+ * typedef struct tdDEVICE_SECURITY_EVENT_DATA { + * DEVICE_SECURITY_EVENT_DATA_HEADER EventDataHeader; + * DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT DeviceContext; + * } DEVICE_SECURITY_EVENT_DATA; + *
+ */ public class DeviceSecurityEventData extends DeviceSecurityEventDataBase { /** diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventData2.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventData2.java index 89154120..076bad86 100644 --- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventData2.java +++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventData2.java @@ -2,33 +2,45 @@ package hirs.utils.tpm.eventlog.events; import lombok.Getter; +// TODO Placeholder class to be implemented upon getting test pattern +/** + * Class to process DEVICE_SECURITY_EVENT_DATA2. + * Parses event data per PFP v1.06 Rev52 Table 26. + *
+ * typedef struct tdDEVICE_SECURITY_EVENT_DATA2 { + * DEVICE_SECURITY_EVENT_DATA_HEADER2 EventDataHeader; + * DEVICE_SECURITY_EVENT_DATA_SUB_HEADER EventDataSubHeader; + * DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT DeviceContext; + * } DEVICE_SECURITY_EVENT_DATA2; + *
+ */ public class DeviceSecurityEventData2 extends DeviceSecurityEventDataBase { /** - * DeviceSecurityEventDataHeader2 Object. + * DeviceSecurityEventDataHeader Object. */ @Getter private DeviceSecurityEventDataHeader2 dsedHeader2 = null; -// /** -// * DeviceSecurityEventDataSubHeader Object. -// */ -// @Getter -// private DeviceSecurityEventDataSubHeader dsedSubHeader = null; /** * DeviceSecurityEventData2 Constructor. * - * @param dSEDbytes byte array holding the DeviceSecurityEventData. + * @param dSEDbytes byte array holding the DeviceSecurityEventData2. */ public DeviceSecurityEventData2(final byte[] dSEDbytes) { + dsedHeader2 = new DeviceSecurityEventDataHeader2(dSEDbytes); + // get subheader + parseDeviceContext(dSEDbytes, dsedHeader2.getDSEDheaderByteSize(), dsedHeader2.getDeviceType()); } + /** + * Returns a human readable description of the data within this structure. + * + * @return a description of this structure. + */ public String toString() { String dsedInfo = ""; -// dsedInfo += dsedHeader2.toString(); -// dsedInfo += dsedSubHeader.toString(); -// dsedInfo += dsedDeviceContext.toString(); return dsedInfo; } } diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataBase.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataBase.java index a6ac0f15..d0e2389e 100644 --- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataBase.java +++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataBase.java @@ -9,7 +9,7 @@ import java.nio.charset.StandardCharsets; /** * Abstract base class to process the DEVICE_SECURITY_EVENT_DATA or ..DATA2 event. - * Parses event data for DEVICE_SECURITY_EVENT_DATA per PFP v1.06 Rev52 Table 20. + * Parses event data per PFP v1.06 Rev52 Tables 20 and 26. * The event data comes in 2 forms: * 1) DEVICE_SECURITY_EVENT_DATA or * 2) DEVICE_SECURITY_EVENT_DATA2 @@ -32,7 +32,7 @@ import java.nio.charset.StandardCharsets; * DEVICE_SECURITY_EVENT_DATA_HEADER2 EventDataHeader; * DEVICE_SECURITY_EVENT_DATA_SUB_HEADER EventDataSubHeader; * DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT DeviceContext; - * } DEVICE_SECURITY_EVENT_DATA; + * } DEVICE_SECURITY_EVENT_DATA2; *
* typedef struct tdDEVICE_SECURITY_EVENT_DATA_HEADER or HEADER2 {
* UINT8 Signature[16];
@@ -54,12 +54,6 @@ import java.nio.charset.StandardCharsets;
*/
public abstract class DeviceSecurityEventDataBase {
-// /**
-// * DeviceSecurityEventDataDeviceContext Object.
-// */
-// @Getter
-// private DeviceSecurityEventDataDeviceContext dsedDeviceContext = null;
-
/**
* Human readable description of the data within the
* DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT. DEVICE can be either PCI or USB.
@@ -75,6 +69,14 @@ public abstract class DeviceSecurityEventDataBase {
}
+ /**
+ * Parse the Device Context structure, can be PCI or USB based on device type field.
