Commit Graph

1634 Commits

Author SHA1 Message Date
apldev3
c4bc52bd42
[#52] Make TPM2 Provisioner check for a running Resource Manager (#53)
[#52] Make TPM2 Provisioner check for a running Resource Manager
2018-11-26 16:45:22 -05:00
apldev1
c12cb135f1 [#49] Modify getPolicy behavior to reflect use
DBPolicyManager's getPolicy(appraiser, device) has historically
returned the default policy for an appraiser if none is defined
in the device group that the given device belongs to.  However,
this behavior does not in fact support the current use of devices,
groups, and policies; in the case where a group has no policy
assigned for a type of appraiser, the system is in a state
where that type of appraisal will not occur for devices in
a given group.  To better reflect desired behavior, the method
now returns null if a policy is not explicitly set for
the given (appraiser, device group) pair.

Closes #49.
2018-11-08 10:53:31 -05:00
apldev4
0586afb9d8
[#41] Provisioners use PACCOR for device info collection. (#45)
The provisioners used to shell out using different tools
to collect device info. Now they both use PACCOR instead.
2018-11-07 14:54:48 -05:00
apldev3
f8b9dfe582 [#47] Prevent deletion of external dependencies for TPM 2.0 Provisioner (#48) 2018-11-07 10:45:42 -05:00
apldev3
f769da4b15 [#32] Add package stage to Travis Build 2018-11-02 13:18:09 -04:00
iadgovuser26
d1bdf95696
Updated for release 1.0.2 2018-11-01 13:35:21 -04:00
apldev1
2d0806e5a8 [#33] IMA baselines can match measurements based solely on hashes (#34)
ImaAcceptableRecordBaseline and its subclasses have been updated to include
a containsHashes method to be able to match IMA measurement records
based solely on their hashes.  Supporting classes have been
updated or created as necessary.

Additionally, the set of path equivalencies as specified in the IMA
policy have been updated to include additional entries.

Closes #33.
2018-11-01 10:47:33 -04:00
apldev3
37ba6de3cd [#7] Ensure Ubuntu support pending end-user installation of supported TPM2 Libraries 2018-11-01 09:47:40 -04:00
apldev3
ce380db48c [#38] ACA checks uploaded EK Certs if one is not provided during provisioning 2018-11-01 09:30:01 -04:00
iadgovuser26
90d7f40fda
Merge pull request #37 from nsacyber/issue-36
[#36] TPM Provisioner status output
2018-10-31 14:02:44 -04:00
apldev3
87be5a396b [#25] Make ACA exception handling more descriptive 2018-10-31 09:26:20 -04:00
Michael Tsai
fe0a542aa6 Print provisioner installation comments to console 2018-10-29 13:05:26 -04:00
apldev4
6847c814af [#28] ACA RPM modifies SELinux policy to allow Tomcat to use MySQL.
The CentOS7 package selinux-policy-targeted does not allow Tomcat
to use port 3306, which is the default MySQL port. This commit
changes the ACA RPM to modify the SELinux policy to grant that
permission on fresh installs. This makes the ACA RPM now require
the policycoreutils package to be installed.
2018-10-24 11:24:03 -04:00
apldev3
17b1426288 [#27] Fix TPMSecurityAssertions Parsing in EndorsementCredential (#31) 2018-10-23 11:40:49 -04:00
apldev3
f192ce5826 [#23] Update HIRS Utils and ACA to handle certificate padding (#26) 2018-10-18 14:34:52 -04:00
apldev2
23570f71c3 Adding Tpm2-tss support for Deb packaging.
Changes how tpm20.h, which contains the TPM2 SAPI, is
imported to allow successful packaging of both debs and
rpms.
2018-10-18 12:05:43 -04:00
Taruan Matthews
cc12a02c53 This change forces the supply chain validation service to verify that the Platform Credential has a status of PASS. If it does not, no matter the outcome of the Attributes validation, the status of the Attributes can not be PASS.
Added an additional null check for a platform supply validation.  Added a mapping object for platform credential to the associated attributes during validations.

Added an additional null check for a platform supply validation.  Added a mapping object for platform credential to the associated attributes during validations. Missed import statement.
2018-10-15 10:38:21 -04:00
apldev3
65f9cb0af7 Revise Docker to Always Pull Latest HIRS project 2018-10-12 14:26:01 -04:00
apldev3
e711f9df55 [#14] Parallelize Subproject CI Builds and Pull Pre-Built Image 2018-10-12 12:01:46 -04:00
Taruan Matthews
4bb5fae0a4 Adding ability to delete Attestation Certificates on the ACA. 2018-10-05 11:04:44 -04:00
Taruan Matthews
916638be03 Updating the certificate details page to display the Holder information and include a link to the associated Endorsement Certificate. 2018-10-04 10:08:05 -04:00
apldev3
e27e5ea1e6 [#7] Setup Build/Package Support for Ubuntu (#9) 2018-10-02 16:21:35 -04:00
apldev3
66551196f5 Update README to include Build Status 2018-09-26 13:44:59 -04:00
apldev3
00b1c913e4 [#12] Setup basic Travis CI build 2018-09-26 13:18:51 -04:00
apldev1
eced951933 [#10] Fix representation of zero-valued hashes
Zero-value hashes, and hashes of no data, are now
considered as matches to equal values instead of
treating them as 'unknown'.
2018-09-24 11:18:45 -04:00
apldev3
9731a78fcb [#7] Support Building (Not Packaging) on Ubuntu 18.04 2018-09-18 18:23:48 -04:00
iadgovuser26
3fec5ffc1e
Fixed link to the Platform Credential Profile. 2018-09-18 10:03:53 -04:00
apldev3
968d69c3ab Update Link to Build Instructions on main README 2018-09-17 12:42:46 -04:00
apldev3
8363ab867c [#3] Ensure ACA and TPM2 Provisioner handle versioning correctly 2018-09-17 12:38:22 -04:00
apldev3
bdbc85ef4d [#3] Ensure ACA and TPM2 Provisioner handle versioning correctly 2018-09-17 12:28:05 -04:00
apldev3
12f770080a [#1] Add support for processing ECC certificates as part of the trust chain 2018-09-13 13:09:48 -04:00
apldev3
4e59c5fff3 Remove old CI Runner config 2018-09-12 09:59:00 -04:00
iadgovuser26
2b053e6e8a
Updated CONTRIBUTING.md 2018-09-07 13:59:31 -04:00
apldev4
d7e44b8310 Initial release 2018-09-06 09:47:33 -04:00