OH2 Z-Wave refactoring and testing... and SECURITY

that did it, thanks everyone :slight_smile:

1 Like

No - database changes will have no impact on security. This will only change the type of a notification, but if you can’t securely include a device, then this will not matter.

The only reason I can think of to cause this is if you aren’t retaining settings following the update, and the security key is changing.

The binding is tolerant to many different formats. Fundamentally it needs 16 hex values -:
0x11 0x22 0x33…
11,22,33
11 22 33
0x11,0x22,0x33
112233

It should reformat it for consistency, but should accept any of the above formats, and possibly some other variants.

I’ve made a small update to the binding to add a delay between the end of inclusion, and the start of key exchange (ie secure inclusion). I’d appreciate if people could give it a go if you’re having problems with secure inclusion - feel free to post a log on a ticket on my website.

I’m not sure that this will help, but it’s worth a try…

@Chris, What do you mean by that? I thought something similar since it said the nonce’s were unknown, but after checking the correct key is set in habmin.

Also, I’ve installed 2.1.0.201708041056 version. It works!!! The locks started securely and are working.

@Chris, you’re my hero!

Simply that if the key set in the controller changes between updates, it will stop working. If the network key is removed for some reason, then the binding will select a new one - I was just wondering if this was happening for some reason…

@chris, exception thrown for Device configuration here :open_mouth:

Not sure if you caught that post.

@chris I’m trying to finalize the migration off my old Vera and the one big piece I’m missing is being able to get the userid associated with a keypad unlock on my locks. How much work would it be to create a new channel that pulls the Alarm Level, when there is an Alarm Type of 19 for the Command Class 113 alarm for the lock and presents that through the channel?

Thanks again for all the hard work!!

Ok, so I have generated the key, and placed it in the aeon gen5 controller in Habmin. I have restarted oh2, but using security shows only a question mark. I’m going to assume that i cannot include my secure device until the controller shows as using security. What do I do?

If the lock has never been included with that key configured, you’ll need to exclude it and include it again. If it has successfully completed a secure inclusion, you’ll see a question mark after a restart of the binding or if the device is reinitialized, while the binding queries the device to see if it can communicate securely. Sometimes it takes a while, especially if you have a number of devices.

so i can try to include my garage door and it should say secure inclusion immediately if it is included, then the binding will eventually catch up?

O, you meant the controller… it always shows a question mark in my setup.

Ok, thanks…its included now with security…thanks for the help!

Do you know of a garage door device that has channels that don’t require the number items to be sent via mapping and rules? I have the same as you, and found the thread with your setup, but there has to be an easier device to set up, though I could be very wrong.

An off the shelf zwave garage door opener… for use with OH? Nope… I’m only familiar with the NGD00Z, which essentially combines a tilt sensor and a relay. You may be able to use just a relay, but you’d lose the actual state of the door. If you need some assistance in setting up your items or rules, I’d be happy to help (but we should find a better thread for it :slightly_smiling_face:).

Not too much - I propose the above format -:

If that’s ok to y’all, then I’ll try and add this in the coming days.

I fully agree, this one is not the thread for that

As i said though, i found how you did it in another thread, that will help tremendously .

That would work for me, I’d definitely have no issues with parsing a string (I tried to find your old post on that but obviously didn’t look hard enough :wink: )

Thanks!!!

Ok, so can I ask you to open an issue on github, and provide at least one example receive message of this type. Given it’s probably encrypted, I really need the unencrypted version - this will start with SECURITY_RXD.

Not my post - but @5iver seems to be the (new :slight_smile: ) expert on the matter… See the following post -:

Happy to do it. Do I need to run in something other then DEBUG? I don’t see any messages like that, but I am seeing this which appears to be showing the userid (3) associated with the Type 19 Alarm Report (unlocked on keypad by userid):

2017-08-05 08:29:40.640 [DEBUG] [.commandclass.ZWaveAlarmCommandClass] - NODE 87: ALARM report - 19 = 3
2017-08-05 08:29:40.640 [DEBUG] [.commandclass.ZWaveAlarmCommandClass] - NODE 87: Alarm Type = null (19)