Commit Graph

872 Commits

Author SHA1 Message Date
lareine
94cf172ce8 add support for EvCompactHash EvEfiSpecIdEvent and EvNoAction events 2020-03-27 15:58:05 -04:00
lareine
faa77be822 Merge branch 'issue-242' into issue-245
Uefi support included into issue-245.
2020-03-27 13:43:59 -04:00
iadgovuser26
d7f075d70c
Merge pull request #241 from nsacyber/issue-240
[#240] Adds ability to get the DigestAlgorithm from an Event Log
2020-03-27 11:00:17 -04:00
lareine
62247f8cfb Fixed unmappable character for encoding ASCII issue 2020-03-27 10:41:21 -04:00
Cyrus
2805df9f8b
[#236] Firmware validation update part 1 (#243)
* This commit includes changes to the provisioner for what is sent up.  Originally only SHA256 was being used, this change includes both.
* This last commit cover the items 2-4 in issue #236.  The Provisioner sends up and updated list of pcrs that include 256, not just sha1.  The validation and policy pages have been updated.  A second pull request will be created to address parsing the information into a baseline.
2020-03-27 10:13:37 -04:00
chubtub
c317dcff26 Truncate # symbol after parsing subject key identifier 2020-03-27 09:26:19 -04:00
lareine
fecc84a5be Added unit tests for Uefi processing. 2020-03-27 08:20:04 -04:00
chubtub
2108d902a4 Implement support for PKCS1 in CredentialParser class. 2020-03-26 13:42:31 -04:00
lareine
828e6d4e65 added uefi variable processing 2020-03-24 13:12:44 -04:00
lareine
b5867e0cf6 added UEFI GUID, Partiton, and Firmware Varible support 2020-03-17 17:08:09 -04:00
chubtub
0c57e58c46 Implement -v in JCommander. Clean up unit tests. 2020-03-17 17:05:19 -04:00
lareine
236f5c221a removed generated_swidTag.swidtag 2020-03-17 09:49:42 -04:00
lareine
f3da6b44ac Added methods to retrieve event log hash algorithm and algorithm id 2020-03-17 09:48:02 -04:00
chubtub
0123a081a8 Implement --privateKeyFile and --publicCertificate in JCommander 2020-03-12 16:34:34 -04:00
chubtub
030ce39613 Add KeyName (subjectKeyIdentifier) and KeyValue (public key) to KeyInfo element 2020-03-12 11:47:44 -04:00
chubtub
7de7f47f95 Implement --create, --attributes, --out, and --help in JCommander 2020-03-11 13:02:43 -04:00
chubtub
8b36d2636b
Merge pull request #232 from nsacyber/issue-231
[#231] Last minute tcg_rim_tool CLI changes
2020-03-06 08:55:14 -05:00
Cyrus
21db725815
[#230] Update RIM details page to display PCRs (#233)
* This is an update to the display of the Reference Integrity Manifest code base that'll allow a user to upload a swidtag.  This code includes some additions from #217, slightly modified.

* This code update include changes to import, archive and delete a swidtag into the RIM object.

* Updated the code with additional checks on the uploaded file locations.  Added the number associated with the PCR value to the detail page.

* This change fixes the bug that caused the rim detail page to go blank if the associated event log file associated with the resource file doesn't exist.

Co-authored-by: lareine <lareine@tycho.ncsc.mil>
2020-03-06 07:06:09 -05:00
Cyrus
5dbbbafafe
Updated a check on the SERIAL_INDEX in certificate string map builder. (#235) 2020-03-06 07:04:13 -05:00
chubtub
3692262055 Clean up unit tests 2020-03-05 12:11:59 -05:00
chubtub
094efb37df Added CLI arg to control hiding/showing signature cert (default=hide) 2020-02-27 08:44:26 -05:00
chubtub
6dd9615ee0
Merge pull request #207 from nsacyber/packaging_install_error
Fix HIRS_Provisioner install error
2020-02-25 14:38:31 -05:00
busaboy1340
b73b7f218b
[#228] Update TPM Provisioner Docker images with latest PACCOR (v1.1.4r2) (#229)
* Update Docker TPMProvisioner images to latest PACCOR.

