Google Git
Sign in
pigweed / third_party / github / project-chip / connectedhomeip / 08cb3d035e69486ce07c2eda0163a60f88c788a6 / . / src / app / tests / suites / certification / Test_TC_DA_1_7.yaml
blob: 471121b56403520176fc1d9a30cb59e8f354ddf8 [file] [log] [blame]
# Copyright (c) 2021 Project CHIP Authors
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# Auto-generated scripts for harness use only, please review before automation. The endpoints and cluster names are currently set to default
name: 4.1.7. [TC-DA-1.7] Validate CertificateChainRequest [DUT-Commissionee]
PICS:
- MCORE.ROLE.COMMISSIONEE
config:
nodeId: 0x12344321
cluster: "Basic"
endpoint: 0
tests:
- label: "Pre-Conditions TH only has official PAAs from DCL"
verification: |
verification step to be updated.
disabled: true
- label: "Commission DUT1 to TH fabric"
verification: |
sudo ./chip-all-clusters-app --wifi
TH side:
./chip-tool pairing ble-wifi 1 zigbeehome matter123 20202021 3841 --trace_decode 1
[1650455358.501816][4366:4371] CHIP:TOO: Device commissioning completed with success
disabled: true
- label:
"TH sends CertificateChainRequest Command to DUT1 with the
CertificateType set to PAICertificate"
verification: |
Verify that the DUT returns a CertificateChainResponse. Save the returned Certificate as "pai_1"
To get PAI value, send below command.
./chip-tool operationalcredentials certificate-chain-request 2 1 0 --trace_decode 1
"Verify in TH(chip-tool) log:
[1657774756.281112][7964:7969] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1657774756.281164][7964:7969] CHIP:TOO: Endpoint: 0 Cluster: 0x0000_003E Command 0x0000_0003
[1657774756.281236][7964:7969] CHIP:TOO: CertificateChainResponse: {
[1657774756.281289][7964:7969] CHIP:TOO: certificate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
[1657774756.281357][7964:7969] CHIP:TOO: ...........: B88FACE529368D12054C0C0220655DC92B86BD909882A6C62177B825D7D05EDBE7C22F9FEA71220E7EA703F891
[1657774756.281388][7964:7969] CHIP:TOO: }
disabled: true
- label:
"TH sends CertificateChainRequest Command to DUT1 with the
CertificateType set to DACCertificate"
verification: |
Verify that the DUT returns a CertificateChainResponse. Save the returned Certificate as "dac_1"
To get DAC value, send below command.
./chip-tool operationalcredentials certificate-chain-request 1 1 0 --trace_decode 1
"Verify in TH(all-clusters-app) log:
[1657774717.721972][7956:7961] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1657774717.722019][7956:7961] CHIP:TOO: Endpoint: 0 Cluster: 0x0000_003E Command 0x0000_0003
[1657774717.722135][7956:7961] CHIP:TOO: CertificateChainResponse: {
[1657774717.722181][7956:7961] CHIP:TOO: certificate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
[1657774717.722269][7956:7961] CHIP:TOO: ...........: 034700304402200127A27B4B44610EE2FCDC4D2B7885563660BC0F76F17219ED6A08DFB2B3C1CD02206B59E0AF45F3EB2A85B919D35731528C6028C415239545E108E4E54E70971353
[1657774717.722297][7956:7961] CHIP:TOO: }
disabled: true
- label: "TH extracts the Authority Key Identifier from the PAI certificate"
verification: |
During commissioning we will get PAI certificate, see on TH(chip-tool) log:
[1659415376.883870][2666:2671] CHIP:CTL: Performing next commissioning step "SendPAICertificateRequest"
[1659415376.883925][2666:2671] CHIP:CTL: Sending request for PAI certificate
[1659415376.884015][2666:2671] CHIP:CTL: Sending Certificate Chain request to 0xffffa0000b60 device
[1659415376.884167][2666:2671] CHIP:DMG: ICR moving to [AddingComm]
[1659415376.884302][2666:2671] CHIP:DMG: ICR moving to [AddedComma]
[1659415376.884867][2666:2671] CHIP:IN: Prepared secure message 0xffffb37ec8d8 to 0xFFFFFFFB00000000 (0) of type 0x8 and protocolId (0, 1) on exchange 61632i with MessageCounter:72933899.
[1659415376.884965][2666:2671] CHIP:IN: Sending encrypted msg 0xffffb37ec8d8 with MessageCounter:72933899 to 0xFFFFFFFB00000000 (0) at monotonic time: 0000000000161D55 msec
[1659415376.885796][2666:2671] CHIP:DMG: >> to BLE | 72933899 | [Interaction Model (1) / InvokeCommandRequest (0x08) / Session = 384 / Exchange = 61632]
[1659415376.885890][2666:2671] CHIP:DMG: Header Flags =
[1659415376.885944][2666:2671] CHIP:DMG: {
[1659415376.886028][2666:2671] CHIP:DMG: Exchange (0x01) =
[1659415376.886081][2666:2671] CHIP:DMG: {
[1659415376.886154][2666:2671] CHIP:DMG: Initiator = true
[1659415376.886206][2666:2671] CHIP:DMG: }
[1659415376.886296][2666:2671] CHIP:DMG: }
[1659415376.886350][2666:2671] CHIP:DMG:
[1659415376.886438][2666:2671] CHIP:DMG: Encrypted Payload (62 bytes) =
[1659415376.886492][2666:2671] CHIP:DMG: {
[1659415376.886542][2666:2671] CHIP:DMG: data = 008001000be258046e751fb56b97dabcc7ee6b6611ede33a66461e188834bb1fe5b6332edb4a3896d32bce2eb59dee722e070c4426af77c82dfca14619bb