+ *
+ * @param dSEDbytes byte array holding the DeviceSecurityEventData.
+ * @param startByte starting byte of the device structure (depends on length of header).
+ * @param deviceType device type either PCI or USB.
+ *
+ */
public void parseDeviceContext(final byte[] dSEDbytes, int startByte, int deviceType) {
int deviceContextLength = dSEDbytes.length - startByte;
@@ -92,15 +94,14 @@ public abstract class DeviceSecurityEventDataBase {
= new DeviceSecurityEventDataPciContext(deviceContextBytes);
deviceContextInfo = dSEDpciContext.toString();
}
- else if (deviceType == 2) {
-// DeviceSecurityEventDataUsbContext dSEDusbContext
-// = new DeviceSecurityEventDataUsbContext(deviceContextBytes);
-// deviceContextInfo = dSEDusbContext.toString();
- deviceContextInfo = "Device type is USB - to be implemented in future";
- }
+ //else if (deviceType == 2) {
+ //DeviceSecurityEventDataUsbContext dSEDusbContext
+ // = new DeviceSecurityEventDataUsbContext(deviceContextBytes);
+ //deviceContextInfo = dSEDusbContext.toString();
+ //deviceContextInfo = "Device type is USB - to be implemented in future";
+ //}
else {
deviceContextInfo = " Unknown device type; cannot process device context";
}
}
-
}
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataDeviceContext.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataDeviceContext.java
index ed500115..6520fd2d 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataDeviceContext.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataDeviceContext.java
@@ -1,12 +1,8 @@
package hirs.utils.tpm.eventlog.events;
import hirs.utils.HexUtils;
-import hirs.utils.tpm.eventlog.spdm.SpdmMeasurementBlock;
-import hirs.utils.tpm.eventlog.uefi.UefiConstants;
import lombok.Getter;
-import java.nio.charset.StandardCharsets;
-
/**
* Class to process the DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT event per PFP.
* DEVICE_SECURITY_EVENT_DATA_DEVICE_CONTEXT is a common SPDM structure which includes the
@@ -21,11 +17,6 @@ import java.nio.charset.StandardCharsets;
*/
public abstract class DeviceSecurityEventDataDeviceContext {
-// /**
-// * SPDM Measurement Block.
-// */
-// private DeviceSecurityEventDataPciContext deviceSecurityEventDataPciContext = null;
-
/**
* PCI Version.
*/
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataHeader.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataHeader.java
index bef56679..e46c48ab 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataHeader.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/DeviceSecurityEventDataHeader.java
@@ -8,7 +8,6 @@ import lombok.Getter;
import java.io.UnsupportedEncodingException;
-
/**
* Class to process the DEVICE_SECURITY_EVENT_DATA_HEADER.
* DEVICE_SECURITY_EVENT_DATA_HEADER contains the measurement(s) and hash algorithm identifier
@@ -41,10 +40,7 @@ public class DeviceSecurityEventDataHeader extends DeviceSecurityEventDataHeader
*/
@Getter
private int spdmHashAlgo = -1;
- /**
- * SPDM Measurement Block list. -implement this if there can be multiple SPDM blocks in one event
- */
- //private List
@@ -47,32 +36,32 @@ public class DeviceSecurityEventDataPciContext extends DeviceSecurityEventDataDe
* PCI Vendor ID.
*/
@Getter
- private String pciVendorId = "";
+ private String vendorId = "";
/**
* PCI Device ID.
*/
@Getter
- private String pciDeviceId = "";
+ private String deviceId = "";
/**
* PCI Revision ID.
*/
@Getter
- private String pciRevisionId = "";
+ private String revisionId = "";
/**
* PCI Class Code.
*/
@Getter
- private String pciClassCode = "";
+ private String classCode = "";
/**
* PCI Subsystem Vendor ID.
*/
@Getter
- private String pciSubsystemVendorId = "";
+ private String subsystemVendorId = "";
/**
* PCI Subsystem ID.
*/
@Getter
- private String pciSubsystemId = "";
+ private String subsystemId = "";
/**
* DeviceSecurityEventDataPciContext Constructor.
