mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-12-27 00:19:36 -05:00
attestation: print pcr value of mismatch
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
This commit is contained in:
parent
70861ee8ad
commit
5dfa0520ce
@ -222,9 +222,17 @@ func (v *Validator) Validate(ctx context.Context, attDocRaw []byte, nonce []byte
|
|||||||
for idx, pcr := range v.expected {
|
for idx, pcr := range v.expected {
|
||||||
if !bytes.Equal(pcr.Expected[:], attDoc.Attestation.Quotes[quoteIdx].Pcrs.Pcrs[idx]) {
|
if !bytes.Equal(pcr.Expected[:], attDoc.Attestation.Quotes[quoteIdx].Pcrs.Pcrs[idx]) {
|
||||||
if pcr.ValidationOpt == measurements.Enforce {
|
if pcr.ValidationOpt == measurements.Enforce {
|
||||||
return nil, fmt.Errorf("untrusted PCR value at PCR index %d", idx)
|
return nil, fmt.Errorf(
|
||||||
|
"untrusted PCR value %x at index %d",
|
||||||
|
attDoc.Attestation.Quotes[quoteIdx].Pcrs.Pcrs[idx],
|
||||||
|
idx,
|
||||||
|
)
|
||||||
}
|
}
|
||||||
v.log.Warnf("Encountered untrusted PCR value at index %d", idx)
|
v.log.Warnf(
|
||||||
|
"Encountered untrusted PCR value %x at index %d",
|
||||||
|
attDoc.Attestation.Quotes[quoteIdx].Pcrs.Pcrs[idx],
|
||||||
|
idx,
|
||||||
|
)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user