@matter/protocol 0.11.0-alpha.0-20241005-e3e4e4a7a
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +201 -0
- package/dist/cjs/MatterDevice.d.ts +79 -0
- package/dist/cjs/MatterDevice.d.ts.map +1 -0
- package/dist/cjs/MatterDevice.js +253 -0
- package/dist/cjs/MatterDevice.js.map +6 -0
- package/dist/cjs/ble/Ble.d.ts +29 -0
- package/dist/cjs/ble/Ble.d.ts.map +1 -0
- package/dist/cjs/ble/Ble.js +50 -0
- package/dist/cjs/ble/Ble.js.map +6 -0
- package/dist/cjs/ble/BleConsts.d.ts +32 -0
- package/dist/cjs/ble/BleConsts.d.ts.map +1 -0
- package/dist/cjs/ble/BleConsts.js +53 -0
- package/dist/cjs/ble/BleConsts.js.map +6 -0
- package/dist/cjs/ble/BtpSessionHandler.d.ts +87 -0
- package/dist/cjs/ble/BtpSessionHandler.d.ts.map +1 -0
- package/dist/cjs/ble/BtpSessionHandler.js +432 -0
- package/dist/cjs/ble/BtpSessionHandler.js.map +6 -0
- package/dist/cjs/ble/index.d.ts +9 -0
- package/dist/cjs/ble/index.d.ts.map +1 -0
- package/dist/cjs/ble/index.js +26 -0
- package/dist/cjs/ble/index.js.map +6 -0
- package/dist/cjs/certificate/AttestationCertificateManager.d.ts +28 -0
- package/dist/cjs/certificate/AttestationCertificateManager.d.ts.map +1 -0
- package/dist/cjs/certificate/AttestationCertificateManager.js +171 -0
- package/dist/cjs/certificate/AttestationCertificateManager.js.map +6 -0
- package/dist/cjs/certificate/CertificateManager.d.ts +575 -0
- package/dist/cjs/certificate/CertificateManager.d.ts.map +1 -0
- package/dist/cjs/certificate/CertificateManager.js +810 -0
- package/dist/cjs/certificate/CertificateManager.js.map +6 -0
- package/dist/cjs/certificate/CertificationDeclarationManager.d.ts +5 -0
- package/dist/cjs/certificate/CertificationDeclarationManager.d.ts.map +1 -0
- package/dist/cjs/certificate/CertificationDeclarationManager.js +54 -0
- package/dist/cjs/certificate/CertificationDeclarationManager.js.map +6 -0
- package/dist/cjs/certificate/ChipPAAuthorities.d.ts +14 -0
- package/dist/cjs/certificate/ChipPAAuthorities.d.ts.map +1 -0
- package/dist/cjs/certificate/ChipPAAuthorities.js +57 -0
- package/dist/cjs/certificate/ChipPAAuthorities.js.map +6 -0
- package/dist/cjs/certificate/DeviceCertification.d.ts +30 -0
- package/dist/cjs/certificate/DeviceCertification.d.ts.map +1 -0
- package/dist/cjs/certificate/DeviceCertification.js +103 -0
- package/dist/cjs/certificate/DeviceCertification.js.map +6 -0
- package/dist/cjs/certificate/RootCertificateManager.d.ts +33 -0
- package/dist/cjs/certificate/RootCertificateManager.d.ts.map +1 -0
- package/dist/cjs/certificate/RootCertificateManager.js +142 -0
- package/dist/cjs/certificate/RootCertificateManager.js.map +6 -0
- package/dist/cjs/certificate/index.d.ts +12 -0
- package/dist/cjs/certificate/index.d.ts.map +1 -0
- package/dist/cjs/certificate/index.js +29 -0
- package/dist/cjs/certificate/index.js.map +6 -0
- package/dist/cjs/cluster/client/AttributeClient.d.ts +61 -0
- package/dist/cjs/cluster/client/AttributeClient.d.ts.map +1 -0
- package/dist/cjs/cluster/client/AttributeClient.js +177 -0
- package/dist/cjs/cluster/client/AttributeClient.js.map +6 -0
- package/dist/cjs/cluster/client/ClusterClient.d.ts +10 -0
- package/dist/cjs/cluster/client/ClusterClient.d.ts.map +1 -0
- package/dist/cjs/cluster/client/ClusterClient.js +281 -0
- package/dist/cjs/cluster/client/ClusterClient.js.map +6 -0
- package/dist/cjs/cluster/client/ClusterClientTypes.d.ts +171 -0
- package/dist/cjs/cluster/client/ClusterClientTypes.d.ts.map +1 -0
- package/dist/cjs/cluster/client/ClusterClientTypes.js +22 -0
- package/dist/cjs/cluster/client/ClusterClientTypes.js.map +6 -0
- package/dist/cjs/cluster/client/EventClient.d.ts +41 -0
- package/dist/cjs/cluster/client/EventClient.d.ts.map +1 -0
- package/dist/cjs/cluster/client/EventClient.js +94 -0
- package/dist/cjs/cluster/client/EventClient.js.map +6 -0
- package/dist/cjs/cluster/client/index.d.ts +10 -0
- package/dist/cjs/cluster/client/index.d.ts.map +1 -0
- package/dist/cjs/cluster/client/index.js +27 -0
- package/dist/cjs/cluster/client/index.js.map +6 -0
- package/dist/cjs/cluster/index.d.ts +8 -0
- package/dist/cjs/cluster/index.d.ts.map +1 -0
- package/dist/cjs/cluster/index.js +25 -0
- package/dist/cjs/cluster/index.js.map +6 -0
- package/dist/cjs/cluster/server/AttributeServer.d.ts +307 -0
- package/dist/cjs/cluster/server/AttributeServer.d.ts.map +1 -0
- package/dist/cjs/cluster/server/AttributeServer.js +734 -0
- package/dist/cjs/cluster/server/AttributeServer.js.map +6 -0
- package/dist/cjs/cluster/server/ClusterDatasource.d.ts +16 -0
- package/dist/cjs/cluster/server/ClusterDatasource.d.ts.map +1 -0
- package/dist/cjs/cluster/server/ClusterDatasource.js +22 -0
- package/dist/cjs/cluster/server/ClusterDatasource.js.map +6 -0
- package/dist/cjs/cluster/server/ClusterServer.d.ts +40 -0
- package/dist/cjs/cluster/server/ClusterServer.d.ts.map +1 -0
- package/dist/cjs/cluster/server/ClusterServer.js +22 -0
- package/dist/cjs/cluster/server/ClusterServer.js.map +6 -0
- package/dist/cjs/cluster/server/CommandServer.d.ts +34 -0
- package/dist/cjs/cluster/server/CommandServer.d.ts.map +1 -0
- package/dist/cjs/cluster/server/CommandServer.js +76 -0
- package/dist/cjs/cluster/server/CommandServer.js.map +6 -0
- package/dist/cjs/cluster/server/EventServer.d.ts +41 -0
- package/dist/cjs/cluster/server/EventServer.d.ts.map +1 -0
- package/dist/cjs/cluster/server/EventServer.js +149 -0
- package/dist/cjs/cluster/server/EventServer.js.map +6 -0
- package/dist/cjs/cluster/server/index.d.ts +11 -0
- package/dist/cjs/cluster/server/index.d.ts.map +1 -0
- package/dist/cjs/cluster/server/index.js +28 -0
- package/dist/cjs/cluster/server/index.js.map +6 -0
- package/dist/cjs/codec/BtpCodec.d.ts +78 -0
- package/dist/cjs/codec/BtpCodec.d.ts.map +1 -0
- package/dist/cjs/codec/BtpCodec.js +254 -0
- package/dist/cjs/codec/BtpCodec.js.map +6 -0
- package/dist/cjs/codec/MessageCodec.d.ts +63 -0
- package/dist/cjs/codec/MessageCodec.d.ts.map +1 -0
- package/dist/cjs/codec/MessageCodec.js +220 -0
- package/dist/cjs/codec/MessageCodec.js.map +6 -0
- package/dist/cjs/codec/index.d.ts +9 -0
- package/dist/cjs/codec/index.d.ts.map +1 -0
- package/dist/cjs/codec/index.js +36 -0
- package/dist/cjs/codec/index.js.map +6 -0
- package/dist/cjs/common/FailsafeContext.d.ts +79 -0
- package/dist/cjs/common/FailsafeContext.d.ts.map +1 -0
- package/dist/cjs/common/FailsafeContext.js +237 -0
- package/dist/cjs/common/FailsafeContext.js.map +6 -0
- package/dist/cjs/common/FailsafeTimer.d.ts +25 -0
- package/dist/cjs/common/FailsafeTimer.d.ts.map +1 -0
- package/dist/cjs/common/FailsafeTimer.js +91 -0
- package/dist/cjs/common/FailsafeTimer.js.map +6 -0
- package/dist/cjs/common/InstanceBroadcaster.d.ts +273 -0
- package/dist/cjs/common/InstanceBroadcaster.d.ts.map +1 -0
- package/dist/cjs/common/InstanceBroadcaster.js +139 -0
- package/dist/cjs/common/InstanceBroadcaster.js.map +6 -0
- package/dist/cjs/common/OperationalCredentialsTypes.d.ts +21 -0
- package/dist/cjs/common/OperationalCredentialsTypes.d.ts.map +1 -0
- package/dist/cjs/common/OperationalCredentialsTypes.js +45 -0
- package/dist/cjs/common/OperationalCredentialsTypes.js.map +6 -0
- package/dist/cjs/common/Scanner.d.ts +121 -0
- package/dist/cjs/common/Scanner.d.ts.map +1 -0
- package/dist/cjs/common/Scanner.js +51 -0
- package/dist/cjs/common/Scanner.js.map +6 -0
- package/dist/cjs/common/index.d.ts +12 -0
- package/dist/cjs/common/index.d.ts.map +1 -0
- package/dist/cjs/common/index.js +29 -0
- package/dist/cjs/common/index.js.map +6 -0
- package/dist/cjs/endpoint/EndpointInterface.d.ts +37 -0
- package/dist/cjs/endpoint/EndpointInterface.d.ts.map +1 -0
- package/dist/cjs/endpoint/EndpointInterface.js +22 -0
- package/dist/cjs/endpoint/EndpointInterface.js.map +6 -0
- package/dist/cjs/endpoint/EndpointStructureLogger.d.ts +31 -0
- package/dist/cjs/endpoint/EndpointStructureLogger.d.ts.map +1 -0
- package/dist/cjs/endpoint/EndpointStructureLogger.js +236 -0
- package/dist/cjs/endpoint/EndpointStructureLogger.js.map +6 -0
- package/dist/cjs/endpoint/index.d.ts +8 -0
- package/dist/cjs/endpoint/index.d.ts.map +1 -0
- package/dist/cjs/endpoint/index.js +25 -0
- package/dist/cjs/endpoint/index.js.map +6 -0
- package/dist/cjs/fabric/Fabric.d.ts +121 -0
- package/dist/cjs/fabric/Fabric.d.ts.map +1 -0
- package/dist/cjs/fabric/Fabric.js +427 -0
- package/dist/cjs/fabric/Fabric.js.map +6 -0
- package/dist/cjs/fabric/FabricManager.d.ts +44 -0
- package/dist/cjs/fabric/FabricManager.d.ts.map +1 -0
- package/dist/cjs/fabric/FabricManager.js +209 -0
- package/dist/cjs/fabric/FabricManager.js.map +6 -0
- package/dist/cjs/fabric/index.d.ts +8 -0
- package/dist/cjs/fabric/index.d.ts.map +1 -0
- package/dist/cjs/fabric/index.js +25 -0
- package/dist/cjs/fabric/index.js.map +6 -0
- package/dist/cjs/index.d.ts +20 -0
- package/dist/cjs/index.d.ts.map +1 -0
- package/dist/cjs/index.js +37 -0
- package/dist/cjs/index.js.map +6 -0
- package/dist/cjs/interaction/AccessControlManager.d.ts +49 -0
- package/dist/cjs/interaction/AccessControlManager.d.ts.map +1 -0
- package/dist/cjs/interaction/AccessControlManager.js +248 -0
- package/dist/cjs/interaction/AccessControlManager.js.map +6 -0
- package/dist/cjs/interaction/AttributeDataDecoder.d.ts +52 -0
- package/dist/cjs/interaction/AttributeDataDecoder.d.ts.map +1 -0
- package/dist/cjs/interaction/AttributeDataDecoder.js +185 -0
- package/dist/cjs/interaction/AttributeDataDecoder.js.map +6 -0
- package/dist/cjs/interaction/AttributeDataEncoder.d.ts +71 -0
- package/dist/cjs/interaction/AttributeDataEncoder.d.ts.map +1 -0
- package/dist/cjs/interaction/AttributeDataEncoder.js +190 -0
- package/dist/cjs/interaction/AttributeDataEncoder.js.map +6 -0
- package/dist/cjs/interaction/EventDataDecoder.d.ts +30 -0
- package/dist/cjs/interaction/EventDataDecoder.d.ts.map +1 -0
- package/dist/cjs/interaction/EventDataDecoder.js +103 -0
- package/dist/cjs/interaction/EventDataDecoder.js.map +6 -0
- package/dist/cjs/interaction/EventHandler.d.ts +42 -0
- package/dist/cjs/interaction/EventHandler.d.ts.map +1 -0
- package/dist/cjs/interaction/EventHandler.js +112 -0
- package/dist/cjs/interaction/EventHandler.js.map +6 -0
- package/dist/cjs/interaction/InteractionClient.d.ts +294 -0
- package/dist/cjs/interaction/InteractionClient.d.ts.map +1 -0
- package/dist/cjs/interaction/InteractionClient.js +829 -0
- package/dist/cjs/interaction/InteractionClient.js.map +6 -0
- package/dist/cjs/interaction/InteractionEndpointStructure.d.ts +59 -0
- package/dist/cjs/interaction/InteractionEndpointStructure.d.ts.map +1 -0
- package/dist/cjs/interaction/InteractionEndpointStructure.js +341 -0
- package/dist/cjs/interaction/InteractionEndpointStructure.js.map +6 -0
