FleetProvisioningSample预调配生成证书没有响应 #375

ArvinSpace · 2023-02-20T12:39:24Z

ArvinSpace
Feb 20, 2023

我用的官方示例FleetProvisioningSample预置设备

但是我通过IotIdentityClient#PublishCreateKeysAndCertificate发出生成证书的请求($aws/certificates/create/json)之后

没有成功的响应($aws/certificates/create/json/accepted)

也没有拒绝的响应($aws/certificates/create/json/rejected)

启动参数：

`--endpoint _xxxxx_-ats.iot.us-east-1.amazonaws.com --ca_file root-CA.crt --cert Arvin-IoT-Core-test-shen03-1.cert.pem --key Arvin-IoT-Core-test-shen03-1.private.key --template_name Arvin-IoT-test-template-claim-1 --template_parameters {"SerialNumber":"2","DeviceLocation":"Seattle"} --client_id Arvin-IoT-Core-test-shen03-1/pre-template/uuid`

预置模板Arvin-IoT-test-template-claim-1是启用状态

对应的IAM角色有AWS托管策略AWSIoTThingsRegistration
对应的预调配使用的IoT证书也有provisioning相关权限，例如：

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": ["iot:Connect"],
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": ["iot:Publish","iot:Receive"],
            "Resource": [
                "arn:aws:iot:aws-region:aws-account-id:topic/$aws/certificates/create/*",
                "arn:aws:iot:aws-region:aws-account-id:topic/$aws/provisioning-templates/templateName/provision/*"
            ]
        },
        {
            "Effect": "Allow",
            "Action": "iot:Subscribe",
            "Resource": [
                "arn:aws:iot:aws-region:aws-account-id:topicfilter/$aws/certificates/create/*",
                "arn:aws:iot:aws-region:aws-account-id:topicfilter/$aws/provisioning-templates/templateName/provision/*"
            ]
        }
    ]
}

