From bb708d33c571b5909ac7bbb2cabb26f536f4eeff Mon Sep 17 00:00:00 2001
From: Zang MingJie <mingjiez@google.com>
Date: Fri, 29 Apr 2022 15:08:44 +0800
Subject: [PATCH] Move PairingSession from transport/ to
 protocols/secure_channel/

---
 scripts/bootstrap.sh                          | 107 ------------------
 src/protocols/secure_channel/BUILD.gn         |   2 +
 src/protocols/secure_channel/CASESession.cpp  |  46 +-------
 src/protocols/secure_channel/CASESession.h    |  17 +--
 src/protocols/secure_channel/PASESession.cpp  |  38 +------
 src/protocols/secure_channel/PASESession.h    |  16 +--
 .../secure_channel}/PairingSession.cpp        |  55 ++++++++-
 .../secure_channel}/PairingSession.h          |  11 +-
 src/protocols/secure_channel/tests/BUILD.gn   |   1 +
 .../tests/TestPairingSession.cpp              |   6 +-
 src/transport/BUILD.gn                        |   1 -
 src/transport/SessionManager.cpp              |   1 -
 src/transport/SessionManager.h                |   2 -
 src/transport/tests/BUILD.gn                  |   1 -
 14 files changed, 73 insertions(+), 231 deletions(-)
 rename src/{transport => protocols/secure_channel}/PairingSession.cpp (78%)
 rename src/{transport => protocols/secure_channel}/PairingSession.h (95%)
 rename src/{transport => protocols/secure_channel}/tests/TestPairingSession.cpp (99%)

