Commit Graph

394 Commits

Author SHA1 Message Date
iadgovuser26
4766903aad initial setup for DB TLS 2023-08-11 09:47:30 -04:00
Cyrus
46ecbe6b26 Resolved the issue with the Certificate page not paging. I had the
setters flipped.
2023-08-07 06:23:41 -04:00
Cyrus
751a8104fc Updated all page controllers that were causing an issue to display
content based on the page allocations.
2023-08-04 10:13:25 -04:00
Cyrus
e3aa52728d @responsebody was removed by mistake and causes ajax dataTables error. 2023-08-02 11:14:39 -04:00
Cyrus
bd8019cfc6 The delete method was missing, reintroduced it and tested 2023-07-31 13:43:06 -04:00
Cyrus
391a4691c5 This push fixes the dataTable ajax error when navigating to the device
page. And it incorporates Trust Chain acaCertificate.
2023-07-28 12:49:24 -04:00
iadgovuser26
9f9ca12429
Merge pull request #558 from nsacyber/v3_issue_550
[#550] Adds TLS to embedded tomcat
2023-07-21 12:55:47 -04:00
iadgovuser26
3a72f8ad4d removed un-needed files 2023-07-20 12:50:16 -04:00
iadgovuser26
172236a75b moved logs to /var/log/hirs 2023-07-20 11:53:34 -04:00
iadgovuser26
383fefdfef changed bootRun parameter to --spring.config.location 2023-07-18 13:09:31 -04:00
iadgovuser26
29ba16cdb5 fixed issue with bootRun on RHEL 2023-07-13 16:40:53 -04:00
iadgovuser26
e9c33f2857 Added jarkarta dependencies 2023-07-12 13:16:56 -04:00
Cyrus
6e96c32a5e Please enter the message for your changes.ssociated event values to the
support rim and delete them properly and to not also upload duplicate
issues. [no ci]
2023-07-11 07:07:13 -04:00
iadgovuser26
a8e5758cf4 Updated aca_bootRun script 2023-07-07 20:54:19 +00:00
iadgovuser26
146d05961d updated application.settings to use tls 2023-07-07 19:26:12 +00:00
5B96790E3664F40075A67E6ADF737EDB15B4408DBC91A81228B31537B0CE3E26
210c48dada
Merge pull request #548 from nsacyber/v3_bootrun-war-buildrpm
Supporting buildRpm alongside bootRun/bootWar
2023-06-30 13:50:08 -04:00
5B96790E3664F40075A67E6ADF737EDB15B4408DBC91A81228B31537B0CE3E26
cee017090f
Merge pull request #544 from nsacyber/v3_issue-534-basedetails
[#534] Base RIM Details Page
2023-06-30 10:48:37 -04:00
iadgovuser29
15f84333af Re-enabled the war task 2023-06-30 10:39:14 -04:00
Cyrus
34aa54100e This push resolves the parsing issue of swidtags that may not meet the
validation based on an attribute not matching the spec.
2023-06-30 09:03:19 -04:00
Cyrus
67681c0227 This push fixes the issues with parsing the file tag and getting the
hash value for the support rim and as well for getting the collapsible
file link on the details page to operate. [no ci]
2023-06-29 07:49:32 -04:00
Cyrus
27e55ab2c7 Updated the RIM details page to search for the associated support rim if
the base doesn't have it.  This is a temp measure before completing #526 [no ci]
2023-06-29 07:38:57 -04:00
iadgovuser29
f92a233078 Trying spring boot log4j dependencies 2023-06-27 15:58:36 -04:00
iadgovuser29
14d9e8897f Reverted page tag value 2023-06-27 14:05:25 -04:00
iadgovuser29
7b6ef6b751 Page loads 2023-06-26 09:18:14 -04:00
Cyrus
2d5836b8b6
Merge pull request #541 from nsacyber/v3_filestore-bean-removal
Filestore Service Removal
2023-06-23 07:05:37 -04:00
Cyrus
520c18fcdf This check in updates the code to list the certificates on their
specific page, rather than all on any of them.  Next will be introducing
the new parsing code for RIM and TLS so that Trust Chains show up [no ci]
2023-06-21 16:12:26 -04:00
5B96790E3664F40075A67E6ADF737EDB15B4408DBC91A81228B31537B0CE3E26
0bfb4ac8dd
Merge pull request #540 from nsacyber/v3_issue-534
[#534] Initial Display Fixes
2023-06-21 07:23:27 -04:00
Cyrus
5826b8c7e4 Added in updated tags and fixed attribute method from Platform
Credential
2023-06-21 07:11:55 -04:00
Cyrus
a5388d6ec9 Added download method mapper for certificates [no ci] 2023-06-20 11:37:31 -04:00
