Cyrus
27e55ab2c7
Updated the RIM details page to search for the associated support rim if
...
the base doesn't have it. This is a temp measure before completing #526 [no ci]
2023-06-29 07:38:57 -04:00
iadgovuser29
f92a233078
Trying spring boot log4j dependencies
2023-06-27 15:58:36 -04:00
iadgovuser29
14d9e8897f
Reverted page tag value
2023-06-27 14:05:25 -04:00
iadgovuser29
7b6ef6b751
Page loads
2023-06-26 09:18:14 -04:00
Cyrus
2d5836b8b6
Merge pull request #541 from nsacyber/v3_filestore-bean-removal
...
Filestore Service Removal
2023-06-23 07:05:37 -04:00
Cyrus
520c18fcdf
This check in updates the code to list the certificates on their
...
specific page, rather than all on any of them. Next will be introducing
the new parsing code for RIM and TLS so that Trust Chains show up [no ci]
2023-06-21 16:12:26 -04:00
5B96790E3664F40075A67E6ADF737EDB15B4408DBC91A81228B31537B0CE3E26
0bfb4ac8dd
Merge pull request #540 from nsacyber/v3_issue-534
...
[#534 ] Initial Display Fixes
2023-06-21 07:23:27 -04:00
Cyrus
5826b8c7e4
Added in updated tags and fixed attribute method from Platform
...
Credential
2023-06-21 07:11:55 -04:00
Cyrus
a5388d6ec9
Added download method mapper for certificates [no ci]
2023-06-20 11:37:31 -04:00
Cyrus
b3118d9f3b
Removed comment for parameter that was removed [no ci]
2023-06-16 13:49:15 -04:00
Cyrus
17e01d4e72
Removed FileStorageService autowiring
2023-06-16 13:48:12 -04:00
Cyrus
6dbbee1420
Fixed display issue on PlatformCredentials page and included 'fn' tag
...
reference on details pages. Removed additional files that are not being
used. [no ci]
2023-06-16 07:51:30 -04:00
Cyrus
9fe89232a8
Second commit mainly containing new files
2023-06-13 10:12:25 -04:00
Cyrus
3a72583836
First commit with modified files [no ci]
2023-06-13 09:29:29 -04:00
Cyrus
0f8f266569
Missed small updates to imports and implementation lines in the
...
build.gradle. [no ci]
2023-04-26 08:32:45 -04:00
Cyrus
7d9f3d72f4
Updating the branch with additional code. The ACA loads, however
...
trust-chain does not. I backed out x509 Certificate changes. [no ci]
2023-04-21 10:30:51 -04:00
Cyrus
17a8732908
added in finished files
2023-03-06 20:56:34 -05:00
Cyrus
468cbc0797
Finished up the rest of it
2023-03-06 20:54:49 -05:00
Cyrus
7cdbc74506
Updated the structure
2023-02-23 12:28:52 -05:00
Cyrus
1f77f3fe26
Small commit, setting up for another right after with a lot of changes
2023-02-23 09:42:17 -05:00
Cyrus
c23e4a4a07
Add in the untracked files and configs
2023-02-16 12:05:36 -05:00
Cyrus
d1b60c8c87
This commit includes a chunk of RIM code and includes xjc generated code
...
however it doesn't use jakarta instead of javax.
2023-02-16 12:00:38 -05:00
Cyrus
b4328e1288
These changes cleaned up the settings code and runs with out error for
...
changing policy settings.
2023-02-14 15:22:37 -05:00
Cyrus
72aa426018
This is a complete refactor. This uses Hibernate 6, Springboot Framework
...
3, Java 17, Jakarta
2023-02-14 07:30:16 -05:00
chubtub
6538daa4b3
Modify whitespace for proper report formatting
2022-11-17 12:58:59 -05:00
iadgovuser26
0917b9a872
Merge pull request #460 from nsacyber/issue-448
...