[1659415376.886616][2666:2671] CHIP:DMG: buffer_ptr = 281473366182720
[1659415376.886666][2666:2671] CHIP:DMG: }
[1659415376.886714][2666:2671] CHIP:DMG:
[1659415376.886900][2666:2671] CHIP:DMG: InvokeRequestMessage =
[1659415376.886962][2666:2671] CHIP:DMG: {
[1659415376.887039][2666:2671] CHIP:DMG: suppressResponse = false,
[1659415376.887103][2666:2671] CHIP:DMG: timedRequest = false,
[1659415376.887162][2666:2671] CHIP:DMG: InvokeRequests =
[1659415376.887234][2666:2671] CHIP:DMG: [
[1659415376.887312][2666:2671] CHIP:DMG: CommandDataIB =
[1659415376.887380][2666:2671] CHIP:DMG: {
[1659415376.887442][2666:2671] CHIP:DMG: CommandPathIB =
[1659415376.887538][2666:2671] CHIP:DMG: {
[1659415376.887633][2666:2671] CHIP:DMG: EndpointId = 0x0,
[1659415376.887874][2666:2671] CHIP:DMG: ClusterId = 0x3e,
[1659415376.888039][2666:2671] CHIP:DMG: CommandId = 0x2,
[1659415376.888125][2666:2671] CHIP:DMG: },
[1659415376.888225][2666:2671] CHIP:DMG:
[1659415376.888289][2666:2671] CHIP:DMG: CommandFields =
[1659415376.888384][2666:2671] CHIP:DMG: {
[1659415376.888478][2666:2671] CHIP:DMG: 0x0 = 2,
[1659415376.888560][2666:2671] CHIP:DMG: },
[1659415376.888655][2666:2671] CHIP:DMG: },
[1659415376.888728][2666:2671] CHIP:DMG:
[1659415376.888806][2666:2671] CHIP:DMG: ],
[1659415376.888877][2666:2671] CHIP:DMG:
[1659415376.888955][2666:2671] CHIP:DMG: InteractionModelRevision = 1
[1659415376.889012][2666:2671] CHIP:DMG: },
[1659415376.889086][2666:2671] CHIP:DMG:
[1659415376.889368][2666:2671] CHIP:DMG: ICR moving to [CommandSen]
[1659415376.889523][2666:2671] CHIP:DMG: ICR moving to [AwaitingDe]
[1659415376.972895][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16387
[1659415377.021227][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.021488][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.122119][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.122505][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.217641][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.217905][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.219135][2666:2671] CHIP:DMG: << from BLE | 199585160 | [Interaction Model (1) / InvokeCommandResponse (0x09) / Session = 46479 / Exchange = 61632]
[1659415377.219238][2666:2671] CHIP:DMG: Header Flags =
[1659415377.219295][2666:2671] CHIP:DMG: {
[1659415377.219391][2666:2671] CHIP:DMG: }
[1659415377.219446][2666:2671] CHIP:DMG:
[1659415377.219518][2666:2671] CHIP:DMG: Encrypted Payload (527 bytes) =
[1659415377.219573][2666:2671] CHIP:DMG: {
[1659415377.219626][2666:2671] CHIP:DMG: data = 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
[1659415377.219729][2666:2671] CHIP:DMG: buffer_ptr = 281473366176768
[1659415377.219780][2666:2671] CHIP:DMG: }
[1659415377.219830][2666:2671] CHIP:DMG:
[1659415377.220104][2666:2671] CHIP:DMG: DAC/PAI (463) =
[1659415377.220220][2666:2671] CHIP:DMG: {
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
[1659415377.220439][2666:2671] CHIP:DMG: }
[1659415377.220490][2666:2671] CHIP:DMG:
[1659415377.220553][2666:2671] CHIP:DMG:
[1659415377.220635][2666:2671] CHIP:DMG: Additional Fields =
[1659415377.220689][2666:2671] CHIP:DMG: {
[1659415377.220748][2666:2671] CHIP:DMG: peer_address = BLE
[1659415377.220801][2666:2671] CHIP:DMG: }
[1659415377.220850][2666:2671] CHIP:DMG:
[1659415377.220914][2666:2671] CHIP:EM: Received message of type 0x9 with protocolId (0, 1) and MessageCounter:199585160 on exchange 61632i
[1659415377.220977][2666:2671] CHIP:EM: Found matching exchange: 61632i, Delegate: 0xffffa803c898
[1659415377.221071][2666:2671] CHIP:DMG: ICR moving to [ResponseRe]
[1659415377.221162][2666:2671] CHIP:DMG: InvokeResponseMessage =
[1659415377.221222][2666:2671] CHIP:DMG: {
[1659415377.221279][2666:2671] CHIP:DMG: suppressResponse = false,
[1659415377.221339][2666:2671] CHIP:DMG: InvokeResponseIBs =
[1659415377.221413][2666:2671] CHIP:DMG: [
[1659415377.221473][2666:2671] CHIP:DMG: InvokeResponseIB =
[1659415377.221551][2666:2671] CHIP:DMG: {
[1659415377.221615][2666:2671] CHIP:DMG: CommandDataIB =
[1659415377.221691][2666:2671] CHIP:DMG: {
[1659415377.221764][2666:2671] CHIP:DMG: CommandPathIB =
[1659415377.221855][2666:2671] CHIP:DMG: {
[1659415377.221949][2666:2671] CHIP:DMG: EndpointId = 0x0,
[1659415377.222037][2666:2671] CHIP:DMG: ClusterId = 0x3e,
[1659415377.222125][2666:2671] CHIP:DMG: CommandId = 0x3,
[1659415377.222216][2666:2671] CHIP:DMG: },
[1659415377.222303][2666:2671] CHIP:DMG:
[1659415377.222377][2666:2671] CHIP:DMG: CommandFields =
[1659415377.222476][2666:2671] CHIP:DMG: {
[1659415377.222570][2666:2671] CHIP:DMG: 0x0 = [