运行日志及报错：

[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.io.TlsContextOptions(0) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) is adding a reference to instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) is adding a reference to instance of class software.amazon.awssdk.crt.io.TlsContextOptions(0)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [tls-handler] - static: This library was built with Windows 8.1 or later, probing OS to see what we're actually running on.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [tls-handler] - static: We're running on Windows 8.1 or later. ALPN is available.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.io.TlsContextOptions(0) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.io.ClientBootstrap(3) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.io.EventLoopGroup(4) created
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [event-loop] - id=000001AA8475B1E0: Initializing IO Completion Port
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [event-loop] - id=000001AA8475B1E0: Starting event-loop thread.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA84436F08: cpu affinity of cpu_id 0 was specified, attempting to honor the value.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA84436F08: computed mask 1 on group 0.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA84437E28: SetThreadIdealProcessorEx() result 1.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [event-loop] - id=000001AA8475B8E0: Initializing IO Completion Port
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [event-loop] - id=000001AA8475B8E0: Starting event-loop thread.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA844349E8: cpu affinity of cpu_id 0 was specified, attempting to honor the value.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA844349E8: computed mask 1 on group 0.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA844349E8: SetThreadGroupAffinity() result 1.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA844349E8: SetThreadIdealProcessorEx() result 1.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.io.EventLoopGroup(4) acquired native pointer 1831881093552
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 1
[INFO] [2023-02-20T10:37:31Z] [00003f24] [event-loop] - id=000001AA8475B1E0: main loop started
[INFO] [2023-02-20T10:37:31Z] [00003f24] [event-loop] - id=000001AA8475B1E0: default timeout 100000
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.io.HostResolver(5) created
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [dns] - id=000001AA844B54C0: Initializing default host resolver with 8 max host entries.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.io.HostResolver(5) acquired native pointer 1831875597504
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 2
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.io.HostResolver(5) is adding a reference to instance of class software.amazon.awssdk.crt.io.EventLoopGroup(4)
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [channel-bootstrap] - id=000001AA849F49B0: Initializing client bootstrap with event-loop group 000001AA849F31B0
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.io.ClientBootstrap(3) acquired native pointer 1831881099696
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 3
[INFO] [2023-02-20T10:37:31Z] [00003dfc] [event-loop] - id=000001AA8475BCD0: main loop started
[INFO] [2023-02-20T10:37:31Z] [00003dfc] [event-loop] - id=000001AA8475BCD0: default timeout 100000
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.io.ClientBootstrap(3) is adding a reference to instance of class software.amazon.awssdk.crt.io.HostResolver(5)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.io.ClientBootstrap(3) is adding a reference to instance of class software.amazon.awssdk.crt.io.EventLoopGroup(4)
[INFO] [2023-02-20T10:37:31Z] [00001eec] [event-loop] - id=000001AA8475C210: main loop started
[INFO] [2023-02-20T10:37:31Z] [00001eec] [event-loop] - id=000001AA8475C210: default timeout 100000
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.io.ClientTlsContext(6) created
[INFO] [2023-02-20T10:37:31Z] [000039e4] [event-loop] - id=000001AA8475B640: main loop started
[INFO] [2023-02-20T10:37:31Z] [000039e4] [event-loop] - id=000001AA8475B640: default timeout 100000
[INFO] [2023-02-20T10:37:31Z] [0000054c] [event-loop] - id=000001AA8475B790: main loop started
[INFO] [2023-02-20T10:37:31Z] [0000054c] [event-loop] - id=000001AA8475B790: default timeout 100000
[INFO] [2023-02-20T10:37:31Z] [000016e0] [event-loop] - id=000001AA8475B3A0: main loop started
[INFO] [2023-02-20T10:37:31Z] [000016e0] [event-loop] - id=000001AA8475B3A0: default timeout 100000
[INFO] [2023-02-20T10:37:31Z] [00005cb8] [event-loop] - id=000001AA8475B800: main loop started
[INFO] [2023-02-20T10:37:31Z] [00005cb8] [event-loop] - id=000001AA8475B800: default timeout 100000
[INFO] [2023-02-20T10:37:31Z] [00002f94] [event-loop] - id=000001AA8475B8E0: main loop started
[INFO] [2023-02-20T10:37:31Z] [00002f94] [event-loop] - id=000001AA8475B8E0: default timeout 100000
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.io.TlsContextOptions(0) acquired native pointer 1833941306384
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 4
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [tls-handler] - static: loading custom CA file.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [pki-utils] - static: loading 1 certificates in cert chain for use as a CA
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [tls-handler] - static: certificate and key have been set, setting them up now.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [pki-utils] - static: loading certificate chain with 1 certificates.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.io.ClientTlsContext(6) acquired native pointer 1831876791392
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 5
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) is adding a reference to instance of class software.amazon.awssdk.crt.io.ClientTlsContext(6)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.io.ClientTlsContext(6) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.mqtt.MqttClient(7) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-client] - client=000001AA847D9B60: Initalizing MQTT client
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.mqtt.MqttClient(7) acquired native pointer 1831878892384
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 6
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7) is adding a reference to instance of class software.amazon.awssdk.crt.io.ClientBootstrap(3)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7) is adding a reference to instance of class software.amazon.awssdk.crt.io.ClientTlsContext(6)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) is adding a reference to instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2) is adding a reference to instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7) with 2 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(8) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(8) is adding a reference to instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(8) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - CrtResource of class software.amazon.awssdk.crt.mqtt.MqttClientConnection(9) created
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Creating new connection
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-topic-tree] - tree=000001AA847DA468: Creating new topic tree
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - acquireNativeHandle - software.amazon.awssdk.crt.mqtt.MqttClientConnection(9) acquired native pointer 1831878196784
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - incrementNativeObjectCount - count = 7
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttClientConnection(9) is adding a reference to instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(8)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(8) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) with 0 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Releasing class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.iot.AwsIotMqttConnectionBuilder(1) closing all referenced objects
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2) with 0 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Releasing class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.mqtt.MqttConnectionConfig(2) closing all referenced objects
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7) with 2 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.io.TlsContextOptions(0) with 0 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Releasing class software.amazon.awssdk.crt.io.TlsContextOptions(0)
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - decrementNativeObjectCount - count = 6
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Instance of class software.amazon.awssdk.crt.io.TlsContextOptions(0) closing all referenced objects
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.io.ClientTlsContext(6) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [JavaCrtResource] - Closing instance of class software.amazon.awssdk.crt.mqtt.MqttClient(7) with 1 remaining refs
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-client] - mqtt_jni_connection acquire, ref count now = 2
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Begin connecting process, switch state to CONNECTING.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: using ping timeout of 3000000000 ns
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [dns] - id=000001AA844B54C0: Host resolution requested for xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [dns] - id=000001AA844B54C0: No cached entries found for xxxxx-ats.iot.us-east-1.amazonaws.com starting new resolver thread.
[INFO] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA847E1820: cpu affinity of cpu_id 0 was specified, attempting to honor the value.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA847E1820: computed mask 1 on group 0.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA847E1820: SetThreadGroupAffinity() result 1.
[DEBUG] [2023-02-20T10:37:31Z] [00003cdc] [thread] - id=000001AA847E1820: SetThreadIdealProcessorEx() result 1.
[INFO] [2023-02-20T10:37:31Z] [00006198] [socket] - static: initializing WinSock
[INFO] [2023-02-20T10:37:31Z] [00006198] [socket] - static: loading WSAID_CONNECTEX function
[INFO] [2023-02-20T10:37:31Z] [00006198] [socket] - static: loading WSAID_ACCEPTEX function
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 44.209.119.189 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 54.236.157.168 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 54.197.211.126 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 2406:da00:ff00::36ea:9e36 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 2406:da00:ff00::3654:bc51 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static: new address resolved 2406:da00:ff00::3e1:e2a3 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:31Z] [00006198] [dns] - static, invoking resolution callback for host xxxxx-ats.iot.us-east-1.amazonaws.com with 2 addresses
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA8487AE40: Scheduling attempt_connection task for immediate execution
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA8487B010: Scheduling attempt_connection task for immediate execution
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA8487AE40: Running attempt_connection task with <Running> status
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: initializing with domain 1 and type 0
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: setting socket options to: keep-alive 0, keep idle 0, keep-alive interval 0, max failed probe count 0
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: beginning connect.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: connecting to endpoint 2406:da00:ff00::36ea:9e36:8883.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA84AA3F60: Scheduling (null) task for future execution at time 983959181538900
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA8487B010: Running attempt_connection task with <Running> status
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: initializing with domain 0 and type 0
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: setting socket options to: keep-alive 0, keep idle 0, keep-alive interval 0, max failed probe count 0
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: beginning connect.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: connecting to endpoint 44.209.119.189:8883.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA84AA3010: Scheduling (null) task for future execution at time 983959181753200
[ERROR] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: connect completion triggered with error -1073741252
[ERROR] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: connection error with code 1049
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel-bootstrap] - id=000001AA849F49B0: client connection on socket 000001AA84AA4F50 completed with error 1049.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel-bootstrap] - id=000001AA849F49B0: recording bad address 2406:da00:ff00::36ea:9e36.
[INFO] [2023-02-20T10:37:31Z] [00003dfc] [dns] - id=000001AA844B54C0: recording failure for record 2406:da00:ff00::36ea:9e36 for xxxxx-ats.iot.us-east-1.amazonaws.com, moving to bad list
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=0000000000000670: closing
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50, handle=FFFFFFFFFFFFFFFF: cleaning up socket.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA4F50 handle=FFFFFFFFFFFFFFFF: closing
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: setting socket options to: keep-alive 0, keep idle 0, keep-alive interval 0, max failed probe count 0
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: connection success
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket] - id=000001AA84AA51F0 handle=0000000000000674: local endpoint 10.4.18.46:56122
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel-bootstrap] - id=000001AA849F49B0: client connection on socket 000001AA84AA51F0 completed with error 0.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel] - id=000001AA8487AE40: Beginning creation and setup of new channel.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA849F3250: Scheduling on_channel_setup_complete task for immediate execution
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA849F3250: Running on_channel_setup_complete task with <Running> status
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel] - id=000001AA8487AE40: setup complete, notifying caller.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel] - id=000001AA8487AE40: no message pool is currently stored in the event-loop local storage, adding 000001AA845D8360 with max message size 262144, message count 4, with 4 small blocks of 128 bytes.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [channel-bootstrap] - id=000001AA849F49B0: channel 000001AA8487AE40 setup succeeded: bootstrapping.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [socket-handler] - id=000001AA847DFE30: Socket handler created with max_read_size of 262144
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: Setting SNI to xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: Kicking off TLS negotiation
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [task-scheduler] - id=000001AA84BA5870: Scheduling tls_timeout task for future execution at time 983966417841500
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - static: This library was built with Windows 8.1 or later, probing OS to see what we're actually running on.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - static: We're running on Windows 8.1 or later. ALPN is available.
