Line data Source code
1 : /**
2 : * Copyright Notice:
3 : * Copyright 2021-2026 DMTF. All rights reserved.
4 : * License: BSD 3-Clause License. For full text see link: https://github.com/DMTF/libspdm/blob/main/LICENSE.md
5 : **/
6 :
7 : #include "internal/libspdm_common_lib.h"
8 : #include "internal/libspdm_secured_message_lib.h"
9 : #include "internal/libspdm_fips_lib.h"
10 :
11 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
12 : /* first section */
13 68182 : uint32_t libspdm_get_scratch_buffer_secure_message_offset(void) {
14 68182 : return 0;
15 : }
16 :
17 420481 : uint32_t libspdm_get_scratch_buffer_secure_message_capacity(libspdm_context_t *spdm_context) {
18 420481 : return spdm_context->local_context.capability.max_spdm_msg_size +
19 840962 : spdm_context->local_context.capability.transport_header_size +
20 420481 : spdm_context->local_context.capability.transport_tail_size;
21 : }
22 :
23 : /* second section */
24 51 : uint32_t libspdm_get_scratch_buffer_large_message_offset(libspdm_context_t *spdm_context) {
25 51 : return libspdm_get_scratch_buffer_secure_message_capacity(spdm_context);
26 : }
27 :
28 352275 : uint32_t libspdm_get_scratch_buffer_large_message_capacity(libspdm_context_t *spdm_context) {
29 352275 : return spdm_context->local_context.capability.max_spdm_msg_size;
30 : }
31 : #endif
32 :
33 : /* third section */
34 202101 : uint32_t libspdm_get_scratch_buffer_sender_receiver_offset(libspdm_context_t *spdm_context) {
35 202101 : return 0 +
36 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
37 : libspdm_get_scratch_buffer_secure_message_capacity(spdm_context) +
38 202101 : libspdm_get_scratch_buffer_large_message_capacity(spdm_context) +
39 : #endif
40 : 0;
41 : }
42 :
43 284025 : uint32_t libspdm_get_scratch_buffer_sender_receiver_capacity(libspdm_context_t *spdm_context) {
44 284025 : return spdm_context->local_context.capability.max_spdm_msg_size +
45 568050 : spdm_context->local_context.capability.transport_header_size +
46 284025 : spdm_context->local_context.capability.transport_tail_size;
47 : }
48 :
49 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
50 : /* fourth section */
51 12944 : uint32_t libspdm_get_scratch_buffer_large_sender_receiver_offset(libspdm_context_t *spdm_context) {
52 12944 : return libspdm_get_scratch_buffer_secure_message_capacity(spdm_context) +
53 25888 : libspdm_get_scratch_buffer_large_message_capacity(spdm_context) +
54 12944 : libspdm_get_scratch_buffer_sender_receiver_capacity(spdm_context);
55 : }
56 :
57 147557 : uint32_t libspdm_get_scratch_buffer_large_sender_receiver_capacity(libspdm_context_t *spdm_context)
58 : {
59 147557 : return spdm_context->local_context.capability.max_spdm_msg_size +
60 295114 : spdm_context->local_context.capability.transport_header_size +
61 147557 : spdm_context->local_context.capability.transport_tail_size;
62 : }
63 : #endif
64 :
65 : /* fifth section */
66 114 : uint32_t libspdm_get_scratch_buffer_last_spdm_request_offset(libspdm_context_t *spdm_context) {
67 114 : return 0 +
68 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
69 114 : libspdm_get_scratch_buffer_secure_message_capacity(spdm_context) +
70 114 : libspdm_get_scratch_buffer_large_message_capacity(spdm_context) +
71 : #endif
72 114 : libspdm_get_scratch_buffer_sender_receiver_capacity(spdm_context) +
73 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
74 114 : libspdm_get_scratch_buffer_large_sender_receiver_capacity(spdm_context) +
75 : #endif
76 : 0;
77 : }
78 :
79 276450 : uint32_t libspdm_get_scratch_buffer_last_spdm_request_capacity(libspdm_context_t *spdm_context) {
80 276450 : return spdm_context->local_context.capability.max_spdm_msg_size;
81 : }
82 :
83 : #if LIBSPDM_RESPOND_IF_READY_SUPPORT
84 : /* sixth section */
85 114 : uint32_t libspdm_get_scratch_buffer_cache_spdm_request_offset(libspdm_context_t *spdm_context) {
86 114 : return 0 +
87 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
88 114 : libspdm_get_scratch_buffer_secure_message_capacity(spdm_context) +
89 114 : libspdm_get_scratch_buffer_large_message_capacity(spdm_context) +
