attest displays dates either in local time or UTC
[strongswan.git] / src / libpts / plugins / imv_attestation / imv_attestation_state.c
index 4151ccb..93da9ae 100644 (file)
@@ -17,7 +17,9 @@
 
 #include <libpts.h>
 
-#include <utils/lexparser.h>
+#include <imv/imv_lang_string.h>
+#include "imv/imv_reason_string.h"
+
 #include <collections/linked_list.h>
 #include <utils/debug.h>
 
@@ -96,9 +98,14 @@ struct private_imv_attestation_state_t {
        pts_t *pts;
 
        /**
-        * Measurement error
+        * Measurement error flags
+        */
+       u_int32_t measurement_error;
+
+       /**
+        * TNC Reason String
         */
-       bool measurement_error;
+       imv_reason_string_t *reason_string;
 
 };
 
@@ -128,26 +135,47 @@ static void free_func_comp(func_comp_t *this)
        free(this);
 }
 
-typedef struct entry_t entry_t;
-
 /**
- * Define an internal reason string entry
+ * Supported languages
  */
-struct entry_t {
-       char *lang;
-       char *string;
-};
+static char* languages[] = { "en", "de", "mn" };
 
 /**
- * Table of multi-lingual reason string entries
+ * Table of reason strings
  */
-static entry_t reasons[] = {
-       { "en", "IMV Attestation: Incorrect/pending file measurement/component"
-                       " evidence or invalid TPM Quote signature received" },
-       { "mn", "IMV Attestation:  Буруу/хүлээгдэж байгаа файл/компонент хэмжилт "
-                       "эсвэл буруу TPM Quote гарын үсэг" },
-       { "de", "IMV Attestation: Falsche/Fehlende Dateimessung/Komponenten Beweis "
-                       "oder ungültige TPM Quote Unterschrift ist erhalten" },
+static imv_lang_string_t reason_file_meas_fail[] = {
+       { "en", "Incorrect file measurement" },
+       { "de", "Falsche Dateimessung" },
+       { "mn", "Буруу байгаа файл" },
+       { NULL, NULL }
+};
+
+static imv_lang_string_t reason_file_meas_pend[] = {
+       { "en", "Pending file measurement" },
+       { "de", "Ausstehende Dateimessung" },
+       { "mn", "Xүлээгдэж байгаа файл" },
+       { NULL, NULL }
+};
+
+static imv_lang_string_t reason_comp_evid_fail[] = {
+       { "en", "Incorrect component evidence" },
+       { "de", "Falsche Komponenten-Evidenz" },
+       { "mn", "Буруу компонент хэмжилт" },
+       { NULL, NULL }
+};
+
+static imv_lang_string_t reason_comp_evid_pend[] = {
+       { "en", "Pending component evidence" },
+       { "de", "Ausstehende Komponenten-Evidenz" },
+       { "mn", "Xүлээгдэж компонент хэмжилт" },
+       { NULL, NULL }
+};
+
+static imv_lang_string_t reason_tpm_quote_fail[] = {
+       { "en", "Invalid TPM Quote signature received" },
+       { "de", "Falsche TPM Quote Signature erhalten" },
+       { "mn", "Буруу TPM Quote гарын үсэг" },
+       { NULL, NULL }
 };
 
 METHOD(imv_state_t, get_connection_id, TNC_ConnectionID,
@@ -211,40 +239,48 @@ METHOD(imv_state_t, set_recommendation, void,
 
 METHOD(imv_state_t, get_reason_string, bool,
        private_imv_attestation_state_t *this, enumerator_t *language_enumerator,
-       char **reason_string, char **reason_language)
+       chunk_t *reason_string, char **reason_language)
 {
-       bool match = FALSE;
-       char *lang;
-       int i;
+       *reason_language = imv_lang_string_select_lang(language_enumerator,
+                                                                                         languages, countof(languages));
 
-       /* set the default language */
-       *reason_language = reasons[0].lang;
-       *reason_string   = reasons[0].string;
+       /* Instantiate a TNC Reason String object */
+       DESTROY_IF(this->reason_string);
+       this->reason_string = imv_reason_string_create(*reason_language);
 
-       while (language_enumerator->enumerate(language_enumerator, &lang))
+       if (this->measurement_error & IMV_ATTESTATION_ERROR_FILE_MEAS_FAIL)
        {
-               for (i = 0 ; i < countof(reasons); i++)
-               {
-                       if (streq(lang, reasons[i].lang))
-                       {
-                               match = TRUE;
-                               *reason_language = reasons[i].lang;
-                               *reason_string   = reasons[i].string;
-                               break;
-                       }
-               }
-               if (match)
-               {
-                       break;
-               }
+               this->reason_string->add_reason(this->reason_string,
+                                                                               reason_file_meas_fail);
+       }
+       if (this->measurement_error & IMV_ATTESTATION_ERROR_FILE_MEAS_PEND)
+       {
+               this->reason_string->add_reason(this->reason_string,
+                                                                               reason_file_meas_pend);
        }
+       if (this->measurement_error & IMV_ATTESTATION_ERROR_COMP_EVID_FAIL)
+       {
+               this->reason_string->add_reason(this->reason_string,
+                                                                               reason_comp_evid_fail);
+       }
+       if (this->measurement_error & IMV_ATTESTATION_ERROR_COMP_EVID_PEND)
+       {
+               this->reason_string->add_reason(this->reason_string,
+                                                                               reason_comp_evid_pend);
+       }
+       if (this->measurement_error & IMV_ATTESTATION_ERROR_TPM_QUOTE_FAIL)
+       {
+               this->reason_string->add_reason(this->reason_string,
+                                                                               reason_tpm_quote_fail);
+       }
+       *reason_string = this->reason_string->get_encoding(this->reason_string);
 
        return TRUE;
 }
 
 METHOD(imv_state_t, get_remediation_instructions, bool,
        private_imv_attestation_state_t *this, enumerator_t *language_enumerator,
-       char **string, char **lang_code, char **uri)
+       chunk_t *string, char **lang_code, char **uri)
 {
        return FALSE;
 }
@@ -252,6 +288,7 @@ METHOD(imv_state_t, get_remediation_instructions, bool,
 METHOD(imv_state_t, destroy, void,
        private_imv_attestation_state_t *this)
 {
+       DESTROY_IF(this->reason_string);
        this->file_meas_requests->destroy_function(this->file_meas_requests, free);
        this->components->destroy_function(this->components, (void *)free_func_comp);
        this->pts->destroy(this->pts);
@@ -392,16 +429,16 @@ METHOD(imv_attestation_state_t, get_component, pts_component_t*,
        return found;
 }
 
-METHOD(imv_attestation_state_t, get_measurement_error, bool,
+METHOD(imv_attestation_state_t, get_measurement_error, u_int32_t,
        private_imv_attestation_state_t *this)
 {
        return this->measurement_error;
 }
 
 METHOD(imv_attestation_state_t, set_measurement_error, void,
-       private_imv_attestation_state_t *this)
+       private_imv_attestation_state_t *this, u_int32_t error)
 {
-       this->measurement_error = TRUE;
+       this->measurement_error |= error;
 }
 
 METHOD(imv_attestation_state_t, finalize_components, void,
@@ -414,7 +451,7 @@ METHOD(imv_attestation_state_t, finalize_components, void,
        {
                if (!entry->comp->finalize(entry->comp, entry->qualifier))
                {
-                       _set_measurement_error(this);
+                       set_measurement_error(this, IMV_ATTESTATION_ERROR_COMP_EVID_PEND);
                }
                free_func_comp(entry);
        }