diff --git a/scripts/bootstrap.sh b/scripts/bootstrap.sh
index ea8e67b985c21f..e69de29bb2d1d6 100644
--- a/scripts/bootstrap.sh
+++ b/scripts/bootstrap.sh
@@ -1,107 +0,0 @@
-#
-# Copyright (c) 2020 Project CHIP Authors
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-
-_bootstrap_or_activate() {
-    if [ -n "$BASH" ]; then
-        local _BOOTSTRAP_PATH="${BASH_SOURCE[0]}"
-    else
-        local _BOOTSTRAP_PATH="$1"
-    fi
-
-    local _BOOTSTRAP_NAME="${_BOOTSTRAP_PATH##*/}"
-    local _CHIP_ROOT="$(cd "${_BOOTSTRAP_PATH%/*}/.." && pwd)"
-
-    local _CONFIG_FILE="scripts/environment.json"
-
-    if [ "$_BOOTSTRAP_NAME" = "no_cipd_bootstrap.sh" ]; then
-        _CONFIG_FILE="scripts/environment_no_cipd.json"
-        _BOOTSTRAP_NAME="bootstrap.sh"
-    fi
-
-    if [ "$_BOOTSTRAP_NAME" = "bootstrap.sh" ] ||
-        [ ! -f "$_CHIP_ROOT/third_party/pigweed/repo/pw_env_setup/util.sh" ]; then
-        git submodule update --init
-    fi
-
-    local _CHIP_BANNER="$(
-        cat <<EOF
-           ░▓░
-           ▓█▓
-           ▓█▓                                                     ▒█     ▒█
-      ▒██▒▒▓██▒███▒                ░▒▓▒░  ░▒▓▒░       ░░▓█▒░ ░█  █████████████░    ░▒█▒░       ░░▒░
-       ░▓█████▓██░               ▒█▒░░▒▓██▓▒░░▒█▒   ░█▓▒░░▒████    █▓░    █▓░    ▒█▒░░░▒█▓░   ██▒░░
-    ▒█▒░         ░██▒           ░█░     █▓     ░█░ ░▓▒      ░▓█    █▓     █▓    ▒█░░    ░██  ▒▓
-    ░▓██▓░     ░██▓█░           ░█      ▓█      █░ ░█░       ██    █▓     █▓    ▓██████████  ▒█
-     ░▓███▒   ▒███▒░            ░█      ▓█      █░  ██░    ░███    █▓     █▓    ░█▒░         ▒█
- ░▒████████░ ░███▓▓█▓▓▒         ░█      ▒▒      █░   ░█▓██▓█░▒█    ░▓▓█░  ░▓▓█░   ▒▓▓██▓█░   ▒▓
- ░██▒░  ▒██▒ ▒██░  ░▒█▓
-         ░▓░ ░▓░
-EOF
-    )"
-
-    PW_PROJECT_ROOT="$_CHIP_ROOT"
-    export PW_PROJECT_ROOT
-
-    PW_ROOT="$_CHIP_ROOT/third_party/pigweed/repo"
-    export PW_ROOT
-
-    # Do not force use Rosetta in Pigweed because Matter is using host toolchain
-    if [ -z "$PW_BOOTSTRAP_USE_ROSETTA" ]; then
-        export PW_BOOTSTRAP_USE_ROSETTA=false
-    fi
-
-    . "$_CHIP_ROOT/third_party/pigweed/repo/pw_env_setup/util.sh"
-
-    _chip_bootstrap_banner() {
-        if [ -z "$PW_ENVSETUP_QUIET" ] && [ -z "$PW_ENVSETUP_NO_BANNER" ]; then
-            pw_bold_white "$_CHIP_BANNER\n"
-        fi
-    }
-
-    local _PW_BANNER_FUNC="_chip_bootstrap_banner"
-
-    export _PW_ACTUAL_ENVIRONMENT_ROOT="$(pw_get_env_root)"
-    local _SETUP_SH="$_PW_ACTUAL_ENVIRONMENT_ROOT/activate.sh"
-
-    export PW_DOCTOR_SKIP_CIPD_CHECKS=1
-    export PATH # https://bugs.chromium.org/p/pigweed/issues/detail?id=281
-
-    if [ "$_BOOTSTRAP_NAME" = "bootstrap.sh" ] ||
-        [ ! -f "$_SETUP_SH" ] ||
-        [ ! -s "$_SETUP_SH" ]; then
-        pw_bootstrap --shell-file "$_SETUP_SH" \
-            --install-dir "$_PW_ACTUAL_ENVIRONMENT_ROOT" \
-            --config-file "$_CHIP_ROOT/$_CONFIG_FILE" \
-            --virtualenv-gn-out-dir "$_PW_ACTUAL_ENVIRONMENT_ROOT/gn_out"
-        pw_finalize bootstrap "$_SETUP_SH"
-    else
-        pw_activate
-        pw_finalize activate "$_SETUP_SH"
-    fi
-}
-
-_bootstrap_or_activate "$0"
-unset -f _bootstrap_or_activate
-
-pw_cleanup
-
-unset PW_CIPD_INSTALL_DIR
-unset CIPD_CACHE_DIR
-unset _PW_BANNER_FUNC
-unset _PW_TEXT
-unset PW_DOCTOR_SKIP_CIPD_CHECKS
-
-unset -f _chip_bootstrap_banner
diff --git a/src/protocols/secure_channel/BUILD.gn b/src/protocols/secure_channel/BUILD.gn
index e088b6e5a23c1c..d35e5c8acbd706 100644
--- a/src/protocols/secure_channel/BUILD.gn
+++ b/src/protocols/secure_channel/BUILD.gn
@@ -12,6 +12,8 @@ static_library("secure_channel") {
     "CASESession.h",
     "PASESession.cpp",
     "PASESession.h",
+    "PairingSession.cpp",
+    "PairingSession.h",
     "RendezvousParameters.h",
     "SessionEstablishmentDelegate.h",
     "SessionEstablishmentExchangeDispatch.cpp",
diff --git a/src/protocols/secure_channel/CASESession.cpp b/src/protocols/secure_channel/CASESession.cpp
index acc609a31dc82e..b149423eae7534 100644
--- a/src/protocols/secure_channel/CASESession.cpp
+++ b/src/protocols/secure_channel/CASESession.cpp
@@ -37,11 +37,11 @@
 #include <lib/support/TypeTraits.h>
 #include <protocols/Protocols.h>
 #include <protocols/secure_channel/CASEDestinationId.h>
+#include <protocols/secure_channel/PairingSession.h>
 #include <protocols/secure_channel/SessionResumptionStorage.h>
 #include <protocols/secure_channel/StatusReport.h>
 #include <system/TLVPacketBufferBackingStore.h>
 #include <trace/trace.h>
-#include <transport/PairingSession.h>
 #include <transport/SessionManager.h>
 #if CHIP_CRYPTO_HSM
 #include <crypto/hsm/CHIPCryptoPALHsm.h>
@@ -127,24 +127,6 @@ CASESession::~CASESession()
     Clear();
 }
 