90 : #endif
91 114 : libspdm_get_scratch_buffer_sender_receiver_capacity(spdm_context) +
92 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
93 114 : libspdm_get_scratch_buffer_large_sender_receiver_capacity(spdm_context) +
94 : #endif
95 114 : libspdm_get_scratch_buffer_last_spdm_request_capacity(spdm_context) +
96 : 0;
97 : }
98 :
99 273747 : uint32_t libspdm_get_scratch_buffer_cache_spdm_request_capacity(libspdm_context_t *spdm_context) {
100 273747 : return spdm_context->local_context.capability.max_spdm_msg_size;
101 : }
102 : #endif
103 :
104 : /* combination */
105 136975 : uint32_t libspdm_get_scratch_buffer_capacity(libspdm_context_t *spdm_context) {
106 136975 : return 0 +
107 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
108 136975 : libspdm_get_scratch_buffer_secure_message_capacity(spdm_context) +
109 136975 : libspdm_get_scratch_buffer_large_message_capacity(spdm_context) +
110 : #endif
111 136975 : libspdm_get_scratch_buffer_sender_receiver_capacity(spdm_context) +
112 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
113 136975 : libspdm_get_scratch_buffer_large_sender_receiver_capacity(spdm_context) +
114 : #endif
115 136975 : libspdm_get_scratch_buffer_last_spdm_request_capacity(spdm_context) +
116 : #if LIBSPDM_RESPOND_IF_READY_SUPPORT
117 136975 : libspdm_get_scratch_buffer_cache_spdm_request_capacity(spdm_context) +
118 : #endif
119 : 0;
120 : }
121 :
122 : /**
123 : * Returns if an SPDM data_type requires session info.
124 : *
125 : * @param data_type SPDM data type.
126 : *
127 : * @retval true session info is required.
128 : * @retval false session info is not required.
129 : **/
130 31 : static bool need_session_info_for_data(libspdm_data_type_t data_type)
131 : {
132 31 : switch (data_type) {
133 0 : case LIBSPDM_DATA_SESSION_SECURED_MESSAGE_VERSION:
134 : case LIBSPDM_DATA_SESSION_USE_PSK:
135 : case LIBSPDM_DATA_SESSION_MUT_AUTH_REQUESTED:
136 : case LIBSPDM_DATA_SESSION_END_SESSION_ATTRIBUTES:
137 : case LIBSPDM_DATA_SESSION_POLICY:
138 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_RSP_DIR:
139 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_REQ_DIR:
140 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_ENDIAN:
141 0 : return true;
142 31 : default:
143 31 : return false;
144 : }
145 : }
146 :
147 19 : libspdm_return_t libspdm_set_data(void *spdm_context, libspdm_data_type_t data_type,
148 : const libspdm_data_parameter_t *parameter, const void *data,
149 : size_t data_size)
150 : {
151 : libspdm_context_t *context;
152 : uint32_t session_id;
153 : uint32_t data32;
154 : libspdm_session_info_t *session_info;
155 : uint8_t slot_id;
156 : uint8_t mut_auth_requested;
157 : uint8_t root_cert_index;
158 : uint16_t data16;
159 : #if !(LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT) && LIBSPDM_CERT_PARSE_SUPPORT
160 : bool status;
161 : const uint8_t *cert_buffer;
162 : size_t cert_buffer_size;
163 : #endif
164 :
165 19 : if (spdm_context == NULL || data == NULL || data_type >= LIBSPDM_DATA_MAX) {
166 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
167 : }
168 :
169 19 : context = spdm_context;
170 :
171 19 : if (need_session_info_for_data(data_type)) {
172 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_SESSION) {
173 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
174 : }
175 0 : session_id = libspdm_read_uint32(parameter->additional_data);
176 0 : session_info = libspdm_get_session_info_via_session_id(context, session_id);
177 0 : if (session_info == NULL) {
178 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
179 : }
180 : } else {
181 19 : session_info = NULL;
182 : }
183 :
184 19 : switch (data_type) {
185 0 : case LIBSPDM_DATA_SPDM_VERSION:
186 0 : LIBSPDM_ASSERT (data_size <= sizeof(spdm_version_number_t) * SPDM_MAX_VERSION_COUNT);
187 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
188 : /* Only have one connected version */
189 0 : LIBSPDM_ASSERT (data_size == sizeof(spdm_version_number_t));
190 0 : libspdm_copy_mem(&(context->connection_info.version),
