Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[#107] Additional component fields for version 2 #121

Merged
merged 88 commits into from
Apr 8, 2019
Merged

[#107] Additional component fields for version 2 #121

merged 88 commits into from
Apr 8, 2019

Conversation

cyrus-dev
Copy link
Contributor

This request is an initial set up for the new tagged elements for the component identifier. Which include
componentPlatformCert [5] IMPLICIT CertificateIdentifier OPTIONAL,
componentPlatformCertUri [6] IMPLICIT URIReference OPTIONAL,
status [7] IMPLICIT AttributeStatus OPTIONAL

And an update the PlatformProperty.java class that was updated with the AttributeStatus as well.

Closes #107

iadgovuser26 and others added 30 commits September 7, 2018 13:59
@iadgovuser26
Updated CONTRIBUTING.md
f62df7e
@apldev3
Remove old CI Runner config
a54cdec
@apldev3
[#1] Add support for processing ECC certificates as part of the trust…
8462eaf 
… chain
@apldev3
[#3] Ensure ACA and TPM2 Provisioner handle versioning correctly
b06f0c9
@apldev3
[#3] Ensure ACA and TPM2 Provisioner handle versioning correctly
eb5ae99
@apldev3
Update Link to Build Instructions on main README
bfad555
@iadgovuser26
Fixed link to the Platform Credential Profile.
1112735
@apldev3
[#7] Support Building (Not Packaging) on Ubuntu 18.04
7211c85
@apldev1 @apldev6
[#10] Fix representation of zero-valued hashes
099b6a5 
Zero-value hashes, and hashes of no data, are now
considered as matches to equal values instead of
treating them as 'unknown'.
@apldev3
[#12] Setup basic Travis CI build
eb3474c
@apldev3
Update README to include Build Status
e8ea358
@apldev3 @apldev4
[#7] Setup Build/Package Support for Ubuntu (#9)
36a8b27
@cyrus-dev @apldev3
Updating the certificate details page to display the Holder informati…
fc2bdb0 
…on and include a link to the associated Endorsement Certificate.
@cyrus-dev @apldev3
Adding ability to delete Attestation Certificates on the ACA.
0339af1
@apldev3
[#14] Parallelize Subproject CI Builds and Pull Pre-Built Image
68eadf4
@apldev3
Revise Docker to Always Pull Latest HIRS project
897274b
@cyrus-dev @apldev3
This change forces the supply chain validation service to verify that…
a70512a 
… the Platform Credential has a status of PASS. If it does not, no matter the outcome of the Attributes validation, the status of the Attributes can not be PASS.

Added an additional null check for a platform supply validation.  Added a mapping object for platform credential to the associated attributes during validations.

Added an additional null check for a platform supply validation.  Added a mapping object for platform credential to the associated attributes during validations. Missed import statement.
@apldev2 @apldev3
Adding Tpm2-tss support for Deb packaging.
fd9a836 
Changes how tpm20.h, which contains the TPM2 SAPI, is
imported to allow successful packaging of both debs and
rpms.
@apldev3 @apldev4
[#23] Update HIRS Utils and ACA to handle certificate padding (#26)
a17ad9c
@apldev3 @apldev4
[#27] Fix TPMSecurityAssertions Parsing in EndorsementCredential (#31)
53f5684
@apldev4 @apldev3
[#28] ACA RPM modifies SELinux policy to allow Tomcat to use MySQL.
9be796f 
The CentOS7 package selinux-policy-targeted does not allow Tomcat
to use port 3306, which is the default MySQL port. This commit
changes the ACA RPM to modify the SELinux policy to grant that
permission on fresh installs. This makes the ACA RPM now require
the policycoreutils package to be installed.
Print provisioner installation comments to console
a599da8
@apldev3
[#25] Make ACA exception handling more descriptive
5121475
@iadgovuser26
Merge pull request #37 from nsacyber/issue-36
f2db4f4 
[#36] TPM Provisioner status output
@apldev3
[#38] ACA checks uploaded EK Certs if one is not provided during prov…
fcf8921 
…isioning
@apldev3
[#7] Ensure Ubuntu support pending end-user installation of supported…
ee51a1a 
… TPM2 Libraries
@apldev1 @apldev4
[#33] IMA baselines can match measurements based solely on hashes (#34)
1a11ae5 
ImaAcceptableRecordBaseline and its subclasses have been updated to include
a containsHashes method to be able to match IMA measurement records
based solely on their hashes.  Supporting classes have been
updated or created as necessary.

Additionally, the set of path equivalencies as specified in the IMA
policy have been updated to include additional entries.

Closes #33.
@iadgovuser26
Updated for release 1.0.2
e7f9aac
@apldev3
[#32] Add package stage to Travis Build
70b60ee
@apldev3 @apldev4
[#47] Prevent deletion of external dependencies for TPM 2.0 Provision…
b260766 
…er (#48)
@cyrus-dev cyrus-dev requested a review from chubtub March 29, 2019 16:58
@cyrus-dev cyrus-dev self-assigned this Mar 29, 2019
cyrus-dev and others added 3 commits April 1, 2019 07:08
@cyrus-dev
Added instanceof object check for attribute status in platform proper…
2bbad20 
…ty V2 as an additional safeguard against type mismatch.
@cyrus-dev
Added instanceof object check for attribute status in platform proper…
add155a 
…ty V2 as an additional safeguard against type mismatch.
@cyrus-dev
Merge branch 'additional_component_fields' of https://github.com/nsac…
abf9b3b 
…yber/HIRS into additional_component_fields
@cyrus-dev
Corrected logic on AttributeStatus isRemoved method.
6e400aa
@cyrus-dev
Merge branch 'additional_component_fields' of github.com:nsacyber/HIR…
d6faacd 
…S into additional_component_fields
@cyrus-dev
Removed reference to ComponentClass in V1 of ComponentIdentifer. Upda…
84a03c7 
…ted CertificateIdentifer to deal with tagged objects being optional, therefore the check for required in constructor is unnecessary.
chubtub
chubtub approved these changes Apr 2, 2019
View reviewed changes
Copy link
Contributor

@chubtub chubtub left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes look good to me.

HIRS_Utils/src/main/java/hirs/data/persist/certificate/attributes/V2/CertificateIdentifier.java Show resolved Hide resolved
HIRS_Utils/src/main/java/hirs/data/persist/certificate/attributes/V2/CertificateIdentifier.java Outdated Show resolved Hide resolved
@chubtub chubtub mentioned this pull request Apr 2, 2019
Closed
@cyrus-dev
Copy link
Contributor Author

FYI, I forgot about some older test patterns that do go over 4, 5 and 6. I'm going to go over this code with them to do a sanity check.

chubtub
chubtub approved these changes Apr 4, 2019
View reviewed changes
Copy link
Contributor

@chubtub chubtub left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes look good to me, class compiles.

@cyrus-dev cyrus-dev merged commit 2e76799 into master Apr 8, 2019
@apldev3 apldev3 deleted the additional_component_fields branch May 31, 2019 18:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@busaboy1340 busaboy1340 busaboy1340 approved these changes

@chubtub chubtub chubtub approved these changes

@iadgovuser26 iadgovuser26 Awaiting requested review from iadgovuser26

Assignees

@cyrus-dev cyrus-dev

Labels
server
Projects
None yet
Milestone
TCG Platform Certificate Profile Spec...
Development

Successfully merging this pull request may close these issues.

None yet
8 participants
@cyrus-dev @busaboy1340 @chubtub @iadgovuser26 @apldev3 @apldev1 @apldev2 @apldev4