rust-spdm/spdmlib/src/requester/get_certificate_req.rs

line 61

if (offset + certificate.portion_length) as usize > config::MAX_SPDM_CERT_CHAIN_DATA_SIZE {
    return spdm_result_err!(ENOMEM);
}

ref https://rustsec.org/

may use https://github.com/EmbarkStudios/cargo-deny

It may be related to https://doc.rust-lang.org/beta/unstable-book/library-features/global-asm.html?highlight=global#global_asm

try options(att_syntax)

https://www.homeops.dev/continuous-integration-with-github-actions-and-rust/

We need understand this case:
Component A includes Component B.
If component B has a security bug, can we scan Component A and find the issue?

https://github.com/sslab-gatech/Rudra

1. use zeroize for secret
2. use pin for secret

Hi maintainers,

Thank you for the wonderful project!

I'm opening this issue only to see if you are open to me making the change described below. Such a change will be relatively invasive, but will not change the core logic of the protocol, which should hopefully make it straightforward to review.

I'm looking to abstract out the SpdmDeviceIo from inside the SpdmContext and correspondingly the RequesterContext and ResponderContext. The end result is that the send_receive_xxx calls such as send_receive_spdm_key_exchange will be split into multiple methods. First a message is created and returned. Then the caller uses some mechanism(possibly an existingio_device), to send the message. Then the caller uses the same mechanism to receive and return a message. Finally a method is called to handle the received message. In a synchronous world this would look something like:

let send_used = request_ctx.spdm_key_exchange_req(send_buf, slot_id, measurement_summary_hash_type);
io_device.send_message(&send_buf[..send_used])?;
let received_used = io_device.receive_message(&mut recv_buf)?;
request_ctx.spdm_handle_key_exchange_rsp(&recv_buf[..receive_used])?;

If such a change was made, we could still keep the RequesterCtx::send_receive_xxx methods, but the internals would look similar to above. The signature would just change to take a &mut dyn SpdmDeviceIO rather than embedding it in the context. This would allow the calling code, such as RequesterCtx::start_session to continue to use this synchronous send/receive pattern. It would also allow other users to reuse the message creation and handler code without having to use a SpdmDeviceIo. This opens up the code base to being used in different contexts than originally anticipated, and will also likely make it easier to test.

It could even make sense to break the raw message creation and handler methods into their own types that can be used by the RequesterContext and ResponderContext. That would allow maintaining the same external interfaces to the contexts, including making the SpdmDeviceIo a member of RequesterContext and ResponderContext, just not SpdmContext. Such a change would allow different use cases from yours to use the bulk of the code from the lower level types, while the higher level types could still be used ergonomically for your purposes.

Now that I've described the change, let me describe my use cases which I'm using to justify such a change.

I have two vastly different use cases for SPDM:

1. An embedded kernel running on a micro-controller with limited resources
2. A secure bootstrapping mechanism in user space that will require many simultaneous network connections.

For the first case, tasks in our OS cannot share text, so removing the blocking SpdmDeviceIO calls from the protocol logic allows us to write code such that multiple sessions can live in a single kernel task without having to duplicate all the compiled code for this library.

For the second case, we are trying to use spdm for remote attestation purposes over TCP for 10s to potentially 100s of endpoints. We'd prefer not to have to maintain a thread per connection, and instead use async io.

The recommended change above would enable both of those and expand the reach of this code base to new domains. I hope you are ok with it!

Thank you for your time and consideration.

Current design does not have test key as input parameter. So we only support below 5 cases:

1. Visual Studio Code: debug
2. Visual Studio Code: run
3. command line: cargo test
4. command line: cargo run
5. arbitrary dir (local machine): run .exe

We do NOT support below case:
6) arbitrary dir (copy exe/test key to remote machine): run .exe -- not supported, unless all path are same.
Reason: test key dir is not a parameter.

rust-spdm/spdmlib/src/requester/get_certificate_req.rs

line 61

if certificate.portion_length as usize > config::MAX_SPDM_CERT_PORTION_LEN
                            || (offset + certificate.portion_length) as usize
                                > config::MAX_SPDM_CERT_CHAIN_DATA_SIZE

rust-spdm/spdmlib/src/requester/get_measurements_req.rs

line 150

for block_i in 1..total_number.checked_add(1).ok_or(spdm_err!(ENOMEM))? {

rust-spdm/spdmlib/src/responder/psk_exchange_rsp.rs

line 52

if self.common.negotiate_info.base_hash_sel.is_empty() {
    return;
}

rust-spdm/pcidoe_transport/src/header.rs

line: 62

let payload_length = (length << 2).checked_sub(8)?;

max_msg_buffer_size > max_transport_size which can result in an encrypted application message not being able able to be encoded because the source buffer is larger than the destination buffer.

