* This is an update to the display of the Reference Integrity Manifest code base that'll allow a user to upload a swidtag. This code includes some additions from #217, slightly modified.
* This code update include changes to import, archive and delete a swidtag into the RIM object.
* Updated the code with additional checks on the uploaded file locations. Added the number associated with the PCR value to the detail page.
* This change fixes the bug that caused the rim detail page to go blank if the associated event log file associated with the resource file doesn't exist.
Co-authored-by: lareine <lareine@tycho.ncsc.mil>
* Some initial additions to the details page for displaying Rim information.
* Initial changes for uploading a rim file.
* This is an update to the display of the Reference Integrity Manifest code base that'll allow a user to upload a swidtag. This code includes some additions from #217, slightly modified.
* This code update include changes to import, archive and delete a swidtag into the RIM object.
* This commit consolidated the SwidTagGatway code and Constants into Reference Manifest.
* This is the final main push of code that will upload, process, store, retrive/delete and display the contents of a RIM swid tag.
* Interim commit for demo purposes.
* Updated Unit Tests
* This commit adds the unit tests that weren't added in the previous commit
* Updated code to reduce execution time when processing reference manifest objects.
* Updated code for better GUI performance.
* Removed previously added suppression entries.
* Support reading conf settings from a json file
* Add optional RIM attributes
* Add xml signature element
* New commandline arguments for attributes conf file and privatekey or cert specification
* Add fields to satisfy NIST checks
* Print generated base rim contents to console also
* Added TCG Event Log Processing that converts TCG Event Logs to HIRS TPM Baselines
* Some minor formating, syntax and code refactoring updates.
* Updated checkstyle failures.
* String format was missing additional %s.
Co-authored-by: Cyrus <24922493+cyrus-dev@users.noreply.github.com>
* Updated docker images to use python3
* Updated docker compose files.
* Test Travis CI
* Test Travis CI
* Updated Dockerfiles.
* Updated .travis.yml
* Cleaned up scripts.
* Cleaned up scripts.
* Updated docker-compose files.
* Updated amazonlinux2 image with python3.
* Updated system test driver.
* Updated system test driver
* Cleaned up import in test driver.
* Updated setup scripts to output python version
* This commit fixes an error produced when provisioning when the certificate from a previous provision is deleted from the ACA. The error involves doing a look up for an existing certificate and getting nothing however this is due to not using the 'includeArchived' attribute for the Certificate Selector. Include Archived is used when manually uploading a certificate.
* Initial system test for TPM 1.2 emulator.
* Update .travis.yml file.
* Added system test: test_20_tpm_1_2_initial_provision
* Cleaned up files.
* Correct docker location
* Re-arranged system tests.
* Execute test_12_attestation_ca_portal_online for all current collectors.
* Clean up files.
* Cleaned up files.
* Cleaned up files.
* Cleaned up files.
* Cleaned up files
* Updated system test driver.
* Set logging properties to DEBUG.
* Commented out test_13_tpm_1_2_initial_provision. Need to fix it.
* PACCOR Testing.
* PACCOR Testing.
* PACCOR Testing.
* PACCOR Testing
* PACCOR Testing
* Updated Dockerfile.tpm2provisioner
* Cleaned up files.
* Point to the updated tpm2provisioner in hirs/hirs-ci, on Docker Hub.
* Cleaned up files.
* Used specific PACCOR script(allcomponents_hirs_system_test.sh) for
system tests.
* Added new PACCOR script for review.
Will be moved into the PACCOR project when permissions are granted.
* Added additional code pulled from the original branch for these changes aik-field-additions.
* Updated code to include the TCG Credential Specification, which is a different version from the Platform specification.
* [#195] Components identified by Component Class will have hardware IDs translated to names
* Update TPM Docker images to latest PACCOR(v1.1.3r3). Comment out the
failing system tests caused by invalid input to PACCOR.
* This commit includes functioning TPM quote code that is sent to the ACA. In addition it has code to also sent the pcrs list results.
Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.Additional changes to correct code for sending the pcr list over to the ACA.
* Changed the requirement for the field into protobuf to optional from required.
there are schema changes when upgrading from 1.0.3 to 1.0.4 but not when upgrading to 1.1.0.
These scripts are called when 'yum upgrade HIRS_AttestationCA' is invoked.
Fixed script file path
Fixed MySQL syntax error
These changes now differentiate between upgrade versions and add respective columns, and also
account for upgrades from 1.0.3 directly to 1.1.0.
* This is a quick fix to ensure that a delta that is being uploaded has a holder serial number that exists in the database.
* Fixed syntax issues.
* Through further testing with delta certificates that had differing begin validity dates, the code to test the sorting failed. This push includes a fix that places the deltas in the proper order.
In addition, this code includes a placeholder for deltas that don't have an existing holder certificate in the database.
* Findbugs is a cumbersome COTS product that generates more hassle than help. Upon indicating 'dodgy' code about redundant null checks, that didn't exist, it then didn't like using non-short circuit operators to verify that both objects are not null. It then spells out what non-shorting curcuit operators do, without acknowledges that's what you mean to do.
* Initial changes to pull down the serial from the validation reports page and transfer them to the certificates details page. This will then allow the certificate details page to reference the serial numbers that are in failure.
* This is an attempt to transfer data from page to page via the certificate manager.
* Previous attempt didn't work, the manager isn't saving the summary. Switching to augmenting the database by adding a new column for platform credentials.
* These changes add identifying color to the components that fail validation in the base certificate. This code however does change the database by adding a new column to track the fails and pass to the classes that display the information.
* Updated the jsp display of the highlighted component to red background with a white foreground. Updated the index of the string parse to not use magic numbers.
* The base certificate is getting a failure when the delta fixed the problem. The code is being modified to ignore the attribute validation of the base certificate and redo the trust chain check. The code now has a cleaner platform evaluation set up and store.