[1659415377.222896][2666:2671] CHIP:DMG: 0x30, 0x82, 0x1, 0xcb, 0x30, 0x82, 0x1, 0x71, 0xa0, 0x3, 0x2, 0x1, 0x2, 0x2, 0x8, 0x56, 0xad, 0x82, 0x22, 0xad, 0x94, 0x5b, 0x64, 0x30, 0xa, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x4, 0x3, 0x2, 0x30, 0x30, 0x31, 0x18, 0x30, 0x16, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0xf, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x54, 0x65, 0x73, 0x74, 0x20, 0x50, 0x41, 0x41, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x30, 0x20, 0x17, 0xd, 0x32, 0x32, 0x30, 0x32, 0x30, 0x35, 0x30, 0x30, 0x30, 0x30, 0x30, 0x30, 0x5a, 0x18, 0xf, 0x39, 0x39, 0x39, 0x39, 0x31, 0x32, 0x33, 0x31, 0x32, 0x33, 0x35, 0x39, 0x35, 0x39, 0x5a, 0x30, 0x3d, 0x31, 0x25, 0x30, 0x23, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0x1c, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x44, 0x65, 0x76, 0x20, 0x50, 0x41, 0x49, 0x20, 0x30, 0x78, 0x46, 0x46, 0x46, 0x31, 0x20, 0x6e, 0x6f, 0x20, 0x50, 0x49, 0x44, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x30, 0x59, 0x30, 0x13, 0x6, 0x7, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x2, 0x1, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x3, 0x1, 0x7, 0x3, 0x42, 0x0, 0x4, 0x41, 0x9a, 0x93, 0x15, 0xc2, 0x17, 0x3e, 0xc, 0x8c, 0x87, 0x6d, 0x3, 0xcc, 0xfc, 0x94, 0x48, 0x52, 0x64, 0x7f, 0x7f, 0xec, 0x5e, 0x50, 0x82, 0xf4, 0x5, 0x99, 0x28, 0xec, 0xa8, 0x94, 0xc5, 0x94, 0x15, 0x13, 0x9, 0xac, 0x63, 0x1e, 0x4c, 0xb0, 0x33, 0x92, 0xaf, 0x68, 0x4b, 0xb, 0xaf, 0xb7, 0xe6, 0x5b, 0x3b, 0x81, 0x62, 0xc2, 0xf5, 0x2b, 0xf9, 0x31, 0xb8, 0xe7, 0x7a, 0xaa, 0x82, 0xa3, 0x66, 0x30, 0x64, 0x30, 0x12, 0x6, 0x3, 0x55, 0x1d, 0x13, 0x1, 0x1, 0xff, 0x4, 0x8, 0x30, 0x6, 0x1, 0x1, 0xff, 0x2, 0x1,
[1659415377.223073][2666:2671] CHIP:DMG: ] (463 bytes)
[1659415377.223156][2666:2671] CHIP:DMG: },
[1659415377.223230][2666:2671] CHIP:DMG: },
[1659415377.223312][2666:2671] CHIP:DMG:
[1659415377.223374][2666:2671] CHIP:DMG: },
[1659415377.223448][2666:2671] CHIP:DMG:
[1659415377.223505][2666:2671] CHIP:DMG: ],
[1659415377.223579][2666:2671] CHIP:DMG:
[1659415377.223637][2666:2671] CHIP:DMG: InteractionModelRevision = 1
[1659415377.223694][2666:2671] CHIP:DMG: },
[1659415377.223832][2666:2671] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1659415377.223908][2666:2671] CHIP:CTL: Received certificate chain from the device
[1659415377.224018][2666:2671] CHIP:CTL: Successfully finished commissioning step "SendPAICertificateRequest"
1. Save the PAI value from commissioning log of TH in the file as below
vi pai_6.pem
2. Give the below command to extract the Authority key ID
openssl x509 -in pai_6.pem -text
Verify that below extracted authority key is not same as the SDK"s test PAA
1. 78:5C:E7:05:B8:6B:8F:4E:6F:C7:93:AA:60:CB:43:EA:69:68:82:D5
2. 6A:FD:22:77:1F:51:1F:EC:BF:16:41:97:67:10:DC:DC:31:A1:71:7E
Below certificate has been extracted using the sample DUT, hence the Authority key ID is same as SDK"s test PAA
grl@grl-ThinkPad-L480:~/jul14_2ndcntrl/connectedhomeip$ openssl x509 -in pai_6.pem -text
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4498223361705918669 (0x3e6ce6509ad840cd)
Signature Algorithm: ecdsa-with-SHA256
Issuer: CN = Matter Test PAA, 1.3.6.1.4.1.37244.2.1 = FFF1
Validity
Not Before: Jun 28 14:23:43 2021 GMT
Not After : Dec 31 23:59:59 9999 GMT
Subject: CN = Matter Test PAI, 1.3.6.1.4.1.37244.2.1 = FFF1, 1.3.6.1.4.1.37244.2.2 = 8000
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:80:dd:f1:1b:22:8f:3e:31:f6:3b:cf:57:98:da:
14:62:3a:eb:bd:e8:2e:f3:78:ee:ad:bf:b1:8f:e1:
ab:ce:31:d0:8e:d4:b2:06:04:b6:cc:c6:d9:b5:fa:
b6:4e:7d:e1:0c:b7:4b:e0:17:c9:ec:15:16:05:6d:
70:f2:cd:0b:22
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Subject Key Identifier:
AF:42:B7:09:4D:EB:D5:15:EC:6E:CF:33:B8:11:15:22:5F:32:52:88
X509v3 Authority Key Identifier:
keyid:6A:FD:22:77:1F:51:1F:EC:BF:16:41:97:67:10:DC:DC:31:A1:71:7E
Signature Algorithm: ecdsa-with-SHA256
30:45:02:21:00:96:c9:c8:cf:2e:01:88:60:05:d8:f5:bc:72:
c0:7b:75:fd:9a:57:69:5a:c4:91:11:31:13:8b:ea:03:3c:e5:
03:02:20:25:54:94:3b:e5:7d:53:d6:c4:75:f7:d2:3e:bf:cf:
c2:03:6c:d2:9b:a6:39:3e:c7:ef:ad:87:14:ab:71:82:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
disabled: true
- label: "TH extracts the public key from the DAC and saves as pk_1"
verification: |
During commissioning we will get DAC certificate, see on TH(chip-tool) log:
[1659509320.714103][3165:3170] CHIP:CTL: Performing next commissioning step "SendDACCertificateRequest"
[1659509320.714155][3165:3170] CHIP:CTL: Sending request for DAC certificate
[1659509320.714225][3165:3170] CHIP:CTL: Sending Certificate Chain request to 0xffff74000b60 device
[1659509320.714397][3165:3170] CHIP:DMG: ICR moving to [AddingComm]
[1659509320.714470][3165:3170] CHIP:DMG: ICR moving to [AddedComma]
[1659509320.715027][3165:3170] CHIP:IN: Prepared secure message 0xffff74001d38 to 0xFFFFFFFB00000000 (0) of type 0x8 and protocolId (0, 1) on exchange 17089i with MessageCounter:86888459.