-void CASESession::Finish()
-{
-    Transport::PeerAddress address = mExchangeCtxt->GetSessionHandle()->AsUnauthenticatedSession()->GetPeerAddress();
-
-    // Discard the exchange so that Clear() doesn't try closing it. The exchange will handle that.
-    DiscardExchange();
-
-    CHIP_ERROR err = ActivateSecureSession(address);
-    if (err == CHIP_NO_ERROR)
-    {
-        mDelegate->OnSessionEstablished(mSecureSessionHolder.Get());
-    }
-    else
-    {
-        mDelegate->OnSessionEstablishmentError(err);
-    }
-}
-
 void CASESession::Clear()
 {
     // This function zeroes out and resets the memory used by the object.
@@ -162,32 +144,6 @@ void CASESession::Clear()
     mFabricInfo  = nullptr;
 }
 
-void CASESession::AbortExchange()
-{
-    if (mExchangeCtxt != nullptr)
-    {
-        // The only time we reach this is if we are getting destroyed in the
-        // middle of our handshake.  In that case, there is no point trying to
-        // do MRP resends of the last message we sent, so abort the exchange
-        // instead of just closing it.
-        mExchangeCtxt->Abort();
-        mExchangeCtxt = nullptr;
-    }
-}
-
-void CASESession::DiscardExchange()
-{
-    if (mExchangeCtxt != nullptr)
-    {
-        // Make sure the exchange doesn't try to notify us when it closes,
-        // since we might be dead by then.
-        mExchangeCtxt->SetDelegate(nullptr);
-        // Null out mExchangeCtxt so that Clear() doesn't try closing it.  The
-        // exchange will handle that.
-        mExchangeCtxt = nullptr;
-    }
-}
-
 CHIP_ERROR CASESession::Init(SessionManager & sessionManager, SessionEstablishmentDelegate * delegate)
 {
     VerifyOrReturnError(delegate != nullptr, CHIP_ERROR_INVALID_ARGUMENT);
diff --git a/src/protocols/secure_channel/CASESession.h b/src/protocols/secure_channel/CASESession.h
index 3c40a0e1a0f77a..c89a115d28e913 100644
--- a/src/protocols/secure_channel/CASESession.h
+++ b/src/protocols/secure_channel/CASESession.h
@@ -38,12 +38,11 @@
 #include <messaging/ExchangeDelegate.h>
 #include <protocols/secure_channel/CASEDestinationId.h>
 #include <protocols/secure_channel/Constants.h>
-#include <protocols/secure_channel/SessionEstablishmentDelegate.h>
+#include <protocols/secure_channel/PairingSession.h>
 #include <protocols/secure_channel/SessionEstablishmentExchangeDispatch.h>
 #include <protocols/secure_channel/SessionResumptionStorage.h>
 #include <system/SystemPacketBuffer.h>
 #include <transport/CryptoContext.h>
-#include <transport/PairingSession.h>
 #include <transport/raw/MessageHeader.h>
 #include <transport/raw/PeerAddress.h>
 
@@ -216,17 +215,6 @@ class DLL_EXPORT CASESession : public Messaging::UnsolicitedMessageHandler,
     void OnSuccessStatusReport() override;
     CHIP_ERROR OnFailureStatusReport(Protocols::SecureChannel::GeneralStatusCode generalCode, uint16_t protocolCode) override;
 
-    // TODO: pull up Finish to PairingSession class
-    void Finish();
-
-    void AbortExchange();
-
-    /**
-     * Clear our reference to our exchange context pointer so that it can close
-     * itself at some later time.
-     */
-    void DiscardExchange();
-
     CHIP_ERROR GetHardcodedTime();
 
     CHIP_ERROR SetEffectiveTime();
@@ -234,8 +222,6 @@ class DLL_EXPORT CASESession : public Messaging::UnsolicitedMessageHandler,
     CHIP_ERROR ValidateReceivedMessage(Messaging::ExchangeContext * ec, const PayloadHeader & payloadHeader,
                                        const System::PacketBufferHandle & msg);
 
-    SessionEstablishmentDelegate * mDelegate = nullptr;
-
     Crypto::Hash_SHA256_stream mCommissioningHash;
     Crypto::P256PublicKey mRemotePubKey;
 #ifdef ENABLE_HSM_CASE_EPHEMERAL_KEY
@@ -250,7 +236,6 @@ class DLL_EXPORT CASESession : public Messaging::UnsolicitedMessageHandler,
     uint8_t mMessageDigest[Crypto::kSHA256_Hash_Length];
     uint8_t mIPK[kIPKSize];
 
