transfer IMA file measurements via PA-TNC
[strongswan.git] / src / libpts / pts / components / ita / ita_comp_tgrub.c
index d543333..a25f2f8 100644 (file)
@@ -1,6 +1,5 @@
 /*
- * Copyright (C) 2011 Andreas Steffen
- *
+ * Copyright (C) 2011-2012 Andreas Steffen
  * HSR Hochschule fuer Technik Rapperswil
  *
  * This program is free software; you can redistribute it and/or modify it
@@ -44,6 +43,12 @@ struct pts_ita_comp_tgrub_t {
         * Sub-component depth
         */
        u_int32_t depth;
+
+       /**
+        * PTS measurement database
+        */
+       pts_database_t *pts_db;
+
 };
 
 METHOD(pts_component_t, get_comp_func_name, pts_comp_func_name_t*,
@@ -65,7 +70,8 @@ METHOD(pts_component_t, get_depth, u_int32_t,
 }
 
 METHOD(pts_component_t, measure, status_t,
-       pts_ita_comp_tgrub_t *this, pts_t *pts, pts_comp_evidence_t **evidence)
+       pts_ita_comp_tgrub_t *this, pts_t *pts, pts_comp_evidence_t **evidence,
+       pts_file_meas_t **measurements)
 {
        pts_comp_evidence_t *evid;
        u_int32_t extended_pcr;
@@ -73,6 +79,7 @@ METHOD(pts_component_t, measure, status_t,
        chunk_t measurement, pcr_before, pcr_after;
        pts_pcr_transform_t pcr_transform;
        pts_meas_algorithms_t hash_algo;
+       size_t hash_size, pcr_len;
 
        /* Provisional implementation for TGRUB */
        extended_pcr = PCR_DEBUG;
@@ -80,27 +87,19 @@ METHOD(pts_component_t, measure, status_t,
                
        if (!pts->read_pcr(pts, extended_pcr, &pcr_after))
        {
-               DBG1(DBG_PTS, "error occured while reading PCR: %d", extended_pcr);
+               DBG1(DBG_PTS, "error occurred while reading PCR: %d", extended_pcr);
                return FAILED;
        }
 
        hash_algo = pts->get_meas_algorithm(pts);
-       switch (hash_algo)
-       {
-               case PTS_MEAS_ALGO_SHA1:
-                       pcr_transform = PTS_PCR_TRANSFORM_MATCH;
-               case PTS_MEAS_ALGO_SHA256:
-               case PTS_MEAS_ALGO_SHA384:
-                       pcr_transform = PTS_PCR_TRANSFORM_LONG;
-               case PTS_MEAS_ALGO_NONE:
-               default:
-                       pcr_transform = PTS_PCR_TRANSFORM_NO;
-       }
+       hash_size = pts_meas_algo_hash_size(hash_algo);
+       pcr_len = pts->get_pcr_len(pts);
+       pcr_transform = pts_meas_algo_to_pcr_transform(hash_algo, pcr_len);
 
-       measurement = chunk_alloc(HASH_SIZE_SHA1);
+       measurement = chunk_alloc(hash_size);
        memset(measurement.ptr, 0x00, measurement.len);
                
-       pcr_before = chunk_alloc(PCR_LEN);
+       pcr_before = chunk_alloc(pcr_len);
        memset(pcr_before.ptr, 0x00, pcr_before.len);
 
        evid = *evidence = pts_comp_evidence_create(this->name->clone(this->name),
@@ -113,8 +112,7 @@ METHOD(pts_component_t, measure, status_t,
 }
 
 METHOD(pts_component_t, verify, status_t,
-       pts_ita_comp_tgrub_t *this, pts_t *pts, pts_database_t *pts_db,
-       pts_comp_evidence_t *evidence)
+       pts_ita_comp_tgrub_t *this, pts_t *pts, pts_comp_evidence_t *evidence)
 {
        bool has_pcr_info;
        u_int32_t extended_pcr;
@@ -144,6 +142,12 @@ METHOD(pts_component_t, verify, status_t,
        return SUCCESS;
 }
 
+METHOD(pts_component_t, finalize, bool,
+       pts_ita_comp_tgrub_t *this)
+{
+       return FALSE;
+}
+
 METHOD(pts_component_t, destroy, void,
        pts_ita_comp_tgrub_t *this)
 {
@@ -154,7 +158,8 @@ METHOD(pts_component_t, destroy, void,
 /**
  * See header
  */
-pts_component_t *pts_ita_comp_tgrub_create(u_int8_t qualifier, u_int32_t depth)
+pts_component_t *pts_ita_comp_tgrub_create(u_int8_t qualifier, u_int32_t depth,
+                                                                                  pts_database_t *pts_db)
 {
        pts_ita_comp_tgrub_t *this;
 
@@ -165,11 +170,13 @@ pts_component_t *pts_ita_comp_tgrub_create(u_int8_t qualifier, u_int32_t depth)
                        .get_depth = _get_depth,
                        .measure = _measure,
                        .verify = _verify,
+                       .finalize = _finalize,
                        .destroy = _destroy,
                },
-               .name = pts_comp_func_name_create(PEN_ITA, PTS_ITA_COMP_FUNC_NAME_TBOOT,
+               .name = pts_comp_func_name_create(PEN_ITA, PTS_ITA_COMP_FUNC_NAME_TGRUB,
                                                                                  qualifier),
                .depth = depth,
+               .pts_db = pts_db,
        );
 
        return &this->public;