- package/dist/cjs/interaction/InteractionMessenger.d.ts +315 -0
- package/dist/cjs/interaction/InteractionMessenger.d.ts.map +1 -0
- package/dist/cjs/interaction/InteractionMessenger.js +484 -0
- package/dist/cjs/interaction/InteractionMessenger.js.map +6 -0
- package/dist/cjs/interaction/InteractionServer.d.ts +97 -0
- package/dist/cjs/interaction/InteractionServer.d.ts.map +1 -0
- package/dist/cjs/interaction/InteractionServer.js +1026 -0
- package/dist/cjs/interaction/InteractionServer.js.map +6 -0
- package/dist/cjs/interaction/ServerSubscription.d.ts +121 -0
- package/dist/cjs/interaction/ServerSubscription.d.ts.map +1 -0
- package/dist/cjs/interaction/ServerSubscription.js +672 -0
- package/dist/cjs/interaction/ServerSubscription.js.map +6 -0
- package/dist/cjs/interaction/Subscription.d.ts +44 -0
- package/dist/cjs/interaction/Subscription.d.ts.map +1 -0
- package/dist/cjs/interaction/Subscription.js +85 -0
- package/dist/cjs/interaction/Subscription.js.map +6 -0
- package/dist/cjs/interaction/SubscriptionOptions.d.ts +43 -0
- package/dist/cjs/interaction/SubscriptionOptions.d.ts.map +1 -0
- package/dist/cjs/interaction/SubscriptionOptions.js +46 -0
- package/dist/cjs/interaction/SubscriptionOptions.js.map +6 -0
- package/dist/cjs/interaction/index.d.ts +17 -0
- package/dist/cjs/interaction/index.d.ts.map +1 -0
- package/dist/cjs/interaction/index.js +34 -0
- package/dist/cjs/interaction/index.js.map +6 -0
- package/dist/cjs/mdns/MdnsBroadcaster.d.ts +34 -0
- package/dist/cjs/mdns/MdnsBroadcaster.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsBroadcaster.js +338 -0
- package/dist/cjs/mdns/MdnsBroadcaster.js.map +6 -0
- package/dist/cjs/mdns/MdnsConsts.d.ts +19 -0
- package/dist/cjs/mdns/MdnsConsts.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsConsts.js +52 -0
- package/dist/cjs/mdns/MdnsConsts.js.map +6 -0
- package/dist/cjs/mdns/MdnsInstanceBroadcaster.d.ts +28 -0
- package/dist/cjs/mdns/MdnsInstanceBroadcaster.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsInstanceBroadcaster.js +87 -0
- package/dist/cjs/mdns/MdnsInstanceBroadcaster.js.map +6 -0
- package/dist/cjs/mdns/MdnsScanner.d.ts +79 -0
- package/dist/cjs/mdns/MdnsScanner.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsScanner.js +842 -0
- package/dist/cjs/mdns/MdnsScanner.js.map +6 -0
- package/dist/cjs/mdns/MdnsServer.d.ts +29 -0
- package/dist/cjs/mdns/MdnsServer.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsServer.js +275 -0
- package/dist/cjs/mdns/MdnsServer.js.map +6 -0
- package/dist/cjs/mdns/MdnsService.d.ts +28 -0
- package/dist/cjs/mdns/MdnsService.d.ts.map +1 -0
- package/dist/cjs/mdns/MdnsService.js +95 -0
- package/dist/cjs/mdns/MdnsService.js.map +6 -0
- package/dist/cjs/mdns/index.d.ts +12 -0
- package/dist/cjs/mdns/index.d.ts.map +1 -0
- package/dist/cjs/mdns/index.js +29 -0
- package/dist/cjs/mdns/index.js.map +6 -0
- package/dist/cjs/package.json +10 -0
- package/dist/cjs/peer/ControllerCommissioner.d.ts +82 -0
- package/dist/cjs/peer/ControllerCommissioner.d.ts.map +1 -0
- package/dist/cjs/peer/ControllerCommissioner.js +224 -0
- package/dist/cjs/peer/ControllerCommissioner.js.map +6 -0
- package/dist/cjs/peer/ControllerCommissioningFlow.d.ts +88 -0
- package/dist/cjs/peer/ControllerCommissioningFlow.d.ts.map +1 -0
- package/dist/cjs/peer/ControllerCommissioningFlow.js +849 -0
- package/dist/cjs/peer/ControllerCommissioningFlow.js.map +6 -0
- package/dist/cjs/peer/ControllerDiscovery.d.ts +43 -0
- package/dist/cjs/peer/ControllerDiscovery.d.ts.map +1 -0
- package/dist/cjs/peer/ControllerDiscovery.js +192 -0
- package/dist/cjs/peer/ControllerDiscovery.js.map +6 -0
- package/dist/cjs/peer/OperationalPeer.d.ts +28 -0
- package/dist/cjs/peer/OperationalPeer.d.ts.map +1 -0
- package/dist/cjs/peer/OperationalPeer.js +22 -0
- package/dist/cjs/peer/OperationalPeer.js.map +6 -0
- package/dist/cjs/peer/PeerAddress.d.ts +30 -0
- package/dist/cjs/peer/PeerAddress.d.ts.map +1 -0
- package/dist/cjs/peer/PeerAddress.js +71 -0
- package/dist/cjs/peer/PeerAddress.js.map +6 -0
- package/dist/cjs/peer/PeerSet.d.ts +98 -0
- package/dist/cjs/peer/PeerSet.d.ts.map +1 -0
- package/dist/cjs/peer/PeerSet.js +500 -0
- package/dist/cjs/peer/PeerSet.js.map +6 -0
- package/dist/cjs/peer/PeerStore.d.ts +17 -0
- package/dist/cjs/peer/PeerStore.d.ts.map +1 -0
- package/dist/cjs/peer/PeerStore.js +31 -0
- package/dist/cjs/peer/PeerStore.js.map +6 -0
- package/dist/cjs/peer/index.d.ts +13 -0
- package/dist/cjs/peer/index.d.ts.map +1 -0
- package/dist/cjs/peer/index.js +30 -0
- package/dist/cjs/peer/index.js.map +6 -0
- package/dist/cjs/protocol/ChannelManager.d.ts +30 -0
- package/dist/cjs/protocol/ChannelManager.d.ts.map +1 -0
- package/dist/cjs/protocol/ChannelManager.js +168 -0
- package/dist/cjs/protocol/ChannelManager.js.map +6 -0
- package/dist/cjs/protocol/DeviceAdvertiser.d.ts +43 -0
- package/dist/cjs/protocol/DeviceAdvertiser.d.ts.map +1 -0
- package/dist/cjs/protocol/DeviceAdvertiser.js +185 -0
- package/dist/cjs/protocol/DeviceAdvertiser.js.map +6 -0
- package/dist/cjs/protocol/DeviceCommissioner.d.ts +49 -0
- package/dist/cjs/protocol/DeviceCommissioner.d.ts.map +1 -0
- package/dist/cjs/protocol/DeviceCommissioner.js +198 -0
- package/dist/cjs/protocol/DeviceCommissioner.js.map +6 -0
- package/dist/cjs/protocol/ExchangeManager.d.ts +73 -0
- package/dist/cjs/protocol/ExchangeManager.d.ts.map +1 -0
- package/dist/cjs/protocol/ExchangeManager.js +407 -0
- package/dist/cjs/protocol/ExchangeManager.js.map +6 -0
- package/dist/cjs/protocol/MessageCounter.d.ts +57 -0
- package/dist/cjs/protocol/MessageCounter.d.ts.map +1 -0
- package/dist/cjs/protocol/MessageCounter.js +104 -0
- package/dist/cjs/protocol/MessageCounter.js.map +6 -0
- package/dist/cjs/protocol/MessageExchange.d.ts +84 -0
- package/dist/cjs/protocol/MessageExchange.d.ts.map +1 -0
- package/dist/cjs/protocol/MessageExchange.js +508 -0
- package/dist/cjs/protocol/MessageExchange.js.map +6 -0
- package/dist/cjs/protocol/MessageReceptionState.d.ts +65 -0
- package/dist/cjs/protocol/MessageReceptionState.d.ts.map +1 -0
- package/dist/cjs/protocol/MessageReceptionState.js +173 -0
- package/dist/cjs/protocol/MessageReceptionState.js.map +6 -0
- package/dist/cjs/protocol/ProtocolHandler.d.ts +13 -0
- package/dist/cjs/protocol/ProtocolHandler.d.ts.map +1 -0
- package/dist/cjs/protocol/ProtocolHandler.js +22 -0
- package/dist/cjs/protocol/ProtocolHandler.js.map +6 -0
- package/dist/cjs/protocol/index.d.ts +14 -0
- package/dist/cjs/protocol/index.d.ts.map +1 -0
- package/dist/cjs/protocol/index.js +31 -0
- package/dist/cjs/protocol/index.js.map +6 -0
- package/dist/cjs/securechannel/SecureChannelMessenger.d.ts +53 -0
- package/dist/cjs/securechannel/SecureChannelMessenger.d.ts.map +1 -0
- package/dist/cjs/securechannel/SecureChannelMessenger.js +143 -0
- package/dist/cjs/securechannel/SecureChannelMessenger.js.map +6 -0
- package/dist/cjs/securechannel/SecureChannelProtocol.d.ts +31 -0
- package/dist/cjs/securechannel/SecureChannelProtocol.d.ts.map +1 -0
- package/dist/cjs/securechannel/SecureChannelProtocol.js +140 -0
- package/dist/cjs/securechannel/SecureChannelProtocol.js.map +6 -0
- package/dist/cjs/securechannel/SecureChannelStatusMessageSchema.d.ts +23 -0
- package/dist/cjs/securechannel/SecureChannelStatusMessageSchema.d.ts.map +1 -0
- package/dist/cjs/securechannel/SecureChannelStatusMessageSchema.js +53 -0
- package/dist/cjs/securechannel/SecureChannelStatusMessageSchema.js.map +6 -0
- package/dist/cjs/securechannel/index.d.ts +9 -0
- package/dist/cjs/securechannel/index.d.ts.map +1 -0
- package/dist/cjs/securechannel/index.js +26 -0
- package/dist/cjs/securechannel/index.js.map +6 -0
- package/dist/cjs/session/InsecureSession.d.ts +38 -0
- package/dist/cjs/session/InsecureSession.d.ts.map +1 -0
- package/dist/cjs/session/InsecureSession.js +95 -0
- package/dist/cjs/session/InsecureSession.js.map +6 -0
- package/dist/cjs/session/SecureSession.d.ts +81 -0
- package/dist/cjs/session/SecureSession.d.ts.map +1 -0
- package/dist/cjs/session/SecureSession.js +291 -0
- package/dist/cjs/session/SecureSession.js.map +6 -0
- package/dist/cjs/session/Session.d.ts +102 -0
- package/dist/cjs/session/Session.d.ts.map +1 -0
- package/dist/cjs/session/Session.js +141 -0
- package/dist/cjs/session/Session.js.map +6 -0
- package/dist/cjs/session/SessionManager.d.ts +132 -0
- package/dist/cjs/session/SessionManager.d.ts.map +1 -0
- package/dist/cjs/session/SessionManager.js +410 -0
- package/dist/cjs/session/SessionManager.js.map +6 -0
- package/dist/cjs/session/case/CaseClient.d.ts +18 -0
- package/dist/cjs/session/case/CaseClient.d.ts.map +1 -0
- package/dist/cjs/session/case/CaseClient.js +216 -0
- package/dist/cjs/session/case/CaseClient.js.map +6 -0
- package/dist/cjs/session/case/CaseMessages.d.ts +82 -0
- package/dist/cjs/session/case/CaseMessages.d.ts.map +1 -0
- package/dist/cjs/session/case/CaseMessages.js +97 -0
- package/dist/cjs/session/case/CaseMessages.js.map +6 -0
- package/dist/cjs/session/case/CaseMessenger.d.ts +79 -0
- package/dist/cjs/session/case/CaseMessenger.d.ts.map +1 -0
- package/dist/cjs/session/case/CaseMessenger.js +74 -0
- package/dist/cjs/session/case/CaseMessenger.js.map +6 -0
- package/dist/cjs/session/case/CaseServer.d.ts +18 -0
- package/dist/cjs/session/case/CaseServer.d.ts.map +1 -0
- package/dist/cjs/session/case/CaseServer.js +232 -0
- package/dist/cjs/session/case/CaseServer.js.map +6 -0
- package/dist/cjs/session/index.d.ts +18 -0
- package/dist/cjs/session/index.d.ts.map +1 -0
- package/dist/cjs/session/index.js +35 -0
- package/dist/cjs/session/index.js.map +6 -0
- package/dist/cjs/session/pase/PaseClient.d.ts +18 -0
- package/dist/cjs/session/pase/PaseClient.d.ts.map +1 -0
- package/dist/cjs/session/pase/PaseClient.js +101 -0
- package/dist/cjs/session/pase/PaseClient.js.map +6 -0
- package/dist/cjs/session/pase/PaseMessages.d.ts +85 -0
- package/dist/cjs/session/pase/PaseMessages.d.ts.map +1 -0
- package/dist/cjs/session/pase/PaseMessages.js +88 -0
- package/dist/cjs/session/pase/PaseMessages.js.map +6 -0
- package/dist/cjs/session/pase/PaseMessenger.d.ts +75 -0
- package/dist/cjs/session/pase/PaseMessenger.d.ts.map +1 -0
- package/dist/cjs/session/pase/PaseMessenger.js +86 -0
- package/dist/cjs/session/pase/PaseMessenger.js.map +6 -0
- package/dist/cjs/session/pase/PaseServer.d.ts +29 -0
- package/dist/cjs/session/pase/PaseServer.d.ts.map +1 -0
- package/dist/cjs/session/pase/PaseServer.js +159 -0
- package/dist/cjs/session/pase/PaseServer.js.map +6 -0
- package/dist/cjs/tsconfig.tsbuildinfo +1 -0
- package/dist/esm/MatterDevice.d.ts +79 -0
- package/dist/esm/MatterDevice.d.ts.map +1 -0