[1659509320.715128][3165:3170] CHIP:IN: Sending encrypted msg 0xffff74001d38 with MessageCounter:86888459 to 0xFFFFFFFB00000000 (0) at monotonic time: 0000000000ADAD48 msec
[1659509320.715804][3165:3170] CHIP:DMG: >> to UDP:[fe80::e65f:1ff:fe0f:2753%eth0]:5540 | 86888459 | [Interaction Model (1) / InvokeCommandRequest (0x08) / Session = 29587 / Exchange = 17089]
[1659509320.715898][3165:3170] CHIP:DMG: Header Flags =
[1659509320.715952][3165:3170] CHIP:DMG: {
[1659509320.716035][3165:3170] CHIP:DMG: Exchange (0x05) =
[1659509320.716089][3165:3170] CHIP:DMG: {
[1659509320.716158][3165:3170] CHIP:DMG: Initiator = true
[1659509320.716212][3165:3170] CHIP:DMG: NeedsAck = true
[1659509320.716264][3165:3170] CHIP:DMG: }
[1659509320.716353][3165:3170] CHIP:DMG: }
[1659509320.716405][3165:3170] CHIP:DMG:
[1659509320.716491][3165:3170] CHIP:DMG: Encrypted Payload (62 bytes) =
[1659509320.716544][3165:3170] CHIP:DMG: {
[1659509320.716616][3165:3170] CHIP:DMG: data = 009373000bd02d05c296dbc864194390f3d020eb61ee335c0d61263dd0d5f4849a5c6a601f73c80e6775d2b422e816cf8e3ae224d59c01f53783a657bd0d
[1659509320.716672][3165:3170] CHIP:DMG: buffer_ptr = 281472627949680
[1659509320.716742][3165:3170] CHIP:DMG: }
[1659509320.716793][3165:3170] CHIP:DMG:
[1659509320.716965][3165:3170] CHIP:DMG: InvokeRequestMessage =
[1659509320.717029][3165:3170] CHIP:DMG: {
[1659509320.717084][3165:3170] CHIP:DMG: suppressResponse = false,
[1659509320.717148][3165:3170] CHIP:DMG: timedRequest = false,
[1659509320.717206][3165:3170] CHIP:DMG: InvokeRequests =
[1659509320.717276][3165:3170] CHIP:DMG: [
[1659509320.717335][3165:3170] CHIP:DMG: CommandDataIB =
[1659509320.717399][3165:3170] CHIP:DMG: {
[1659509320.717461][3165:3170] CHIP:DMG: CommandPathIB =
[1659509320.717535][3165:3170] CHIP:DMG: {
[1659509320.717788][3165:3170] CHIP:DMG: EndpointId = 0x0,
[1659509320.717870][3165:3170] CHIP:DMG: ClusterId = 0x3e,
[1659509320.717947][3165:3170] CHIP:DMG: CommandId = 0x2,
[1659509320.718019][3165:3170] CHIP:DMG: },
[1659509320.718116][3165:3170] CHIP:DMG:
[1659509320.718181][3165:3170] CHIP:DMG: CommandFields =
[1659509320.718273][3165:3170] CHIP:DMG: {
[1659509320.718436][3165:3170] CHIP:DMG: 0x0 = 1,
[1659509320.718521][3165:3170] CHIP:DMG: },
[1659509320.718609][3165:3170] CHIP:DMG: },
[1659509320.718706][3165:3170] CHIP:DMG:
[1659509320.718766][3165:3170] CHIP:DMG: ],
[1659509320.718855][3165:3170] CHIP:DMG:
[1659509320.718915][3165:3170] CHIP:DMG: InteractionModelRevision = 1
[1659509320.718971][3165:3170] CHIP:DMG: },
[1659509320.719024][3165:3170] CHIP:DMG:
[1659509320.719407][3165:3170] CHIP:DMG: ICR moving to [CommandSen]
[1659509320.719536][3165:3170] CHIP:DMG: ICR moving to [AwaitingDe]
[1659509320.719608][3165:3170] CHIP:EM: Sending Standalone Ack for MessageCounter:148943591 on exchange 17088i
[1659509320.720332][3165:3170] CHIP:IN: Prepared secure message 0xffff88e5c9e8 to 0xFFFFFFFB00000000 (0) of type 0x10 and protocolId (0, 0) on exchange 17088i with MessageCounter:86888460.
[1659509320.720493][3165:3170] CHIP:IN: Sending encrypted msg 0xffff88e5c9e8 with MessageCounter:86888460 to 0xFFFFFFFB00000000 (0) at monotonic time: 0000000000ADAD4E msec
[1659509320.721152][3165:3170] CHIP:DMG: >> to UDP:[fe80::e65f:1ff:fe0f:2753%eth0]:5540 | 86888460 | [Secure Channel (0) / Standalone Ack (0x10) / Session = 29587 / Exchange = 17088]
[1659509320.721242][3165:3170] CHIP:DMG: Header Flags =
[1659509320.721298][3165:3170] CHIP:DMG: {
[1659509320.721381][3165:3170] CHIP:DMG: Exchange (0x03) =
[1659509320.721434][3165:3170] CHIP:DMG: {
[1659509320.721505][3165:3170] CHIP:DMG: Initiator = true
[1659509320.721562][3165:3170] CHIP:DMG: AckMsg = 148943591
[1659509320.721634][3165:3170] CHIP:DMG: }
[1659509320.721706][3165:3170] CHIP:DMG: }
[1659509320.721759][3165:3170] CHIP:DMG:
[1659509320.721846][3165:3170] CHIP:DMG: Encrypted Payload (34 bytes) =
[1659509320.721901][3165:3170] CHIP:DMG: {
[1659509320.721972][3165:3170] CHIP:DMG: data = 009373000cd02d05ff4214e467b1c7a3664b8d8c5628c4e291f833b9f2f35d953235
[1659509320.722027][3165:3170] CHIP:DMG: buffer_ptr = 281472627939824
[1659509320.722077][3165:3170] CHIP:DMG: }
[1659509320.722125][3165:3170] CHIP:DMG:
[1659509320.722485][3165:3170] CHIP:EM: Flushed pending ack for MessageCounter:148943591 on exchange 17088i
[1659509320.724260][3165:3170] CHIP:DMG: << from UDP:[fe80::e65f:1ff:fe0f:2753%eth0]:5540 | 148943592 | [Interaction Model (1) / InvokeCommandResponse (0x09) / Session = 49327 / Exchange = 17089]
[1659509320.724362][3165:3170] CHIP:DMG: Header Flags =
[1659509320.724417][3165:3170] CHIP:DMG: {