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: Setting ALPN data as x-amzn-mqtt-ca
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - 
[DEBUG] [2023-02-20T10:37:31Z] [00003dfc] [tls-handler] - Setting ALPN extension with string x-amzn-mqtt-ca.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: manually verifying certifcate chain because a custom CA is configured.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: peer certificate is trusted.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - static: This library was built with Windows 8.1 or later, probing OS to see what we're actually running on.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - static: We're running on Windows 8.1 or later. ALPN is available.
[WARN] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: Error retrieving negotiated protocol. SECURITY_STATUS is 0
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [tls-handler] - id=000001AA84BA5840: TLS handshake completed successfully.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [channel-bootstrap] - id=000001AA849F49B0: tls negotiation result 0 on channel 000001AA8487AE40
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Connection successfully opened, sending CONNECT packet
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA850D7BE0: Scheduling mqtt_connack_timeout task for future execution at time 983959913098000
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: MQTT Connection initializing CONNECT packet for client-id 'Arvin-IoT-Core-test-shen03-1/pre-template/uuid'
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Adding username ?SDK=JavaV2&Version=0.21 to connection
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:32Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: connection was accepted, switch state from 0 to CONNECTED.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [aws-c-common] - s_aws_jni_get_thread_env returned detached, attaching
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - mqtt_jni_connection release, ref count now = 1
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA847DA3C8: Scheduling mqtt_ping task for future execution at time 984077201987100
[DEBUG] [2023-02-20T10:37:32Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 1 on topic $aws/certificates/create/json/accepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/certificates/create/json/accepted into topic tree
Connected to new session!
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Subscribe 1 completed with error code 0
[DEBUG] [2023-02-20T10:37:32Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 2 on topic $aws/certificates/create/json/rejected
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/certificates/create/json/rejected into topic tree
Subscribed to CreateKeysAndCertificateAccepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Subscribe 2 completed with error code 0
[DEBUG] [2023-02-20T10:37:32Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 3 on topic $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/accepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/accepted into topic tree
Subscribed to CreateKeysAndCertificateRejected
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Subscribe 3 completed with error code 0
[DEBUG] [2023-02-20T10:37:33Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 4 on topic $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/rejected
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/rejected into topic tree
Subscribed to SubscribeToRegisterThingAccepted
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:33Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Subscribe 4 completed with error code 0
[DEBUG] [2023-02-20T10:37:33Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting publish 5 to topic $aws/certificates/create/json
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [task-scheduler] - id=000001AA8426EEE8: Scheduling mqtt_request_timeout task for future execution at time 984078354106900
Subscribed to SubscribeToRegisterThingRejected
[DEBUG] [2023-02-20T10:37:33Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Publish 5 complete
Published to CreateKeysAndCertificate
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:37:34Z] [00003dfc] [task-scheduler] - id=000001AA84AA3F60: Running (null) task with <Running> status
[DEBUG] [2023-02-20T10:37:34Z] [00003dfc] [task-scheduler] - id=000001AA84AA3010: Running (null) task with <Running> status
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:34Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:37:35Z] [00003dfc] [task-scheduler] - id=000001AA850D7BE0: Running mqtt_connack_timeout task with <Running> status
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:35Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:41Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
[DEBUG] [2023-02-20T10:37:41Z] [00003dfc] [task-scheduler] - id=000001AA84BA5870: Running tls_timeout task with <Running> status
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 44.209.119.189
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 54.236.157.168
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 54.197.211.126
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:58Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 54.86.154.239
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 34.239.97.161
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 54.236.146.107
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: new address resolved 54.86.154.239 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: new address resolved 34.239.97.161 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
[DEBUG] [2023-02-20T10:37:59Z] [00006198] [dns] - static: new address resolved 54.236.146.107 for host xxxxx-ats.iot.us-east-1.amazonaws.com caching
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 54.86.154.239
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 34.239.97.161
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 54.236.146.107
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:38:00Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolving host xxxxx-ats.iot.us-east-1.amazonaws.com
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 54.86.154.239
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 34.239.97.161
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 54.236.146.107
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::36ea:9e36
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3654:bc51
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static: resolved record: 2406:da00:ff00::3e1:e2a3
[DEBUG] [2023-02-20T10:38:01Z] [00006198] [dns] - static, resolving host xxxxx-ats.iot.us-east-1.amazonaws.com successful, returned 6 addresses
Waiting...for CreateKeysAndCertificateResponse
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: Either no requests have been made for an address for xxxxx-ats.iot.us-east-1.amazonaws.com for the duration of the ttl, or this thread is being forcibly shutdown. Killing thread.
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 2406:da00:ff00::36ea:9e36 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 2406:da00:ff00::3654:bc51 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 2406:da00:ff00::3e1:e2a3 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 34.239.97.161 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.236.146.107 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.86.154.239 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.236.157.168 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 44.209.119.189 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.197.211.126 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
Waiting...for CreateKeysAndCertificateResponse
中间省略过多的Waiting...for CreateKeysAndCertificateResponse，持续2分钟
Waiting...for CreateKeysAndCertificateResponse