[#448 ] Visual Updates for Firmware Validation
2022-04-29 12:36:26 -04:00
Cyrus
e77018ddfd
Added a null pointer check to the parsing of the suppor RIM section that
...
looks to use the platform manufacturer and model fields to search for a
Base RIM when those values are null.
2022-04-08 16:27:43 -04:00
Cyrus
748d10ea7b
Updated the text for a passing validation for firmware
2022-03-28 09:45:08 -04:00
Cyrus
c12f2c3aa8
Added an additional text title change
2022-03-25 08:57:32 -04:00
Cyrus
b266a97175
Merge branch 'master' into issue-448
2022-03-24 07:27:50 -04:00
Cyrus
6093400994
Merge pull request #456 from nsacyber/issue-453
...
[#453 ] ReferenceDigestValues refactor
2022-03-22 12:42:25 -04:00
Cyrus
6f71f48ad2
Removed comments and updated notes for Patching values
2022-03-21 10:11:23 -04:00
Cyrus
2e26823fc1
Did some testing on manual/curl uploading. This produced an error
...
because device name was being used to pull objects in the validation
quote part of the provision. This was changed. The event log is
deleted each time so that only one event log per device is maintained.
2022-03-21 09:51:32 -04:00
Cyrus
d4c35e09ab
Updated the code to correctly include the supplemental digestvalues in
...
the firmware validation.
2022-03-16 09:06:04 -04:00
Cyrus
31eea40028
The link for the event measurement log file was broken
2022-03-09 09:38:01 -05:00
Cyrus
211ae61215
Updated the rim details with changes to improve visual readout
2022-03-08 08:14:23 -05:00
Cyrus
2e0b83f4fe
Updated the upload function for support RIM. The store happened before
...
the linkage and nothing was being saved.
2022-02-24 09:54:59 -05:00
chubtub
1fced3aa61
Resolve merge conflicts
2022-02-18 09:59:45 -05:00
chubtub
bf989bbee7
Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395
2022-02-17 16:55:59 -05:00
chubtub
a881c64ce8
Add support rim link to frontend.
2022-02-17 16:51:45 -05:00
chubtub
96200f57c2
Revert "Decode the event content for display on the frontend."
...
This reverts commit 2671a572ba
.
2022-02-17 16:51:44 -05:00
chubtub
1cbe50b401
Decode the event content for display on the frontend.
2022-02-17 16:51:44 -05:00
chubtub
1436cafb55
Rename tpm-events to rim-database. Add link to index page.
2022-02-17 16:51:40 -05:00
Cyrus
f3842b3ed3
Updated the code to properly assign the base rim ID to the tpm events
...
link and updated the image for the nav bar tpm events
2022-02-17 16:49:09 -05:00
Cyrus
d02be16ced
The event selector was removed. It was not needed, but the event
...
manager was modified to pull the right data.
2022-02-17 16:49:08 -05:00
Cyrus
aabeb4e37f
Updated code allows the tpm event table to be searched and information
...
updated when the swidtag is added.
2022-02-17 16:49:06 -05:00
chubtub
7bb13c08c9
Add link to Base RIM
2022-02-17 16:48:11 -05:00
Cyrus
470e6eccdf
Refactored the Reference Digest code so that the ReferenceDigestValue
...
table is accessible and upated the contoller for the getOrderedList.
2022-02-17 16:48:08 -05:00
Cyrus
10915bdc3b
Prelminary changes to remove ReferenceDigestRecord as a database object.
2022-02-17 13:11:41 -05:00
chubtub
ddada80add
WIP: frontend hangs while getting records from backend
2022-02-17 13:08:07 -05:00
chubtub
7d8df398e7
Controller class for returning TPM Event data to jsp
2022-02-17 13:08:06 -05:00
chubtub
b1d4ef7c1e
Front end changes for new TPM Events page
2022-02-17 13:08:06 -05:00
chubtub
565ccd6758
Add support rim link to frontend.
2022-02-16 16:05:37 -05:00
chubtub
1d57ab0d09
Revert "Decode the event content for display on the frontend."
