Core.

Fixed an issue that caused increased memory use for stream manager.

A new systemComponentAuthTimeout property in config.json that you use to configure the timeout for Greengrass core IPC authentication. The default timeout is 5000 milliseconds.

Fixed an issue that caused the OTA update agent to ignore the MQTT KeepAlive period specified in the keepAlive property in config.json.

Fixed an issue that caused MQTT messages to not be sent correctly when the maxWorkItemCount value was set to a value greater than 1024.

Fixed an issue that caused delayed delivery of MQTT messages to long-lived Lambda functions.

Fixed an issue that caused Amazon IoT Greengrass Core software running in a snap on an Ubuntu device to stop responding after a sudden power loss to the device.

General performance improvements and bug fixes.

Support for Python 3.7 and Node.js 8.10 Lambda runtimes. Lambda functions that use Python 3.7 and Node.js 8.10 runtimes can now run on an Amazon IoT Greengrass core. (Amazon IoT Greengrass continues to support the Python 2.7 and Node.js 6.10 runtimes.)

Optimized MQTT connections. The Greengrass core establishes fewer connections with the Amazon IoT Core. This change can reduce operational costs for charges that are based on the number of connections.

Elliptic Curve (EC) key for the local MQTT server. The local MQTT server supports EC keys in addition to RSA keys. (The MQTT server certificate has an SHA-256 RSA signature, regardless of the key type.) For more information, see Amazon IoT Greengrass core security principals.

Support for OpenWrt. Amazon IoT Greengrass Core software v1.9.2 or later can be installed on OpenWrt distributions with Armv8 (AArch64) and Armv7l architectures. Currently, OpenWrt does not support ML inference.

Support for Armv6l. Amazon IoT Greengrass Core software v1.9.3 or later can be installed on Raspbian distributions on Armv6l architectures (for example, on Raspberry Pi Zero devices).

OTA updates on port 443 with ALPN. Greengrass cores that use port 443 for MQTT traffic now support over-the-air (OTA) software updates. Amazon IoT Greengrass uses the Application Layer Protocol Network (ALPN) TLS extension to enable these connections. For more information, see OTA updates of Amazon IoT Greengrass Core software and Connect on port 443 or through a network proxy.

New features:

Bug fixes and improvements: