Skip to content

Commit

Permalink
Use key => value directly in measurement-map
Browse files Browse the repository at this point in the history 
Rename "authorized-by" to "__authorities" since authorized-by is more of
a policy concept. The authorities are just a matching condition,
although there is more to discuss about delegation in Issue#244.

Remove integrity-registers as a measurement value since the register
name can be gived directly in the $measured-element-type-choice and
reuse the digests codepoint.

Signed-off-by: Dionna Glaze <dionnaglaze@google.com>
  • Loading branch information
@deeglaze
deeglaze committed Aug 22, 2024
1 parent 5dc2a57 commit c587c4b
Show file tree
Hide file tree
Showing 23 changed files with 74 additions and 207 deletions.
2 changes: 0 additions & 2 deletions cddl/corim-frags.mk
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,6 @@ COMID_FRAGS += mac-addr-type-choice.cddl
COMID_FRAGS += measured-element-type-choice.cddl
COMID_FRAGS += measurement-map.cddl
COMID_FRAGS += measurement-values-map.cddl
COMID_FRAGS += mkeyvalue-pair.cddl
COMID_FRAGS += non-empty.cddl
COMID_FRAGS += oid.cddl
COMID_FRAGS += raw-value.cddl
Expand All @@ -46,7 +45,6 @@ COMID_FRAGS += ueid.cddl
COMID_FRAGS += uuid.cddl
COMID_FRAGS += version-map.cddl
COMID_FRAGS += digest.cddl
COMID_FRAGS += integrity-registers.cddl
COMID_FRAGS += concise-swid-tag.cddl

COMID_EXAMPLES := $(wildcard examples/comid-*.diag)
Expand Down
2 changes: 1 addition & 1 deletion cddl/examples/comid-1.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.ver / 0 : {
/ comid.version / 0 : "1.0.0",
/ comid.version-scheme / 1 : 16384 / semver /
Expand Down
8 changes: 4 additions & 4 deletions cddl/examples/comid-2.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'44aa336af4cb14a879432e53dd6571c7fa9bccafb75f488259262d6ea3a4d91b'
Expand All @@ -44,7 +44,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'bb71198ed60a95dc3c619e555c2c0b8d7564a38031b034a195892591c65365b0'
Expand All @@ -66,7 +66,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'bb71198ed60a95dc3c619e555c2c0b8d7564a38031b034a195892591c65365b0'
Expand All @@ -88,7 +88,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.svn / 1 : 552(1)
}
}
Expand Down
3 changes: 1 addition & 2 deletions cddl/examples/comid-3.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,7 @@
}
},
/ measurement-map / {
/ comid.mkey / 0: 700,
/ comid.mval / 1 : {
700 : {
/ comid.digests / 2 : [[
/ hash-alg-id / 6, / sha-256-32 /
/ hash-value / h'ABCDEF00' ]]
Expand Down
2 changes: 1 addition & 1 deletion cddl/examples/comid-4.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@
}
},
/ measurement-map / {
/ mval / 1 : {
0 : {
/ cryptokeys / 13 : [
/ tagged-pkix-base64-key-type / 554("base64_key_ACME_MAX"),
/ tagged-pkix-base64-cert-type / 555("base64_cert_ACME_MAX"),
Expand Down
2 changes: 1 addition & 1 deletion cddl/examples/comid-6.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@
/ comid.instance / 1 : / tagged-pkix-base64-key-type / 554("base64_key_X")
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.ver / 0 : {
/ comid.version / 0 : "1.0.0",
/ comid.version-scheme / 1 : 16384 / semver /
Expand Down
8 changes: 4 additions & 4 deletions cddl/examples/comid-cend.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,13 +23,13 @@
}
},
{ / *** measurement-map *** /
/ mval / 1 : / measurement-values-map / {
0 : / measurement-values-map / {
/ ver / 0 : {
/ version / 0 : "1.0.0",
/ version-scheme / 1 : 16384 / semver /
}
},
/ authorized-by / 2 : [
"__authorities" : [
/ tagged-pkix-base64-key-type / 554("base64_key_X")
]
}
Expand All @@ -47,7 +47,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ comid.ver / 0 : {
/ comid.version / 0 : "1.0.0",
/ comid.version-scheme / 1 : 16384 / semver /
Expand All @@ -74,7 +74,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand Down
10 changes: 5 additions & 5 deletions cddl/examples/comid-design-cd.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
0 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand All @@ -45,7 +45,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
0 : {
/ comid.digests / 2 : [
[
/ hash-alg-id / 7, / SHA384 /
Expand All @@ -67,7 +67,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
0 : {
/ comid.digests / 2 : [
[
/ hash-alg-id / 7, / SHA384 /
Expand All @@ -88,7 +88,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
0 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000'),
/ comid.raw-value-mask / 5 : h'466224343D681802C1506BBED7D7F00B969BADDD6346E4F2E7CE146692996F22A45814DE81D248F583B65F817B5FCEAB'
Expand All @@ -107,7 +107,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
0 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand Down
6 changes: 3 additions & 3 deletions cddl/examples/comid-firmware-cd.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.svn / 1 : 552(1),
/ comid.digests / 2 : [
[
Expand All @@ -45,7 +45,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.svn / 1 : 552(1),
/ comid.digests / 2 : [
[
Expand All @@ -68,7 +68,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand Down
2 changes: 1 addition & 1 deletion cddl/examples/comid-flags.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.flags / 3 : {
/ configured / 0 : true,
/ secure / 1 : true,
Expand Down
51 changes: 0 additions & 51 deletions cddl/examples/comid-integrity-registers.diag
View file