...
This reverts commit 2671a572ba
.
2022-02-16 11:17:25 -05:00
chubtub
2671a572ba
Decode the event content for display on the frontend.
2022-02-14 17:24:33 -05:00
Cyrus
81068850bd
Added change to the null condition check for the policy threshold
2022-02-14 14:46:15 -05:00
Cyrus
caa2a7c55b
Removed the RIM controller tests
2022-02-14 10:26:07 -05:00
Cyrus
1f2be7ce18
Updated the live log information if the base and support rim are not
...
uploaded together.
2022-02-11 08:01:28 -05:00
Cyrus
b5d01a3997
Merge branch 'issue-395' of https://github.com/nsacyber/HIRS into issue-395
2022-02-03 13:47:44 -05:00
Cyrus
6d4ee92b5f
Updated the code to properly assign the base rim ID to the tpm events
...
link and updated the image for the nav bar tpm events
2022-02-03 12:04:12 -05:00
chubtub
79a132e74f
Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395
2022-02-02 10:40:50 -05:00
chubtub
862387230a
Rename tpm-events to rim-database. Add link to index page.
2022-02-02 10:39:22 -05:00
Cyrus
c5e3823acd
The event selector was removed. It was not needed, but the event
...
manager was modified to pull the right data.
2022-02-02 09:28:35 -05:00
Cyrus
035efad9d2
Updated code allows the tpm event table to be searched and information
...
updated when the swidtag is added.
2022-01-31 14:11:36 -05:00
chubtub
ea6bb48d06
Merge branch 'master' into issue-395
2022-01-27 10:58:16 -05:00
chubtub
9150d2d2d8
Add link to Base RIM
2022-01-26 17:41:58 -05:00
chubtub
c4b6aca667
Merge branch 'issue-395' of github.com:nsacyber/HIRS into issue-395
2022-01-24 14:35:01 -05:00
Cyrus
f503457bd4
Refactored the Reference Digest code so that the ReferenceDigestValue
...
table is accessible and upated the contoller for the getOrderedList.
2022-01-21 06:29:53 -05:00
Cyrus
9b133231a2
Temporary removal of policy page option for LDevID generation
2022-01-11 10:05:27 -05:00
Cyrus
6d8392da45
Prelminary changes to remove ReferenceDigestRecord as a database object.
2022-01-11 10:02:38 -05:00
chubtub
fc7d8b5dd1
Merge branch 'master' into issue-395
2022-01-07 09:36:50 -05:00
chubtub
a71e7130ab
WIP: frontend hangs while getting records from backend
2022-01-04 11:07:18 -05:00
iadgovuser26
bf8ef387c1
Merge pull request #407 from nsacyber/issue-381
...
[#381 ] Update RIM validation in ACA
2021-12-16 10:39:58 -05:00
iadgovuser29
a5c5a3ac60
Add additional location for pci.ids file and fix checkstyle issues from
...
previous commit.
2021-12-02 12:28:41 -05:00
iadgovuser26
f8e549a458
Merge pull request #399 from nsacyber/certificate-bulk-download
...
Bulk Certificate Download
2021-12-02 11:04:40 -05:00
chubtub
d183504a3f
Merge branch 'master' into issue-381
2021-11-10 10:08:42 -05:00
Cyrus
0934b3106f
Merge pull request #420 from nsacyber/base-rim-link-fix
...
RimLinkHash Fix
2021-11-10 10:06:11 -05:00
Cyrus
70d92c4b38
Merge pull request #417 from nsacyber/issue-404
...
[#404 ] PXE Policy options
2021-11-10 10:05:52 -05:00
Cyrus
04b050de15
The rimlinkhash meta information wasn't linking up with the associated swidtag. This is because the wrong hash look up was being used. Previously when the hexDecHash and base64Hash were implemented, the main focus was on the rimel and not the swidtag.