-    Messaging::ExchangeContext * mExchangeCtxt           = nullptr;
     SessionResumptionStorage * mSessionResumptionStorage = nullptr;
 
     FabricTable * mFabricsTable    = nullptr;
diff --git a/src/protocols/secure_channel/PASESession.cpp b/src/protocols/secure_channel/PASESession.cpp
index cbe67852f698d1..942fb065312f17 100644
--- a/src/protocols/secure_channel/PASESession.cpp
+++ b/src/protocols/secure_channel/PASESession.cpp
@@ -72,21 +72,7 @@ PASESession::~PASESession()
 void PASESession::Finish()
 {
     mPairingComplete = true;
-
-    Transport::PeerAddress address = mExchangeCtxt->GetSessionHandle()->AsUnauthenticatedSession()->GetPeerAddress();
-
-    // Discard the exchange so that Clear() doesn't try closing it. The exchange will handle that.
-    DiscardExchange();
-
-    CHIP_ERROR err = ActivateSecureSession(address);
-    if (err == CHIP_NO_ERROR)
-    {
-        mDelegate->OnSessionEstablished(mSecureSessionHolder.Get());
-    }
-    else
-    {
-        mDelegate->OnSessionEstablishmentError(err);
-    }
+    PairingSession::Finish();
 }
 
 void PASESession::Clear()
@@ -113,28 +99,6 @@ void PASESession::Clear()
     CloseExchange();
 }
 
-void PASESession::CloseExchange()
-{
-    if (mExchangeCtxt != nullptr)
-    {
-        mExchangeCtxt->Close();
-        mExchangeCtxt = nullptr;
-    }
-}
-
-void PASESession::DiscardExchange()
-{
-    if (mExchangeCtxt != nullptr)
-    {
-        // Make sure the exchange doesn't try to notify us when it closes,
-        // since we might be dead by then.
-        mExchangeCtxt->SetDelegate(nullptr);
-        // Null out mExchangeCtxt so that Clear() doesn't try closing it.  The
-        // exchange will handle that.
-        mExchangeCtxt = nullptr;
-    }
-}
-
 CHIP_ERROR PASESession::Init(SessionManager & sessionManager, uint32_t setupCode, SessionEstablishmentDelegate * delegate)
 {
     VerifyOrReturnError(delegate != nullptr, CHIP_ERROR_INVALID_ARGUMENT);
diff --git a/src/protocols/secure_channel/PASESession.h b/src/protocols/secure_channel/PASESession.h
index 1168be478b4519..276be55d5d1568 100644
--- a/src/protocols/secure_channel/PASESession.h
+++ b/src/protocols/secure_channel/PASESession.h
@@ -35,11 +35,10 @@
 #include <messaging/ExchangeDelegate.h>
 #include <messaging/ExchangeMessageDispatch.h>
 #include <protocols/secure_channel/Constants.h>
-#include <protocols/secure_channel/SessionEstablishmentDelegate.h>
+#include <protocols/secure_channel/PairingSession.h>
 #include <protocols/secure_channel/SessionEstablishmentExchangeDispatch.h>
 #include <system/SystemPacketBuffer.h>
 #include <transport/CryptoContext.h>
-#include <transport/PairingSession.h>
 #include <transport/raw/MessageHeader.h>
 #include <transport/raw/PeerAddress.h>
 
@@ -208,19 +207,8 @@ class DLL_EXPORT PASESession : public Messaging::UnsolicitedMessageHandler,
     void OnSuccessStatusReport() override;
     CHIP_ERROR OnFailureStatusReport(Protocols::SecureChannel::GeneralStatusCode generalCode, uint16_t protocolCode) override;
 
-    // TODO: pull up Finish to PairingSession class
     void Finish();
 
-    void CloseExchange();
-
-    /**
-     * Clear our reference to our exchange context pointer so that it can close
-     * itself at some later time.
-     */
-    void DiscardExchange();
-
-    SessionEstablishmentDelegate * mDelegate = nullptr;
-
     Protocols::SecureChannel::MsgType mNextExpectedMsg = Protocols::SecureChannel::MsgType::PASE_PakeError;
 
 #ifdef ENABLE_HSM_SPAKE
@@ -242,8 +230,6 @@ class DLL_EXPORT PASESession : public Messaging::UnsolicitedMessageHandler,
     uint16_t mSaltLength     = 0;
     uint8_t * mSalt          = nullptr;
 
