Separate out OCW with passcode and verifier, bring back stable API

Co-authored-by: Boris Zbarsky <bzbarsky@apple.com>

Author: samadDotDev

examples/chip-tool/commands/pairing/OpenCommissioningWindowCommand.cpp

@@ -34,10 +34,17 @@ CHIP_ERROR OpenCommissioningWindowCommand::RunCommand()
     if (mCommissioningWindowOption == Controller::CommissioningWindowOpener::CommissioningWindowOption::kTokenWithRandomPIN)
     {
         SetupPayload ignored;
-        return mWindowOpener->OpenCommissioningWindow(mNodeId, System::Clock::Seconds16(mCommissioningWindowTimeout), mIteration,
-                                                      mDiscriminator, NullOptional, NullOptional, NullOptional,
-                                                      &mOnOpenCommissioningWindowCallback, ignored,
-                                                      /* readVIDPIDAttributes */ true);
+        Controller::CommissioningWindowOpener::CommissioningWindowPasscodeParams params = {
+            .common               = { .deviceId      = mNodeId,
+                                      .timeout       = System::Clock::Seconds16(mCommissioningWindowTimeout),
+                                      .iteration     = mIteration,
+                                      .discriminator = mDiscriminator },
+            .setupPIN             = NullOptional,
+            .salt                 = NullOptional,
+            .readVIDPIDAttributes = true,
+            .callback             = &mOnOpenCommissioningWindowCallback,
+        };
+        return mWindowOpener->OpenCommissioningWindow(params, ignored);
     }
 
     ChipLogError(chipTool, "Unknown commissioning window option: %d", to_underlying(mCommissioningWindowOption));

examples/fabric-admin/commands/pairing/OpenCommissioningWindowCommand.cpp

@@ -33,11 +33,35 @@ CHIP_ERROR OpenCommissioningWindowCommand::RunCommand()
 
     if (mCommissioningWindowOption == Controller::CommissioningWindowOpener::CommissioningWindowOption::kTokenWithRandomPIN)
     {
-        SetupPayload ignored;
-        return mWindowOpener->OpenCommissioningWindow(mNodeId, System::Clock::Seconds16(mCommissioningWindowTimeout), mIteration,
-                                                      mDiscriminator, NullOptional, mSalt, mVerifier,
-                                                      &mOnOpenCommissioningWindowCallback, ignored,
-                                                      /* readVIDPIDAttributes */ true);
+        Controller::CommissioningWindowOpener::CommissioningWindowCommonParams common = { .deviceId = mNodeId,
+                                                                                          .timeout  = System::Clock::Seconds16(
+                                                                                              mCommissioningWindowTimeout),
+                                                                                          .iteration     = mIteration,
+                                                                                          .discriminator = mDiscriminator };
+
+        if (mVerifier.HasValue())
+        {
+            VerifyOrReturnError(mSalt.HasValue(), CHIP_ERROR_INVALID_ARGUMENT);
+            Controller::CommissioningWindowOpener::CommissioningWindowVerifierParams params = {
+                .common   = common,
+                .verifier = mVerifier.Value(),
+                .salt     = mSalt.Value(),
+                .callback = &mOnOpenCommissioningWindowVerifierCallback,
+            };
+            return mWindowOpener->OpenCommissioningWindow(params);
+        }
+        else
+        {
+            SetupPayload ignored;
+            Controller::CommissioningWindowOpener::CommissioningWindowPasscodeParams params = {
+                .common               = common,
+                .setupPIN             = NullOptional,
+                .salt                 = mSalt,
+                .readVIDPIDAttributes = true,
+                .callback             = &mOnOpenCommissioningWindowCallback,
+            };
+            return mWindowOpener->OpenCommissioningWindow(params, ignored);
+        }
     }
 
     ChipLogError(NotSpecified, "Unknown commissioning window option: %d", to_underlying(mCommissioningWindowOption));
@@ -58,6 +82,11 @@ void OpenCommissioningWindowCommand::OnOpenCommissioningWindowResponse(void * co
     OnOpenBasicCommissioningWindowResponse(context, remoteId, err);
 }
 