[1659509320.724503][3165:3170] CHIP:DMG: Exchange (0x06) =
[1659509320.724558][3165:3170] CHIP:DMG: {
[1659509320.724647][3165:3170] CHIP:DMG: AckMsg = 86888459
[1659509320.724704][3165:3170] CHIP:DMG: NeedsAck = true
[1659509320.724756][3165:3170] CHIP:DMG: }
[1659509320.724827][3165:3170] CHIP:DMG: }
[1659509320.724879][3165:3170] CHIP:DMG:
[1659509320.724950][3165:3170] CHIP:DMG: Encrypted Payload (559 bytes) =
[1659509320.725003][3165:3170] CHIP:DMG: {
[1659509320.725056][3165:3170] CHIP:DMG: data = 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
[1659509320.725163][3165:3170] CHIP:DMG: buffer_ptr = 281472627931376
[1659509320.725214][3165:3170] CHIP:DMG: }
[1659509320.725263][3165:3170] CHIP:DMG:
[1659509320.725501][3165:3170] CHIP:DMG: DAC/PAI (491) =
[1659509320.725616][3165:3170] CHIP:DMG: {
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
[1659509320.725847][3165:3170] CHIP:DMG: }
[1659509320.725898][3165:3170] CHIP:DMG:
[1659509320.725961][3165:3170] CHIP:DMG:
[1659509320.726043][3165:3170] CHIP:DMG: Additional Fields =
[1659509320.726099][3165:3170] CHIP:DMG: {
[1659509320.726158][3165:3170] CHIP:DMG: peer_address = UDP:[fe80::e65f:1ff:fe0f:2753%eth0]:5540
[1659509320.726215][3165:3170] CHIP:DMG: }
[1659509320.726265][3165:3170] CHIP:DMG:
[1659509320.726334][3165:3170] CHIP:EM: Received message of type 0x9 with protocolId (0, 1) and MessageCounter:148943592 on exchange 17089i
[1659509320.726446][3165:3170] CHIP:EM: Found matching exchange: 17089i, Delegate: 0xffff74009c78
[1659509320.726534][3165:3170] CHIP:EM: Rxd Ack; Removing MessageCounter:86888459 from Retrans Table on exchange 17089i
[1659509320.726594][3165:3170] CHIP:EM: Removed CHIP MessageCounter:86888459 from RetransTable on exchange 17089i
[1659509320.726669][3165:3170] CHIP:DMG: ICR moving to [ResponseRe]
[1659509320.726761][3165:3170] CHIP:DMG: InvokeResponseMessage =
[1659509320.726818][3165:3170] CHIP:DMG: {
[1659509320.726876][3165:3170] CHIP:DMG: suppressResponse = false,
[1659509320.726934][3165:3170] CHIP:DMG: InvokeResponseIBs =
[1659509320.727010][3165:3170] CHIP:DMG: [
[1659509320.727068][3165:3170] CHIP:DMG: InvokeResponseIB =
[1659509320.727154][3165:3170] CHIP:DMG: {
[1659509320.727217][3165:3170] CHIP:DMG: CommandDataIB =
[1659509320.727291][3165:3170] CHIP:DMG: {
[1659509320.727362][3165:3170] CHIP:DMG: CommandPathIB =
[1659509320.727442][3165:3170] CHIP:DMG: {
[1659509320.727523][3165:3170] CHIP:DMG: EndpointId = 0x0,
[1659509320.727607][3165:3170] CHIP:DMG: ClusterId = 0x3e,
[1659509320.727698][3165:3170] CHIP:DMG: CommandId = 0x3,
[1659509320.727777][3165:3170] CHIP:DMG: },
[1659509320.727857][3165:3170] CHIP:DMG:
[1659509320.727928][3165:3170] CHIP:DMG: CommandFields =
[1659509320.728004][3165:3170] CHIP:DMG: {
[1659509320.728081][3165:3170] CHIP:DMG: 0x0 = [
[1659509320.728404][3165:3170] CHIP:DMG: 0x30, 0x82, 0x1, 0xe7, 0x30, 0x82, 0x1, 0x8e, 0xa0, 0x3, 0x2, 0x1, 0x2, 0x2, 0x8, 0x69, 0xcd, 0xf1, 0xd, 0xe9, 0xe5, 0x4e, 0xd1, 0x30, 0xa, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x4, 0x3, 0x2, 0x30, 0x3d, 0x31, 0x25, 0x30, 0x23, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0x1c, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x44, 0x65, 0x76, 0x20, 0x50, 0x41, 0x49, 0x20, 0x30, 0x78, 0x46, 0x46, 0x46, 0x31, 0x20, 0x6e, 0x6f, 0x20, 0x50, 0x49, 0x44, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x30, 0x20, 0x17, 0xd, 0x32, 0x32, 0x30, 0x32, 0x30, 0x35, 0x30, 0x30, 0x30, 0x30, 0x30, 0x30, 0x5a, 0x18, 0xf, 0x39, 0x39, 0x39, 0x39, 0x31, 0x32, 0x33, 0x31, 0x32, 0x33, 0x35, 0x39, 0x35, 0x39, 0x5a, 0x30, 0x53, 0x31, 0x25, 0x30, 0x23, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0x1c, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x44, 0x65, 0x76, 0x20, 0x44, 0x41, 0x43, 0x20, 0x30, 0x78, 0x46, 0x46, 0x46, 0x31, 0x2f, 0x30, 0x78, 0x38, 0x30, 0x30, 0x31, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x2, 0xc, 0x4, 0x38, 0x30, 0x30, 0x31, 0x30, 0x59, 0x30, 0x13, 0x6, 0x7, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x2, 0x1, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x3, 0x1, 0x7, 0x3, 0x42, 0x0, 0x4, 0x46, 0x3a, 0xc6, 0x93, 0x42, 0x91, 0xa, 0xe, 0x55, 0x88, 0xfc, 0x6f, 0xf5, 0x6b, 0xb6, 0x3e, 0x62, 0xec, 0xce, 0xcb, 0x14, 0x8f, 0x7d, 0x4e, 0xb0, 0x3e, 0xe5, 0x52, 0x60, 0x14, 0x15, 0x76, 0x7d, 0x16, 0xa5, 0xc6, 0x63, 0xf7, 0x93, 0xe4, 0x91, 0x23, 0x26, 0xb, 0x82, 0x97, 0xa7, 0xcd, 0x7e, 0x7c, 0xfc, 0x
[1659509320.728579][3165:3170] CHIP:DMG: ] (491 bytes)
[1659509320.728664][3165:3170] CHIP:DMG: },
[1659509320.728738][3165:3170] CHIP:DMG: },
