-
Notifications
You must be signed in to change notification settings - Fork 57
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[#107] Additional component fields for version 2 #121
Conversation
Zero-value hashes, and hashes of no data, are now considered as matches to equal values instead of treating them as 'unknown'.
…on and include a link to the associated Endorsement Certificate.
… the Platform Credential has a status of PASS. If it does not, no matter the outcome of the Attributes validation, the status of the Attributes can not be PASS. Added an additional null check for a platform supply validation. Added a mapping object for platform credential to the associated attributes during validations. Added an additional null check for a platform supply validation. Added a mapping object for platform credential to the associated attributes during validations. Missed import statement.
Changes how tpm20.h, which contains the TPM2 SAPI, is imported to allow successful packaging of both debs and rpms.
The CentOS7 package selinux-policy-targeted does not allow Tomcat to use port 3306, which is the default MySQL port. This commit changes the ACA RPM to modify the SELinux policy to grant that permission on fresh installs. This makes the ACA RPM now require the policycoreutils package to be installed.
[#36] TPM Provisioner status output
ImaAcceptableRecordBaseline and its subclasses have been updated to include a containsHashes method to be able to match IMA measurement records based solely on their hashes. Supporting classes have been updated or created as necessary. Additionally, the set of path equivalencies as specified in the IMA policy have been updated to include additional entries. Closes #33.
…does not error on the line setting it only to null.
…does not error on the line setting it only to null.
…ty V2 as an additional safeguard against type mismatch.
…ty V2 as an additional safeguard against type mismatch.
…yber/HIRS into additional_component_fields
HIRS_Utils/src/main/java/hirs/data/persist/certificate/attributes/V2/ComponentIdentifierV2.java
Show resolved
Hide resolved
…S into additional_component_fields
…ted CertificateIdentifer to deal with tagged objects being optional, therefore the check for required in constructor is unnecessary.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changes look good to me.
HIRS_Utils/src/main/java/hirs/data/persist/certificate/attributes/V2/CertificateIdentifier.java
Show resolved
Hide resolved
HIRS_Utils/src/main/java/hirs/data/persist/certificate/attributes/V2/CertificateIdentifier.java
Outdated
Show resolved
Hide resolved
FYI, I forgot about some older test patterns that do go over 4, 5 and 6. I'm going to go over this code with them to do a sanity check. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changes look good to me, class compiles.
This request is an initial set up for the new tagged elements for the component identifier. Which include
componentPlatformCert [5] IMPLICIT CertificateIdentifier OPTIONAL,
componentPlatformCertUri [6] IMPLICIT URIReference OPTIONAL,
status [7] IMPLICIT AttributeStatus OPTIONAL
And an update the PlatformProperty.java class that was updated with the AttributeStatus as well.
Closes #107