- package/dist/esm/MatterDevice.js +239 -0
- package/dist/esm/MatterDevice.js.map +6 -0
- package/dist/esm/ble/Ble.d.ts +29 -0
- package/dist/esm/ble/Ble.d.ts.map +1 -0
- package/dist/esm/ble/Ble.js +30 -0
- package/dist/esm/ble/Ble.js.map +6 -0
- package/dist/esm/ble/BleConsts.d.ts +32 -0
- package/dist/esm/ble/BleConsts.d.ts.map +1 -0
- package/dist/esm/ble/BleConsts.js +33 -0
- package/dist/esm/ble/BleConsts.js.map +6 -0
- package/dist/esm/ble/BtpSessionHandler.d.ts +87 -0
- package/dist/esm/ble/BtpSessionHandler.d.ts.map +1 -0
- package/dist/esm/ble/BtpSessionHandler.js +419 -0
- package/dist/esm/ble/BtpSessionHandler.js.map +6 -0
- package/dist/esm/ble/index.d.ts +9 -0
- package/dist/esm/ble/index.d.ts.map +1 -0
- package/dist/esm/ble/index.js +9 -0
- package/dist/esm/ble/index.js.map +6 -0
- package/dist/esm/certificate/AttestationCertificateManager.d.ts +28 -0
- package/dist/esm/certificate/AttestationCertificateManager.d.ts.map +1 -0
- package/dist/esm/certificate/AttestationCertificateManager.js +155 -0
- package/dist/esm/certificate/AttestationCertificateManager.js.map +6 -0
- package/dist/esm/certificate/CertificateManager.d.ts +575 -0
- package/dist/esm/certificate/CertificateManager.d.ts.map +1 -0
- package/dist/esm/certificate/CertificateManager.js +837 -0
- package/dist/esm/certificate/CertificateManager.js.map +6 -0
- package/dist/esm/certificate/CertificationDeclarationManager.d.ts +5 -0
- package/dist/esm/certificate/CertificationDeclarationManager.d.ts.map +1 -0
- package/dist/esm/certificate/CertificationDeclarationManager.js +34 -0
- package/dist/esm/certificate/CertificationDeclarationManager.js.map +6 -0
- package/dist/esm/certificate/ChipPAAuthorities.d.ts +14 -0
- package/dist/esm/certificate/ChipPAAuthorities.d.ts.map +1 -0
- package/dist/esm/certificate/ChipPAAuthorities.js +37 -0
- package/dist/esm/certificate/ChipPAAuthorities.js.map +6 -0
- package/dist/esm/certificate/DeviceCertification.d.ts +30 -0
- package/dist/esm/certificate/DeviceCertification.d.ts.map +1 -0
- package/dist/esm/certificate/DeviceCertification.js +83 -0
- package/dist/esm/certificate/DeviceCertification.js.map +6 -0
- package/dist/esm/certificate/RootCertificateManager.d.ts +33 -0
- package/dist/esm/certificate/RootCertificateManager.d.ts.map +1 -0
- package/dist/esm/certificate/RootCertificateManager.js +139 -0
- package/dist/esm/certificate/RootCertificateManager.js.map +6 -0
- package/dist/esm/certificate/index.d.ts +12 -0
- package/dist/esm/certificate/index.d.ts.map +1 -0
- package/dist/esm/certificate/index.js +12 -0
- package/dist/esm/certificate/index.js.map +6 -0
- package/dist/esm/cluster/client/AttributeClient.d.ts +61 -0
- package/dist/esm/cluster/client/AttributeClient.d.ts.map +1 -0
- package/dist/esm/cluster/client/AttributeClient.js +157 -0
- package/dist/esm/cluster/client/AttributeClient.js.map +6 -0
- package/dist/esm/cluster/client/ClusterClient.d.ts +10 -0
- package/dist/esm/cluster/client/ClusterClient.d.ts.map +1 -0
- package/dist/esm/cluster/client/ClusterClient.js +267 -0
- package/dist/esm/cluster/client/ClusterClient.js.map +6 -0
- package/dist/esm/cluster/client/ClusterClientTypes.d.ts +171 -0
- package/dist/esm/cluster/client/ClusterClientTypes.d.ts.map +1 -0
- package/dist/esm/cluster/client/ClusterClientTypes.js +6 -0
- package/dist/esm/cluster/client/ClusterClientTypes.js.map +6 -0
- package/dist/esm/cluster/client/EventClient.d.ts +41 -0
- package/dist/esm/cluster/client/EventClient.d.ts.map +1 -0
- package/dist/esm/cluster/client/EventClient.js +74 -0
- package/dist/esm/cluster/client/EventClient.js.map +6 -0
- package/dist/esm/cluster/client/index.d.ts +10 -0
- package/dist/esm/cluster/client/index.d.ts.map +1 -0
- package/dist/esm/cluster/client/index.js +10 -0
- package/dist/esm/cluster/client/index.js.map +6 -0
- package/dist/esm/cluster/index.d.ts +8 -0
- package/dist/esm/cluster/index.d.ts.map +1 -0
- package/dist/esm/cluster/index.js +8 -0
- package/dist/esm/cluster/index.js.map +6 -0
- package/dist/esm/cluster/server/AttributeServer.d.ts +307 -0
- package/dist/esm/cluster/server/AttributeServer.d.ts.map +1 -0
- package/dist/esm/cluster/server/AttributeServer.js +718 -0
- package/dist/esm/cluster/server/AttributeServer.js.map +6 -0
- package/dist/esm/cluster/server/ClusterDatasource.d.ts +16 -0
- package/dist/esm/cluster/server/ClusterDatasource.d.ts.map +1 -0
- package/dist/esm/cluster/server/ClusterDatasource.js +6 -0
- package/dist/esm/cluster/server/ClusterDatasource.js.map +6 -0
- package/dist/esm/cluster/server/ClusterServer.d.ts +40 -0
- package/dist/esm/cluster/server/ClusterServer.d.ts.map +1 -0
- package/dist/esm/cluster/server/ClusterServer.js +6 -0
- package/dist/esm/cluster/server/ClusterServer.js.map +6 -0
- package/dist/esm/cluster/server/CommandServer.d.ts +34 -0
- package/dist/esm/cluster/server/CommandServer.d.ts.map +1 -0
- package/dist/esm/cluster/server/CommandServer.js +56 -0
- package/dist/esm/cluster/server/CommandServer.js.map +6 -0
- package/dist/esm/cluster/server/EventServer.d.ts +41 -0
- package/dist/esm/cluster/server/EventServer.d.ts.map +1 -0
- package/dist/esm/cluster/server/EventServer.js +137 -0
- package/dist/esm/cluster/server/EventServer.js.map +6 -0
- package/dist/esm/cluster/server/index.d.ts +11 -0
- package/dist/esm/cluster/server/index.d.ts.map +1 -0
- package/dist/esm/cluster/server/index.js +11 -0
- package/dist/esm/cluster/server/index.js.map +6 -0
- package/dist/esm/codec/BtpCodec.d.ts +78 -0
- package/dist/esm/codec/BtpCodec.d.ts.map +1 -0
- package/dist/esm/codec/BtpCodec.js +234 -0
- package/dist/esm/codec/BtpCodec.js.map +6 -0
- package/dist/esm/codec/MessageCodec.d.ts +63 -0
- package/dist/esm/codec/MessageCodec.d.ts.map +1 -0
- package/dist/esm/codec/MessageCodec.js +200 -0
- package/dist/esm/codec/MessageCodec.js.map +6 -0
- package/dist/esm/codec/index.d.ts +9 -0
- package/dist/esm/codec/index.d.ts.map +1 -0
- package/dist/esm/codec/index.js +15 -0
- package/dist/esm/codec/index.js.map +6 -0
- package/dist/esm/common/FailsafeContext.d.ts +79 -0
- package/dist/esm/common/FailsafeContext.d.ts.map +1 -0
- package/dist/esm/common/FailsafeContext.js +217 -0
- package/dist/esm/common/FailsafeContext.js.map +6 -0
- package/dist/esm/common/FailsafeTimer.d.ts +25 -0
- package/dist/esm/common/FailsafeTimer.d.ts.map +1 -0
- package/dist/esm/common/FailsafeTimer.js +71 -0
- package/dist/esm/common/FailsafeTimer.js.map +6 -0
- package/dist/esm/common/InstanceBroadcaster.d.ts +273 -0
- package/dist/esm/common/InstanceBroadcaster.d.ts.map +1 -0
- package/dist/esm/common/InstanceBroadcaster.js +119 -0
- package/dist/esm/common/InstanceBroadcaster.js.map +6 -0
- package/dist/esm/common/OperationalCredentialsTypes.d.ts +21 -0
- package/dist/esm/common/OperationalCredentialsTypes.d.ts.map +1 -0
- package/dist/esm/common/OperationalCredentialsTypes.js +25 -0
- package/dist/esm/common/OperationalCredentialsTypes.js.map +6 -0
- package/dist/esm/common/Scanner.d.ts +121 -0
- package/dist/esm/common/Scanner.d.ts.map +1 -0
- package/dist/esm/common/Scanner.js +31 -0
- package/dist/esm/common/Scanner.js.map +6 -0
- package/dist/esm/common/index.d.ts +12 -0
- package/dist/esm/common/index.d.ts.map +1 -0
- package/dist/esm/common/index.js +12 -0
- package/dist/esm/common/index.js.map +6 -0
- package/dist/esm/endpoint/EndpointInterface.d.ts +37 -0
- package/dist/esm/endpoint/EndpointInterface.d.ts.map +1 -0
- package/dist/esm/endpoint/EndpointInterface.js +6 -0
- package/dist/esm/endpoint/EndpointInterface.js.map +6 -0
- package/dist/esm/endpoint/EndpointStructureLogger.d.ts +31 -0
- package/dist/esm/endpoint/EndpointStructureLogger.d.ts.map +1 -0
- package/dist/esm/endpoint/EndpointStructureLogger.js +216 -0
- package/dist/esm/endpoint/EndpointStructureLogger.js.map +6 -0
- package/dist/esm/endpoint/index.d.ts +8 -0
- package/dist/esm/endpoint/index.d.ts.map +1 -0
- package/dist/esm/endpoint/index.js +8 -0
- package/dist/esm/endpoint/index.js.map +6 -0
- package/dist/esm/fabric/Fabric.d.ts +121 -0
- package/dist/esm/fabric/Fabric.d.ts.map +1 -0
- package/dist/esm/fabric/Fabric.js +422 -0
- package/dist/esm/fabric/Fabric.js.map +6 -0
- package/dist/esm/fabric/FabricManager.d.ts +44 -0
- package/dist/esm/fabric/FabricManager.d.ts.map +1 -0
- package/dist/esm/fabric/FabricManager.js +200 -0
- package/dist/esm/fabric/FabricManager.js.map +6 -0
- package/dist/esm/fabric/index.d.ts +8 -0
- package/dist/esm/fabric/index.d.ts.map +1 -0
- package/dist/esm/fabric/index.js +8 -0
- package/dist/esm/fabric/index.js.map +6 -0
- package/dist/esm/index.d.ts +20 -0
- package/dist/esm/index.d.ts.map +1 -0
- package/dist/esm/index.js +20 -0
- package/dist/esm/index.js.map +6 -0
- package/dist/esm/interaction/AccessControlManager.d.ts +49 -0
- package/dist/esm/interaction/AccessControlManager.d.ts.map +1 -0
- package/dist/esm/interaction/AccessControlManager.js +228 -0
- package/dist/esm/interaction/AccessControlManager.js.map +6 -0
- package/dist/esm/interaction/AttributeDataDecoder.d.ts +52 -0
- package/dist/esm/interaction/AttributeDataDecoder.d.ts.map +1 -0
- package/dist/esm/interaction/AttributeDataDecoder.js +171 -0
- package/dist/esm/interaction/AttributeDataDecoder.js.map +6 -0
- package/dist/esm/interaction/AttributeDataEncoder.d.ts +71 -0
- package/dist/esm/interaction/AttributeDataEncoder.d.ts.map +1 -0
- package/dist/esm/interaction/AttributeDataEncoder.js +174 -0
- package/dist/esm/interaction/AttributeDataEncoder.js.map +6 -0
- package/dist/esm/interaction/EventDataDecoder.d.ts +30 -0
- package/dist/esm/interaction/EventDataDecoder.d.ts.map +1 -0
- package/dist/esm/interaction/EventDataDecoder.js +87 -0
- package/dist/esm/interaction/EventDataDecoder.js.map +6 -0
- package/dist/esm/interaction/EventHandler.d.ts +42 -0
- package/dist/esm/interaction/EventHandler.d.ts.map +1 -0
- package/dist/esm/interaction/EventHandler.js +96 -0
- package/dist/esm/interaction/EventHandler.js.map +6 -0
- package/dist/esm/interaction/InteractionClient.d.ts +294 -0
- package/dist/esm/interaction/InteractionClient.d.ts.map +1 -0
- package/dist/esm/interaction/InteractionClient.js +827 -0
- package/dist/esm/interaction/InteractionClient.js.map +6 -0
- package/dist/esm/interaction/InteractionEndpointStructure.d.ts +59 -0
- package/dist/esm/interaction/InteractionEndpointStructure.d.ts.map +1 -0
- package/dist/esm/interaction/InteractionEndpointStructure.js +343 -0
- package/dist/esm/interaction/InteractionEndpointStructure.js.map +6 -0
- package/dist/esm/interaction/InteractionMessenger.d.ts +315 -0
- package/dist/esm/interaction/InteractionMessenger.d.ts.map +1 -0
- package/dist/esm/interaction/InteractionMessenger.js +489 -0