RegisterThing now....
Exception in thread "main" java.lang.RuntimeException: Exception occurred during connect
	at identity.FleetProvisioningSample.main(FleetProvisioningSample.java:170)
Caused by: java.lang.NullPointerException
	at identity.FleetProvisioningSample.createKeysAndCertificateWorkflow(FleetProvisioningSample.java:243)
	at identity.FleetProvisioningSample.main(FleetProvisioningSample.java:165)

Answered by TwistedTwigleg

Feb 24, 2023

I've been looking into this further and been trying all sorts of things, but have been largely unsuccessful at recreating the issue. I have tried making a new Fleet Provisioning template following the sample README, trying all sorts of invalid data possibilities, and trying different policy combinations. In all but one case (more below) I would either be able to run the sample successfully without issue or I would get an error (like expected) but it would be properly reported via the RejectedThingRequest callback.

The only time I got something similar to what you are seeing in this issue is if I used an IoT Policy attached to the IoT Thing that I pass the --cert and --key to that mirrors …

View full answer

TwistedTwigleg · 2023-02-20T14:12:12Z

TwistedTwigleg
Feb 20, 2023

Hi ArvinSpace,

Looking at the logs and the information provided, my guess is that the sample is trying to connect and access a resource that it is not authenticated to add, as the disconnect seems to happen right after the connect attempt, according to the logs. Looking at the Fleet-Provisioning sample, I noticed the policy you have provided is missing a few items compared to the one shown in the sample README:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "iot:Publish",
      "Resource": [
        "arn:aws:iot:region:account:topic/$aws/certificates/create/json",
        "arn:aws:iot:region:account:topic/$aws/certificates/create-from-csr/json",
        "arn:aws:iot:region:account:topic/$aws/provisioning-templates/templatename/provision/json"
      ]
    },
    {
      "Effect": "Allow",
      "Action": [
        "iot:Receive"
      ],
      "Resource": [
        "arn:aws:iot:region:account:topic/$aws/certificates/create/json/accepted",
        "arn:aws:iot:region:account:topic/$aws/certificates/create/json/rejected",
        "arn:aws:iot:region:account:topic/$aws/certificates/create-from-csr/json/accepted",
        "arn:aws:iot:region:account:topic/$aws/certificates/create-from-csr/json/rejected",
        "arn:aws:iot:region:account:topic/$aws/provisioning-templates/templatename/provision/json/accepted",
        "arn:aws:iot:region:account:topic/$aws/provisioning-templates/templatename/provision/json/rejected"
      ]
    },
    {
      "Effect": "Allow",
      "Action": [
        "iot:Subscribe"
      ],
      "Resource": [
        "arn:aws:iot:region:account:topicfilter/$aws/certificates/create/json/accepted",
        "arn:aws:iot:region:account:topicfilter/$aws/certificates/create/json/rejected",
        "arn:aws:iot:region:account:topicfilter/$aws/certificates/create-from-csr/json/accepted",
        "arn:aws:iot:region:account:topicfilter/$aws/certificates/create-from-csr/json/rejected",
        "arn:aws:iot:region:account:topicfilter/$aws/provisioning-templates/templatename/provision/json/accepted",
        "arn:aws:iot:region:account:topicfilter/$aws/provisioning-templates/templatename/provision/json/rejected"
      ]
    },
    {
      "Effect": "Allow",
      "Action": "iot:Connect",
      "Resource": "arn:aws:iot:region:account:client/test-*"
    }
  ]
}