-    Messaging::ExchangeContext * mExchangeCtxt = nullptr;
-
     struct Spake2pErrorMsg
     {
         Spake2pErrorType error;
diff --git a/src/transport/PairingSession.cpp b/src/protocols/secure_channel/PairingSession.cpp
similarity index 78%
rename from src/transport/PairingSession.cpp
rename to src/protocols/secure_channel/PairingSession.cpp
index 6eef6c538b95cc..491f982d52670c 100644
--- a/src/transport/PairingSession.cpp
+++ b/src/protocols/secure_channel/PairingSession.cpp
@@ -16,7 +16,7 @@
  *    limitations under the License.
  */
 
-#include <transport/PairingSession.h>
+#include <protocols/secure_channel/PairingSession.h>
 
 #include <lib/core/CHIPTLVTypes.h>
 #include <lib/support/SafeInt.h>
@@ -57,6 +57,59 @@ CHIP_ERROR PairingSession::ActivateSecureSession(const Transport::PeerAddress &
     return CHIP_NO_ERROR;
 }
 
+void PairingSession::Finish()
+{
+    Transport::PeerAddress address = mExchangeCtxt->GetSessionHandle()->AsUnauthenticatedSession()->GetPeerAddress();
+
+    // Discard the exchange so that Clear() doesn't try closing it. The exchange will handle that.
+    DiscardExchange();
+
+    CHIP_ERROR err = ActivateSecureSession(address);
+    if (err == CHIP_NO_ERROR)
+    {
+        mDelegate->OnSessionEstablished(mSecureSessionHolder.Get());
+    }
+    else
+    {
+        mDelegate->OnSessionEstablishmentError(err);
+    }
+}
+
+void PairingSession::AbortExchange()
+{
+    if (mExchangeCtxt != nullptr)
+    {
+        // The only time we reach this is if we are getting destroyed in the
+        // middle of our handshake.  In that case, there is no point trying to
+        // do MRP resends of the last message we sent, so abort the exchange
+        // instead of just closing it.
+        mExchangeCtxt->Abort();
+        mExchangeCtxt = nullptr;
+    }
+}
+
+void PairingSession::CloseExchange()
+{
+    if (mExchangeCtxt != nullptr)
+    {
+        mExchangeCtxt->Close();
+        mExchangeCtxt = nullptr;
+    }
+}
+
+void PairingSession::DiscardExchange()
+{
+    if (mExchangeCtxt != nullptr)
+    {
+        // Make sure the exchange doesn't try to notify us when it closes,
+        // since we might be dead by then.
+        mExchangeCtxt->SetDelegate(nullptr);
+        // Null out mExchangeCtxt so that Clear() doesn't try closing it.  The
+        // exchange will handle that.
+        mExchangeCtxt = nullptr;
+    }
+}
+
 CHIP_ERROR PairingSession::EncodeMRPParameters(TLV::Tag tag, const ReliableMessageProtocolConfig & mrpConfig,
                                                TLV::TLVWriter & tlvWriter)
 {
diff --git a/src/transport/PairingSession.h b/src/protocols/secure_channel/PairingSession.h
similarity index 95%
rename from src/transport/PairingSession.h
rename to src/protocols/secure_channel/PairingSession.h
index 72318ecd0e79b1..5aaa9f7ddb9785 100644
--- a/src/transport/PairingSession.h
+++ b/src/protocols/secure_channel/PairingSession.h
@@ -29,6 +29,7 @@
 #include <lib/core/CHIPTLV.h>
 #include <messaging/ExchangeContext.h>
 #include <protocols/secure_channel/Constants.h>
+#include <protocols/secure_channel/SessionEstablishmentDelegate.h>
 #include <protocols/secure_channel/StatusReport.h>
 #include <transport/CryptoContext.h>
 #include <transport/SecureSession.h>
@@ -95,6 +96,12 @@ class DLL_EXPORT PairingSession
 
     CHIP_ERROR ActivateSecureSession(const Transport::PeerAddress & peerAddress);
 
+    void Finish();
+
+    void AbortExchange();
+    void CloseExchange();
+    void DiscardExchange();
+
     void SetPeerSessionId(uint16_t id) { mPeerSessionId.SetValue(id); }
     virtual void OnSuccessStatusReport() {}
     virtual CHIP_ERROR OnFailureStatusReport(Protocols::SecureChannel::GeneralStatusCode generalCode, uint16_t protocolCode)
@@ -168,7 +175,9 @@ class DLL_EXPORT PairingSession
     SessionHolder mSecureSessionHolder;
     // mSessionManager is set if we actually allocate a secure session, so we
     // can clean it up later as needed.
-    SessionManager * mSessionManager = nullptr;
+    SessionManager * mSessionManager           = nullptr;
+    Messaging::ExchangeContext * mExchangeCtxt = nullptr;
+    SessionEstablishmentDelegate * mDelegate   = nullptr;
 