[1659509320.728818][3165:3170] CHIP:DMG:
[1659509320.728879][3165:3170] CHIP:DMG: },
[1659509320.728952][3165:3170] CHIP:DMG:
[1659509320.729010][3165:3170] CHIP:DMG: ],
[1659509320.729082][3165:3170] CHIP:DMG:
[1659509320.729140][3165:3170] CHIP:DMG: InteractionModelRevision = 1
[1659509320.729197][3165:3170] CHIP:DMG: },
[1659509320.729335][3165:3170] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1659509320.729409][3165:3170] CHIP:CTL: Received certificate chain from the device
[1659509320.729476][3165:3170] CHIP:CTL: Successfully finished commissioning step "SendDACCertificateRequest"
"1. Save the DAC value from commissioning log of TH in the file as below
vi dac.pem
2. Give the below command to extract the Authority key ID
openssl x509 -in dac.pem -text
Below certificate has been extracted using the sample DUT, hence the Authority key ID is same as SDK"s test PAA
grl@grl-ThinkPad-L480:~/jul14_2ndcntrl/connectedhomeip$ openssl x509 -in dac.pem -text
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7624014786269105873 (0x69cdf10de9e54ed1)
Signature Algorithm: ecdsa-with-SHA256
Issuer: CN = Matter Dev PAI 0xFFF1 no PID, 1.3.6.1.4.1.37244.2.1 = FFF1
Validity
Not Before: Feb 5 00:00:00 2022 GMT
Not After : Dec 31 23:59:59 9999 GMT
Subject: CN = Matter Dev DAC 0xFFF1/0x8001, 1.3.6.1.4.1.37244.2.1 = FFF1, 1.3.6.1.4.1.37244.2.2 = 8001
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:46:3a:c6:93:42:91:0a:0e:55:88:fc:6f:f5:6b:
b6:3e:62:ec:ce:cb:14:8f:7d:4e:b0:3e:e5:52:60:
14:15:76:7d:16:a5:c6:63:f7:93:e4:91:23:26:0b:
82:97:a7:cd:7e:7c:fc:7b:31:6b:39:d9:8e:90:d2:
93:77:73:8e:82
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Key Usage: critical
Digital Signature
X509v3 Subject Key Identifier:
88:DD:E7:B3:00:38:29:32:CF:F7:34:C0:46:24:81:0F:44:16:8A:6F
X509v3 Authority Key Identifier:
keyid:63:54:0E:47:F6:4B:1C:38:D1:38:84:A4:62:D1:6C:19:5D:8F:FB:3C
Signature Algorithm: ecdsa-with-SHA256
30:44:02:20:01:27:a2:7b:4b:44:61:0e:e2:fc:dc:4d:2b:78:
85:56:36:60:bc:0f:76:f1:72:19:ed:6a:08:df:b2:b3:c1:cd:
02:20:6b:59:e0:af:45:f3:eb:2a:85:b9:19:d3:57:31:52:8c:
60:28:c4:15:23:95:45:e1:08:e4:e5:4e:70:97:13:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
disabled: true
- label:
"Repeat Step 1 to 4 with DUT2, saving the PAI, DAC and public key as
pk_2"
verification: |
To commission DUT2 to TH
"sudo ./chip-all-clusters-app --wifi --discriminator 3844
TH side:
./chip-tool pairing ble-wifi 1 zigbeehome matter123 20202021 3844 --trace_decode 1
[1650455358.501816][4366:4371] CHIP:TOO: Device commissioning completed with success"
Verify in TH(chip-tool) log:
./chip-tool operationalcredentials certificate-chain-request 1 1 0 --trace_decode 1
[1657774717.721972][7956:7961] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1657774717.722019][7956:7961] CHIP:TOO: Endpoint: 0 Cluster: 0x0000_003E Command 0x0000_0003
[1657774717.722135][7956:7961] CHIP:TOO: CertificateChainResponse: {
[1657774717.722181][7956:7961] CHIP:TOO: certificate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
[1657774717.722269][7956:7961] CHIP:TOO: ...........: 034700304402200127A27B4B44610EE2FCDC4D2B7885563660BC0F76F17219ED6A08DFB2B3C1CD02206B59E0AF45F3EB2A85B919D35731528C6028C415239545E108E4E54E70971353
[1657774717.722297][7956:7961] CHIP:TOO: }
./chip-tool operationalcredentials certificate-chain-request 2 1 0 --trace_decode 1
[1657774756.281112][7964:7969] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1657774756.281164][7964:7969] CHIP:TOO: Endpoint: 0 Cluster: 0x0000_003E Command 0x0000_0003
[1657774756.281236][7964:7969] CHIP:TOO: CertificateChainResponse: {
[1657774756.281289][7964:7969] CHIP:TOO: certificate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
[1657774756.281357][7964:7969] CHIP:TOO: ...........: B88FACE529368D12054C0C0220655DC92B86BD909882A6C62177B825D7D05EDBE7C22F9FEA71220E7EA703F891
[1657774756.281388][7964:7969] CHIP:TOO: }
During commissioning we will get PAI certificate, see on TH(chip-tool) log:
[1659415376.883870][2666:2671] CHIP:CTL: Performing next commissioning step "SendPAICertificateRequest"
[1659415376.883925][2666:2671] CHIP:CTL: Sending request for PAI certificate
[1659415376.884015][2666:2671] CHIP:CTL: Sending Certificate Chain request to 0xffffa0000b60 device
[1659415376.884167][2666:2671] CHIP:DMG: ICR moving to [AddingComm]
[1659415376.884302][2666:2671] CHIP:DMG: ICR moving to [AddedComma]
[1659415376.884867][2666:2671] CHIP:IN: Prepared secure message 0xffffb37ec8d8 to 0xFFFFFFFB00000000 (0) of type 0x8 and protocolId (0, 1) on exchange 61632i with MessageCounter:72933899.