Can you see if adding these additional fields in the above policy to your policy helps fix the issue?

If that does not fix the issue, can you try using a fully permissive policy, just to help confirm whether or not policy permissions are causing the issue. A fully permissive policy is not ideal for production use cases, but for testing to determine if the policy is causing issues it can be helpful. A fully permissive policy is shown below:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "iot:*"
            ],
            "Resource": "*"
        }
    ]
}

Thanks!

10 replies

TwistedTwigleg Feb 22, 2023

I just ran a test and was able to run the sample successfully with a fully permissive policy using input similar to the one you provided (I had to pass {"SerialNumber":"2a"} because my fleet provisioning template doesn't like only number input for the Thing name...). I did this on a Mac computer (may be important, see further below).

Initially I was thinking it was a policy issue because the logs seemed to indicate you were not connected, however, upon further inspection, I do not believe this to be the case. The logs contain the following:

(trimmed slightly to just show the important parts)

[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Connection successfully opened, sending CONNECT packet
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: MQTT Connection initializing CONNECT packet for client-id 'Arvin-IoT-Core-test-shen03-1/pre-template/uuid'
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Adding username ?SDK=JavaV2&Version=0.21 to connection
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: connection was accepted, switch state from 0 to CONNECTED.
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [aws-c-common] - s_aws_jni_get_thread_env returned detached, attaching
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - mqtt_jni_connection release, ref count now = 1
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA847DA3C8: Scheduling mqtt_ping task for future execution at time 984077201987100
[DEBUG] [2023-02-20T10:37:32Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 1 on topic $aws/certificates/create/json/accepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/certificates/create/json/accepted into topic tree
Connected to new session!

As well as indicating it made successful subscribe requires:

Subscribed to CreateKeysAndCertificateAccepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-client] - id=000001AA847DA1E0: Subscribe 2 completed with error code 0
[DEBUG] [2023-02-20T10:37:32Z] [00003cdc] [mqtt-client] - id=000001AA847DA1E0: Starting subscribe 3 on topic $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/accepted
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Scheduling schedule_cross_thread_tasks task for immediate execution
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [task-scheduler] - id=000001AA8487AFE0: Running schedule_cross_thread_tasks task with <Running> status
[DEBUG] [2023-02-20T10:37:32Z] [00003dfc] [mqtt-topic-tree] - tree=000001AA847DA468: Inserting topic filter $aws/provisioning-templates/Arvin-IoT-test-template-claim-1/provision/json/accepted into topic tree
Subscribed to CreateKeysAndCertificateRejected

However, I noticed something additional that I had not missed on my initial reading of the logs. You mention the following (translated to English):

[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.86.154.239 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.236.157.168 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 44.209.119.189 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
[DEBUG] [2023-02-20T10:38:02Z] [00006198] [dns] - static: purging address 54.197.211.126 for host xxxxx-ats.iot.us-east-1.amazonaws.com from the cache due to cache eviction or shutdown
Waiting...for CreateKeysAndCertificateResponse
**(translated 中间省略过多的 to English)** omit too much in the middle
Waiting...for CreateKeysAndCertificateResponse
**(translated 持续2分钟 to English)** lasts 2 minutes
Waiting...for CreateKeysAndCertificateResponse

Which I thought initially would indicate that the issue is that the connection is timing out (which I have not fully ruled out) but if the issue was the waitForKeysRequest function causing the issue, it would have thrown an exception at roughly 15 seconds, which is not what is happening here. Further, the RegisterThing now... would not have been printed. So I think it is likely a connection is being made, it is working, and you get a response back given the code being executed (not sure why it takes 2 minutes though...).