Cyrus
b3118d9f3b Removed comment for parameter that was removed [no ci] 2023-06-16 13:49:15 -04:00
Cyrus
17e01d4e72 Removed FileStorageService autowiring 2023-06-16 13:48:12 -04:00
Cyrus
6dbbee1420 Fixed display issue on PlatformCredentials page and included 'fn' tag
reference on details pages.  Removed additional files that are not being
used. [no ci]
2023-06-16 07:51:30 -04:00
Cyrus
405c6b79a7 Removed dependency [no ci] 2023-06-13 14:49:10 -04:00
Cyrus
9fe89232a8 Second commit mainly containing new files 2023-06-13 10:12:25 -04:00
Cyrus
3a72583836 First commit with modified files [no ci] 2023-06-13 09:29:29 -04:00
iadgovuser26
ae93a8bced added aca_setup.sh to support embedded tomcat [no ci] 2023-06-02 19:39:08 +00:00
iadgovuser26
c93118b71e added script for generating pki keys/certs [no ci] 2023-05-19 20:36:12 +00:00
iadgovuser26
b5c4d86430 cleaned up dnf install and dnf remove 2023-05-03 16:55:10 +00:00
iadgovuser26
665e90b176 updated with package for the ACA [no ci] 2023-04-27 19:52:08 +00:00
Cyrus
0f8f266569 Missed small updates to imports and implementation lines in the
build.gradle. [no ci]
2023-04-26 08:32:45 -04:00
root
6763e4a87d Merge remote-tracking branch 'origin/codebase-reset' into gradle-package 2023-04-25 18:37:28 +00:00
Cyrus
7d9f3d72f4 Updating the branch with additional code. The ACA loads, however
trust-chain does not.  I backed out x509 Certificate changes. [no ci]
2023-04-21 10:30:51 -04:00
iadgovuser26 iadgovuser26@empire.eclipse.ncsc.mil
ef65c6ad8b updated with package for tcg_rim_tool [no ci] 2023-03-17 14:47:10 -04:00
Cyrus
9be3f3b3be Update the build.gradle and settings.gradle files [no-ci] 2023-03-07 09:23:55 -05:00
Cyrus
17a8732908 added in finished files 2023-03-06 20:56:34 -05:00
Cyrus
468cbc0797 Finished up the rest of it 2023-03-06 20:54:49 -05:00
Cyrus
7cdbc74506 Updated the structure 2023-02-23 12:28:52 -05:00
Cyrus
1f77f3fe26 Small commit, setting up for another right after with a lot of changes 2023-02-23 09:42:17 -05:00
Cyrus
c23e4a4a07 Add in the untracked files and configs 2023-02-16 12:05:36 -05:00
Cyrus
d1b60c8c87 This commit includes a chunk of RIM code and includes xjc generated code
however it doesn't use jakarta instead of javax.
2023-02-16 12:00:38 -05:00
Cyrus
b4328e1288 These changes cleaned up the settings code and runs with out error for
changing policy settings.
2023-02-14 15:22:37 -05:00
Cyrus
72aa426018 This is a complete refactor. This uses Hibernate 6, Springboot Framework
3, Java 17, Jakarta
2023-02-14 07:30:16 -05:00
chubtub
6538daa4b3 Modify whitespace for proper report formatting 2022-11-17 12:58:59 -05:00
iadgovuser26
0917b9a872
Merge pull request #460 from nsacyber/issue-448
[#448] Visual Updates for Firmware Validation
2022-04-29 12:36:26 -04:00
Cyrus
e77018ddfd Added a null pointer check to the parsing of the suppor RIM section that
looks to use the platform manufacturer and model fields to search for a
Base RIM when those values are null.
2022-04-08 16:27:43 -04:00
Cyrus
748d10ea7b Updated the text for a passing validation for firmware 2022-03-28 09:45:08 -04:00
Cyrus
c12f2c3aa8 Added an additional text title change 2022-03-25 08:57:32 -04:00
Cyrus
b266a97175 Merge branch 'master' into issue-448 2022-03-24 07:27:50 -04:00
Cyrus
6093400994
Merge pull request #456 from nsacyber/issue-453
[#453] ReferenceDigestValues refactor
2022-03-22 12:42:25 -04:00
Cyrus
6f71f48ad2 Removed comments and updated notes for Patching values 2022-03-21 10:11:23 -04:00
Cyrus
2e26823fc1 Did some testing on manual/curl uploading. This produced an error
because device name was being used to pull objects in the validation
quote part of the provision.  This was changed.  The event log is
deleted each time so that only one event log per device is maintained.