[1659415376.884965][2666:2671] CHIP:IN: Sending encrypted msg 0xffffb37ec8d8 with MessageCounter:72933899 to 0xFFFFFFFB00000000 (0) at monotonic time: 0000000000161D55 msec
[1659415376.885796][2666:2671] CHIP:DMG: >> to BLE | 72933899 | [Interaction Model (1) / InvokeCommandRequest (0x08) / Session = 384 / Exchange = 61632]
[1659415376.885890][2666:2671] CHIP:DMG: Header Flags =
[1659415376.885944][2666:2671] CHIP:DMG: {
[1659415376.886028][2666:2671] CHIP:DMG: Exchange (0x01) =
[1659415376.886081][2666:2671] CHIP:DMG: {
[1659415376.886154][2666:2671] CHIP:DMG: Initiator = true
[1659415376.886206][2666:2671] CHIP:DMG: }
[1659415376.886296][2666:2671] CHIP:DMG: }
[1659415376.886350][2666:2671] CHIP:DMG:
[1659415376.886438][2666:2671] CHIP:DMG: Encrypted Payload (62 bytes) =
[1659415376.886492][2666:2671] CHIP:DMG: {
[1659415376.886542][2666:2671] CHIP:DMG: data = 008001000be258046e751fb56b97dabcc7ee6b6611ede33a66461e188834bb1fe5b6332edb4a3896d32bce2eb59dee722e070c4426af77c82dfca14619bb
[1659415376.886616][2666:2671] CHIP:DMG: buffer_ptr = 281473366182720
[1659415376.886666][2666:2671] CHIP:DMG: }
[1659415376.886714][2666:2671] CHIP:DMG:
[1659415376.886900][2666:2671] CHIP:DMG: InvokeRequestMessage =
[1659415376.886962][2666:2671] CHIP:DMG: {
[1659415376.887039][2666:2671] CHIP:DMG: suppressResponse = false,
[1659415376.887103][2666:2671] CHIP:DMG: timedRequest = false,
[1659415376.887162][2666:2671] CHIP:DMG: InvokeRequests =
[1659415376.887234][2666:2671] CHIP:DMG: [
[1659415376.887312][2666:2671] CHIP:DMG: CommandDataIB =
[1659415376.887380][2666:2671] CHIP:DMG: {
[1659415376.887442][2666:2671] CHIP:DMG: CommandPathIB =
[1659415376.887538][2666:2671] CHIP:DMG: {
[1659415376.887633][2666:2671] CHIP:DMG: EndpointId = 0x0,
[1659415376.887874][2666:2671] CHIP:DMG: ClusterId = 0x3e,
[1659415376.888039][2666:2671] CHIP:DMG: CommandId = 0x2,
[1659415376.888125][2666:2671] CHIP:DMG: },
[1659415376.888225][2666:2671] CHIP:DMG:
[1659415376.888289][2666:2671] CHIP:DMG: CommandFields =
[1659415376.888384][2666:2671] CHIP:DMG: {
[1659415376.888478][2666:2671] CHIP:DMG: 0x0 = 2,
[1659415376.888560][2666:2671] CHIP:DMG: },
[1659415376.888655][2666:2671] CHIP:DMG: },
[1659415376.888728][2666:2671] CHIP:DMG:
[1659415376.888806][2666:2671] CHIP:DMG: ],
[1659415376.888877][2666:2671] CHIP:DMG:
[1659415376.888955][2666:2671] CHIP:DMG: InteractionModelRevision = 1
[1659415376.889012][2666:2671] CHIP:DMG: },
[1659415376.889086][2666:2671] CHIP:DMG:
[1659415376.889368][2666:2671] CHIP:DMG: ICR moving to [CommandSen]
[1659415376.889523][2666:2671] CHIP:DMG: ICR moving to [AwaitingDe]
[1659415376.972895][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16387
[1659415377.021227][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.021488][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.122119][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.122505][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.217641][2666:2669] CHIP:DL: Indication received, conn = 0xffffa803b9b0
[1659415377.217905][2666:2671] CHIP:DL: HandlePlatformSpecificBLEEvent 16389
[1659415377.219135][2666:2671] CHIP:DMG: << from BLE | 199585160 | [Interaction Model (1) / InvokeCommandResponse (0x09) / Session = 46479 / Exchange = 61632]
[1659415377.219238][2666:2671] CHIP:DMG: Header Flags =
[1659415377.219295][2666:2671] CHIP:DMG: {
[1659415377.219391][2666:2671] CHIP:DMG: }
[1659415377.219446][2666:2671] CHIP:DMG:
[1659415377.219518][2666:2671] CHIP:DMG: Encrypted Payload (527 bytes) =
[1659415377.219573][2666:2671] CHIP:DMG: {
[1659415377.219626][2666:2671] CHIP:DMG: data = 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
[1659415377.219729][2666:2671] CHIP:DMG: buffer_ptr = 281473366176768
[1659415377.219780][2666:2671] CHIP:DMG: }
[1659415377.219830][2666:2671] CHIP:DMG:
[1659415377.220104][2666:2671] CHIP:DMG: DAC/PAI (463) =
[1659415377.220220][2666:2671] CHIP:DMG: {
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
[1659415377.220439][2666:2671] CHIP:DMG: }
[1659415377.220490][2666:2671] CHIP:DMG:
[1659415377.220553][2666:2671] CHIP:DMG:
[1659415377.220635][2666:2671] CHIP:DMG: Additional Fields =
[1659415377.220689][2666:2671] CHIP:DMG: {
[1659415377.220748][2666:2671] CHIP:DMG: peer_address = BLE
[1659415377.220801][2666:2671] CHIP:DMG: }
[1659415377.220850][2666:2671] CHIP:DMG:
[1659415377.220914][2666:2671] CHIP:EM: Received message of type 0x9 with protocolId (0, 1) and MessageCounter:199585160 on exchange 61632i
[1659415377.220977][2666:2671] CHIP:EM: Found matching exchange: 61632i, Delegate: 0xffffa803c898
[1659415377.221071][2666:2671] CHIP:DMG: ICR moving to [ResponseRe]
[1659415377.221162][2666:2671] CHIP:DMG: InvokeResponseMessage =
[1659415377.221222][2666:2671] CHIP:DMG: {
[1659415377.221279][2666:2671] CHIP:DMG: suppressResponse = false,
[1659415377.221339][2666:2671] CHIP:DMG: InvokeResponseIBs =
[1659415377.221413][2666:2671] CHIP:DMG: [