2021-11-10 09:50:17 -05:00
Cyrus
2d9fb19d38
Updated the new polices after doing a bit of testing to make sure that they do ignore when there is a failure on that specific bit.
2021-11-10 07:27:33 -05:00
chubtub
0c233ae771
Set signature validity so that the ACA can report accurately
2021-11-08 14:51:38 -05:00
chubtub
3a6be133eb
Checkstyle changes
2021-11-08 14:51:38 -05:00
chubtub
962ca45bb7
Modify ACA RIM validation to search for a signing cert if the base RIM does not have an embedded cert. Validate the ca chain of the found signing cert.
2021-11-08 14:46:04 -05:00
Cyrus
bd5d905990
Updated the code to include bulk downloads for issued, eks.
2021-11-04 15:55:55 -04:00
Cyrus
2b7b4bfdd1
Updated the labeling for the Trust chain and platform certificates. The import label is removed and the download icon moved next to the import button. Added the same functionality to the RIMs.
2021-10-29 15:42:57 -04:00
Cyrus
aae6845730
Initial Commit. This adds the visual object to the policy page.
2021-10-29 14:55:23 -04:00
Cyrus
b0835d1cf5
Changed the compare to the hash value for the file instead of the filename.
2021-10-27 08:58:51 -04:00
Cyrus
bb6ec6cc4b
The rim hash validation icon is coming up red when both base and support RIMs are loaded. This fixes that issue.
2021-10-26 11:09:36 -04:00
chubtub
0b4febf53b
WIP: frontend hangs while getting records from backend
2021-10-20 14:57:52 -04:00
Cyrus
8f2290300e
The wrong hash was use for the look up
2021-10-18 09:53:59 -04:00
Cyrus
9492c680da
There was an checkstyles error that needed to be corrected.
2021-10-12 08:41:45 -04:00
Cyrus
ee7befca81
This initial commit adds the ability to download all platform credentials and trust chain credentials from their respective pages in a bulk zip.
2021-10-08 16:35:40 -04:00
chubtub
324865b434
Merge branch 'master' into issue-395
2021-10-06 15:01:02 -04:00
chubtub
84a2ff723c
Controller class for returning TPM Event data to jsp
2021-10-06 15:00:23 -04:00
chubtub
386d467016
Front end changes for new TPM Events page
2021-10-05 14:56:27 -04:00
Cyrus
e51f01d52e
Changed DevID to LDevID on the policy page and removed the Attestation reference for LDevID
2021-10-04 10:37:02 -04:00
Cyrus
f8a3ccd962
This is an initial commit updates the policy page. Adds additional policies for generating a DevID. The underlying code doesn't actually generate one yet. But the SupplyChainPolicy holds the flags.
2021-09-17 07:55:44 -04:00
iadgovuser26
6a11cb35ce
Delete HIRS_ACA_UsersGuide_1.0.3.pdf
...
Removed older version of the users guide.
2021-08-26 11:31:14 -04:00
iadgovuser26
3e4a09753f
Add files via upload
...
Added TCG Rim Tool Users Guide and TCG Event Log Users Guide.
2021-08-26 11:28:29 -04:00
Cyrus
cac913af11
Updated the component class to no longer use ints but instead use only Strings
2021-07-01 12:49:35 -04:00
Cyrus
5c448057d4
Merge branch 'master' into fm-validation-pass-link
2021-06-28 12:15:47 -04:00
Cyrus
bdbe9332bc
Resolved the merge conflicts.
2021-06-28 12:04:54 -04:00
Cyrus
b6f4c294d1
Some finaly changes to the failed event display
2021-06-28 10:30:45 -04:00
Cyrus
8a9e5059d8
Minor visual updates to the event log failure page
2021-06-25 13:00:20 -04:00
chubtub
93f212a193
Modify ReferenceManifestDetailsPageController class to include cert path check in reporting RIM signature validity.