191 : sizeof(context->connection_info.version),
192 : data,
193 : sizeof(spdm_version_number_t));
194 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
195 0 : context->local_context.version.spdm_version_count =
196 0 : (uint8_t)(data_size / sizeof(spdm_version_number_t));
197 0 : libspdm_copy_mem(context->local_context.version.spdm_version,
198 : sizeof(context->local_context.version.spdm_version),
199 : data,
200 0 : context->local_context.version.spdm_version_count *
201 : sizeof(spdm_version_number_t));
202 : } else {
203 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
204 : }
205 0 : break;
206 0 : case LIBSPDM_DATA_SECURED_MESSAGE_VERSION:
207 0 : LIBSPDM_ASSERT (data_size <=
208 : sizeof(spdm_version_number_t) * SECURED_SPDM_MAX_VERSION_COUNT);
209 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
210 0 : context->local_context.secured_message_version.secured_message_version_count =
211 0 : (uint8_t)(data_size / sizeof(spdm_version_number_t));
212 0 : libspdm_copy_mem(context->local_context.secured_message_version.secured_message_version,
213 : sizeof(context->local_context.secured_message_version.secured_message_version),
214 : data,
215 0 : context->local_context.secured_message_version.
216 : secured_message_version_count * sizeof(spdm_version_number_t));
217 : } else {
218 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
219 : }
220 0 : break;
221 0 : case LIBSPDM_DATA_CAPABILITY_FLAGS:
222 0 : if (data_size != sizeof(uint32_t)) {
223 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
224 : }
225 :
226 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
227 :
228 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
229 : #if !(LIBSPDM_ENABLE_CAPABILITY_CERT_CAP)
230 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_CERT_CAP) == 0);
231 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_CERT_CAP */
232 :
233 : #if !(LIBSPDM_ENABLE_CAPABILITY_CHAL_CAP)
234 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_CHAL_CAP) == 0);
235 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_CHAL_CAP */
236 :
237 : #if !(LIBSPDM_ENABLE_CAPABILITY_MEAS_CAP)
238 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MEAS_CAP) == 0);
239 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_MEAS_CAP */
240 :
241 : #if !(LIBSPDM_ENABLE_CAPABILITY_MEL_CAP)
242 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MEL_CAP) == 0);
243 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_MEL_CAP */
244 :
245 : #if !(LIBSPDM_ENABLE_CAPABILITY_KEY_EX_CAP)
246 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_KEY_EX_CAP) == 0);
247 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_KEY_EX_CAP */
248 :
249 : #if !(LIBSPDM_ENABLE_CAPABILITY_PSK_CAP)
250 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_PSK_CAP) == 0);
251 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_PSK_CAP */
252 :
253 : #if !(LIBSPDM_ENABLE_CAPABILITY_ENDPOINT_INFO_CAP)
254 : LIBSPDM_ASSERT((data32 & SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_EP_INFO_CAP) == 0);
255 : #endif /* !LIBSPDM_ENABLE_CAPABILITY_ENDPOINT_INFO_CAP */
256 :
257 0 : context->local_context.capability.flags = data32;
258 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
259 0 : context->connection_info.capability.flags = data32;
260 : } else {
261 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
262 : }
263 0 : break;
264 0 : case LIBSPDM_DATA_CAPABILITY_EXT_FLAGS:
265 0 : if (data_size != sizeof(uint16_t)) {
266 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
267 : }
268 :
269 0 : data16 = libspdm_read_uint16((const uint8_t *)data);
270 :
271 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
272 0 : context->local_context.capability.flags = data16;
273 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
274 0 : context->connection_info.capability.flags = data16;
275 : } else {
276 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
277 : }
278 0 : break;
279 0 : case LIBSPDM_DATA_CAPABILITY_CT_EXPONENT:
280 0 : if (data_size != sizeof(uint8_t)) {
281 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
282 : }
