1)Updated the certification slot for Matter DAC(For Trust M MTR)

ying-css · ying-css · commit b27e1cd9399e · 2024-03-27T18:00:47.000+08:00
diff --git a/docs/guides/infineon_trustm_provisioning.md b/docs/guides/infineon_trustm_provisioning.md
@@ -35,7 +35,7 @@ can be used to perform provisioning by following the steps mentioned below.
 
 -   Run the script to generate Matter test DAC for lock-app using the public key
     extracted from the Infineon pre-provisioned Certificate and store it into
-    0xe0e3
+    0xE0E0
 
 ```
 $ cd scripts/matter_provisioning/
@@ -48,14 +48,14 @@ _By running this example matter_dac_provisioning.sh, the steps shown below are
 executed:_
 
 _Step1: Extract the public key from the Infineon pre-provisioned
-Certificate(0xe0e0) using openssl command._
+Certificate(0xE0E0) using openssl command._
 
 _Step2: Generate DAC test certificate using the extracted public key, Signed by
 [Matter test PAI](https://github.com/project-chip/connectedhomeip/blob/v1.1-branch/credentials/development/attestation/Matter-Development-PAI-FFF1-noPID-Cert.pem)_.
 Please note that production devices cannot re-use these test keys/certificates.
 
 _Step3: Write DAC test certificate into OPTIGA&trade; Trust M certificate slot
-0xe0e3_
+0xE0E0_
 
-_Step4: Write Matter test PAI into OPTIGA&trade; Trust M certificate slot 0xe0e8
-and test CD into OPTIGA&trade; Trust M Arbitrary OID 0xf1e0._
+_Step4: Write Matter test PAI into OPTIGA&trade; Trust M certificate slot 0xE0E8
+and test CD into OPTIGA&trade; Trust M Arbitrary OID 0xF1E0.
diff --git a/src/platform/Infineon/crypto/trustm/CHIPCryptoPALHsm_HKDF_trustm.cpp b/src/platform/Infineon/crypto/trustm/CHIPCryptoPALHsm_HKDF_trustm.cpp
@@ -81,8 +81,8 @@ CHIP_ERROR HKDF_sha::HKDF_SHA256(const uint8_t * secret, const size_t secret_len
 
     // Trust M init
     trustm_Open();
-    // Write metada
-    write_metadata(TRUSTM_HKDF_OID_KEY, metadata, sizeof(metadata));
+    // Write metada(Done during provisioning)
+    // write_metadata(TRUSTM_HKDF_OID_KEY, metadata, sizeof(metadata));
     // Write the secret key
     write_data(TRUSTM_HKDF_OID_KEY, secret, secret_length_u16);
 
diff --git a/src/platform/Infineon/crypto/trustm/CHIPCryptoPALHsm_HMAC_trustm.cpp b/src/platform/Infineon/crypto/trustm/CHIPCryptoPALHsm_HMAC_trustm.cpp
@@ -74,8 +74,8 @@ CHIP_ERROR HMAC_sha::HMAC_SHA256(const uint8_t * key, size_t key_length, const u
 
     // Trust M init
     trustm_Open();
-    // Write metada for secret OID
-    write_metadata(TRUSTM_HMAC_OID_KEY, metadata_hmac, sizeof(metadata_hmac));
+    // Write metada for secret OID(Done during Provisioning)
+    //write_metadata(TRUSTM_HMAC_OID_KEY, metadata_hmac, sizeof(metadata_hmac));
     // Update the secret key
     write_data(TRUSTM_HMAC_OID_KEY, key, key_length_u16);
 
diff --git a/src/platform/Infineon/crypto/trustm/DeviceAttestationCredsExampleTrustM.cpp b/src/platform/Infineon/crypto/trustm/DeviceAttestationCredsExampleTrustM.cpp
@@ -26,7 +26,7 @@
 
 /* Device attestation key ids for Trust M */
 #define DEV_ATTESTATION_KEY_ID 0xE0F0
-#define DEV_ATTESTATION_CERT_ID 0xE0E3
+#define DEV_ATTESTATION_CERT_ID 0xE0E0
 #define PAI_CERT_ID 0xE0E8
 #define CERT_DECLARATION_ID 0xF1E0
 