Looking at the exception again, the issue appears to be happening at line 242 of the sample, which takes the --template_parameters input and converts it into a JSON object using the GSON library. Further, the GSON library notes that the return is null if the JSON is valid but empty OR the JSON is null. This would lead to the issue being reported:

java.lang.NullPointerException

Meaning that the issue seems to be something with the --template_parameters and not a connection/policy issue. You are not getting disconnected (despite what the first part of the exception says) and instead the issue is something with the GSON call seems to be returning NULL and/or throwing a NullPointerException. This may be happening because the Windows terminal passes the input differently than on a Mac, causing the JSON to be interpreted differently. On our Windows CI, we pass the arguments in double quotes (example from our CI config: "{SerialNumber:$INPUT_UUID}")

TLDR: What I think may be happening is that the JSON being inputted into --template_parameters is not being parsed correctly in Java with how it is being sent on the terminal in Windows, leading it to being null.

To this end:

From what I can tell based on the logs, you are on a Windows machine. Can you try passing the JSON using the following: --template_parameter "{\"SerialNumber\": \"2\"}"? The important part here is using \" instead of ".
If you are passing the arguments using the following format (mvn compile exec:java <other args> -Dexec.args="<arguments>") can you try instead running it like (mvn compile exec:java <other args> -Dexec.args='<arguments>')? That would remove the double quote as the string indicator to pass the arguments, which may also help.
- Example: -Dexec.args='--endpoint <endpoint> --cert <cert path> --key <key path> --template_name TestTemplate --template_parameters "{\"SerialNumber\":\"5a\"}"'
- Note: When I tested this on my Mac, I had to run it as "{"SerialNumber":"5a"}" because I got a malformed JSON request. It might be because the input is encapsulated in ' that the \" can be just ". If you get a malformed JSON error, maybe try it without the \".

I think that may help resolve the issue, or at least help narrow down what may be causing it. Another thing we could try is to modify line 242 of the sample to create a hard-coded HashMap key-value pair for testing purposes and see if that resolves the issue.

ArvinSpace Feb 23, 2023
Author

不好意思，因为之前waitForKeysRequest总共只会等待1.5秒，所以我把这个方法等待总时长改成了2分钟，但是依然没有响应。

还有其他地方的代码也改了一点，主要是加一些打印日志，导致与示例原始代码行数不对应，日志报错信息误导你了，抱歉。

我现在用最原始的示例代码，发现出现的异常堆栈信息如下：

RegisterThing now....
Exception in thread "main" java.lang.RuntimeException: Exception occurred during connect
	at identity.FleetProvisioningSample.main(FleetProvisioningSample.java:168)
Caused by: java.lang.NullPointerException
	at identity.FleetProvisioningSample.createKeysAndCertificateWorkflow(FleetProvisioningSample.java:238)
	at identity.FleetProvisioningSample.main(FleetProvisioningSample.java:163)

所以据我了解，不是--template_parameters的问题，因为还没到解析参数的时候，而是执行下面这行代码时拖异常了：
registerThingRequest.certificateOwnershipToken = createKeysAndCertificateResponse.certificateOwnershipToken;
因为无论waitForKeysRequest方法等待多久，createKeysAndCertificateResponse都不会被设置，所以拖出异常java.lang.NullPointerException

TwistedTwigleg Feb 23, 2023

Thank you for the clarification and updated log output!

I agree that, in light of this new information, it does not appear currently to be an issue with the parsing of --template_parameter. I am going to try again to reproduce this issue locally and will see if I can figure out what is going on.

