ExternalVendorCode/HIRS
1
0
Fork 0
mirror of https://github.com/nsacyber/HIRS.git synced 2025-01-18 10:46:39 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity

Updated the policy code to modify the measurement array length and ignore PCR 10 as well.

Browse Source
This commit is contained in:
Cyrus 2021-11-23 10:06:21 -05:00
parent cf4e641273
commit 483099a273
1 changed files with 12 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
HIRS_Utils/src/main/java/hirs/data/persist/PCRPolicy.java
View File

@ -171,20 +171,26 @@ public final class PCRPolicy extends Policy {
short localityAtRelease = 0;
String quoteString = new String(tpmQuote, StandardCharsets.UTF_8);
int pcrMaskSelection = PcrSelection.ALL_PCRS_ON;
int recordLength = baselinePcrs.length;
TPMMeasurementRecord[] measurements = new TPMMeasurementRecord[baselinePcrs.length];
if (enableIgnoreIma) {
pcrMaskSelection = IMA_MASK;
recordLength--;
}
TPMMeasurementRecord[] measurements = new TPMMeasurementRecord[recordLength];
try {
for (int i = 0; i <= TPMMeasurementRecord.MAX_PCR_ID; i++) {
if (i == 10 && enableIgnoreIma) {
LOGGER.info("Ignore IMA PCR policy is enabled.");
} else {
measurements[i] = new TPMMeasurementRecord(i, storedPcrs[i]);
}
}
} catch (DecoderException deEx) {
LOGGER.error(deEx);
}
if (this.enableIgnoreIma) {
pcrMaskSelection = IMA_MASK;
}
PcrSelection pcrSelection = new PcrSelection(pcrMaskSelection);
PcrComposite pcrComposite = new PcrComposite(
pcrSelection,