* Test updated docker images from hirs Docker Hub

* Update TPM Provisioner Docker images with latest PACCOR (v1.1.4r1)

* Updated TPM images on Docker Hub.

* Update TPM provisioner docker images with PACCOR v1.1.4r2

* Updated docker-compose files

* Updated TPM provisioner images in Docker Hub.
2020-02-25 10:30:37 -05:00
busaboy1340
b899e0bbe0
[#224] Update TPM Provisioner Docker images with latest PACCOR (v1.1.4r1) (#225)
* Update Docker TPMProvisioner images to latest PACCOR.

* Test updated docker images from hirs Docker Hub

* Update TPM Provisioner Docker images with latest PACCOR (v1.1.4r1)

* Updated TPM images on Docker Hub.
2020-02-25 09:51:45 -05:00
Cyrus
4a6115f443
[#212] Added functionality to process and display RIM files. (#226)
* Some initial additions to the details page for displaying Rim information.

* Initial changes for uploading a rim file.

* This is an update to the display of the Reference Integrity Manifest code base that'll allow a user to upload a swidtag.  This code includes some additions from #217, slightly modified.

* This code update include changes to import, archive and delete a swidtag into the RIM object.

* This commit consolidated the SwidTagGatway code and Constants into Reference Manifest.

* This is the final main push of code that will upload, process, store, retrive/delete and display the contents of a RIM swid tag.

* Interim commit for demo purposes.

* Updated Unit Tests

* This commit adds the unit tests that weren't added in the previous commit

* Updated code to reduce execution time when processing reference manifest objects.

* Updated code for better GUI performance.

* Removed previously added suppression entries.
2020-02-21 11:16:46 -05:00
chubtub
1f52dd3c27
[#217] Support reading conf settings from a json file (#218)
* Support reading conf settings from a json file

* Add optional RIM attributes

* Add xml signature element

* New commandline arguments for attributes conf file and privatekey or cert specification

* Add fields to satisfy NIST checks

* Print generated base rim contents to console also
2020-02-21 07:43:40 -05:00
iadgovuser26
9a835d8923
[222] Added TCG Event Log Processing that converts TCG Event Logs to HIRS T… (#223)
* Added TCG Event Log Processing that converts TCG Event Logs to HIRS TPM Baselines

* Some minor formating, syntax and code refactoring updates.

* Updated checkstyle failures.

* String format was missing additional %s.

Co-authored-by: Cyrus <24922493+cyrus-dev@users.noreply.github.com>
2020-02-21 06:37:43 -05:00
busaboy1340
6838a38fbc
[#220] Update TPM Provisioner Docker images with latest PACCOR (v1.1.3r4) (#221)
* Update Docker TPMProvisioner images to latest PACCOR.

* Test updated docker images from hirs Docker Hub
2020-02-20 06:29:48 -05:00
busaboy1340
da836a0862
[#216] Upgrade docker images and system tests to support python3 (#219)
* Updated docker images to use python3

* Updated docker compose files.

* Test Travis CI

* Test Travis CI

* Updated Dockerfiles.

* Updated .travis.yml

* Cleaned up scripts.

* Cleaned up scripts.

* Updated docker-compose files.

* Updated amazonlinux2 image with python3.

* Updated system test driver.

* Updated system test driver

* Cleaned up import in test driver.