- package/dist/esm/interaction/InteractionMessenger.js.map +6 -0
- package/dist/esm/interaction/InteractionServer.d.ts +97 -0
- package/dist/esm/interaction/InteractionServer.d.ts.map +1 -0
- package/dist/esm/interaction/InteractionServer.js +1027 -0
- package/dist/esm/interaction/InteractionServer.js.map +6 -0
- package/dist/esm/interaction/ServerSubscription.d.ts +121 -0
- package/dist/esm/interaction/ServerSubscription.d.ts.map +1 -0
- package/dist/esm/interaction/ServerSubscription.js +669 -0
- package/dist/esm/interaction/ServerSubscription.js.map +6 -0
- package/dist/esm/interaction/Subscription.d.ts +44 -0
- package/dist/esm/interaction/Subscription.d.ts.map +1 -0
- package/dist/esm/interaction/Subscription.js +65 -0
- package/dist/esm/interaction/Subscription.js.map +6 -0
- package/dist/esm/interaction/SubscriptionOptions.d.ts +43 -0
- package/dist/esm/interaction/SubscriptionOptions.d.ts.map +1 -0
- package/dist/esm/interaction/SubscriptionOptions.js +26 -0
- package/dist/esm/interaction/SubscriptionOptions.js.map +6 -0
- package/dist/esm/interaction/index.d.ts +17 -0
- package/dist/esm/interaction/index.d.ts.map +1 -0
- package/dist/esm/interaction/index.js +17 -0
- package/dist/esm/interaction/index.js.map +6 -0
- package/dist/esm/mdns/MdnsBroadcaster.d.ts +34 -0
- package/dist/esm/mdns/MdnsBroadcaster.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsBroadcaster.js +351 -0
- package/dist/esm/mdns/MdnsBroadcaster.js.map +6 -0
- package/dist/esm/mdns/MdnsConsts.d.ts +19 -0
- package/dist/esm/mdns/MdnsConsts.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsConsts.js +32 -0
- package/dist/esm/mdns/MdnsConsts.js.map +6 -0
- package/dist/esm/mdns/MdnsInstanceBroadcaster.d.ts +28 -0
- package/dist/esm/mdns/MdnsInstanceBroadcaster.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsInstanceBroadcaster.js +67 -0
- package/dist/esm/mdns/MdnsInstanceBroadcaster.js.map +6 -0
- package/dist/esm/mdns/MdnsScanner.d.ts +79 -0
- package/dist/esm/mdns/MdnsScanner.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsScanner.js +847 -0
- package/dist/esm/mdns/MdnsScanner.js.map +6 -0
- package/dist/esm/mdns/MdnsServer.d.ts +29 -0
- package/dist/esm/mdns/MdnsServer.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsServer.js +266 -0
- package/dist/esm/mdns/MdnsServer.js.map +6 -0
- package/dist/esm/mdns/MdnsService.d.ts +28 -0
- package/dist/esm/mdns/MdnsService.d.ts.map +1 -0
- package/dist/esm/mdns/MdnsService.js +83 -0
- package/dist/esm/mdns/MdnsService.js.map +6 -0
- package/dist/esm/mdns/index.d.ts +12 -0
- package/dist/esm/mdns/index.d.ts.map +1 -0
- package/dist/esm/mdns/index.js +12 -0
- package/dist/esm/mdns/index.js.map +6 -0
- package/dist/esm/package.json +10 -0
- package/dist/esm/peer/ControllerCommissioner.d.ts +82 -0
- package/dist/esm/peer/ControllerCommissioner.d.ts.map +1 -0
- package/dist/esm/peer/ControllerCommissioner.js +211 -0
- package/dist/esm/peer/ControllerCommissioner.js.map +6 -0
- package/dist/esm/peer/ControllerCommissioningFlow.d.ts +88 -0
- package/dist/esm/peer/ControllerCommissioningFlow.d.ts.map +1 -0
- package/dist/esm/peer/ControllerCommissioningFlow.js +832 -0
- package/dist/esm/peer/ControllerCommissioningFlow.js.map +6 -0
- package/dist/esm/peer/ControllerDiscovery.d.ts +43 -0
- package/dist/esm/peer/ControllerDiscovery.d.ts.map +1 -0
- package/dist/esm/peer/ControllerDiscovery.js +172 -0
- package/dist/esm/peer/ControllerDiscovery.js.map +6 -0
- package/dist/esm/peer/OperationalPeer.d.ts +28 -0
- package/dist/esm/peer/OperationalPeer.d.ts.map +1 -0
- package/dist/esm/peer/OperationalPeer.js +6 -0
- package/dist/esm/peer/OperationalPeer.js.map +6 -0
- package/dist/esm/peer/PeerAddress.d.ts +30 -0
- package/dist/esm/peer/PeerAddress.d.ts.map +1 -0
- package/dist/esm/peer/PeerAddress.js +51 -0
- package/dist/esm/peer/PeerAddress.js.map +6 -0
- package/dist/esm/peer/PeerSet.d.ts +98 -0
- package/dist/esm/peer/PeerSet.d.ts.map +1 -0
- package/dist/esm/peer/PeerSet.js +495 -0
- package/dist/esm/peer/PeerSet.js.map +6 -0
- package/dist/esm/peer/PeerStore.d.ts +17 -0
- package/dist/esm/peer/PeerStore.d.ts.map +1 -0
- package/dist/esm/peer/PeerStore.js +11 -0
- package/dist/esm/peer/PeerStore.js.map +6 -0
- package/dist/esm/peer/index.d.ts +13 -0
- package/dist/esm/peer/index.d.ts.map +1 -0
- package/dist/esm/peer/index.js +13 -0
- package/dist/esm/peer/index.js.map +6 -0
- package/dist/esm/protocol/ChannelManager.d.ts +30 -0
- package/dist/esm/protocol/ChannelManager.d.ts.map +1 -0
- package/dist/esm/protocol/ChannelManager.js +148 -0
- package/dist/esm/protocol/ChannelManager.js.map +6 -0
- package/dist/esm/protocol/DeviceAdvertiser.d.ts +43 -0
- package/dist/esm/protocol/DeviceAdvertiser.d.ts.map +1 -0
- package/dist/esm/protocol/DeviceAdvertiser.js +173 -0
- package/dist/esm/protocol/DeviceAdvertiser.js.map +6 -0
- package/dist/esm/protocol/DeviceCommissioner.d.ts +49 -0
- package/dist/esm/protocol/DeviceCommissioner.d.ts.map +1 -0
- package/dist/esm/protocol/DeviceCommissioner.js +187 -0
- package/dist/esm/protocol/DeviceCommissioner.js.map +6 -0
- package/dist/esm/protocol/ExchangeManager.d.ts +73 -0
- package/dist/esm/protocol/ExchangeManager.d.ts.map +1 -0
- package/dist/esm/protocol/ExchangeManager.js +398 -0
- package/dist/esm/protocol/ExchangeManager.js.map +6 -0
- package/dist/esm/protocol/MessageCounter.d.ts +57 -0
- package/dist/esm/protocol/MessageCounter.d.ts.map +1 -0
- package/dist/esm/protocol/MessageCounter.js +84 -0
- package/dist/esm/protocol/MessageCounter.js.map +6 -0
- package/dist/esm/protocol/MessageExchange.d.ts +84 -0
- package/dist/esm/protocol/MessageExchange.d.ts.map +1 -0
- package/dist/esm/protocol/MessageExchange.js +504 -0
- package/dist/esm/protocol/MessageExchange.js.map +6 -0
- package/dist/esm/protocol/MessageReceptionState.d.ts +65 -0
- package/dist/esm/protocol/MessageReceptionState.d.ts.map +1 -0
- package/dist/esm/protocol/MessageReceptionState.js +153 -0
- package/dist/esm/protocol/MessageReceptionState.js.map +6 -0
- package/dist/esm/protocol/ProtocolHandler.d.ts +13 -0
- package/dist/esm/protocol/ProtocolHandler.d.ts.map +1 -0
- package/dist/esm/protocol/ProtocolHandler.js +6 -0
- package/dist/esm/protocol/ProtocolHandler.js.map +6 -0
- package/dist/esm/protocol/index.d.ts +14 -0
- package/dist/esm/protocol/index.d.ts.map +1 -0
- package/dist/esm/protocol/index.js +14 -0
- package/dist/esm/protocol/index.js.map +6 -0
- package/dist/esm/securechannel/SecureChannelMessenger.d.ts +53 -0
- package/dist/esm/securechannel/SecureChannelMessenger.d.ts.map +1 -0
- package/dist/esm/securechannel/SecureChannelMessenger.js +128 -0
- package/dist/esm/securechannel/SecureChannelMessenger.js.map +6 -0
- package/dist/esm/securechannel/SecureChannelProtocol.d.ts +31 -0
- package/dist/esm/securechannel/SecureChannelProtocol.d.ts.map +1 -0
- package/dist/esm/securechannel/SecureChannelProtocol.js +127 -0
- package/dist/esm/securechannel/SecureChannelProtocol.js.map +6 -0
- package/dist/esm/securechannel/SecureChannelStatusMessageSchema.d.ts +23 -0
- package/dist/esm/securechannel/SecureChannelStatusMessageSchema.d.ts.map +1 -0
- package/dist/esm/securechannel/SecureChannelStatusMessageSchema.js +33 -0
- package/dist/esm/securechannel/SecureChannelStatusMessageSchema.js.map +6 -0
- package/dist/esm/securechannel/index.d.ts +9 -0
- package/dist/esm/securechannel/index.d.ts.map +1 -0
- package/dist/esm/securechannel/index.js +9 -0
- package/dist/esm/securechannel/index.js.map +6 -0
- package/dist/esm/session/InsecureSession.d.ts +38 -0
- package/dist/esm/session/InsecureSession.d.ts.map +1 -0
- package/dist/esm/session/InsecureSession.js +75 -0
- package/dist/esm/session/InsecureSession.js.map +6 -0
- package/dist/esm/session/SecureSession.d.ts +81 -0
- package/dist/esm/session/SecureSession.d.ts.map +1 -0
- package/dist/esm/session/SecureSession.js +281 -0
- package/dist/esm/session/SecureSession.js.map +6 -0
- package/dist/esm/session/Session.d.ts +102 -0
- package/dist/esm/session/Session.d.ts.map +1 -0
- package/dist/esm/session/Session.js +121 -0
- package/dist/esm/session/Session.js.map +6 -0
- package/dist/esm/session/SessionManager.d.ts +132 -0
- package/dist/esm/session/SessionManager.d.ts.map +1 -0
- package/dist/esm/session/SessionManager.js +411 -0
- package/dist/esm/session/SessionManager.js.map +6 -0
- package/dist/esm/session/case/CaseClient.d.ts +18 -0
- package/dist/esm/session/case/CaseClient.d.ts.map +1 -0
- package/dist/esm/session/case/CaseClient.js +208 -0
- package/dist/esm/session/case/CaseClient.js.map +6 -0
- package/dist/esm/session/case/CaseMessages.d.ts +82 -0
- package/dist/esm/session/case/CaseMessages.d.ts.map +1 -0
- package/dist/esm/session/case/CaseMessages.js +83 -0
- package/dist/esm/session/case/CaseMessages.js.map +6 -0
- package/dist/esm/session/case/CaseMessenger.d.ts +79 -0
- package/dist/esm/session/case/CaseMessenger.d.ts.map +1 -0
- package/dist/esm/session/case/CaseMessenger.js +54 -0
- package/dist/esm/session/case/CaseMessenger.js.map +6 -0
- package/dist/esm/session/case/CaseServer.d.ts +18 -0
- package/dist/esm/session/case/CaseServer.d.ts.map +1 -0
- package/dist/esm/session/case/CaseServer.js +224 -0
- package/dist/esm/session/case/CaseServer.js.map +6 -0
- package/dist/esm/session/index.d.ts +18 -0
- package/dist/esm/session/index.d.ts.map +1 -0
- package/dist/esm/session/index.js +18 -0
- package/dist/esm/session/index.js.map +6 -0
- package/dist/esm/session/pase/PaseClient.d.ts +18 -0
- package/dist/esm/session/pase/PaseClient.d.ts.map +1 -0
- package/dist/esm/session/pase/PaseClient.js +81 -0
- package/dist/esm/session/pase/PaseClient.js.map +6 -0
- package/dist/esm/session/pase/PaseMessages.d.ts +85 -0
- package/dist/esm/session/pase/PaseMessages.d.ts.map +1 -0
- package/dist/esm/session/pase/PaseMessages.js +68 -0
- package/dist/esm/session/pase/PaseMessages.js.map +6 -0
- package/dist/esm/session/pase/PaseMessenger.d.ts +75 -0
- package/dist/esm/session/pase/PaseMessenger.d.ts.map +1 -0
- package/dist/esm/session/pase/PaseMessenger.js +75 -0
- package/dist/esm/session/pase/PaseMessenger.js.map +6 -0
- package/dist/esm/session/pase/PaseServer.d.ts +29 -0
- package/dist/esm/session/pase/PaseServer.d.ts.map +1 -0
- package/dist/esm/session/pase/PaseServer.js +148 -0
- package/dist/esm/session/pase/PaseServer.js.map +6 -0
- package/dist/esm/tsconfig.tsbuildinfo +1 -0
- package/package.json +83 -0
- package/src/MatterDevice.ts +319 -0
- package/src/ble/Ble.ts +40 -0
- package/src/ble/BleConsts.ts +41 -0
- package/src/ble/BtpSessionHandler.ts +490 -0
- package/src/ble/index.ts +9 -0
- package/src/certificate/AttestationCertificateManager.ts +166 -0
- package/src/certificate/CertificateManager.ts +1136 -0
