return ret;
}
+METHOD(pts_t, does_pcr_value_match, bool,
+ private_pts_t *this, chunk_t pcr_after_value)
+{
+ linked_list_t *entries;
+ enumerator_t *e;
+ pcr_entry_t *pcr_entry;
+ bool match_found = FALSE;
+
+ if (!load_pcr_entries(&entries))
+ {
+ DBG1(DBG_PTS, "failed to load PCR entries");
+ return FALSE;
+ }
+
+ e = entries->create_enumerator(entries);
+ while (e->enumerate(e, &pcr_entry))
+ {
+ if (chunk_equals(chunk_create(pcr_entry->pcr_value, PCR_LEN), pcr_after_value))
+ {
+ DBG1(DBG_PTS, "PCR %d value matched with configured value",
+ pcr_entry->pcr_number);
+ match_found = TRUE;
+ break;
+ }
+ }
+
+ DESTROY_IF(e);
+ DESTROY_IF(entries);
+ free(pcr_entry);
+
+ if (match_found)
+ {
+ return TRUE;
+ }
+
+ DBG1(DBG_PTS, "PCR after value didn't match with any of the configured values");
+ return FALSE;
+}
+
/**
* 1. build a TCPA_PCR_COMPOSITE structure which contains (pcrCompositeBuf)
* TCPA_PCR_SELECTION structure (bitmask length + bitmask)
u_int32_t index = pcr_entry->pcr_number;
mask_bytes[index / 8] |= (1 << (index % 8));
}
+
e->destroy(e);
for (i = 0; i< bitmask_len ; i++)
chunk_t *pcr_composite, chunk_t *quote_signature);
/**
+ * Check PCR after value in Simple Component Evidence matches configured value
+ *
+ * @return FALSE in case of any error or non-match, TRUE otherwise
+ */
+ bool (*does_pcr_value_match)(pts_t *this, chunk_t pcr_after_value);
+
+ /**
* Constructs and returns PCR Quote Digest structure expected from IMC
*
* @param digest Output variable to store quote digest
projects / strongswan.git / commitdiff