@@ -85,27 +74,27 @@ public class DeviceSecurityEventDataPciContext extends DeviceSecurityEventDataDe
byte[] pciVendorIdBytes = new byte[2];
System.arraycopy(dSEDpciContextBytes, 4, pciVendorIdBytes, 0, 2);
- pciVendorId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciVendorIdBytes));
+ vendorId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciVendorIdBytes));
byte[] pciDeviceIdBytes = new byte[2];
System.arraycopy(dSEDpciContextBytes, 6, pciDeviceIdBytes, 0, 2);
- pciDeviceId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciDeviceIdBytes));
+ deviceId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciDeviceIdBytes));
byte[] pciRevisionIdBytes = new byte[1];
System.arraycopy(dSEDpciContextBytes, 8, pciRevisionIdBytes, 0, 1);
- pciRevisionId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciRevisionIdBytes));
+ revisionId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciRevisionIdBytes));
byte[] pciClassCodeBytes = new byte[3];
System.arraycopy(dSEDpciContextBytes, 9, pciClassCodeBytes, 0, 3);
- pciClassCode = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciClassCodeBytes));
+ classCode = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciClassCodeBytes));
byte[] pciSubsystemVendorIdBytes = new byte[2];
System.arraycopy(dSEDpciContextBytes, 12, pciSubsystemVendorIdBytes, 0, 2);
- pciSubsystemVendorId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciSubsystemVendorIdBytes));
+ subsystemVendorId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciSubsystemVendorIdBytes));
byte[] pciSubsystemIdBytes = new byte[2];
System.arraycopy(dSEDpciContextBytes, 14, pciSubsystemIdBytes, 0, 2);
- pciSubsystemId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciSubsystemIdBytes));
+ subsystemId = HexUtils.byteArrayToHexString(HexUtils.leReverseByte(pciSubsystemIdBytes));
}
@@ -119,12 +108,12 @@ public class DeviceSecurityEventDataPciContext extends DeviceSecurityEventDataDe
dSEDpciContextInfo += deviceContextCommonInfoToString();
dSEDpciContextInfo += "\n Device Type = PCI";
- dSEDpciContextInfo += "\n VendorID = 0x" + pciVendorId;
- dSEDpciContextInfo += "\n DeviceID = 0x" + pciDeviceId;
- dSEDpciContextInfo += "\n RevisionID = 0x" + pciRevisionId;
- dSEDpciContextInfo += "\n ClassCode = 0x" + pciClassCode;
- dSEDpciContextInfo += "\n SubsystemVendorID = 0x" + pciSubsystemVendorId;
- dSEDpciContextInfo += "\n SubsystemID = 0x" + pciSubsystemId;
+ dSEDpciContextInfo += "\n VendorID = 0x" + vendorId;
+ dSEDpciContextInfo += "\n DeviceID = 0x" + deviceId;
+ dSEDpciContextInfo += "\n RevisionID = 0x" + revisionId;
+ dSEDpciContextInfo += "\n ClassCode = 0x" + classCode;
+ dSEDpciContextInfo += "\n SubsystemVendorID = 0x" + subsystemVendorId;
+ dSEDpciContextInfo += "\n SubsystemID = 0x" + subsystemId;
return dSEDpciContextInfo;
}
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/EvEfiSpdmFirmwareBlob.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/EvEfiSpdmFirmwareBlob.java
index f0eb9e4c..da83c51f 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/EvEfiSpdmFirmwareBlob.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/events/EvEfiSpdmFirmwareBlob.java
@@ -1,14 +1,10 @@
package hirs.utils.tpm.eventlog.events;
import hirs.utils.HexUtils;
-import hirs.utils.tpm.eventlog.TcgTpmtHa;
import hirs.utils.tpm.eventlog.uefi.UefiConstants;
-import lombok.Getter;
import java.io.UnsupportedEncodingException;
import java.nio.charset.StandardCharsets;
-import java.util.ArrayList;
-import java.util.List;
/**
* Class to process the EV_EFI_SPDM_FIRMWARE_BLOB event. The event field MUST be a
@@ -41,7 +37,7 @@ public class EvEfiSpdmFirmwareBlob {
/**
* True if the event is a DEVICE_SECURITY_EVENT_DATA or ..DATA2.
*/
- private boolean bDeviceSecurityEventData = false;
+ private boolean bSpdmDeviceSecurityEventData = false;
/**
* Human readable description of the data within this DEVICE_SECURITY_EVENT_DATA/..DATA2 event.