- package/src/certificate/CertificationDeclarationManager.ts +52 -0
- package/src/certificate/ChipPAAuthorities.ts +35 -0
- package/src/certificate/DeviceCertification.ts +116 -0
- package/src/certificate/RootCertificateManager.ts +179 -0
- package/src/certificate/index.ts +12 -0
- package/src/cluster/client/AttributeClient.ts +196 -0
- package/src/cluster/client/ClusterClient.ts +354 -0
- package/src/cluster/client/ClusterClientTypes.ts +257 -0
- package/src/cluster/client/EventClient.ts +110 -0
- package/src/cluster/client/index.ts +10 -0
- package/src/cluster/index.ts +8 -0
- package/src/cluster/server/AttributeServer.ts +986 -0
- package/src/cluster/server/ClusterDatasource.ts +17 -0
- package/src/cluster/server/ClusterServer.ts +46 -0
- package/src/cluster/server/CommandServer.ts +89 -0
- package/src/cluster/server/EventServer.ts +198 -0
- package/src/cluster/server/index.ts +11 -0
- package/src/codec/BtpCodec.ts +333 -0
- package/src/codec/MessageCodec.ts +276 -0
- package/src/codec/index.ts +9 -0
- package/src/common/FailsafeContext.ts +330 -0
- package/src/common/FailsafeTimer.ts +91 -0
- package/src/common/InstanceBroadcaster.ts +220 -0
- package/src/common/OperationalCredentialsTypes.ts +24 -0
- package/src/common/Scanner.ts +188 -0
- package/src/common/index.ts +12 -0
- package/src/endpoint/EndpointInterface.ts +41 -0
- package/src/endpoint/EndpointStructureLogger.ts +277 -0
- package/src/endpoint/index.ts +8 -0
- package/src/fabric/Fabric.ts +528 -0
- package/src/fabric/FabricManager.ts +231 -0
- package/src/fabric/index.ts +8 -0
- package/src/index.ts +20 -0
- package/src/interaction/AccessControlManager.ts +343 -0
- package/src/interaction/AttributeDataDecoder.ts +266 -0
- package/src/interaction/AttributeDataEncoder.ts +268 -0
- package/src/interaction/EventDataDecoder.ts +133 -0
- package/src/interaction/EventHandler.ts +141 -0
- package/src/interaction/InteractionClient.ts +1215 -0
- package/src/interaction/InteractionEndpointStructure.ts +462 -0
- package/src/interaction/InteractionMessenger.ts +592 -0
- package/src/interaction/InteractionServer.ts +1428 -0
- package/src/interaction/ServerSubscription.ts +908 -0
- package/src/interaction/Subscription.ts +89 -0
- package/src/interaction/SubscriptionOptions.ts +49 -0
- package/src/interaction/index.ts +17 -0
- package/src/mdns/MdnsBroadcaster.ts +415 -0
- package/src/mdns/MdnsConsts.ts +24 -0
- package/src/mdns/MdnsInstanceBroadcaster.ts +88 -0
- package/src/mdns/MdnsScanner.ts +1042 -0
- package/src/mdns/MdnsServer.ts +322 -0
- package/src/mdns/MdnsService.ts +102 -0
- package/src/mdns/index.ts +12 -0
- package/src/peer/ControllerCommissioner.ts +372 -0
- package/src/peer/ControllerCommissioningFlow.ts +1127 -0
- package/src/peer/ControllerDiscovery.ts +231 -0
- package/src/peer/OperationalPeer.ts +32 -0
- package/src/peer/PeerAddress.ts +78 -0
- package/src/peer/PeerSet.ts +684 -0
- package/src/peer/PeerStore.ts +19 -0
- package/src/peer/index.ts +13 -0
- package/src/protocol/ChannelManager.ts +168 -0
- package/src/protocol/DeviceAdvertiser.ts +208 -0
- package/src/protocol/DeviceCommissioner.ts +280 -0
- package/src/protocol/ExchangeManager.ts +493 -0
- package/src/protocol/MessageCounter.ts +128 -0
- package/src/protocol/MessageExchange.ts +662 -0
- package/src/protocol/MessageReceptionState.ts +207 -0
- package/src/protocol/ProtocolHandler.ts +14 -0
- package/src/protocol/index.ts +14 -0
- package/src/securechannel/SecureChannelMessenger.ts +166 -0
- package/src/securechannel/SecureChannelProtocol.ts +150 -0
- package/src/securechannel/SecureChannelStatusMessageSchema.ts +40 -0
- package/src/securechannel/index.ts +10 -0
- package/src/session/InsecureSession.ts +96 -0
- package/src/session/SecureSession.ts +349 -0
- package/src/session/Session.ts +188 -0
- package/src/session/SessionManager.ts +559 -0
- package/src/session/case/CaseClient.ts +235 -0
- package/src/session/case/CaseMessages.ts +81 -0
- package/src/session/case/CaseMessenger.ts +57 -0
- package/src/session/case/CaseServer.ts +269 -0
- package/src/session/index.ts +21 -0
- package/src/session/pase/PaseClient.ts +100 -0
- package/src/session/pase/PaseMessages.ts +72 -0
- package/src/session/pase/PaseMessenger.ts +86 -0
- package/src/session/pase/PaseServer.ts +187 -0
- package/src/tsconfig.json +20 -0
|
@@ -0,0 +1,837 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* @license
|
|
3
|
+
* Copyright 2022-2024 Matter.js Authors
|
|
4
|
+
* SPDX-License-Identifier: Apache-2.0
|
|
5
|
+
*/
|
|
6
|
+
import {
|
|
7
|
+
BitByteArray,
|
|
8
|
+
Bytes,
|
|
9
|
+
ContextTagged,
|
|
10
|
+
ContextTaggedBytes,
|
|
11
|
+
Crypto,
|
|
12
|
+
DatatypeOverride,
|
|
13
|
+
DerCodec,
|
|
14
|
+
DerKey,
|
|
15
|
+
DerObject,
|
|
16
|
+
DerType,
|
|
17
|
+
ImplementationError,
|
|
18
|
+
Logger,
|
|
19
|
+
MatterError,
|
|
20
|
+
Pkcs7,
|
|
21
|
+
PublicKey,
|
|
22
|
+
RawBytes,
|
|
23
|
+
SHA256_CMS,
|
|
24
|
+
Time,
|
|
25
|
+
X509,
|
|
26
|
+
X520,
|
|
27
|
+
X962
|
|
28
|
+
} from "#general";
|
|
29
|
+
import {
|
|
30
|
+
BitFlag,
|
|
31
|
+
BitmapSchema,
|
|
32
|
+
CaseAuthenticatedTag,
|
|
33
|
+
FabricId,
|
|
34
|
+
NodeId,
|
|
35
|
+
TlvArray,
|
|
36
|
+
TlvBitmap,
|
|
37
|
+
TlvBoolean,
|
|
38
|
+
TlvByteString,
|
|
39
|
+
TlvCaseAuthenticatedTag,
|
|
40
|
+
TlvFabricId,
|
|
41
|
+
TlvField,
|
|
42
|
+
TlvNodeId,
|
|
43
|
+
TlvObject,
|
|
44
|
+
TlvObjectWithMaxSize,
|
|
45
|
+
TlvOptionalField,
|
|
46
|
+
TlvOptionalRepeatedField,
|
|
47
|
+
TlvString,
|
|
48
|
+
TlvTaggedList,
|
|
49
|
+
TlvUInt16,
|
|
50
|
+
TlvUInt32,
|
|
51
|
+
TlvUInt64,
|
|
52
|
+
TlvUInt8,
|
|
53
|
+
TlvVendorId
|
|
54
|
+
} from "#types";
|
|
55
|
+
const logger = Logger.get("CertificateManager");
|
|
56
|
+
class CertificateError extends MatterError {
|
|
57
|
+
}
|
|
58
|
+
const YEAR_S = 365 * 24 * 60 * 60;
|
|
59
|
+
const EPOCH_OFFSET_S = 10957 * 24 * 60 * 60;
|
|
60
|
+
const MAX_DER_CERTIFICATE_SIZE = 600;
|
|
61
|
+
const MAX_TLV_CERTIFICATE_SIZE = 400;
|
|
62
|
+
function matterToJsDate(date) {
|
|
63
|
+
return date === 0 ? X520.NON_WELL_DEFINED_DATE : new Date((date + EPOCH_OFFSET_S) * 1e3);
|
|
64
|
+
}
|
|
65
|
+
function jsToMatterDate(date, addYears = 0) {
|
|
66
|
+
return date.getTime() === X520.NON_WELL_DEFINED_DATE.getTime() ? 0 : Math.floor(date.getTime() / 1e3) - EPOCH_OFFSET_S + addYears * YEAR_S;
|
|
67
|
+
}
|
|
68
|
+
function intTo16Chars(value) {
|
|
69
|
+
const byteArray = new Uint8Array(8);
|
|
70
|
+
const dataView = Bytes.dataViewOf(byteArray);
|
|
71
|
+
dataView.setBigUint64(0, typeof value === "bigint" ? value : BigInt(value));
|
|
72
|
+
return Bytes.toHex(byteArray).toUpperCase();
|
|
73
|
+
}
|
|
74
|
+
function uInt16To8Chars(value) {
|
|
75
|
+
const byteArray = new Uint8Array(4);
|
|
76
|
+
const dataView = Bytes.dataViewOf(byteArray);
|
|
77
|
+
dataView.setUint32(0, value);
|
|
78
|
+
return Bytes.toHex(byteArray).toUpperCase();
|
|
79
|
+
}
|
|
80
|
+
function uInt16To4Chars(value) {
|
|
81
|
+
const byteArray = new Uint8Array(2);
|
|
82
|
+
const dataView = Bytes.dataViewOf(byteArray);
|
|
83
|
+
dataView.setUint16(0, value);
|
|
84
|
+
return Bytes.toHex(byteArray).toUpperCase();
|
|
85
|
+
}
|
|
86
|
+
const GenericMatterOpCertObject = (id, valueConverter) => (value) => [
|
|
87
|
+
DerObject(`2b0601040182a27c01${id.toString(16).padStart(2, "0")}`, {
|
|
88
|
+
value: (valueConverter ?? intTo16Chars)(value)
|
|
89
|
+
})
|
|
90
|
+
];
|
|
91
|
+
const GenericMatterAttCertObject = (id, valueConverter) => (value) => [
|
|
92
|
+
DerObject(`2b0601040182a27c02${id.toString(16).padStart(2, "0")}`, {
|
|
93
|
+
value: (valueConverter ?? intTo16Chars)(value)
|
|
94
|
+
})
|
|
95
|
+
];
|
|
96
|
+
const NodeId_Matter = GenericMatterOpCertObject(1);
|
|
97
|
+
const FirmwareSigningId_Matter = GenericMatterOpCertObject(2);
|
|
98
|
+
const IcacId_Matter = GenericMatterOpCertObject(3);
|
|
99
|
+
const RcacId_Matter = GenericMatterOpCertObject(4);
|
|
100
|
+
const FabricId_Matter = GenericMatterOpCertObject(5);
|
|
101
|
+
const NocCat_Matter = GenericMatterOpCertObject(6, uInt16To8Chars);
|
|
102
|
+
const VendorId_Matter = GenericMatterAttCertObject(1, uInt16To4Chars);
|
|
103
|
+
const ProductId_Matter = GenericMatterAttCertObject(2, uInt16To4Chars);
|
|
104
|
+
const AllowedSubjectAndIssuerMatterFields = {
|
|
105
|
+
nodeId: TlvOptionalField(17, TlvNodeId),
|
|
106
|
+
firmwareSigningId: TlvOptionalField(18, TlvUInt32),
|
|
107
|
+
icacId: TlvOptionalField(19, TlvUInt64),
|
|
108
|
+
rcacId: TlvOptionalField(20, TlvUInt64),
|
|
109
|
+
fabricId: TlvOptionalField(21, TlvFabricId),
|
|
110
|
+
caseAuthenticatedTags: TlvOptionalRepeatedField(22, TlvCaseAuthenticatedTag, { maxLength: 3 })
|
|
111
|
+
};
|
|
112
|
+
const TlvGenericMatterSubjectOrIssuerTaggedList = (matterFields) => {
|
|
113
|
+
const fields = {
|
|
114
|
+
// Standard DNs
|
|
115
|
+
commonName: TlvOptionalField(1, TlvString),
|
|
116
|
+
sureName: TlvOptionalField(2, TlvString),
|
|
117
|
+
serialNum: TlvOptionalField(3, TlvString),
|
|
118
|
+
countryName: TlvOptionalField(4, TlvString),
|
|
119
|
+
localityName: TlvOptionalField(5, TlvString),
|
|
120
|
+
stateOrProvinceName: TlvOptionalField(6, TlvString),
|
|
121
|
+
orgName: TlvOptionalField(7, TlvString),
|
|
122
|
+
orgUnitName: TlvOptionalField(8, TlvString),
|
|
123
|
+
title: TlvOptionalField(9, TlvString),
|
|
124
|
+
name: TlvOptionalField(10, TlvString),
|
|
125
|
+
givenName: TlvOptionalField(11, TlvString),
|
|
126
|
+
initials: TlvOptionalField(12, TlvString),
|
|
127
|
+
genQualifier: TlvOptionalField(13, TlvString),
|
|
128
|
+
dnQualifier: TlvOptionalField(14, TlvString),
|
|
129
|
+
pseudonym: TlvOptionalField(15, TlvString),
|
|
130
|
+
domainComponent: TlvOptionalField(16, TlvString),
|
|
131
|
+
// Matter specific DNs
|
|
132
|
+
...matterFields,
|
|
133
|
+
// Standard DNs when encoded as Printable String
|
|
134
|
+
commonNamePs: TlvOptionalField(129, TlvString),
|
|
135
|
+
sureNamePs: TlvOptionalField(130, TlvString),
|
|
136
|
+
serialNumPs: TlvOptionalField(131, TlvString),
|
|
137
|
+
countryNamePs: TlvOptionalField(132, TlvString),
|
|
138
|
+
localityNamePs: TlvOptionalField(133, TlvString),
|
|
139
|
+
stateOrProvinceNamePs: TlvOptionalField(134, TlvString),
|
|
140
|
+
orgNamePs: TlvOptionalField(135, TlvString),
|
|
141
|
+
orgUnitNamePs: TlvOptionalField(136, TlvString),
|
|
142
|
+
titlePs: TlvOptionalField(137, TlvString),
|
|
143
|
+
namePs: TlvOptionalField(138, TlvString),
|
|
144
|
+
givenNamePs: TlvOptionalField(139, TlvString),
|
|
145
|
+
initialsPs: TlvOptionalField(140, TlvString),
|
|
146
|
+
genQualifierPs: TlvOptionalField(141, TlvString),
|
|
147
|
+