+void OpenCommissioningWindowCommand::OnOpenCommissioningWindowVerifierResponse(void * context, NodeId remoteId, CHIP_ERROR err)
+{
+    OnOpenBasicCommissioningWindowResponse(context, remoteId, err);
+}
+
 void OpenCommissioningWindowCommand::OnOpenBasicCommissioningWindowResponse(void * context, NodeId remoteId, CHIP_ERROR err)
 {
     LogErrorOnFailure(err);

examples/fabric-admin/commands/pairing/OpenCommissioningWindowCommand.h

@@ -35,6 +35,7 @@ class OpenCommissioningWindowCommand : public CHIPCommand
     OpenCommissioningWindowCommand(CredentialIssuerCommands * credIssuerCommands) :
         CHIPCommand("open-commissioning-window", credIssuerCommands),
         mOnOpenCommissioningWindowCallback(OnOpenCommissioningWindowResponse, this),
+        mOnOpenCommissioningWindowVerifierCallback(OnOpenCommissioningWindowVerifierResponse, this),
         mOnOpenBasicCommissioningWindowCallback(OnOpenBasicCommissioningWindowResponse, this)
     {
         AddArgument("node-id", 0, UINT64_MAX, &mNodeId, "Node to send command to.");
@@ -79,8 +80,10 @@ class OpenCommissioningWindowCommand : public CHIPCommand
     chip::Platform::UniquePtr<chip::Controller::CommissioningWindowOpener> mWindowOpener;
 
     static void OnOpenCommissioningWindowResponse(void * context, NodeId deviceId, CHIP_ERROR status, chip::SetupPayload payload);
+    static void OnOpenCommissioningWindowVerifierResponse(void * context, NodeId deviceId, CHIP_ERROR status);
     static void OnOpenBasicCommissioningWindowResponse(void * context, NodeId deviceId, CHIP_ERROR status);
 
     chip::Callback::Callback<chip::Controller::OnOpenCommissioningWindow> mOnOpenCommissioningWindowCallback;
+    chip::Callback::Callback<chip::Controller::OnOpenCommissioningWindowWithVerifier> mOnOpenCommissioningWindowVerifierCallback;
     chip::Callback::Callback<chip::Controller::OnOpenBasicCommissioningWindow> mOnOpenBasicCommissioningWindowCallback;
 };

src/controller/CommissioningWindowOpener.cpp

@@ -43,83 +43,87 @@ CHIP_ERROR CommissioningWindowOpener::OpenBasicCommissioningWindow(NodeId device
 
     // Basic commissioning does not use the setup payload.
 
-    mCommissioningWindowOption        = CommissioningWindowOption::kOriginalSetupCode;
-    mBasicCommissioningWindowCallback = callback;
-    mCommissioningWindowCallback      = nullptr;
-    mNodeId                           = deviceId;
-    mCommissioningWindowTimeout       = timeout;
+    mCommissioningWindowOption           = CommissioningWindowOption::kOriginalSetupCode;
+    mBasicCommissioningWindowCallback    = callback;
+    mCommissioningWindowCallback         = nullptr;
+    mCommissioningWindowVerifierCallback = nullptr;
+    mNodeId                              = deviceId;
+    mCommissioningWindowTimeout          = timeout;
 
     mNextStep = Step::kOpenCommissioningWindow;
     return mController->GetConnectedDevice(mNodeId, &mDeviceConnected, &mDeviceConnectionFailure);
 }
 
 CHIP_ERROR CommissioningWindowOpener::OpenCommissioningWindow(NodeId deviceId, Seconds16 timeout, uint32_t iteration,
                                                               uint16_t discriminator, Optional<uint32_t> setupPIN,
-                                                              Optional<ByteSpan> salt, Optional<ByteSpan> verifier,
+                                                              Optional<ByteSpan> salt,
                                                               Callback::Callback<OnOpenCommissioningWindow> * callback,
                                                               SetupPayload & payload, bool readVIDPIDAttributes)
 {
-    VerifyOrReturnError(mNextStep == Step::kAcceptCommissioningStart, CHIP_ERROR_INCORRECT_STATE);
+    CommissioningWindowPasscodeParams params = {
+        .common   = { .deviceId = deviceId, .timeout = timeout, .iteration = iteration, .discriminator = discriminator },
+        .setupPIN = setupPIN,
+        .salt     = salt,
+        .readVIDPIDAttributes = readVIDPIDAttributes,
+        .callback             = callback,
+    };
+
+    return OpenCommissioningWindow(params, payload);
+}
 
-    VerifyOrReturnError(kSpake2p_Min_PBKDF_Iterations <= iteration && iteration <= kSpake2p_Max_PBKDF_Iterations,
+CHIP_ERROR CommissioningWindowOpener::OpenCommissioningWindow(const CommissioningWindowPasscodeParams & params,
+                                                              SetupPayload & payload)
+{
+    VerifyOrReturnError(mNextStep == Step::kAcceptCommissioningStart, CHIP_ERROR_INCORRECT_STATE);
+    VerifyOrReturnError(kSpake2p_Min_PBKDF_Iterations <= params.common.iteration &&
+                            params.common.iteration <= kSpake2p_Max_PBKDF_Iterations,
+                        CHIP_ERROR_INVALID_ARGUMENT);
+    VerifyOrReturnError(!params.salt.HasValue() ||
+                            (params.salt.Value().size() >= kSpake2p_Min_PBKDF_Salt_Length &&
+                             params.salt.Value().size() <= kSpake2p_Max_PBKDF_Salt_Length),
                         CHIP_ERROR_INVALID_ARGUMENT);
-    VerifyOrReturnError(
-        !salt.HasValue() ||
-            (salt.Value().size() >= kSpake2p_Min_PBKDF_Salt_Length && salt.Value().size() <= kSpake2p_Max_PBKDF_Salt_Length),
-        CHIP_ERROR_INVALID_ARGUMENT);
 
