brutella
commented
6 years ago As specified in HAP 4.11, only admin controllers are allowed to add pairings to an accessory. In your case the iPhone wants to tell the garage door opener proxy the encryptions keys of the Apple TV, so that the Apple TV gets access to the accessory if the iPhone establishes a remote connection through it.
The check was added to hc to conform to the HAP specification. Maybe HomeKit prior to iOS 11 didn't set the admin bit correctly?
forfuncsake
justinkiang
Hi @brutella, firstly I want to say thanks - this project is fantastic!
I recently hacked together a proxy for a basic HTTP API on my DIY garage door opener (https://github.com/forfuncsake/garagedoor/tree/master/cmd/gdhk). Everything works well from my iPhone, but I was never able to connect remotely. I initially put it down to the fact that my ATV3 was probably not supported as a home hub anymore (as this is my first and only HomeKit accessory).
Then I discovered these messages in the log:
INFO 2018/03/22 20:19:51 Client xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx is unknownandINFO 2018/03/22 18:20:35 Non-admin controllers are not allowed to add pairings...and was able to reproduce them by attempting remote access - meaning that the ATV was, in fact, trying to connect to the proxy, but was not authorised.
This commit of hc, titled "Don't allow non-admin client to add additional pairing" looked like the cause of the second log message, so I rebuilt my project with hc pinned to the previous commit, and remote access started working.
I would like to understand why the changes in that commit are required, or if my scenario is a corner case that requires a code change.
Devices/OS: iPhone6 on iOS 10.3.1 ATV3 on tvOS 7.2.2 (latest)
Thanks.