2021-06-25 11:40:08 -04:00
Cyrus
94930e981a
Finished updating the title for the new page
2021-06-21 15:51:31 -04:00
Cyrus
b06025a71f
Updated the Event Log Measurements class to use a hash for lookup
2021-06-17 12:52:28 -04:00
Cyrus
c523dda558
Some additional minor changes that are to address the event log being the object that is linked when the firmware validation passes.
2021-06-15 09:15:55 -04:00
Cyrus
1ec644eccc
Added an additional catch statement to the parsing of Certificates that are PEM in case of a DecoderException for Base64.decode method. Instead of going to a blank page with the error, the ACA catches the exception and states on the page in which the file was uploaded to.
2021-06-10 11:19:38 -04:00
Cyrus
9c060dec55
Updated event log measurements to pass in the overall result status. However display isn't printing out correctly.
2021-06-09 11:07:11 -04:00
Cyrus
218002a3c2
Merge remote-tracking branch 'origin/digest-implement-final' into fm-validation-pass-link
2021-06-08 22:19:52 -04:00
Cyrus
8a258f2b76
Updated some text associated with the rimType
2021-05-28 08:48:40 -04:00
Cyrus
0e8e88b536
This commit has updated changes that save both a base64 and a hex dec value of the RIM file hash to the database. Depending on what is needed, they are used to pull either the base or support RIM. Also fixed the link for the rimlinkhash on the details page.
2021-05-27 13:46:43 -04:00
lareine
93b65edae4
added new version of the HIRS ACA Users Guide
2021-05-24 15:55:56 -04:00
Cyrus
efa2cada2d
Updated the Rel Link References for the swid tag details pages. The previous set up didn't discern between a tag id and an actual url.
2021-05-21 06:40:06 -04:00
Cyrus
5162f7b187
Updated the details page for RIMs to check if the rim hash link entry exists, if not don't display valid check.
2021-05-21 05:56:21 -04:00
chubtub
59dff64af4
Support for -j|--json option to output validation report data in JSON format. Add shorthand options for script parameters and update help menu.
2021-05-20 12:06:20 -04:00
Cyrus
65d596a756
Some additional updates that included deviceNames as a means to pull RIM information. In addition updated the display of the failures, adding filters for like events from the baseline.
2021-05-20 06:26:07 -04:00
Cyrus
ddc36d81f4
This set of code changes deals with the displaying of failed digests values from the validation process. The way there were displayed before was going to be unsustainable because event numbers will never match up. There for a direct compare to a failed event would never be accurate.
2021-05-17 12:44:03 -04:00
chubtub
da7e1de7f3
Support -m|--manufacturer and -s|--serial filter options from commandline in controller class.
2021-05-11 13:06:37 -04:00
Cyrus
3b33bd60b8
The main change in this commit adjusts how the base and support rim are pulled for validation in the environment with multiple Base and Support RIMs per device/manufacturer/model.
2021-05-11 09:44:10 -04:00
Cyrus
1b06d956b4
Updated how the swidtags and support files are updated when imported.
2021-05-07 10:57:19 -04:00
Cyrus
5acc393541
This commit adds several changes that updates how the RIM files are accessed and made accessible from the DB as well as what is shown visually when there is a validation failure and the measurement log is shown.
2021-05-06 08:43:26 -04:00
chubtub
12d03ea2ea
Support --system-only and --component-only options from commandline in controller class.
2021-05-05 12:54:43 -04:00
Cyrus
1d33054577
Merge pull request #350 from nsacyber/ignore-gpt-events
...
[#349 ] Ignore GPT PCR
2021-05-04 10:14:53 -04:00
Cyrus
5a040483da
Fixed a checkstyle issue
2021-04-14 15:35:22 -04:00
Cyrus
85d8f0342e
Fixed up the PMD issue
2021-04-14 14:52:45 -04:00
Cyrus
b52b8101a6
The new policy setting is supposed to be default on.
2021-04-14 14:23:43 -04:00
Cyrus
523bae8f9d
This set of code adds an additional policy to the page for the GPT PCR. Details for the change can be found in issue #349 .