2022-03-21 09:51:32 -04:00
Cyrus
d4c35e09ab Updated the code to correctly include the supplemental digestvalues in
the firmware validation.
2022-03-16 09:06:04 -04:00
Cyrus
31eea40028 The link for the event measurement log file was broken 2022-03-09 09:38:01 -05:00
Cyrus
211ae61215 Updated the rim details with changes to improve visual readout 2022-03-08 08:14:23 -05:00
Cyrus
2e0b83f4fe Updated the upload function for support RIM. The store happened before
the linkage and nothing was being saved.
2022-02-24 09:54:59 -05:00
chubtub
1fced3aa61 Resolve merge conflicts 2022-02-18 09:59:45 -05:00
chubtub
bf989bbee7 Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395 2022-02-17 16:55:59 -05:00
chubtub
a881c64ce8 Add support rim link to frontend. 2022-02-17 16:51:45 -05:00
chubtub
96200f57c2 Revert "Decode the event content for display on the frontend."
This reverts commit 2671a572ba.
2022-02-17 16:51:44 -05:00
chubtub
1cbe50b401 Decode the event content for display on the frontend. 2022-02-17 16:51:44 -05:00
chubtub
1436cafb55 Rename tpm-events to rim-database. Add link to index page. 2022-02-17 16:51:40 -05:00
Cyrus
f3842b3ed3 Updated the code to properly assign the base rim ID to the tpm events
link and updated the image for the nav bar tpm events
2022-02-17 16:49:09 -05:00
Cyrus
d02be16ced The event selector was removed. It was not needed, but the event
manager was modified to pull the right data.
2022-02-17 16:49:08 -05:00
Cyrus
aabeb4e37f Updated code allows the tpm event table to be searched and information
updated when the swidtag is added.
2022-02-17 16:49:06 -05:00
chubtub
7bb13c08c9 Add link to Base RIM 2022-02-17 16:48:11 -05:00
Cyrus
470e6eccdf Refactored the Reference Digest code so that the ReferenceDigestValue
table is accessible and upated the contoller for the getOrderedList.
2022-02-17 16:48:08 -05:00
Cyrus
10915bdc3b Prelminary changes to remove ReferenceDigestRecord as a database object. 2022-02-17 13:11:41 -05:00
chubtub
ddada80add WIP: frontend hangs while getting records from backend 2022-02-17 13:08:07 -05:00
chubtub
7d8df398e7 Controller class for returning TPM Event data to jsp 2022-02-17 13:08:06 -05:00
chubtub
b1d4ef7c1e Front end changes for new TPM Events page 2022-02-17 13:08:06 -05:00
chubtub
565ccd6758 Add support rim link to frontend. 2022-02-16 16:05:37 -05:00
chubtub
1d57ab0d09 Revert "Decode the event content for display on the frontend."
This reverts commit 2671a572ba.
2022-02-16 11:17:25 -05:00
chubtub
2671a572ba Decode the event content for display on the frontend. 2022-02-14 17:24:33 -05:00
Cyrus
81068850bd Added change to the null condition check for the policy threshold 2022-02-14 14:46:15 -05:00
Cyrus
caa2a7c55b Removed the RIM controller tests 2022-02-14 10:26:07 -05:00
Cyrus
1f2be7ce18 Updated the live log information if the base and support rim are not
uploaded together.
2022-02-11 08:01:28 -05:00
Cyrus
b5d01a3997 Merge branch 'issue-395' of https://github.com/nsacyber/HIRS into issue-395 2022-02-03 13:47:44 -05:00
Cyrus
6d4ee92b5f Updated the code to properly assign the base rim ID to the tpm events
link and updated the image for the nav bar tpm events
2022-02-03 12:04:12 -05:00
chubtub
79a132e74f Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395 2022-02-02 10:40:50 -05:00
chubtub
862387230a Rename tpm-events to rim-database. Add link to index page. 2022-02-02 10:39:22 -05:00
Cyrus
c5e3823acd The event selector was removed. It was not needed, but the event
manager was modified to pull the right data.
2022-02-02 09:28:35 -05:00
Cyrus
035efad9d2 Updated code allows the tpm event table to be searched and information
updated when the swidtag is added.