     // mLocalMRPConfig is our config which is sent to the other end and used by the peer session.
     // mRemoteMRPConfig is received from other end and set to our session.
diff --git a/src/protocols/secure_channel/tests/BUILD.gn b/src/protocols/secure_channel/tests/BUILD.gn
index 41a75512571fa7..fcd42a4226655e 100644
--- a/src/protocols/secure_channel/tests/BUILD.gn
+++ b/src/protocols/secure_channel/tests/BUILD.gn
@@ -14,6 +14,7 @@ chip_test_suite("tests") {
     # TODO - Fix Message Counter Sync to use group key
     #    "TestMessageCounterManager.cpp",
     "TestPASESession.cpp",
+    "TestPairingSession.cpp",
     "TestSimpleSessionResumptionStorage.cpp",
     "TestStatusReport.cpp",
   ]
diff --git a/src/transport/tests/TestPairingSession.cpp b/src/protocols/secure_channel/tests/TestPairingSession.cpp
similarity index 99%
rename from src/transport/tests/TestPairingSession.cpp
rename to src/protocols/secure_channel/tests/TestPairingSession.cpp
index b40c044d4d893a..e34094ff7cb34a 100644
--- a/src/transport/tests/TestPairingSession.cpp
+++ b/src/protocols/secure_channel/tests/TestPairingSession.cpp
@@ -26,11 +26,9 @@
 
 #include <lib/core/CHIPCore.h>
 #include <lib/support/CodeUtils.h>
-
-#include <messaging/ReliableMessageProtocolConfig.h>
-#include <transport/PairingSession.h>
-
 #include <lib/support/UnitTestRegistration.h>
+#include <messaging/ReliableMessageProtocolConfig.h>
+#include <protocols/secure_channel/PairingSession.h>
 #include <stdarg.h>
 #include <system/SystemClock.h>
 #include <system/TLVPacketBufferBackingStore.h>
diff --git a/src/transport/BUILD.gn b/src/transport/BUILD.gn
index 42ea4dcd73b839..defde06d387fdc 100644
--- a/src/transport/BUILD.gn
+++ b/src/transport/BUILD.gn
@@ -30,7 +30,6 @@ static_library("transport") {
     "MessageCounter.cpp",
     "MessageCounter.h",
     "MessageCounterManagerInterface.h",
-    "PairingSession.cpp",
     "PeerMessageCounter.h",
     "SecureMessageCodec.cpp",
     "SecureMessageCodec.h",
diff --git a/src/transport/SessionManager.cpp b/src/transport/SessionManager.cpp
index 2dbc71e1a6d569..fb23bb46116b1f 100644
--- a/src/transport/SessionManager.cpp
+++ b/src/transport/SessionManager.cpp
@@ -40,7 +40,6 @@
 #include <protocols/secure_channel/Constants.h>
 #include <transport/GroupPeerMessageCounter.h>
 #include <transport/GroupSession.h>
-#include <transport/PairingSession.h>
 #include <transport/SecureMessageCodec.h>
 #include <transport/TransportMgr.h>
 
diff --git a/src/transport/SessionManager.h b/src/transport/SessionManager.h
index 260db7866a395b..7cd5bf2925f98a 100644
--- a/src/transport/SessionManager.h
+++ b/src/transport/SessionManager.h
@@ -53,8 +53,6 @@
 
 namespace chip {
 
-class PairingSession;
-
 /**
  * @brief
  *  Tracks ownership of a encrypted packet buffer.
diff --git a/src/transport/tests/BUILD.gn b/src/transport/tests/BUILD.gn
index ad14819c67145d..4fea0a0a66a1c3 100644
--- a/src/transport/tests/BUILD.gn
+++ b/src/transport/tests/BUILD.gn
@@ -34,7 +34,6 @@ chip_test_suite("tests") {
 
   test_sources = [
     "TestGroupMessageCounter.cpp",
-    "TestPairingSession.cpp",
     "TestPeerConnections.cpp",
     "TestPeerMessageCounter.cpp",
     "TestSecureSession.cpp",