chubtub
de790ed7b2
Clean up unit tests
2022-04-15 10:39:35 -04:00
chubtub
4b3c01f990
Moved KeyValue processing to KeySelector inner class
2022-04-15 10:28:07 -04:00
chubtub
e5e6db75f4
WIP: Modify validation code and unit tests to account for embedded public key.
2022-04-15 10:28:07 -04:00
chubtub
0a618b3796
Modify default attributes file path. Add unit test for embed option.
2022-04-15 10:28:06 -04:00
chubtub
392821a2b9
Add option to explicitly embed a user-provided public key into signed swidtag.
2022-04-15 10:28:03 -04:00
chubtub
3353bbf40e
Check Directory and File for supportRIMFormat. An empty value defaults to TCG_EventLog_Assertion. Update unit tests.
2022-03-14 14:21:18 -04:00
chubtub
7ca015896e
Add supportRIMFormat attribute under Payload element, with default value of TCG_EventLog_Assertion.
2022-03-08 18:57:34 -05:00
chubtub
acfe67a546
Prevent jar file from being truncated by packaging.
2022-03-04 10:19:06 -05:00
chubtub
f8c593c4b7
Add git timestamp and hash to the rpm name. Also centralize version number to package.sh.
2022-03-04 10:19:06 -05:00
chubtub
df9cc298ff
Require the user to give signing credentials via -k and -p, or indicate default credentials via -d.
2022-01-04 17:12:53 -05:00
chubtub
064dab89c8
Change from com.eclipsesource.json package to javax.json for parsing
2021-11-10 12:59:13 -05:00
chubtub
d2d2b9a494
Remove KeyValue element from signed swidtag. Update error message for missing signer cert. Update version number.
2021-07-23 17:41:31 -04:00
chubtub
8958085b60
Search for signing cert by SKID instead of PK
2021-07-16 16:46:31 -04:00
chubtub
ce090558a6
Parse public key or signing cert from XML properly. Disallow a single cert for validation. Update javadocs
2021-07-13 10:42:46 -04:00
chubtub
cfd04ae15a
Rename keystore to truststore. Read truststore file for validation if given.
2021-07-07 15:21:24 -04:00
chubtub
6acfb13ce8
Add cert path validation to SwidTagValidator class. Modify CredentialParser class to support changes.
2021-07-07 07:48:10 -04:00
Cyrus
8abffb54e2
Merge pull request #372 from nsacyber/base64-decode-error
...
Base64 decode exception
2021-06-25 09:04:12 -04:00
Cyrus
620e389aab
Added a file
2021-06-21 11:29:10 -04:00
chubtub
3accb244e9
Catch DecoderException in the tcg_rim_tool CredentialParser class.
2021-06-10 12:34:38 -04:00
chubtub
8335088259
Revert "Add validation of base64 encoding for payload file hash attribute."
...
This reverts commit 51b92f7673
.
2021-05-26 15:20:23 -04:00
chubtub
51b92f7673
Add validation of base64 encoding for payload file hash attribute.
2021-05-25 12:05:56 -04:00
chubtub
4679264897
Fix path for jar file
2020-11-20 12:42:07 -05:00
chubtub
dbfdcdf9fd
Update version to 2.0.0
2020-11-10 15:39:47 -05:00
chubtub
43208332ae
Add default keystore in case of no input
2020-11-10 08:04:41 -05:00
chubtub
00d3846dfe
Remove default keystore file constant, this file is now an input parameter.
2020-11-09 15:23:56 -05:00
chubtub
8a175b18f7
Move supportRIMFormat from Meta to Payload
2020-08-18 12:19:16 -04:00
iadgovuser26
e5ca8102a8
Update README.md
2020-08-12 12:03:02 +00:00
chubtub
52cb0ede34
Fix errors with firmware attributes. Move attributes under appropriate elements.
2020-08-06 17:38:54 -04:00
chubtub
33c20e8c70
Fix classpath error causing broken unit tests
2020-08-04 13:25:50 -04:00
chubtub
df6a864c2d
Merge pull request #284 from nsacyber/issue-273
...
[#273 ] Validate base RIM with external cert
2020-08-03 10:43:17 -04:00
iadgovuser26
e694242230
Update README.md
...
path fix in README.md
2020-07-23 16:38:24 -04:00
chubtub
dc25c983c1
Print AIA extension from validation cert
2020-07-23 10:06:49 -04:00
chubtub
6e36eee1ab
Add -p option under -v to validate a self-signed base RIM with an external cert
2020-07-21 14:50:07 -04:00
chubtub
a0a2222554
Fix broken unit test from moving validation code to new class
2020-07-21 14:33:32 -04:00
chubtub
586d109e7f
Move validation code to new class
2020-07-21 14:32:36 -04:00
chubtub
2b6a947986
Directory and File names are read from json, File size and hash are calculated from given -l <filepath>
2020-06-25 08:26:41 -04:00
chubtub
7045fc9978
Passing -l <filepath> to -v will verify the payload hash with <filepath> instead of the <File name=filepath>
2020-06-25 07:58:37 -04:00
iadgovuser26
1f860b5682
Updated with rim command line reference.
2020-06-24 07:00:29 -04:00
chubtub
c9c40e9bac
Install link to /usr/local/bin
2020-06-19 09:15:02 -04:00
chubtub
4404d25f20
Revert "Revert changes to HashSwid class"
...
This reverts commit d850d69b1e8b14367b25c075dd8f61b30e558c02.
2020-06-19 07:29:20 -04:00
chubtub
3babe6cc2f
Revert changes to HashSwid class
2020-06-19 07:29:20 -04:00
chubtub
a4e3fb38de
Fixed unit test
2020-06-19 07:29:20 -04:00
chubtub
9b4eb49601
Add symlink to /usr/local/bin/rim during rpm install
2020-06-19 07:29:20 -04:00
iadgovuser26
fab55e4439
Added README.md with build instructions
2020-06-18 13:10:29 -04:00
chubtub
3747c1911e
Update packaging script to install to /opt/hirs/rimtool
2020-06-16 08:11:12 -04:00
chubtub
64ddc39c2c
Add validation of support RIM in payload
2020-06-15 17:50:18 -04:00
chubtub
c69affd4f6
Added a check against embedding a self-signed cert. Requires a support rim whose name, size, and hash are added to the payload.
2020-06-15 17:50:18 -04:00
iadgovuser26
586c29c0f3
Fixed merge conflicts
2020-06-10 16:51:47 -04:00
chubtub
8eda518b0a
Add exit code 1 for failed validation
2020-06-08 06:50:46 -04:00
chubtub
6ae5a18f99
Implement --create, --attributes, --out, and --help in JCommander
...
Add KeyName (subjectKeyIdentifier) and KeyValue (public key) to KeyInfo element
Implement --privateKeyFile and --publicCertificate in JCommander
Implement -v in JCommander. Clean up unit tests.
Implement support for PKCS1 in CredentialParser class.
Truncate # symbol after parsing subject key identifier
Close input streams in CredentialParser class
Closes #237
2020-06-08 06:50:46 -04:00