TwistedTwigleg Feb 24, 2023

I've been looking into this further and been trying all sorts of things, but have been largely unsuccessful at recreating the issue. I have tried making a new Fleet Provisioning template following the sample README, trying all sorts of invalid data possibilities, and trying different policy combinations. In all but one case (more below) I would either be able to run the sample successfully without issue or I would get an error (like expected) but it would be properly reported via the RejectedThingRequest callback.

The only time I got something similar to what you are seeing in this issue is if I used an IoT Policy attached to the IoT Thing that I pass the --cert and --key to that mirrors the sample policy shown in the README for Fleet Provisioning, but does not include iot:Recieve (it has iot:Connect, iot:Publish, and iot:Subscribe from the sample policy in the README, just not iot:Receive). In this case, I got the exact same output that you are seeing. However, since you are using a fully permissive IoT Policy, I think either something is wrong with the setup you are using OR there is something I have missed in my numerous attempts to try and reproduce this issue with all the scenarios I have tried.

If you have a chance, can you provide the following additional information?

Can you double check that the IoT policy attached to the certificate and key you are using in --cert and --key have either the policy shown in the Fleet Provisioning sample (including iot:Recieve) or are fully permissive?
Can you share the Fleet Provisioning template you are using? If there is any sensitive information in your Fleet Provisioning template, please remove it and add substitutions like <sensitive info>.
Can you check if there is a new certificate whose status is set to Pending activation when you run the sample and it fails with the error reported in this discussion? If there is a new certificate that was not there prior to the run of the sample whose status is set to Pending activation, then this means the request for a new certificate and key was successful, but the response from IoT Core to the Java code somehow did not make it correctly (due to permissions or some other reason).
Can you share how you made your Fleet Provisioning template on AWS IoT Core? Did you use the workflow described in the Fleet Provisioning sample README? Was it created via the IoT Core website?
- If created via the IoT Core Website, can you share which of the three options presented you used? The options are "Provisioning Devices with Unique Certificates (JITP)", "Providing Devices by Authenticated Users", and "Provisioning Devices with Claim Certificates".

Thanks! I am hoping that these questions will help shed light on what is going on so we can get this sample working 🙂

Answer selected by jmklix

jmklix May 17, 2023
Maintainer

@ArvinSpace are you still having any problems getting the FleetProvisioningSample working?

ArvinSpace May 18, 2023
Author

@ArvinSpace are you still having any problems getting the FleetProvisioningSample working?

我这边没问题了。
问了技术支持已知是预调配程序使用MQTT时clientId带有/符号所导致的。

2023-12-01T20:07:43Z

github-actions[bot]
bot Dec 1, 2023

Hello! Reopening this discussion to make it searchable.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

FleetProvisioningSample预调配生成证书没有响应 #375

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 2 comments 10 replies

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

FleetProvisioningSample预调配生成证书没有响应 #375

ArvinSpace Feb 20, 2023

我用的官方示例FleetProvisioningSample预置设备

但是我通过IotIdentityClient#PublishCreateKeysAndCertificate发出生成证书的请求($aws/certificates/create/json)之后

没有成功的响应($aws/certificates/create/json/accepted)

也没有拒绝的响应($aws/certificates/create/json/rejected)

启动参数：

预置模板Arvin-IoT-test-template-claim-1是启用状态

运行日志及报错：

Replies: 2 comments · 10 replies

TwistedTwigleg Feb 20, 2023

TwistedTwigleg Feb 22, 2023

ArvinSpace Feb 23, 2023 Author

TwistedTwigleg Feb 23, 2023

TwistedTwigleg Feb 24, 2023

jmklix May 17, 2023 Maintainer

ArvinSpace May 18, 2023 Author

github-actions[bot] bot Dec 1, 2023

ArvinSpace
Feb 20, 2023

Replies: 2 comments 10 replies

TwistedTwigleg
Feb 20, 2023

ArvinSpace Feb 23, 2023
Author

jmklix May 17, 2023
Maintainer

ArvinSpace May 18, 2023
Author

github-actions[bot]
bot Dec 1, 2023