Table 220.127.116.11: @ActivateFirmware.CommandPayload population
Device processing of Command and Response handling
The Device receiving an Activate Firmware Command shall undertake processing steps in the sequence defined in this Section 18.104.22.168.
The Device shall:
undertake Command Authenticity and Integrity Verification as required for a Command of the SME.C.C Message Category;
if executionDateTime is present then the Device shall:
record manufacturerImageHash, originatorCounter and executionDateTime;
construct and send a Response where executionOutcome is not present. Grouping Header is constructed and Response Cryptographic Protection is applied as required for a Response of the SME.C.C Message Categories; and
at the date-time specified in executionDateTime, undertake the processing from step 50.
If executionDateTime is not present then the Device shall continue processing from step 50 immediately;
if the Device does not have a stored Manufacturer Image then set activateImageResponseCode to noImageHeld and process from step 54;
calculate Manufacturer Image Hash. If the calculated value does not equal manufacturerImageHash then the Device shall set activateImageResponseCode to hashMismatch and process from step 54;
attempt to activate Manufacturer Image. If the activate fails then the Device shall set activateImageResponseCode to activationFailure and process from step 54;
set activateImageResponseCode to success ;
populate the executionOutcome according to the requirements of Section 22.214.171.124 using the activateImageResponseCode value produced by the processing in this Section 126.96.36.199, the value of originatorCounter from the Command and the version of firmware now in operation to populate firmwareVersion;
construct Grouping Header and apply the Response Cryptographic Protection required for a Response / Alert of the SME.C.C / SME.A.C Message Categories respectively. In such an Alert, the Message Code shall be 0x00CA. The Response / Alert shall be addressed to the Business Originator of the Corresponding Command. If activateImageResponseCode is success then alertCode shall be 0x0066 else alertCode shall be 0x0067; and
send the Response if executionDateTime was not present in the Command or send the Alert if executionDateTime was present in the Command.
On receipt of the Response, the recipient may undertake the ‘Response Recipient Verification’ for Responses of type SME.C.C. or for Alerts of type SME.A.C, dependent upon the Message received.
Activate Firmware Command, Response and Alert Payloads - structure definition
Each instance of @ActivateFirmware.CommandPayload and of @ActivateFirmware.ResponsePayload and of @ActivateFirmware.AlertPayload shall be an octet string containing the DER encoding of the populated structure defined in this Section 188.8.131.52 which specifies the structure in ASN.1 notation.