dnQualifierPs: TlvOptionalField(142, TlvString),
|
|
148
|
+
pseudonymPs: TlvOptionalField(143, TlvString)
|
|
149
|
+
};
|
|
150
|
+
return TlvTaggedList(fields);
|
|
151
|
+
};
|
|
152
|
+
const ExtensionKeyUsageBitmap = {
|
|
153
|
+
digitalSignature: BitFlag(0),
|
|
154
|
+
nonRepudiation: BitFlag(1),
|
|
155
|
+
keyEncipherment: BitFlag(2),
|
|
156
|
+
dataEncipherment: BitFlag(3),
|
|
157
|
+
keyAgreement: BitFlag(4),
|
|
158
|
+
keyCertSign: BitFlag(5),
|
|
159
|
+
cRLSign: BitFlag(6),
|
|
160
|
+
encipherOnly: BitFlag(7),
|
|
161
|
+
decipherOnly: BitFlag(8)
|
|
162
|
+
};
|
|
163
|
+
const ExtensionKeyUsageSchema = BitmapSchema(ExtensionKeyUsageBitmap);
|
|
164
|
+
const BaseMatterCertificate = (matterFields) => TlvObjectWithMaxSize(
|
|
165
|
+
{
|
|
166
|
+
serialNumber: TlvField(1, TlvByteString.bound({ maxLength: 20 })),
|
|
167
|
+
signatureAlgorithm: TlvField(2, TlvUInt8),
|
|
168
|
+
issuer: TlvField(
|
|
169
|
+
3,
|
|
170
|
+
TlvGenericMatterSubjectOrIssuerTaggedList({
|
|
171
|
+
...AllowedSubjectAndIssuerMatterFields,
|
|
172
|
+
...matterFields?.issuer ?? {}
|
|
173
|
+
})
|
|
174
|
+
),
|
|
175
|
+
notBefore: TlvField(4, TlvUInt32),
|
|
176
|
+
notAfter: TlvField(5, TlvUInt32),
|
|
177
|
+
subject: TlvField(
|
|
178
|
+
6,
|
|
179
|
+
TlvGenericMatterSubjectOrIssuerTaggedList({
|
|
180
|
+
...AllowedSubjectAndIssuerMatterFields,
|
|
181
|
+
...matterFields?.subject ?? {}
|
|
182
|
+
})
|
|
183
|
+
),
|
|
184
|
+
publicKeyAlgorithm: TlvField(7, TlvUInt8),
|
|
185
|
+
ellipticCurveIdentifier: TlvField(8, TlvUInt8),
|
|
186
|
+
ellipticCurvePublicKey: TlvField(9, TlvByteString),
|
|
187
|
+
extensions: TlvField(
|
|
188
|
+
10,
|
|
189
|
+
TlvTaggedList({
|
|
190
|
+
basicConstraints: TlvField(
|
|
191
|
+
1,
|
|
192
|
+
TlvObject({
|
|
193
|
+
isCa: TlvField(1, TlvBoolean),
|
|
194
|
+
pathLen: TlvOptionalField(2, TlvUInt8)
|
|
195
|
+
})
|
|
196
|
+
),
|
|
197
|
+
keyUsage: TlvField(2, TlvBitmap(TlvUInt16, ExtensionKeyUsageBitmap)),
|
|
198
|
+
extendedKeyUsage: TlvOptionalField(3, TlvArray(TlvUInt8)),
|
|
199
|
+
subjectKeyIdentifier: TlvField(4, TlvByteString.bound({ length: 20 })),
|
|
200
|
+
authorityKeyIdentifier: TlvField(5, TlvByteString.bound({ length: 20 })),
|
|
201
|
+
futureExtension: TlvOptionalRepeatedField(6, TlvByteString)
|
|
202
|
+
})
|
|
203
|
+
),
|
|
204
|
+
signature: TlvField(11, TlvByteString)
|
|
205
|
+
},
|
|
206
|
+
MAX_TLV_CERTIFICATE_SIZE
|
|
207
|
+
);
|
|
208
|
+
const TlvRootCertificate = BaseMatterCertificate({
|
|
209
|
+
subject: {
|
|
210
|
+
rcacId: TlvField(20, TlvUInt64),
|
|
211
|
+
fabricId: TlvOptionalField(21, TlvFabricId)
|
|
212
|
+
},
|
|
213
|
+
issuer: AllowedSubjectAndIssuerMatterFields
|
|
214
|
+
});
|
|
215
|
+
const TlvOperationalCertificate = BaseMatterCertificate({
|
|
216
|
+
subject: {
|
|
217
|
+
nodeId: TlvField(17, TlvNodeId),
|
|
218
|
+
fabricId: TlvField(21, TlvFabricId),
|
|
219
|
+
caseAuthenticatedTags: TlvOptionalRepeatedField(22, TlvCaseAuthenticatedTag, { maxLength: 3 })
|
|
220
|
+
},
|
|
221
|
+
issuer: AllowedSubjectAndIssuerMatterFields
|
|
222
|
+
});
|
|
223
|
+
const TlvIntermediateCertificate = BaseMatterCertificate({
|
|
224
|
+
subject: {
|
|
225
|
+
icacId: TlvField(19, TlvUInt64),
|
|
226
|
+
fabricId: TlvOptionalField(21, TlvFabricId)
|
|
227
|
+
},
|
|
228
|
+
issuer: AllowedSubjectAndIssuerMatterFields
|
|
229
|
+
});
|
|
230
|
+
const TlvBaseCertificate = BaseMatterCertificate();
|
|
231
|
+
const TlvCertificationDeclaration = TlvObject({
|
|
232
|
+
formatVersion: TlvField(0, TlvUInt16),
|
|
233
|
+
vendorId: TlvField(1, TlvVendorId),
|
|
234
|
+
produceIdArray: TlvField(2, TlvArray(TlvUInt16, { minLength: 1, maxLength: 100 })),
|
|
235
|
+
deviceTypeId: TlvField(3, TlvUInt32),
|
|
236
|
+
certificateId: TlvField(4, TlvString.bound({ length: 19 })),
|
|
237
|
+
securityLevel: TlvField(5, TlvUInt8),
|
|
238
|
+
securityInformation: TlvField(6, TlvUInt16),
|
|
239
|
+
versionNumber: TlvField(7, TlvUInt16),
|
|
240
|
+
certificationType: TlvField(8, TlvUInt8),
|
|
241
|
+
dacOriginVendorId: TlvOptionalField(9, TlvVendorId),
|
|
242
|
+
dacOriginProductId: TlvOptionalField(10, TlvUInt16),
|
|
243
|
+
authorizedPaaList: TlvOptionalField(
|
|
244
|
+
11,
|
|
245
|
+
TlvArray(TlvByteString.bound({ length: 20 }), { minLength: 1, maxLength: 10 })
|
|
246
|
+
)
|
|
247
|
+
});
|
|
248
|
+
function subjectOrIssuerToAsn1(data) {
|
|
249
|
+
const asn = {};
|
|
250
|
+
Object.entries(data).forEach(([key, value]) => {
|
|
251
|
+
if (value === void 0) {
|
|
252
|
+
return;
|
|
253
|
+
}
|
|
254
|
+
switch (key) {
|
|
255
|
+
case "commonName":
|
|
256
|
+
asn.commonName = X520.CommonName(value);
|
|
257
|
+
break;
|
|
258
|
+
case "sureName":
|
|
259
|
+
asn.sureName = X520.SurName(value);
|
|
260
|
+
break;
|
|
261
|
+
case "serialNum":
|
|
262
|
+
asn.serialNum = X520.SerialNumber(value);
|
|
263
|
+
break;
|
|
264
|
+
case "countryName":
|
|
265
|
+
asn.countryName = X520.CountryName(value);
|
|
266
|
+
break;
|
|
267
|
+
case "localityName":
|
|
268
|
+
asn.localityName = X520.LocalityName(value);
|
|
269
|
+
break;
|
|
270
|
+
case "stateOrProvinceName":
|
|
271
|
+
asn.stateOrProvinceName = X520.StateOrProvinceName(value);
|
|
272
|
+
break;
|
|
273
|
+
case "orgName":
|
|
274
|
+
asn.orgName = X520.OrganisationName(value);
|
|
275
|
+
break;
|
|
276
|
+
case "orgUnitName":
|
|
277
|
+
asn.orgUnitName = X520.OrganizationalUnitName(value);
|
|
278
|
+
break;
|
|
279
|
+
case "title":
|
|
280
|
+
asn.title = X520.Title(value);
|
|
281
|
+
break;
|
|
282
|
+
case "name":
|
|
283
|
+
asn.name = X520.Name(value);
|
|
284
|
+
break;
|
|
285
|
+
case "givenName":
|
|
286
|
+
asn.givenName = X520.GivenName(value);
|
|
287
|
+
break;
|
|
288
|
+
case "initials":
|
|
289
|
+
asn.initials = X520.Initials(value);
|
|
290
|
+
break;
|
|
291
|
+
case "genQualifier":
|
|
292
|
+
asn.genQualifier = X520.GenerationQualifier(value);
|
|
293
|
+
break;
|
|
294
|
+
case "dnQualifier":
|
|
295
|
+
asn.dnQualifier = X520.DnQualifier(value);
|
|
296
|
+
break;
|
|
297
|
+
case "pseudonym":
|
|
298
|
+
asn.pseudonym = X520.Pseudonym(value);
|
|
299
|
+
break;
|
|
300
|
+
case "domainComponent":
|
|
301
|
+
asn.domainComponent = X520.DomainComponent(value);
|
|
302
|
+
break;
|
|
303
|
+
case "nodeId":
|
|
304
|
+
asn.nodeId = NodeId_Matter(value);
|
|
305
|
+
break;
|
|
306
|
+
case "firmwareSigningId":
|
|
307
|
+
asn.firmwareSigningId = FirmwareSigningId_Matter(value);
|
|
308
|
+
break;
|
|
309
|
+
case "icacId":
|
|
310
|
+
asn.icacId = IcacId_Matter(value);
|
|
311
|
+
break;
|
|
312
|
+
case "rcacId":
|
|
313
|
+
asn.rcacId = RcacId_Matter(value);
|
|
314
|
+
break;
|
|
315
|
+
case "fabricId":
|
|
316
|
+
asn.fabricId = FabricId_Matter(value);
|
|
317
|
+
break;
|
|
318
|
+
case "caseAuthenticatedTags":
|
|
319
|
+
const caseAuthenticatedTags = value;
|
|
320
|
+
CaseAuthenticatedTag.validateNocTagList(caseAuthenticatedTags);
|
|
321
|
+
const cat0 = caseAuthenticatedTags[0];
|
|
322
|
+
const cat1 = caseAuthenticatedTags[1];
|
|
323
|
+
const cat2 = caseAuthenticatedTags[2];
|
|
324
|
+
if (cat0 !== void 0) {
|
|
325
|
+
asn.caseAuthenticatedTag0 = NocCat_Matter(cat0);
|
|
326
|
+
}
|
|
327
|
+
if (cat1 !== void 0) {
|
|
328
|
+
asn.caseAuthenticatedTag1 = NocCat_Matter(cat1);
|
|
329
|
+
}
|
|
330
|
+
if (cat2 !== void 0) {
|
|
331
|
+
asn.caseAuthenticatedTag2 = NocCat_Matter(cat2);
|
|
332
|
+
}
|
|
333
|
+
break;
|
|
334
|
+
case "vendorId":
|
|
335
|
+
asn.vendorId = VendorId_Matter(value);
|
|
336
|
+
break;
|
|
337
|
+
case "productId":
|
|
338
|
+
asn.productId = ProductId_Matter(value);
|
|
339
|
+
break;
|
|
340
|
+
case "commonNamePs":
|
|
341
|
+
asn.commonNamePs = X520.CommonName(value, true);
|
|
342
|
+
break;
|
|
343
|
+
case "sureNamePs":
|
|
344
|
+
asn.sureNamePs = X520.SurName(value, true);
|
|
345
|
+
break;
|
|
346
|
+
case "serialNumPs":
|
|
347
|
+
asn.serialNumPs = X520.SerialNumber(value, true);
|
|
348
|
+
break;
|
|
349
|
+
case "countryNamePs":
|
|
350
|
+
asn.countryNamePs = X520.CountryName(value, true);
|
|
351
|
+
break;
|
|
352
|
+
case "localityNamePs":
|
|
353
|
+
asn.localityNamePs = X520.LocalityName(value, true);
|
|
354
|
+
break;
|
|
355
|
+
case "stateOrProvinceNamePs":
|
|
356
|
+
asn.stateOrProvinceNamePs = X520.StateOrProvinceName(value, true);
|
|
357
|
+
break;
|
|
358
|
+
case "orgNamePs":
|
|
359
|
+
asn.orgNamePs = X520.OrganisationName(value, true);
|
|
360
|
+
break;
|
|
361
|
+
case "orgUnitNamePs":
|
|
362
|
+
asn.orgUnitNamePs = X520.OrganizationalUnitName(value, true);
|
|
363
|
+
break;
|
|
364
|
+
case "titlePs":
|
|
365
|
+
asn.titlePs = X520.Title(value, true);
|
|
366
|
+
break;
|
|
367
|
+
case "namePs":
|
|
368
|
+
asn.namePs = X520.Name(value, true);
|
|
369
|
+
break;
|
|
370
|
+
case "givenNamePs":
|
|
371
|
+
asn.givenNamePs = X520.GivenName(value, true);
|
|
372
|
+
break;
|
|
373
|
+
case "initialsPs":
|
|
374
|
+
asn.initialsPs = X520.Initials(value, true);
|
|
375
|
+
break;
|
|
376
|
+
case "genQualifierPs":
|
|
377
|
+
asn.genQualifierPs = X520.GenerationQualifier(value, true);
|
|
378
|
+
break;
|
|
379
|
+
case "dnQualifierPs":
|
|
380
|
+
asn.dnQualifierPs = X520.DnQualifier(value, true);
|
|
381
|
+
break;
|
|
382
|
+
case "pseudonymPs":
|
|
383
|
+
asn.pseudonymPs = X520.Pseudonym(value, true);
|
|
384
|
+
break;
|
|
385
|
+
}
|
|
386
|
+
});
|
|
387
|
+
return asn;
|
|
388
|
+
}
|
|
389
|
+
function extensionsToAsn1(extensions) {
|
|
390
|
+
const asn = {};
|
|
391
|
+
Object.entries(extensions).forEach(([key, value]) => {
|
|
392
|
+
if (value === void 0) {
|
|
393
|
+
return;
|
|
394
|
+
}
|
|
395
|
+
switch (key) {
|
|
396
|
+
case "basicConstraints":
|
|
397
|
+
asn.basicConstraints = X509.BasicConstraints(value);
|
|
398
|
+
break;
|
|
399
|
+
case "keyUsage":
|
|
400
|
+
asn.keyUsage = X509.KeyUsage(
|
|
401
|
+
ExtensionKeyUsageSchema.encode(value)
|
|
402
|
+
);
|
|
403
|
+
break;
|
|
404
|
+
case "extendedKeyUsage":
|
|
405
|
+
asn.extendedKeyUsage = X509.ExtendedKeyUsage(value);
|
|
406
|
+
break;
|
|
407
|
+
case "subjectKeyIdentifier":
|
|
408
|
+
asn.subjectKeyIdentifier = X509.SubjectKeyIdentifier(value);
|
|
409
|
+
break;
|
|
410
|
+
case "authorityKeyIdentifier":
|
|
411
|
+
asn.authorityKeyIdentifier = X509.AuthorityKeyIdentifier(value);
|
|
412
|
+
break;
|
|
413
|
+
case "futureExtension":
|
|
414
|
+
asn.futureExtension = RawBytes(Bytes.concat(...value ?? []));
|
|
415
|
+
break;
|
|
416
|
+
}
|
|
417
|
+
});
|
|
418
|
+
return asn;
|
|
419
|
+
}
|
|
420
|
+
var CertificateManager;
|
|
421
|
+
((CertificateManager2) => {
|
|
422
|
+
function assertCertificateDerSize(certBytes) {
|
|
423
|
+