* Updated setup scripts to output python version
2020-01-17 07:05:05 -05:00
Cyrus
84a76608f3
[#198] Reference Integrity Manifest Page List (#210)
* Initial commit of changes to display RIM information.
2020-01-10 13:47:17 -05:00
chubtub
d9b4e6a968
Merge pull request #215 from nsacyber/issue-214
[#214] Create tcg_rim_tools project
2020-01-08 09:55:26 -05:00
Tsai
917ca2dcdc Remove user documents 2020-01-07 12:40:31 -05:00
Tsai
72f2824668 Delete tar file 2020-01-06 16:16:34 -05:00
Tsai
0dd7d8b041 Renamed and moved ACA_SwidTag project 2020-01-06 16:15:03 -05:00
Tsai
68222971b2 Rename project to tcg_rim_tool and move under tools/ directory 2020-01-06 16:14:04 -05:00
busaboy1340
1c6947ca8a
Cleaned up python imports. (#213) 2020-01-06 11:54:28 -05:00
Cyrus
81e13831b2
[#202] Certificate fail to save upon deletion during provisioning FIXED (#206)
* This commit fixes an error produced when provisioning when the certificate from a previous provision is deleted from the ACA.  The error involves doing a look up for an existing certificate and getting nothing however this is due to not using the 'includeArchived' attribute for the Certificate Selector.  Include Archived is used when manually uploading a certificate.
2020-01-06 08:17:04 -05:00
Tsai
0b7b2662de Added javadocs to methods 2019-12-30 10:24:38 -05:00
chubtub
2052599153 Create ACA_SwidTag project 2019-12-26 12:33:59 -05:00
busaboy1340
0f3cfeb7b5
Update system_test.py
Updated the disable_warnings library.
2019-12-23 05:50:21 -05:00
busaboy1340
a2497c064c
[#88] Integrate System Tests with Dockerized TPM 1.2 Provisioner (#208)
* Initial system test for TPM 1.2 emulator.

* Update .travis.yml file.

* Added system test: test_20_tpm_1_2_initial_provision

* Cleaned up files.

* Correct docker location

* Re-arranged system tests.

* Execute test_12_attestation_ca_portal_online for all current collectors.

* Clean up files.

* Cleaned up files.

* Cleaned up files.

* Cleaned up files.

* Cleaned up files

* Updated system test driver.

* Set logging properties to DEBUG.

* Commented out test_13_tpm_1_2_initial_provision. Need to fix it.
2019-12-23 05:28:26 -05:00
Tsai
96e41156c7 Revert previous changes to HIRS_Util classes related to VERSION file 2019-12-11 15:58:02 -05:00
busaboy1340
404f2ab5dd
[#194] Update TPM Provisioner Docker images with latest PACCOR (v1.1.3r3) (#205)
* PACCOR Testing.

* PACCOR Testing.

* PACCOR Testing.

* PACCOR Testing

* PACCOR Testing

* Updated Dockerfile.tpm2provisioner

* Cleaned up files.

* Point to the updated tpm2provisioner in hirs/hirs-ci, on Docker Hub.

* Cleaned up files.

* Used specific PACCOR script(allcomponents_hirs_system_test.sh) for
system tests.

* Added new PACCOR script for review.
Will be moved into the PACCOR project when permissions are granted.
2019-12-10 06:07:05 -05:00
chubtub
0c2005c8df
Merge pull request #204 from nsacyber/issue-203
[#203] New version 1.1.1 for release
2019-11-21 14:35:41 -05:00
chubtub
ad3aa1a6c6 Created sql script to add columns to backend. Call script from spec file. 2019-11-19 11:04:51 -05:00
Tsai
5256c57f13 New version 1.1.1 for release 2019-11-19 10:02:15 -05:00
Cyrus
09aafa8041
[#168] Additional fields added to the Issued AC (#201)
* Added additional code pulled from the original branch for these changes aik-field-additions.
* Updated code to include the TCG Credential Specification, which is a different version from the Platform specification.
2019-11-13 10:46:00 -05:00
busaboy1340
00287725da
[#194] Update TPM Provisioner Docker images with latest PACCOR (v1.1.3r3) (#200)
* [#195] Components identified by Component Class will have hardware IDs translated to names

* Update TPM Docker images to latest PACCOR(v1.1.3r3). Comment out the
failing system tests caused by invalid input to PACCOR.
2019-11-07 09:37:06 -05:00
Cyrus
0ede7191ad
[#191] ACA Processing TPM Quote/PCRs from Certificate Request (#197)
* Updated the ACA to verify that the quote and pcrlist exist before trying to parse them.

* Removed unused methods for the tpmquote process.
2019-10-29 09:34:06 -04:00
Cyrus
c7454c945e
[#190] Provision update for quote and pcrs (#196)
* This commit includes functioning TPM quote code that is sent to the ACA.  In addition it has code to also sent the pcrs list results.

Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.

* Changed the requirement for the field into protobuf to optional from required.
2019-10-29 09:33:35 -04:00