forked from project-chip/connectedhomeip
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathgroup-key-mgmt-cluster.xml
123 lines (106 loc) · 5.38 KB
/
group-key-mgmt-cluster.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
<?xml version="1.0"?>
<!--
Copyright (c) 2021 Project CHIP Authors
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->
<configurator>
<domain name="CHIP" />
<struct name="GroupKeyMapStruct" isFabricScoped="true">
<cluster code="0x003F"/>
<item fieldId="1" name="GroupId" type="group_id"/>
<item fieldId="2" name="GroupKeySetID" type="int16u"/>
</struct>
<struct name="GroupInfoMapStruct" isFabricScoped="true">
<cluster code="0x003F"/>
<item fieldId="1" name="GroupId" type="group_id"/>
<item fieldId="2" name="Endpoints" type="endpoint_no" array="true"/>
<item fieldId="3" name="GroupName" type="char_string" length="16" optional="true"/>
</struct>
<enum name="GroupKeySecurityPolicyEnum" type="enum8">
<cluster code="0x003F"/>
<item name="TrustFirst" value="0x00"/>
<item name="CacheAndSync" value="0x01"/>
</enum>
<struct name="GroupKeySetStruct">
<cluster code="0x003F"/>
<item fieldId="0" name="GroupKeySetID" type="int16u"/>
<item fieldId="1" name="GroupKeySecurityPolicy" type="GroupKeySecurityPolicyEnum"/>
<item fieldId="2" name="EpochKey0" type="octet_string" length="16" isNullable="true"/>
<item fieldId="3" name="EpochStartTime0" type="epoch_us" isNullable="true"/>
<item fieldId="4" name="EpochKey1" type="octet_string" length="16" isNullable="true"/>
<item fieldId="5" name="EpochStartTime1" type="epoch_us" isNullable="true"/>
<item fieldId="6" name="EpochKey2" type="octet_string" length="16" isNullable="true"/>
<item fieldId="7" name="EpochStartTime2" type="epoch_us" isNullable="true"/>
</struct>
<cluster>
<domain>General</domain>
<name>Group Key Management</name>
<code>0x003F</code>
<define>GROUP_KEY_MANAGEMENT_CLUSTER</define>
<description>The Group Key Management Cluster is the mechanism by which group keys are managed.</description>
<features>
<feature bit="0" code="CS" name="CacheAndSync" summary="The ability to support CacheAndSync security policy and MCSP.">
<optionalConform/>
</feature>
</features>
<attribute side="server" code="0x0000" name="GroupKeyMap" define="GROUP_KEY_MAP" type="array" length="254" entryType="GroupKeyMapStruct" writable="true" optional="false">
<access op="read" privilege="view"/>
<access op="write" privilege="manage"/>
<mandatoryConform/>
</attribute>
<attribute side="server" code="0x0001" name="GroupTable" define="GROUP_TABLE" type="array" length="254" entryType="GroupInfoMapStruct">
<mandatoryConform/>
</attribute>
<attribute side="server" code="0x0002" name="MaxGroupsPerFabric" define="MAX_GROUPS_PER_FABRIC" type="int16u">
<mandatoryConform/>
</attribute>
<attribute side="server" code="0x0003" name="MaxGroupKeysPerFabric" define="MAX_GROUP_KEYS_PER_FABRIC" type="int16u">
<mandatoryConform/>
</attribute>
<command source="client" code="0x00" name="KeySetWrite" isFabricScoped="true" optional="false" cli="zcl GroupKeyManagement KeySetWrite">
<description>Write a new set of keys for the given key set id.</description>
<arg name="GroupKeySet" type="GroupKeySetStruct"/>
<access op="invoke" privilege="administer"/>
<mandatoryConform/>
</command>
<command source="client" code="0x01" name="KeySetRead" isFabricScoped="true" response="KeySetReadResponse" optional="false" cli="zcl GroupKeyManagement KeySetRead">
<description>Read the keys for a given key set id.</description>
<arg name="GroupKeySetID" type="int16u"/>
<access op="invoke" privilege="administer"/>
<mandatoryConform/>
</command>
<command source="server" code="0x02" name="KeySetReadResponse" optional="false" disableDefaultResponse="true">
<description>
Response to KeySetRead
</description>
<arg name="GroupKeySet" type="GroupKeySetStruct"/>
<mandatoryConform/>
</command>
<command source="client" code="0x03" name="KeySetRemove" isFabricScoped="true" optional="false" cli="zcl GroupKeyManagement KeySetRemove">
<description>Revoke a Root Key from a Group</description>
<arg name="GroupKeySetID" type="int16u"/>
<access op="invoke" privilege="administer"/>
<mandatoryConform/>
</command>
<command source="client" code="0x04" name="KeySetReadAllIndices" response="KeySetReadAllIndicesResponse" isFabricScoped="true" optional="false" cli="zcl GroupKeyManagement KeySetReadAllIndices">
<description>Return the list of Group Key Sets associated with the accessing fabric</description>
<access op="invoke" privilege="administer"/>
<mandatoryConform/>
</command>
<command source="server" code="0x05" name="KeySetReadAllIndicesResponse" optional="false" disableDefaultResponse="true">
<description>
Reseponse to KeySetReadAllIndices
</description>
<arg name="GroupKeySetIDs" type="int16u" array="true"/>
<mandatoryConform/>
</command>
</cluster>
</configurator>