2022-01-31 14:11:36 -05:00
chubtub
ea6bb48d06 Merge branch 'master' into issue-395 2022-01-27 10:58:16 -05:00
chubtub
9150d2d2d8 Add link to Base RIM 2022-01-26 17:41:58 -05:00
chubtub
c4b6aca667 Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395 2022-01-24 14:35:01 -05:00
Cyrus
f503457bd4 Refactored the Reference Digest code so that the ReferenceDigestValue
table is accessible and upated the contoller for the getOrderedList.
2022-01-21 06:29:53 -05:00
Cyrus
9b133231a2 Temporary removal of policy page option for LDevID generation 2022-01-11 10:05:27 -05:00
Cyrus
6d8392da45 Prelminary changes to remove ReferenceDigestRecord as a database object. 2022-01-11 10:02:38 -05:00
chubtub
fc7d8b5dd1 Merge branch 'master' into issue-395 2022-01-07 09:36:50 -05:00
chubtub
a71e7130ab WIP: frontend hangs while getting records from backend 2022-01-04 11:07:18 -05:00
iadgovuser26
bf8ef387c1
Merge pull request #407 from nsacyber/issue-381
[#381] Update RIM validation in ACA
2021-12-16 10:39:58 -05:00
iadgovuser29
a5c5a3ac60 Add additional location for pci.ids file and fix checkstyle issues from
previous commit.
2021-12-02 12:28:41 -05:00
iadgovuser26
f8e549a458
Merge pull request #399 from nsacyber/certificate-bulk-download
Bulk Certificate Download
2021-12-02 11:04:40 -05:00
chubtub
d183504a3f Merge branch 'master' into issue-381 2021-11-10 10:08:42 -05:00
Cyrus
0934b3106f
Merge pull request #420 from nsacyber/base-rim-link-fix
RimLinkHash Fix
2021-11-10 10:06:11 -05:00
Cyrus
70d92c4b38
Merge pull request #417 from nsacyber/issue-404
[#404] PXE Policy options
2021-11-10 10:05:52 -05:00
Cyrus
04b050de15 The rimlinkhash meta information wasn't linking up with the associated swidtag. This is because the wrong hash look up was being used. Previously when the hexDecHash and base64Hash were implemented, the main focus was on the rimel and not the swidtag. 2021-11-10 09:50:17 -05:00
Cyrus
2d9fb19d38 Updated the new polices after doing a bit of testing to make sure that they do ignore when there is a failure on that specific bit. 2021-11-10 07:27:33 -05:00
chubtub
0c233ae771 Set signature validity so that the ACA can report accurately 2021-11-08 14:51:38 -05:00
chubtub
3a6be133eb Checkstyle changes 2021-11-08 14:51:38 -05:00
chubtub
962ca45bb7 Modify ACA RIM validation to search for a signing cert if the base RIM does not have an embedded cert. Validate the ca chain of the found signing cert. 2021-11-08 14:46:04 -05:00
Cyrus
bd5d905990 Updated the code to include bulk downloads for issued, eks. 2021-11-04 15:55:55 -04:00
Cyrus
2b7b4bfdd1 Updated the labeling for the Trust chain and platform certificates. The import label is removed and the download icon moved next to the import button. Added the same functionality to the RIMs. 2021-10-29 15:42:57 -04:00
Cyrus
aae6845730 Initial Commit. This adds the visual object to the policy page. 2021-10-29 14:55:23 -04:00
Cyrus
b0835d1cf5 Changed the compare to the hash value for the file instead of the filename. 2021-10-27 08:58:51 -04:00
Cyrus
bb6ec6cc4b The rim hash validation icon is coming up red when both base and support RIMs are loaded. This fixes that issue. 2021-10-26 11:09:36 -04:00
chubtub
0b4febf53b WIP: frontend hangs while getting records from backend 2021-10-20 14:57:52 -04:00
Cyrus
8f2290300e The wrong hash was use for the look up 2021-10-18 09:53:59 -04:00
Cyrus
9492c680da There was an checkstyles error that needed to be corrected. 2021-10-12 08:41:45 -04:00
Cyrus
ee7befca81 This initial commit adds the ability to download all platform credentials and trust chain credentials from their respective pages in a bulk zip. 2021-10-08 16:35:40 -04:00
chubtub
324865b434 Merge branch 'master' into issue-395 2021-10-06 15:01:02 -04:00
chubtub
84a2ff723c Controller class for returning TPM Event data to jsp 2021-10-06 15:00:23 -04:00
chubtub
386d467016 Front end changes for new TPM Events page 2021-10-05 14:56:27 -04:00
Cyrus
e51f01d52e Changed DevID to LDevID on the policy page and removed the Attestation reference for LDevID 2021-10-04 10:37:02 -04:00
Cyrus
f8a3ccd962 This is an initial commit updates the policy page. Adds additional policies for generating a DevID. The underlying code doesn't actually generate one yet. But the SupplyChainPolicy holds the flags. 2021-09-17 07:55:44 -04:00
iadgovuser26
6a11cb35ce
Delete HIRS_ACA_UsersGuide_1.0.3.pdf
Removed older version of the users guide.