2021-04-14 13:55:52 -04:00
Cyrus
d80e6d309b
Updated how the error checking for the digest failure is handled for the details page.
2021-04-14 11:17:10 -04:00
Cyrus
5a82e48b61
Merge branch 'master' into event-digest-update
2021-04-13 08:50:42 -04:00
Cyrus
e70e019c6b
This commit has some changes to how patch and supplemental are handled. It adds some flags to the Record and Value objects to note that data has been processed so that multiple entries aren't created.
2021-04-13 07:45:52 -04:00
Cyrus
760f246096
Merge pull request #342 from nsacyber/rim_digest_store
...
[#341 ] RIM Event Digest Store
2021-04-13 07:45:17 -04:00
Cyrus
c46aa2b48b
Merge pull request #348 from nsacyber/certificate-failure-fidelity
...
Certificate Failure Fidelity
2021-04-09 14:15:43 -04:00
Cyrus
6d435f9783
This commit adds some changes to the details page for RIMs so that the patch or supplemental RIM doesn't display "file not found" for the expected pcr values section
2021-04-09 12:27:55 -04:00
Cyrus
ea5b85b703
Updated the code to now display the var swidtag and rimel. However there are issues with the examples. This commit has fixes for how the pcr values are pulled for display on the base RIM page.
2021-04-02 06:34:47 -04:00
Cyrus
48c934d35f
Merge pull request #347 from nsacyber/serial-number-display-fix
...
Serial Number Display Fix
2021-04-02 06:10:53 -04:00
chubtub
8727a9b210
Merge pull request #339 from nsacyber/issue-336
...
[#336 ] Script to download ACAPortal validation reports
2021-03-30 09:49:03 -04:00
Cyrus
44632e8e04
Updated the code for authority serial number and serial number for the general info for any certificate to no longer use the getLong method of the Big Integer object. This truncated the value. Instead, the new code uses the Hex.toHexString method from bouncy castle.
2021-03-30 08:06:26 -04:00
Cyrus
4911742c7a
This is a checkout of some changes to the resource management for swid tags so that the file name listed is associated with the stored support RIMS.
2021-03-30 06:35:14 -04:00
Cyrus
f2308f2955
Updated the isIssuer and the containsAll to allow the reason for the platform certificate failure isn't that the issuer is missing but that the issuer available fails the public key on the details page for certificates
2021-03-26 10:32:19 -04:00
Cyrus
a6c6fbfb31
Made some changes for using just the RIM Hash to pull support rims from the database to associated with the swid tag. Changed the rim hash from and int to a string.
2021-03-25 13:28:31 -04:00
Cyrus
2110b7e94d
Merge branch 'rim_digest_store' into event-digest-update
2021-03-23 11:31:42 -04:00
Cyrus
108748fb2a
Undid some code and change the Digest Value class into a table in the database. This code then updates those values when a provision is initiated. At this time, that is all it does.
2021-03-19 11:01:25 -04:00
Cyrus
6e8086c59e
This is a change to the details page handler for the RIM files. The rimel files that are uploaded by themselves are not updated with manufacturer or model information, and the controllers are referencing that information when looking up database information. This causes a null exception and a funky output on the screen. This commit fixes this issue.
2021-03-17 10:39:39 -04:00
Cyrus
53cb300063
This is an initial commit with changes that add new classes for digest reference matching.
2021-03-17 10:23:08 -04:00
chubtub
175d2238d2
Add ACA address as option 3rd commandline parameter. Handle case where no reports are available or selected for download.
2021-03-16 11:09:58 -04:00
chubtub
7064c00c0b
Detect component failures in delta certs for validation reports
2021-03-16 10:18:06 -04:00
chubtub
3d13b8b72f
Add column in csv file for platform cert issuer for each component identifier
2021-03-16 09:16:45 -04:00
chubtub
c0a056b987
Script to download the validation report(s) from the ACAPortal from the command line.
2021-03-11 11:51:26 -05:00