     mSetupPayload = SetupPayload();
 
-    if (setupPIN.HasValue())
+    if (params.setupPIN.HasValue())
     {
-        if (!SetupPayload::IsValidSetupPIN(setupPIN.Value()))
-        {
-            return CHIP_ERROR_INVALID_ARGUMENT;
-        }
-
+        VerifyOrReturnError(SetupPayload::IsValidSetupPIN(params.setupPIN.Value()), CHIP_ERROR_INVALID_ARGUMENT);
         mCommissioningWindowOption = CommissioningWindowOption::kTokenWithProvidedPIN;
-        mSetupPayload.setUpPINCode = setupPIN.Value();
+        mSetupPayload.setUpPINCode = params.setupPIN.Value();
     }
     else
     {
         mCommissioningWindowOption = CommissioningWindowOption::kTokenWithRandomPIN;
     }
 
-    if (salt.HasValue())
-    {
-        memcpy(mPBKDFSaltBuffer, salt.Value().data(), salt.Value().size());
-        mPBKDFSalt = ByteSpan(mPBKDFSaltBuffer, salt.Value().size());
-    }
-    else
-    {
-        ReturnErrorOnFailure(DRBG_get_bytes(mPBKDFSaltBuffer, sizeof(mPBKDFSaltBuffer)));
-        mPBKDFSalt = ByteSpan(mPBKDFSaltBuffer);
-    }
-
     mSetupPayload.version = 0;
-    mSetupPayload.discriminator.SetLongValue(discriminator);
+    mSetupPayload.discriminator.SetLongValue(params.common.discriminator);
     mSetupPayload.rendezvousInformation.SetValue(RendezvousInformationFlag::kOnNetwork);
 
-    mCommissioningWindowCallback      = callback;
-    mBasicCommissioningWindowCallback = nullptr;
-    mNodeId                           = deviceId;
-    mCommissioningWindowTimeout       = timeout;
-    mPBKDFIterations                  = iteration;
-
-    if (verifier.HasValue())
+    if (params.salt.HasValue())
     {
-        ReturnErrorOnFailure(mVerifier.Deserialize(verifier.Value()));
+        memcpy(mPBKDFSaltBuffer, params.salt.Value().data(), params.salt.Value().size());
+        mPBKDFSalt = ByteSpan(mPBKDFSaltBuffer, params.salt.Value().size());
     }
     else
     {
-        bool randomSetupPIN = !setupPIN.HasValue();
-        ReturnErrorOnFailure(
-            PASESession::GeneratePASEVerifier(mVerifier, mPBKDFIterations, mPBKDFSalt, randomSetupPIN, mSetupPayload.setUpPINCode));
+        ReturnErrorOnFailure(DRBG_get_bytes(mPBKDFSaltBuffer, sizeof(mPBKDFSaltBuffer)));
+        mPBKDFSalt = ByteSpan(mPBKDFSaltBuffer);
     }
 
-    payload = mSetupPayload;
+    bool randomSetupPIN = !params.setupPIN.HasValue();
+    ReturnErrorOnFailure(
+        PASESession::GeneratePASEVerifier(mVerifier, mPBKDFIterations, mPBKDFSalt, randomSetupPIN, mSetupPayload.setUpPINCode));
+
+    payload                              = mSetupPayload;
+    mCommissioningWindowCallback         = params.callback;
+    mBasicCommissioningWindowCallback    = nullptr;
+    mCommissioningWindowVerifierCallback = nullptr;
+    mNodeId                              = params.common.deviceId;
+    mCommissioningWindowTimeout          = params.common.timeout;
+    mPBKDFIterations                     = params.common.iteration;
 
-    if (readVIDPIDAttributes)
+    if (params.readVIDPIDAttributes)
     {
         mNextStep = Step::kReadVID;
     }
@@ -131,6 +135,31 @@ CHIP_ERROR CommissioningWindowOpener::OpenCommissioningWindow(NodeId deviceId, S
     return mController->GetConnectedDevice(mNodeId, &mDeviceConnected, &mDeviceConnectionFailure);
 }
 