if (certBytes.length > MAX_DER_CERTIFICATE_SIZE) {
|
|
424
|
+
throw new ImplementationError(
|
|
425
|
+
`Certificate to generate is too big: ${certBytes.length} bytes instead of max ${MAX_DER_CERTIFICATE_SIZE} bytes`
|
|
426
|
+
);
|
|
427
|
+
}
|
|
428
|
+
}
|
|
429
|
+
function genericBuildAsn1Structure({
|
|
430
|
+
serialNumber,
|
|
431
|
+
notBefore,
|
|
432
|
+
notAfter,
|
|
433
|
+
issuer,
|
|
434
|
+
subject,
|
|
435
|
+
ellipticCurvePublicKey,
|
|
436
|
+
extensions
|
|
437
|
+
}) {
|
|
438
|
+
const {
|
|
439
|
+
basicConstraints: { isCa, pathLen }
|
|
440
|
+
} = extensions;
|
|
441
|
+
if (!isCa && pathLen !== void 0) {
|
|
442
|
+
throw new CertificateError("Path length must be undefined for non-CA certificates.");
|
|
443
|
+
}
|
|
444
|
+
return {
|
|
445
|
+
version: ContextTagged(0, 2),
|
|
446
|
+
// v3
|
|
447
|
+
serialNumber: DatatypeOverride(DerType.Integer, serialNumber),
|
|
448
|
+
signatureAlgorithm: X962.EcdsaWithSHA256,
|
|
449
|
+
issuer: subjectOrIssuerToAsn1(issuer),
|
|
450
|
+
validity: {
|
|
451
|
+
notBefore: matterToJsDate(notBefore),
|
|
452
|
+
notAfter: matterToJsDate(notAfter)
|
|
453
|
+
},
|
|
454
|
+
subject: subjectOrIssuerToAsn1(subject),
|
|
455
|
+
publicKey: X962.PublicKeyEcPrime256v1(ellipticCurvePublicKey),
|
|
456
|
+
extensions: ContextTagged(3, extensionsToAsn1(extensions))
|
|
457
|
+
};
|
|
458
|
+
}
|
|
459
|
+
function genericCertToAsn1(cert) {
|
|
460
|
+
const certBytes = DerCodec.encode(genericBuildAsn1Structure(cert));
|
|
461
|
+
assertCertificateDerSize(certBytes);
|
|
462
|
+
return certBytes;
|
|
463
|
+
}
|
|
464
|
+
function rootCertToAsn1(cert) {
|
|
465
|
+
const {
|
|
466
|
+
extensions: {
|
|
467
|
+
basicConstraints: { isCa }
|
|
468
|
+
}
|
|
469
|
+
} = cert;
|
|
470
|
+
if (!isCa) {
|
|
471
|
+
throw new CertificateError("Root certificate must be a CA.");
|
|
472
|
+
}
|
|
473
|
+
return genericCertToAsn1(cert);
|
|
474
|
+
}
|
|
475
|
+
CertificateManager2.rootCertToAsn1 = rootCertToAsn1;
|
|
476
|
+
function intermediateCaCertToAsn1(cert) {
|
|
477
|
+
const {
|
|
478
|
+
extensions: {
|
|
479
|
+
basicConstraints: { isCa }
|
|
480
|
+
}
|
|
481
|
+
} = cert;
|
|
482
|
+
if (!isCa) {
|
|
483
|
+
throw new CertificateError("Intermediate certificate must be a CA.");
|
|
484
|
+
}
|
|
485
|
+
return genericCertToAsn1(cert);
|
|
486
|
+
}
|
|
487
|
+
CertificateManager2.intermediateCaCertToAsn1 = intermediateCaCertToAsn1;
|
|
488
|
+
function nodeOperationalCertToAsn1(cert) {
|
|
489
|
+
const {
|
|
490
|
+
issuer: { icacId, rcacId },
|
|
491
|
+
extensions: {
|
|
492
|
+
basicConstraints: { isCa }
|
|
493
|
+
}
|
|
494
|
+
} = cert;
|
|
495
|
+
if (icacId === void 0 && rcacId === void 0) {
|
|
496
|
+
throw new CertificateError("Issuer RCAC or ICAC ID must be defined for an operational certificate.");
|
|
497
|
+
}
|
|
498
|
+
if (isCa) {
|
|
499
|
+
throw new CertificateError("Node operational certificate must not be a CA.");
|
|
500
|
+
}
|
|
501
|
+
return genericCertToAsn1(cert);
|
|
502
|
+
}
|
|
503
|
+
CertificateManager2.nodeOperationalCertToAsn1 = nodeOperationalCertToAsn1;
|
|
504
|
+
function deviceAttestationCertToAsn1(cert, key) {
|
|
505
|
+
const certificate = genericBuildAsn1Structure(cert);
|
|
506
|
+
const certBytes = DerCodec.encode({
|
|
507
|
+
certificate,
|
|
508
|
+
signAlgorithm: X962.EcdsaWithSHA256,
|
|
509
|
+
signature: BitByteArray(Crypto.sign(key, DerCodec.encode(certificate), "der"))
|
|
510
|
+
});
|
|
511
|
+
assertCertificateDerSize(certBytes);
|
|
512
|
+
return certBytes;
|
|
513
|
+
}
|
|
514
|
+
CertificateManager2.deviceAttestationCertToAsn1 = deviceAttestationCertToAsn1;
|
|
515
|
+
function productAttestationIntermediateCertToAsn1(cert, key) {
|
|
516
|
+
const certificate = genericBuildAsn1Structure(cert);
|
|
517
|
+
const certBytes = DerCodec.encode({
|
|
518
|
+
certificate,
|
|
519
|
+
signAlgorithm: X962.EcdsaWithSHA256,
|
|
520
|
+
signature: BitByteArray(Crypto.sign(key, DerCodec.encode(certificate), "der"))
|
|
521
|
+
});
|
|
522
|
+
assertCertificateDerSize(certBytes);
|
|
523
|
+
return certBytes;
|
|
524
|
+
}
|
|
525
|
+
CertificateManager2.productAttestationIntermediateCertToAsn1 = productAttestationIntermediateCertToAsn1;
|
|
526
|
+
function productAttestationAuthorityCertToAsn1(cert, key) {
|
|
527
|
+
const certificate = genericBuildAsn1Structure(cert);
|
|
528
|
+
const certBytes = DerCodec.encode({
|
|
529
|
+
certificate,
|
|
530
|
+
signAlgorithm: X962.EcdsaWithSHA256,
|
|
531
|
+
signature: BitByteArray(Crypto.sign(key, DerCodec.encode(certificate), "der"))
|
|
532
|
+
});
|
|
533
|
+
assertCertificateDerSize(certBytes);
|
|
534
|
+
return certBytes;
|
|
535
|
+
}
|
|
536
|
+
CertificateManager2.productAttestationAuthorityCertToAsn1 = productAttestationAuthorityCertToAsn1;
|
|
537
|
+
function certificationDeclarationToAsn1(eContent, subjectKeyIdentifier, privateKey) {
|
|
538
|
+
const certificate = {
|
|
539
|
+
version: 3,
|
|
540
|
+
digestAlgorithm: [SHA256_CMS],
|
|
541
|
+
encapContentInfo: Pkcs7.Data(eContent),
|
|
542
|
+
signerInfo: [
|
|
543
|
+
{
|
|
544
|
+
version: 3,
|
|
545
|
+
subjectKeyIdentifier: ContextTaggedBytes(0, subjectKeyIdentifier),
|
|
546
|
+
digestAlgorithm: SHA256_CMS,
|
|
547
|
+
signatureAlgorithm: X962.EcdsaWithSHA256,
|
|
548
|
+
signature: Crypto.sign(privateKey, eContent, "der")
|
|
549
|
+
}
|
|
550
|
+
]
|
|
551
|
+
};
|
|
552
|
+
const certBytes = DerCodec.encode(Pkcs7.SignedData(certificate));
|
|
553
|
+
assertCertificateDerSize(certBytes);
|
|
554
|
+
return certBytes;
|
|
555
|
+
}
|
|
556
|
+
CertificateManager2.certificationDeclarationToAsn1 = certificationDeclarationToAsn1;
|
|
557
|
+
function validateGeneralCertificateFields(cert) {
|
|
558
|
+
if (cert.serialNumber.length > 20)
|
|
559
|
+
throw new CertificateError(
|
|
560
|
+
`Serial number must not be longer then 20 octets. Current serial number has ${cert.serialNumber.length} octets.`
|
|
561
|
+
);
|
|
562
|
+
if (cert.signatureAlgorithm !== 1) {
|
|
563
|
+
throw new CertificateError(`Unsupported signature algorithm: ${cert.signatureAlgorithm}`);
|
|
564
|
+
}
|
|
565
|
+
if (cert.publicKeyAlgorithm !== 1) {
|
|
566
|
+
throw new CertificateError(`Unsupported public key algorithm: ${cert.publicKeyAlgorithm}`);
|
|
567
|
+
}
|
|
568
|
+
if (cert.ellipticCurveIdentifier !== 1) {
|
|
569
|
+
throw new CertificateError(`Unsupported elliptic curve identifier: ${cert.ellipticCurveIdentifier}`);
|
|
570
|
+
}
|
|
571
|
+
if (Object.keys(cert.subject).length > 5) {
|
|
572
|
+
throw new CertificateError(`Certificate subject must not contain more than 5 RDNs.`);
|
|
573
|
+
}
|
|
574
|
+
if (Object.keys(cert.issuer).length > 5) {
|
|
575
|
+
throw new CertificateError(`Certificate issuer must not contain more than 5 RDNs.`);
|
|
576
|
+
}
|
|
577
|
+
if (cert.notBefore * 1e3 > Time.nowMs()) {
|
|
578
|
+
logger.warn(`Certificate notBefore date is in the future: ${cert.notBefore * 1e3} vs ${Time.nowMs()}`);
|
|
579
|
+
}
|
|
580
|
+
}
|
|
581
|
+
CertificateManager2.validateGeneralCertificateFields = validateGeneralCertificateFields;
|
|
582
|
+
function verifyRootCertificate(rootCert) {
|
|
583
|
+
CertificateManager2.validateGeneralCertificateFields(rootCert);
|
|
584
|
+
if ("nodeId" in rootCert.subject) {
|
|
585
|
+
throw new CertificateError(`Root certificate must not contain a nodeId.`);
|
|
586
|
+
}
|
|
587
|
+
if (rootCert.subject.fabricId !== void 0) {
|
|
588
|
+
if (Array.isArray(rootCert.subject.fabricId)) {
|
|
589
|
+
throw new CertificateError(
|
|
590
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(rootCert.subject.fabricId)}`
|
|
591
|
+
);
|
|
592
|
+
}
|
|
593
|
+
if (rootCert.subject.fabricId === FabricId(0)) {
|
|
594
|
+
throw new CertificateError(
|
|
595
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(rootCert.subject.fabricId)}`
|
|
596
|
+
);
|
|
597
|
+
}
|
|
598
|
+
}
|
|
599
|
+
if ("icacId" in rootCert.subject) {
|
|
600
|
+
throw new CertificateError(`Root certificate must not contain an icacId.`);
|
|
601
|
+
}
|
|
602
|
+
if (rootCert.subject.rcacId === void 0 || Array.isArray(rootCert.subject.rcacId)) {
|
|
603
|
+
throw new CertificateError(`Invalid rcacId in Root certificate: ${Logger.toJSON(rootCert.subject.rcacId)}`);
|
|
604
|
+
}
|
|
605
|
+
if ("caseAuthenticatedTags" in rootCert.subject) {
|
|
606
|
+
throw new CertificateError(`Root certificate must not contain a caseAuthenticatedTags.`);
|
|
607
|
+
}
|
|
608
|
+
if (rootCert.extensions.basicConstraints.isCa !== true) {
|
|
609
|
+
throw new CertificateError(`Root certificate must have isCa set to true.`);
|
|
610
|
+
}
|
|
611
|
+
if (!rootCert.extensions.keyUsage.keyCertSign || !rootCert.extensions.keyUsage.cRLSign) {
|
|
612
|
+
throw new CertificateError(`Root certificate keyUsage must have keyCertSign and CRLSign set.`);
|
|
613
|
+
}
|
|
614
|
+
if (rootCert.extensions.extendedKeyUsage !== void 0) {
|
|
615
|
+
throw new CertificateError(`Root certificate must not have extendedKeyUsage set.`);
|
|
616
|
+
}
|
|
617
|
+
if (rootCert.extensions.subjectKeyIdentifier === void 0) {
|
|
618
|
+
throw new CertificateError(`Root certificate must have subjectKeyIdentifier set.`);
|
|
619
|
+
}
|
|
620
|
+
if (rootCert.extensions.subjectKeyIdentifier.length !== 20) {
|
|
621
|
+
throw new CertificateError(`Root certificate subjectKeyIdentifier must be 160 bit.`);
|
|
622
|
+
}
|
|
623
|
+
if (rootCert.extensions.authorityKeyIdentifier === void 0) {
|
|
624
|
+
throw new CertificateError(`Root certificate must have authorityKeyIdentifier set.`);
|
|
625
|
+
}
|
|
626
|
+
if (rootCert.extensions.authorityKeyIdentifier.length !== 20) {
|
|
627
|
+
throw new CertificateError(`Root certificate authorityKeyIdentifier must be 160 bit.`);
|
|
628
|
+
}
|
|
629
|
+
if (!Bytes.areEqual(rootCert.extensions.authorityKeyIdentifier, rootCert.extensions.subjectKeyIdentifier)) {
|
|
630
|
+
throw new CertificateError(
|
|
631
|
+
`Root certificate authorityKeyIdentifier must be equal to subjectKeyIdentifier.`
|
|
632
|
+
);
|
|
633
|
+
}
|
|
634
|
+
Crypto.verify(PublicKey(rootCert.ellipticCurvePublicKey), rootCertToAsn1(rootCert), rootCert.signature);
|
|
635
|
+
}
|
|
636
|
+
CertificateManager2.verifyRootCertificate = verifyRootCertificate;
|
|
637
|
+
function verifyNodeOperationalCertificate(rootOrIcaCert, nocCert) {
|
|
638
|
+
CertificateManager2.validateGeneralCertificateFields(nocCert);
|
|
639
|
+
if (nocCert.subject.nodeId === void 0 || Array.isArray(nocCert.subject.nodeId)) {
|
|
640
|
+
throw new CertificateError(`Invalid nodeId in NoC certificate: ${Logger.toJSON(nocCert.subject.nodeId)}`);
|
|
641
|
+
}
|
|
642
|
+
if (!NodeId.isOperationalNodeId(nocCert.subject.nodeId)) {