[1659415377.221473][2666:2671] CHIP:DMG: InvokeResponseIB =
[1659415377.221551][2666:2671] CHIP:DMG: {
[1659415377.221615][2666:2671] CHIP:DMG: CommandDataIB =
[1659415377.221691][2666:2671] CHIP:DMG: {
[1659415377.221764][2666:2671] CHIP:DMG: CommandPathIB =
[1659415377.221855][2666:2671] CHIP:DMG: {
[1659415377.221949][2666:2671] CHIP:DMG: EndpointId = 0x0,
[1659415377.222037][2666:2671] CHIP:DMG: ClusterId = 0x3e,
[1659415377.222125][2666:2671] CHIP:DMG: CommandId = 0x3,
[1659415377.222216][2666:2671] CHIP:DMG: },
[1659415377.222303][2666:2671] CHIP:DMG:
[1659415377.222377][2666:2671] CHIP:DMG: CommandFields =
[1659415377.222476][2666:2671] CHIP:DMG: {
[1659415377.222570][2666:2671] CHIP:DMG: 0x0 = [
[1659415377.222896][2666:2671] CHIP:DMG: 0x30, 0x82, 0x1, 0xcb, 0x30, 0x82, 0x1, 0x71, 0xa0, 0x3, 0x2, 0x1, 0x2, 0x2, 0x8, 0x56, 0xad, 0x82, 0x22, 0xad, 0x94, 0x5b, 0x64, 0x30, 0xa, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x4, 0x3, 0x2, 0x30, 0x30, 0x31, 0x18, 0x30, 0x16, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0xf, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x54, 0x65, 0x73, 0x74, 0x20, 0x50, 0x41, 0x41, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x30, 0x20, 0x17, 0xd, 0x32, 0x32, 0x30, 0x32, 0x30, 0x35, 0x30, 0x30, 0x30, 0x30, 0x30, 0x30, 0x5a, 0x18, 0xf, 0x39, 0x39, 0x39, 0x39, 0x31, 0x32, 0x33, 0x31, 0x32, 0x33, 0x35, 0x39, 0x35, 0x39, 0x5a, 0x30, 0x3d, 0x31, 0x25, 0x30, 0x23, 0x6, 0x3, 0x55, 0x4, 0x3, 0xc, 0x1c, 0x4d, 0x61, 0x74, 0x74, 0x65, 0x72, 0x20, 0x44, 0x65, 0x76, 0x20, 0x50, 0x41, 0x49, 0x20, 0x30, 0x78, 0x46, 0x46, 0x46, 0x31, 0x20, 0x6e, 0x6f, 0x20, 0x50, 0x49, 0x44, 0x31, 0x14, 0x30, 0x12, 0x6, 0xa, 0x2b, 0x6, 0x1, 0x4, 0x1, 0x82, 0xa2, 0x7c, 0x2, 0x1, 0xc, 0x4, 0x46, 0x46, 0x46, 0x31, 0x30, 0x59, 0x30, 0x13, 0x6, 0x7, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x2, 0x1, 0x6, 0x8, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x3, 0x1, 0x7, 0x3, 0x42, 0x0, 0x4, 0x41, 0x9a, 0x93, 0x15, 0xc2, 0x17, 0x3e, 0xc, 0x8c, 0x87, 0x6d, 0x3, 0xcc, 0xfc, 0x94, 0x48, 0x52, 0x64, 0x7f, 0x7f, 0xec, 0x5e, 0x50, 0x82, 0xf4, 0x5, 0x99, 0x28, 0xec, 0xa8, 0x94, 0xc5, 0x94, 0x15, 0x13, 0x9, 0xac, 0x63, 0x1e, 0x4c, 0xb0, 0x33, 0x92, 0xaf, 0x68, 0x4b, 0xb, 0xaf, 0xb7, 0xe6, 0x5b, 0x3b, 0x81, 0x62, 0xc2, 0xf5, 0x2b, 0xf9, 0x31, 0xb8, 0xe7, 0x7a, 0xaa, 0x82, 0xa3, 0x66, 0x30, 0x64, 0x30, 0x12, 0x6, 0x3, 0x55, 0x1d, 0x13, 0x1, 0x1, 0xff, 0x4, 0x8, 0x30, 0x6, 0x1, 0x1, 0xff, 0x2, 0x1,
[1659415377.223073][2666:2671] CHIP:DMG: ] (463 bytes)
[1659415377.223156][2666:2671] CHIP:DMG: },
[1659415377.223230][2666:2671] CHIP:DMG: },
[1659415377.223312][2666:2671] CHIP:DMG:
[1659415377.223374][2666:2671] CHIP:DMG: },
[1659415377.223448][2666:2671] CHIP:DMG:
[1659415377.223505][2666:2671] CHIP:DMG: ],
[1659415377.223579][2666:2671] CHIP:DMG:
[1659415377.223637][2666:2671] CHIP:DMG: InteractionModelRevision = 1
[1659415377.223694][2666:2671] CHIP:DMG: },
[1659415377.223832][2666:2671] CHIP:DMG: Received Command Response Data, Endpoint=0 Cluster=0x0000_003E Command=0x0000_0003
[1659415377.223908][2666:2671] CHIP:CTL: Received certificate chain from the device
[1659415377.224018][2666:2671] CHIP:CTL: Successfully finished commissioning step "SendPAICertificateRequest"
"1. Save the PAI value from commissioning log of TH in the file as below
vi pai_6.pem
2. Give the below command to extract the Authority key ID
openssl x509 -in pai_6.pem -text
Below certificate has been extracted using the sample DUT, hence the Authority key ID is same as SDK"s test PAA
grl@grl-ThinkPad-L480:~/jul14_2ndcntrl/connectedhomeip$ openssl x509 -in pai_6.pem -text
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4498223361705918669 (0x3e6ce6509ad840cd)
Signature Algorithm: ecdsa-with-SHA256
Issuer: CN = Matter Test PAA, 1.3.6.1.4.1.37244.2.1 = FFF1
Validity
Not Before: Jun 28 14:23:43 2021 GMT
Not After : Dec 31 23:59:59 9999 GMT
Subject: CN = Matter Test PAI, 1.3.6.1.4.1.37244.2.1 = FFF1, 1.3.6.1.4.1.37244.2.2 = 8000
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:80:dd:f1:1b:22:8f:3e:31:f6:3b:cf:57:98:da:
14:62:3a:eb:bd:e8:2e:f3:78:ee:ad:bf:b1:8f:e1:
ab:ce:31:d0:8e:d4:b2:06:04:b6:cc:c6:d9:b5:fa:
b6:4e:7d:e1:0c:b7:4b:e0:17:c9:ec:15:16:05:6d:
70:f2:cd:0b:22
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Subject Key Identifier:
AF:42:B7:09:4D:EB:D5:15:EC:6E:CF:33:B8:11:15:22:5F:32:52:88
X509v3 Authority Key Identifier:
keyid:6A:FD:22:77:1F:51:1F:EC:BF:16:41:97:67:10:DC:DC:31:A1:71:7E
Signature Algorithm: ecdsa-with-SHA256
30:45:02:21:00:96:c9:c8:cf:2e:01:88:60:05:d8:f5:bc:72:
c0:7b:75:fd:9a:57:69:5a:c4:91:11:31:13:8b:ea:03:3c:e5:
03:02:20:25:54:94:3b:e5:7d:53:d6:c4:75:f7:d2:3e:bf:cf:
c2:03:6c:d2:9b:a6:39:3e:c7:ef:ad:87:14:ab:71:82:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
disabled: true
- label:
"Repeat Step 1 to 4 with DUT2, saving the PAI, DAC and public key as
pk_2"
verification: |
verification step to be updated.
disabled: true