+CHIP_ERROR CommissioningWindowOpener::OpenCommissioningWindow(const CommissioningWindowVerifierParams & params)
+{
+    VerifyOrReturnError(mNextStep == Step::kAcceptCommissioningStart, CHIP_ERROR_INCORRECT_STATE);
+    VerifyOrReturnError(kSpake2p_Min_PBKDF_Iterations <= params.common.iteration &&
+                            params.common.iteration <= kSpake2p_Max_PBKDF_Iterations,
+                        CHIP_ERROR_INVALID_ARGUMENT);
+    VerifyOrReturnError(params.salt.size() >= kSpake2p_Min_PBKDF_Salt_Length &&
+                            params.salt.size() <= kSpake2p_Max_PBKDF_Salt_Length,
+                        CHIP_ERROR_INVALID_ARGUMENT);
+    memcpy(mPBKDFSaltBuffer, params.salt.data(), params.salt.size());
+    mPBKDFSalt = ByteSpan(mPBKDFSaltBuffer, params.salt.size());
+
+    ReturnErrorOnFailure(mVerifier.Deserialize(params.verifier));
+    mCommissioningWindowVerifierCallback = params.callback;
+    mBasicCommissioningWindowCallback    = nullptr;
+    mCommissioningWindowCallback         = nullptr;
+    mNodeId                              = params.common.deviceId;
+    mCommissioningWindowTimeout          = params.common.timeout;
+    mPBKDFIterations                     = params.common.iteration;
+
+    mNextStep = Step::kOpenCommissioningWindow;
+
+    return mController->GetConnectedDevice(mNodeId, &mDeviceConnected, &mDeviceConnectionFailure);
+}
+
 CHIP_ERROR CommissioningWindowOpener::OpenCommissioningWindowInternal(Messaging::ExchangeManager & exchangeMgr,
                                                                       const SessionHandle & sessionHandle)
 {
@@ -237,15 +266,19 @@ void CommissioningWindowOpener::OnOpenCommissioningWindowSuccess(void * context,
 
         self->mCommissioningWindowCallback->mCall(self->mCommissioningWindowCallback->mContext, self->mNodeId, CHIP_NO_ERROR,
                                                   self->mSetupPayload);
-        // Don't touch `self` anymore; it might have been destroyed by the
-        // callee.
+        // Don't touch `self` anymore; it might have been destroyed by the callee.
+    }
+    else if (self->mCommissioningWindowVerifierCallback != nullptr)
+    {
+        self->mCommissioningWindowVerifierCallback->mCall(self->mCommissioningWindowVerifierCallback->mContext, self->mNodeId,
+                                                          CHIP_NO_ERROR);
+        // Don't touch `self` anymore; it might have been destroyed by the callee.
     }
     else if (self->mBasicCommissioningWindowCallback != nullptr)
     {
         self->mBasicCommissioningWindowCallback->mCall(self->mBasicCommissioningWindowCallback->mContext, self->mNodeId,
                                                        CHIP_NO_ERROR);
-        // Don't touch `self` anymore; it might have been destroyed by the
-        // callee.
+        // Don't touch `self` anymore; it might have been destroyed by the callee.
     }
 }
 
@@ -259,6 +292,11 @@ void CommissioningWindowOpener::OnOpenCommissioningWindowFailure(void * context,
         self->mCommissioningWindowCallback->mCall(self->mCommissioningWindowCallback->mContext, self->mNodeId, error,
                                                   SetupPayload());
     }
+    else if (self->mCommissioningWindowVerifierCallback != nullptr)
+    {
+        self->mCommissioningWindowVerifierCallback->mCall(self->mCommissioningWindowVerifierCallback->mContext, self->mNodeId,
+                                                          error);
+    }
     else if (self->mBasicCommissioningWindowCallback != nullptr)
     {
         self->mBasicCommissioningWindowCallback->mCall(self->mBasicCommissioningWindowCallback->mContext, self->mNodeId, error);
@@ -361,8 +399,8 @@ CHIP_ERROR AutoCommissioningWindowOpener::OpenCommissioningWindow(DeviceControll
     }
 
     CHIP_ERROR err = opener->CommissioningWindowOpener::OpenCommissioningWindow(
-        deviceId, timeout, iteration, discriminator, setupPIN, salt, NullOptional, &opener->mOnOpenCommissioningWindowCallback,
-        payload, readVIDPIDAttributes);
+        deviceId, timeout, iteration, discriminator, setupPIN, salt, &opener->mOnOpenCommissioningWindowCallback, payload,
+        readVIDPIDAttributes);
     if (err != CHIP_NO_ERROR)
     {
         delete opener;