See

• rust-spdm/spdmlib/etc/config.json

  Lines 24 to 25 in 476eed2

  	"max_msg_buffer_size": 4608,
  	"max_transport_size": 1024

• rust-spdm/spdmlib/src/requester/context.rs

  Lines 91 to 117 in 476eed2

  	pub fn send_secured_message(&mut self, session_id: u32, send_buffer: &[u8]) -> SpdmResult {
  	let mut app_buffer = [0u8; config::MAX_SPDM_MESSAGE_BUFFER_SIZE];
  	let used = self
  	.common
  	.transport_encap
  	.encap_app(send_buffer, &mut app_buffer)?;
  	let spdm_session = self
  	.common
  	.get_session_via_id(session_id)
  	.ok_or(spdm_err!(EINVAL))?;
  	let mut encoded_send_buffer = [0u8; config::MAX_SPDM_MESSAGE_BUFFER_SIZE];
  	let encode_size = spdm_session.encode_spdm_secured_message(
  	&app_buffer[0..used],
  	&mut encoded_send_buffer,
  	true,
  	)?;
  	let mut transport_buffer = [0u8; config::MAX_SPDM_TRANSPORT_SIZE];
  	let used = self.common.transport_encap.encap(
  	&encoded_send_buffer[..encode_size],
  	&mut transport_buffer,
  	true,
  	)?;
  	self.common.device_io.send(&transport_buffer[..used])
  	}

spdmlib can be used in no_std environment. CI should do this check.

cd spdmlib
cargo xbuild --target x86_64-unknown-uefi --release --no-default-features --features="spdm-ring"

It is acceptable to use feature to indicate it is fuzzing build to accept generated random data
or fuzzing analysis build to accept input random data.

ref: https://crates.io/crates/fail

https://github.com/jyao1/rust-spdm/blob/master/spdmlib/src/responder/measurement_rsp.rs

rust-spdm/spdmlib/src/msgs/spdm_codec.rs

line 140

if d.measurement_size != d.measurement.value_size.checked_add(3)? {

rust-spdm/spdmlib/src/responder/algorithm_rsp.rs

line 98

if let Some(root_hash) = crypto::hash::hash_all(self.common.negotiate_info.base_hash_sel, root_cert) {
    let data_size = 4 + root_hash.data_size + cert_chain.data_size;
    let mut data = [0u8; config::MAX_SPDM_CERT_CHAIN_DATA_SIZE];
    data[0] = (data_size & 0xFF) as u8;
    data[1] = (data_size >> 8) as u8;
    data[4..(4 + root_hash.data_size as usize)]
        .copy_from_slice(&root_hash.data[..(root_hash.data_size as usize)]);
    data[(4 + root_hash.data_size as usize)..(data_size as usize)]
        .copy_from_slice(&cert_chain.data[..(cert_chain.data_size as usize)]);
    self.common.provision_info.my_cert_chain = Some(SpdmCertChainData { data_size, data });
    debug!("my_cert_chain - {:02x?}\n", &data[..(data_size as usize)]);
} else {
    return;
}

rust-spdm/spdmlib/src/requester/get_certificate_req.rs
line 116
if self.common.peer_info.peer_cert_chain.cert_chain.data_size <= (4 + self.common.negotiate_info.base_hash_sel.get_size()) { return spdm_result_err!(EIO); }

rust-spdm/spdmlib/src/responder/key_exchange_rsp.rs

line 49

    .compute_final_key(&key_exchange_req.unwrap().exchange);
    
    if final_key.is_none(){
        return;
    }
    let final_key = final_key.unwrap();

Also document flexi_log

root-cause: https://github.com/jyao1/ring/tree/uefi_support failed in Linux.