Skip to content

Commit

Permalink
fixup! dps: upgrade retry documentation
Browse files Browse the repository at this point in the history
  • Loading branch information
Danielius1922 committed Apr 22, 2024
1 parent 377b5c8 commit b01f841
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 4 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,6 @@ weight: 2
### Planned features

- **☐ Device attestation via TPM:** This upcoming feature will enable devices to attest their identity using Trusted Platform Modules (TPM).
- **☐ Initial device configuration:** This planned feature aims to provide users with a mechanism to perform the initial configuration of devices during the provisioning process.
- **☐ Blacklisting and whitelisting devices:** With this feature, users will have the ability to blacklist or whitelist specific devices for enhanced access control.
- **☐ Manual approval for device configuration:** This planned feature enables a mechanism where devices require manual approval from the user in order to receive configuration settings. Instead of automatic configuration, users will have control over granting permission for device configuration.
- **☐ Verify Common Name:** Verify that the Common Name of DPS endpoint certificate matches the name of the selected endpoint.
- **☐ Verify Common Name:** Verify that the Common Name of DPS endpoint certificate matches the name of the selected endpoint by dps client.
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
title: 'Retry mechanism'
description: 'How is recoverable failure handled?'
date: '2022-06-28'
lastmod: '2024-04-22'
categories: [zero-touch, provisioning]
keywords: [retry, recovery, failure]
weight: 5
Expand All @@ -27,13 +28,13 @@ The configuration can be changed by the `plgd_dps_set_retry_configuration` funct

## Failures during provisioning

Provisioning consists of 3 main steps:
Provisioning consists of 5 main steps:

* synchronization of time
* requesting and set of device owner
* requesting and applying of plgd hub connection configuration
* sending of signing certificate request
* requesting and applying of ACLs
* requesting and applying of plgd hub connection configuration

Each step sends a request to the DPS service and waits for response. After a request is sent, then the retry interval is used as a deadline. If the response is not received before this deadline, the operation timeouts and the request is resend. If the response is received in time, then its status code is checked. We distinguish between transient and non-transient errors.

Expand Down Expand Up @@ -79,3 +80,7 @@ If the limit of polling checks is reached and the required flags are still not s
If the IDs of the cloud servers in the configuration differ, it implies that certificates and ACLs might also be different. Therefore, reprovisioning of credentials and ACLs is triggered. If the IDs are the same, DPS provisioning is not triggered, and the cloud manager is simply restarted with the new address.

If the observer goes through all the addresses without establishing a successful connection, the cloud manager is stopped, and a full DPS reprovisioning is forced.

{{< note >}}
To set up multiple cloud server addresses in an `IoTivity-lite` device [see Cloud: support for multiple servers](https://github.com/iotivity/iotivity-lite/wiki/Cloud:-support-for-multiple-servers)
{{< /note >}}

0 comments on commit b01f841

Please sign in to comment.