|
|
643
|
+
throw new CertificateError(`Invalid nodeId in NoC certificate: ${Logger.toJSON(nocCert.subject.nodeId)}`);
|
|
644
|
+
}
|
|
645
|
+
if (nocCert.subject.fabricId === void 0 || Array.isArray(nocCert.subject.fabricId)) {
|
|
646
|
+
throw new CertificateError(
|
|
647
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(nocCert.subject.fabricId)}`
|
|
648
|
+
);
|
|
649
|
+
}
|
|
650
|
+
if (nocCert.subject.fabricId === FabricId(0)) {
|
|
651
|
+
throw new CertificateError(
|
|
652
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(nocCert.subject.fabricId)}`
|
|
653
|
+
);
|
|
654
|
+
}
|
|
655
|
+
if ("icacId" in nocCert.subject) {
|
|
656
|
+
throw new CertificateError(`Noc certificate must not contain an icacId.`);
|
|
657
|
+
}
|
|
658
|
+
if ("rcacId" in nocCert.subject) {
|
|
659
|
+
throw new CertificateError(`Noc certificate must not contain an rcacId.`);
|
|
660
|
+
}
|
|
661
|
+
if (nocCert.subject.caseAuthenticatedTags !== void 0) {
|
|
662
|
+
CaseAuthenticatedTag.validateNocTagList(nocCert.subject.caseAuthenticatedTags);
|
|
663
|
+
}
|
|
664
|
+
if (rootOrIcaCert.subject.fabricId !== void 0 && rootOrIcaCert.subject.fabricId !== nocCert.subject.fabricId) {
|
|
665
|
+
throw new CertificateError(
|
|
666
|
+
`FabricId in NoC certificate does not match the fabricId in the parent certificate. ${Logger.toJSON(
|
|
667
|
+
rootOrIcaCert.subject.fabricId
|
|
668
|
+
)} !== ${Logger.toJSON(nocCert.subject.fabricId)}`
|
|
669
|
+
);
|
|
670
|
+
}
|
|
671
|
+
if (nocCert.extensions.basicConstraints.isCa) {
|
|
672
|
+
throw new CertificateError(`Noc certificate must not have isCa set to true.`);
|
|
673
|
+
}
|
|
674
|
+
if (!nocCert.extensions.keyUsage.digitalSignature) {
|
|
675
|
+
throw new CertificateError(`Noc certificate must have keyUsage set to digitalSignature.`);
|
|
676
|
+
}
|
|
677
|
+
if (nocCert.extensions.extendedKeyUsage === void 0 || !nocCert.extensions.extendedKeyUsage.includes(1) && !nocCert.extensions.extendedKeyUsage.includes(2)) {
|
|
678
|
+
throw new CertificateError(
|
|
679
|
+
`Noc certificate must have extendedKeyUsage with serverAuth and clientAuth: ${Logger.toJSON(nocCert.extensions.extendedKeyUsage)}`
|
|
680
|
+
);
|
|
681
|
+
}
|
|
682
|
+
if (nocCert.extensions.subjectKeyIdentifier === void 0) {
|
|
683
|
+
throw new CertificateError(`Noc certificate must have subjectKeyIdentifier set.`);
|
|
684
|
+
}
|
|
685
|
+
if (nocCert.extensions.subjectKeyIdentifier.length !== 20) {
|
|
686
|
+
throw new CertificateError(`Noc certificate subjectKeyIdentifier must be 160 bit.`);
|
|
687
|
+
}
|
|
688
|
+
if (nocCert.extensions.authorityKeyIdentifier === void 0) {
|
|
689
|
+
throw new CertificateError(`Noc certificate must have authorityKeyIdentifier set.`);
|
|
690
|
+
}
|
|
691
|
+
if (nocCert.extensions.authorityKeyIdentifier.length !== 20) {
|
|
692
|
+
throw new CertificateError(`Noc certificate authorityKeyIdentifier must be 160 bit.`);
|
|
693
|
+
}
|
|
694
|
+
if (!Bytes.areEqual(nocCert.extensions.authorityKeyIdentifier, rootOrIcaCert.extensions.subjectKeyIdentifier)) {
|
|
695
|
+
throw new CertificateError(
|
|
696
|
+
`Noc certificate authorityKeyIdentifier must be equal to Root/Ica subjectKeyIdentifier.`
|
|
697
|
+
);
|
|
698
|
+
}
|
|
699
|
+
Crypto.verify(
|
|
700
|
+
PublicKey(rootOrIcaCert.ellipticCurvePublicKey),
|
|
701
|
+
nodeOperationalCertToAsn1(nocCert),
|
|
702
|
+
nocCert.signature
|
|
703
|
+
);
|
|
704
|
+
}
|
|
705
|
+
CertificateManager2.verifyNodeOperationalCertificate = verifyNodeOperationalCertificate;
|
|
706
|
+
function verifyIntermediateCaCertificate(rootCert, icaCert) {
|
|
707
|
+
CertificateManager2.validateGeneralCertificateFields(icaCert);
|
|
708
|
+
if ("nodeId" in icaCert.subject) {
|
|
709
|
+
throw new CertificateError(`Ica certificate must not contain a nodeId.`);
|
|
710
|
+
}
|
|
711
|
+
if (icaCert.subject.fabricId !== void 0) {
|
|
712
|
+
if (Array.isArray(icaCert.subject.fabricId)) {
|
|
713
|
+
throw new CertificateError(
|
|
714
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(icaCert.subject.fabricId)}`
|
|
715
|
+
);
|
|
716
|
+
}
|
|
717
|
+
if (icaCert.subject.fabricId === FabricId(0)) {
|
|
718
|
+
throw new CertificateError(
|
|
719
|
+
`Invalid fabricId in NoC certificate: ${Logger.toJSON(icaCert.subject.fabricId)}`
|
|
720
|
+
);
|
|
721
|
+
}
|
|
722
|
+
if (rootCert.subject.fabricId !== icaCert.subject.fabricId) {
|
|
723
|
+
throw new CertificateError(
|
|
724
|
+
`FabricId in Ica certificate does not match the fabricId in the parent certificate. ${Logger.toJSON(
|
|
725
|
+
rootCert.subject.fabricId
|
|
726
|
+
)} !== ${Logger.toJSON(icaCert.subject.fabricId)}`
|
|
727
|
+
);
|
|
728
|
+
}
|
|
729
|
+
}
|
|
730
|
+
if (icaCert.subject.icacId === void 0 || Array.isArray(icaCert.subject.icacId)) {
|
|
731
|
+
throw new CertificateError(`Invalid icacId in Ica certificate: ${Logger.toJSON(icaCert.subject.icacId)}`);
|
|
732
|
+
}
|
|
733
|
+
if ("rcacId" in icaCert.subject) {
|
|
734
|
+
throw new CertificateError(`Ica certificate must not contain an rcacId.`);
|
|
735
|
+
}
|
|
736
|
+
if ("caseAuthenticatedTags" in icaCert.subject) {
|
|
737
|
+
throw new CertificateError(`Ica certificate must not contain a caseAuthenticatedTags.`);
|
|
738
|
+
}
|
|
739
|
+
if (rootCert.subject.fabricId !== icaCert.subject.fabricId) {
|
|
740
|
+
throw new CertificateError(
|
|
741
|
+
`FabricId in Ica certificate does not match the fabricId in the parent certificate. ${Logger.toJSON(
|
|
742
|
+
rootCert.subject.fabricId
|
|
743
|
+
)} !== ${Logger.toJSON(icaCert.subject.fabricId)}`
|
|
744
|
+
);
|
|
745
|
+
}
|
|
746
|
+
if (rootCert.subject.rcacId !== icaCert.issuer.rcacId) {
|
|
747
|
+
throw new CertificateError(
|
|
748
|
+
`RcacId in Ica certificate does not match the rcacId in the parent certificate. ${Logger.toJSON(
|
|
749
|
+
rootCert.subject.rcacId
|
|
750
|
+
)} !== ${Logger.toJSON(icaCert.issuer.rcacId)}`
|
|
751
|
+
);
|
|
752
|
+
}
|
|
753
|
+
if (!icaCert.extensions.basicConstraints.isCa) {
|
|
754
|
+
throw new CertificateError(`Ica certificate must have isCa set to true.`);
|
|
755
|
+
}
|
|
756
|
+
if (!icaCert.extensions.keyUsage.keyCertSign || !icaCert.extensions.keyUsage.cRLSign) {
|
|
757
|
+
throw new CertificateError(`Ica certificate must have keyUsage set to keyCertSign and CRLSign.`);
|
|
758
|
+
}
|
|
759
|
+
if (icaCert.extensions.extendedKeyUsage !== void 0) {
|
|
760
|
+
throw new CertificateError(`Ica certificate must not have extendedKeyUsage set.`);
|
|
761
|
+
}
|
|
762
|
+
if (icaCert.extensions.subjectKeyIdentifier === void 0) {
|
|
763
|
+
throw new CertificateError(`Ica certificate must have subjectKeyIdentifier set.`);
|
|
764
|
+
}
|
|
765
|
+
if (icaCert.extensions.subjectKeyIdentifier.length !== 20) {
|
|
766
|
+
throw new CertificateError(`Ica certificate subjectKeyIdentifier must be 160 bit.`);
|
|
767
|
+
}
|
|
768
|
+
if (icaCert.extensions.authorityKeyIdentifier === void 0) {
|
|
769
|
+
throw new CertificateError(`Ica certificate must have authorityKeyIdentifier set.`);
|
|
770
|
+
}
|
|
771
|
+
if (icaCert.extensions.authorityKeyIdentifier.length !== 20) {
|
|
772
|
+
throw new CertificateError(`Ica certificate authorityKeyIdentifier must be 160 bit.`);
|
|
773
|
+
}
|
|
774
|
+
if (!Bytes.areEqual(icaCert.extensions.authorityKeyIdentifier, rootCert.extensions.subjectKeyIdentifier)) {
|
|
775
|
+
throw new CertificateError(
|
|
776
|
+
`Ica certificate authorityKeyIdentifier must be equal to root cert subjectKeyIdentifier.`
|
|
777
|
+
);
|
|
778
|
+
}
|
|
779
|
+
Crypto.verify(PublicKey(rootCert.ellipticCurvePublicKey), intermediateCaCertToAsn1(icaCert), icaCert.signature);
|
|
780
|
+
}
|
|
781
|
+
CertificateManager2.verifyIntermediateCaCertificate = verifyIntermediateCaCertificate;
|
|
782
|
+
function createCertificateSigningRequest(key) {
|
|
783
|
+
const request = {
|
|
784
|
+
version: 0,
|
|
785
|
+
subject: { organization: X520.OrganisationName("CSR") },
|
|
786
|
+
publicKey: X962.PublicKeyEcPrime256v1(key.publicKey),
|
|
787
|
+
endSignedBytes: ContextTagged(0)
|
|
788
|
+
};
|
|
789
|
+
return DerCodec.encode({
|
|
790
|
+
request,
|
|
791
|
+
signAlgorithm: X962.EcdsaWithSHA256,
|
|
792
|
+
signature: BitByteArray(Crypto.sign(key, DerCodec.encode(request), "der"))
|
|
793
|
+
});
|
|
794
|
+
}
|
|
795
|
+
CertificateManager2.createCertificateSigningRequest = createCertificateSigningRequest;
|
|
796
|
+
function getPublicKeyFromCsr(csr) {
|
|
797
|
+
const { [DerKey.Elements]: rootElements } = DerCodec.decode(csr);
|
|
798
|
+
if (rootElements?.length !== 3) throw new CertificateError("Invalid CSR data");
|
|
799
|
+
const [requestNode, signAlgorithmNode, signatureNode] = rootElements;
|
|
800
|
+
const { [DerKey.Elements]: requestElements } = requestNode;
|
|
801
|
+
if (requestElements?.length !== 4) throw new CertificateError("Invalid CSR data");
|
|
802
|
+
const [versionNode, _subjectNode, publicKeyNode] = requestElements;
|
|
803
|
+
const requestVersion = versionNode[DerKey.Bytes][0];
|
|
804
|
+
if (requestVersion !== 0) throw new CertificateError(`Unsupported request version${requestVersion}`);
|
|
805
|
+
const { [DerKey.Elements]: publicKeyElements } = publicKeyNode;
|
|
806
|
+
if (publicKeyElements?.length !== 2) throw new CertificateError("Invalid CSR data");
|
|
807
|
+
const [_publicKeyTypeNode, publicKeyBytesNode] = publicKeyElements;
|
|
808
|
+
const publicKey = publicKeyBytesNode[DerKey.Bytes];
|
|
809
|
+
if (signAlgorithmNode[DerKey.Elements]?.[0]?.[DerKey.Bytes] === void 0 || !Bytes.areEqual(
|
|
810
|
+
X962.EcdsaWithSHA256[DerKey.ObjectId][DerKey.Bytes],
|
|
811
|
+
signAlgorithmNode[DerKey.Elements]?.[0]?.[DerKey.Bytes]
|
|
812
|
+
))
|
|
813
|
+
throw new CertificateError("Unsupported signature type");
|
|
814
|
+
Crypto.verify(PublicKey(publicKey), DerCodec.encode(requestNode), signatureNode[DerKey.Bytes], "der");
|
|
815
|
+
return publicKey;
|
|
816
|
+
}
|
|
817
|
+
CertificateManager2.getPublicKeyFromCsr = getPublicKeyFromCsr;
|
|
818
|
+
})(CertificateManager || (CertificateManager = {}));
|
|
819
|
+
export {
|
|
820
|
+
CertificateError,
|
|
821
|
+
CertificateManager,
|
|
822
|
+
FabricId_Matter,
|
|
823
|
+
FirmwareSigningId_Matter,
|
|
824
|
+
IcacId_Matter,
|
|
825
|
+
NocCat_Matter,
|
|
826
|
+
NodeId_Matter,
|
|
827
|
+
ProductId_Matter,
|
|
828
|
+
RcacId_Matter,
|
|
829
|
+
TlvCertificationDeclaration,
|
|
830
|
+
TlvIntermediateCertificate,
|
|
831
|
+
TlvOperationalCertificate,
|
|
832
|
+
TlvRootCertificate,
|
|
833
|
+
VendorId_Matter,
|
|
834
|
+
jsToMatterDate,
|
|
835
|
+
matterToJsDate
|
|
836
|
+
};
|
|
837
|
+
//# sourceMappingURL=CertificateManager.js.map
|