*/
@@ -61,7 +57,7 @@ public class EvEfiSpdmFirmwareBlob {
signature = signature.replaceAll("[^\\P{C}\t\r\n]", ""); // remove null characters
if (signature.contains("SPDM Device Sec")) { // implies Device Security event
- bDeviceSecurityEventData = true;
+ bSpdmDeviceSecurityEventData = true;
byte[] versionBytes = new byte[UefiConstants.SIZE_2];
System.arraycopy(eventData, UefiConstants.OFFSET_16, versionBytes, 0,
@@ -87,8 +83,8 @@ public class EvEfiSpdmFirmwareBlob {
*
* @return true of the event is a DeviceSecurityEventData.
*/
- public boolean isDeviceSecurityEventData() {
- return bDeviceSecurityEventData;
+ public boolean isSpdmDeviceSecurityEventData() {
+ return bSpdmDeviceSecurityEventData;
}
/**
@@ -97,7 +93,7 @@ public class EvEfiSpdmFirmwareBlob {
* @return Human readable description of this event.
*/
public String toString() {
- if (bDeviceSecurityEventData) {
+ if (bSpdmDeviceSecurityEventData) {
spdmInfo = " Signature = SPDM Device Sec" + spdmInfo;
} else {
spdmInfo = "EV_EFI_SPDM_FIRMWARE_BLOB event named " + signature
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmHa.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmHa.java
index 3195896f..cf49aae4 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmHa.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmHa.java
@@ -1,20 +1,15 @@
package hirs.utils.tpm.eventlog.spdm;
-import hirs.utils.HexUtils;
import lombok.AccessLevel;
import lombok.NoArgsConstructor;
/**
- * Class for defining constants referenced in the DMTF SPDM specification.
+ * Class for defining hash algorithms referenced in the DMTF SPDM specification.
+ * SPDM 1.3.0, Table 21, MeasurementHashAlgo.
*/
@NoArgsConstructor(access = AccessLevel.PRIVATE)
public class SpdmHa {
-
- /**
- * ------------------- SPDM Spec: MeasurementHashAlgo -------------------
- * SPDM 1.3.0, Table 21
- */
/**
* Spdm Hash Alg = Raw bit stream
*/
@@ -80,5 +75,4 @@ public class SpdmHa {
}
return alg;
}
-
}
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurement.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurement.java
index 1555d4aa..625fdf2f 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurement.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurement.java
@@ -39,9 +39,11 @@ public class SpdmMeasurement {
@Getter
private byte[] dmtfSpecMeasurementValue = null;
- @Getter(value = AccessLevel.PROTECTED)
- private byte[] digest = null;
-
+ /**
+ * SpdmMeasurement Constructor.
+ *
+ * @param spdmMeasBytes byte array holding the SPDM Measurement bytes.
+ */
public SpdmMeasurement(final byte[] spdmMeasBytes) {
byte[] dmtfSpecMeasurementValueTypeBytes = new byte[1];
@@ -60,6 +62,11 @@ public class SpdmMeasurement {
dmtfSpecMeasurementValueSize);
}
+ /**
+ * Returns a human readable description of the data within this structure.
+ *
+ * @return a description of this structure..
+ */
public String dmtfSpecMeasurementValueTypeToString(final int measValType) {
String measValTypeStr;
diff --git a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurementBlock.java b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurementBlock.java
index ff2ac9ea..4b1345eb 100644
--- a/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurementBlock.java
+++ b/HIRS_Utils/src/main/java/hirs/utils/tpm/eventlog/spdm/SpdmMeasurementBlock.java
@@ -39,6 +39,11 @@ public class SpdmMeasurementBlock {
*/
private SpdmMeasurement spdmMeasurement;
+ /**
+ * SpdmMeasurementBlock Constructor.
+ *
+ * @param spdmMeasBlockBytes byte array holding the SPDM Measurement Block bytes.
+ */
public SpdmMeasurementBlock(final byte[] spdmMeasBlockBytes) {
byte[] indexBytes = new byte[1];
@@ -63,6 +68,11 @@ public class SpdmMeasurementBlock {
spdmMeasurement = new SpdmMeasurement(measurementBytes);
}
+ /**
+ * Returns a human readable description of the data within this structure.
+ *
+ * @return a description of this structure..
+ */
public String toString() {
String spdmMeasBlockInfo = "";