This file was deleted.

2 changes: 1 addition & 1 deletion cddl/examples/comid-opaque-instance-id.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@
h'9f71ec4d223f4f899d532ed6ff6ecbbb4a62cb386ba24c204c9371ce5e3b9291713fe96b9b413d8842968ebb1fa4cf1920d0c5e9f872776a1e826f2851ecdb47')
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.ver / 0 : {
/ comid.version / 0 : "1.0.0",
/ comid.version-scheme / 1 : 16384 / semver /
Expand Down
4 changes: 2 additions & 2 deletions cddl/examples/comid-series.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,13 +22,13 @@
}
},
{ / *** measurement-map *** /
/ mval / 1 : / measurement-values-map / {
1 : / measurement-values-map / {
/ ver / 0 : {
/ version / 0 : "1.0.0",
/ version-scheme / 1 : 16384 / semver /
}
},
/ authorized-by / 2 : [
"__authorities" : [
/ tagged-pkix-base64-key-type / 554("base64_key_X")
]
}
Expand Down
2 changes: 1 addition & 1 deletion cddl/examples/corim-1.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.ver / 0 : {
/ comid.version / 0 : "1.0.0",
/ comid.version-scheme / 1 : 16384 / semver /
Expand Down
8 changes: 4 additions & 4 deletions cddl/examples/corim-2.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'44aa336af4cb14a879432e53dd6571c7fa9bccafb75f488259262d6ea3a4d91b'
Expand All @@ -49,7 +49,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'bb71198ed60a95dc3c619e555c2c0b8d7564a38031b034a195892591c65365b0'
Expand All @@ -71,7 +71,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.digests / 2 : [ [
/ hash-alg-id / 1, / sha256 /
/ hash-value / h'bb71198ed60a95dc3c619e555c2c0b8d7564a38031b034a195892591c65365b0'
Expand All @@ -93,7 +93,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ comid.svn / 1 : 552(1)
}
}
Expand Down
10 changes: 5 additions & 5 deletions cddl/examples/corim-design-cd.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand All @@ -50,7 +50,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.digests / 2 : [
[
/ hash-alg-id / 7, / SHA384 /
Expand All @@ -72,7 +72,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.digests / 2 : [
[
/ hash-alg-id / 7, / SHA384 /
Expand All @@ -93,7 +93,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000'),
/ comid.raw-value-mask / 5 : h'466224343D681802C1506BBED7D7F00B969BADDD6346E4F2E7CE146692996F22A45814DE81D248F583B65F817B5FCEAB'
Expand All @@ -112,7 +112,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand Down
6 changes: 3 additions & 3 deletions cddl/examples/corim-firmware-cd.diag
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.svn / 1 : 552(1),
/ comid.digests / 2 : [
[
Expand All @@ -49,7 +49,7 @@
},
/ measurement-map /
{
/ comid.mval / 1 : {
1 : {
/ comid.svn / 1 : 552(1),
/ comid.digests / 2 : [
[
Expand All @@ -72,7 +72,7 @@
}
},
/ measurement-map / {
/ comid.mval / 1 : {
1 : {
/ raw-value-group /
/ comid.raw-value / 4 : 560(h'0000000000000000'),
/ comid.raw-value-mask / 5 : h'FFFFFFFF00000000'
Expand Down
Loading

0 comments on commit c587c4b

Please sign in to comment.