2021-08-26 11:31:14 -04:00
iadgovuser26
3e4a09753f
Add files via upload
Added TCG Rim Tool Users Guide and TCG Event Log Users Guide.
2021-08-26 11:28:29 -04:00
iadgovuser29
71cea63842 An old servlet on the classpath caused errors for portal building and testing. 2021-08-17 09:27:06 -04:00
Cyrus
cac913af11 Updated the component class to no longer use ints but instead use only Strings 2021-07-01 12:49:35 -04:00
Cyrus
5c448057d4
Merge branch 'master' into fm-validation-pass-link 2021-06-28 12:15:47 -04:00
Cyrus
bdbe9332bc Resolved the merge conflicts. 2021-06-28 12:04:54 -04:00
Cyrus
b6f4c294d1 Some finaly changes to the failed event display 2021-06-28 10:30:45 -04:00
Cyrus
8a9e5059d8 Minor visual updates to the event log failure page 2021-06-25 13:00:20 -04:00
chubtub
93f212a193 Modify ReferenceManifestDetailsPageController class to include cert path check in reporting RIM signature validity. 2021-06-25 11:40:08 -04:00
Cyrus
94930e981a Finished updating the title for the new page 2021-06-21 15:51:31 -04:00
Cyrus
b06025a71f Updated the Event Log Measurements class to use a hash for lookup 2021-06-17 12:52:28 -04:00
Cyrus
c523dda558 Some additional minor changes that are to address the event log being the object that is linked when the firmware validation passes. 2021-06-15 09:15:55 -04:00
Cyrus
1ec644eccc Added an additional catch statement to the parsing of Certificates that are PEM in case of a DecoderException for Base64.decode method. Instead of going to a blank page with the error, the ACA catches the exception and states on the page in which the file was uploaded to. 2021-06-10 11:19:38 -04:00
Cyrus
9c060dec55 Updated event log measurements to pass in the overall result status. However display isn't printing out correctly. 2021-06-09 11:07:11 -04:00
Cyrus
218002a3c2 Merge remote-tracking branch 'origin/digest-implement-final' into fm-validation-pass-link 2021-06-08 22:19:52 -04:00
Cyrus
8a258f2b76 Updated some text associated with the rimType 2021-05-28 08:48:40 -04:00
Cyrus
0e8e88b536 This commit has updated changes that save both a base64 and a hex dec value of the RIM file hash to the database. Depending on what is needed, they are used to pull either the base or support RIM. Also fixed the link for the rimlinkhash on the details page. 2021-05-27 13:46:43 -04:00
lareine
93b65edae4 added new version of the HIRS ACA Users Guide 2021-05-24 15:55:56 -04:00
Cyrus
efa2cada2d Updated the Rel Link References for the swid tag details pages. The previous set up didn't discern between a tag id and an actual url. 2021-05-21 06:40:06 -04:00
Cyrus
5162f7b187 Updated the details page for RIMs to check if the rim hash link entry exists, if not don't display valid check. 2021-05-21 05:56:21 -04:00
chubtub
59dff64af4 Support for -j|--json option to output validation report data in JSON format. Add shorthand options for script parameters and update help menu. 2021-05-20 12:06:20 -04:00
Cyrus
65d596a756 Some additional updates that included deviceNames as a means to pull RIM information. In addition updated the display of the failures, adding filters for like events from the baseline. 2021-05-20 06:26:07 -04:00
Cyrus
ddc36d81f4 This set of code changes deals with the displaying of failed digests values from the validation process. The way there were displayed before was going to be unsustainable because event numbers will never match up. There for a direct compare to a failed event would never be accurate. 2021-05-17 12:44:03 -04:00
chubtub
da7e1de7f3 Support -m|--manufacturer and -s|--serial filter options from commandline in controller class. 2021-05-11 13:06:37 -04:00
Cyrus
3b33bd60b8 The main change in this commit adjusts how the base and support rim are pulled for validation in the environment with multiple Base and Support RIMs per device/manufacturer/model. 2021-05-11 09:44:10 -04:00