283 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
284 0 : context->connection_info.capability.ct_exponent = *(const uint8_t *)data;
285 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
286 0 : context->local_context.capability.ct_exponent = *(const uint8_t *)data;
287 : } else {
288 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
289 : }
290 0 : break;
291 0 : case LIBSPDM_DATA_CAPABILITY_RTT_US:
292 0 : if (data_size != sizeof(uint64_t)) {
293 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
294 : }
295 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
296 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
297 : }
298 0 : context->local_context.capability.rtt = libspdm_read_uint64((const uint8_t *)data);
299 0 : break;
300 0 : case LIBSPDM_DATA_CAPABILITY_MAX_SPDM_MSG_SIZE:
301 0 : if (data_size != sizeof(uint32_t)) {
302 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
303 : }
304 : /* The local max_spdm_msg_size is set by libspdm_register_transport_layer_func.
305 : * Only the connection's max_spdm_msg_size is settable here. */
306 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
307 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
308 : }
309 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
310 0 : LIBSPDM_ASSERT (data32 >= SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12);
311 0 : context->connection_info.capability.max_spdm_msg_size = data32;
312 0 : break;
313 0 : case LIBSPDM_DATA_MEASUREMENT_SPEC:
314 0 : if (data_size != sizeof(uint8_t)) {
315 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
316 : }
317 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
318 0 : context->connection_info.algorithm.measurement_spec = *(const uint8_t *)data;
319 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
320 0 : context->local_context.algorithm.measurement_spec = *(const uint8_t *)data;
321 : } else {
322 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
323 : }
324 0 : break;
325 0 : case LIBSPDM_DATA_MEASUREMENT_HASH_ALGO:
326 0 : if (data_size != sizeof(uint32_t)) {
327 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
328 : }
329 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
330 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
331 0 : context->connection_info.algorithm.measurement_hash_algo = data32;
332 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
333 0 : context->local_context.algorithm.measurement_hash_algo = data32;
334 : } else {
335 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
336 : }
337 0 : break;
338 0 : case LIBSPDM_DATA_BASE_ASYM_ALGO:
339 0 : if (data_size != sizeof(uint32_t)) {
340 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
341 : }
342 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
343 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
344 0 : context->connection_info.algorithm.base_asym_algo = data32;
345 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
346 0 : context->local_context.algorithm.base_asym_algo = data32;
347 : } else {
348 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
349 : }
350 0 : break;
351 0 : case LIBSPDM_DATA_BASE_HASH_ALGO:
352 0 : if (data_size != sizeof(uint32_t)) {
353 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
354 : }
355 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
356 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
357 0 : context->connection_info.algorithm.base_hash_algo = data32;
358 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
359 0 : context->local_context.algorithm.base_hash_algo = data32;
360 : } else {
361 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
362 : }
363 0 : break;
364 0 : case LIBSPDM_DATA_DHE_NAME_GROUP:
365 0 : if (data_size != sizeof(uint16_t)) {
366 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
367 : }
368 0 : data16 = libspdm_read_uint16((const uint8_t *)data);
369 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
370 0 : context->connection_info.algorithm.dhe_named_group = data16;
371 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
372 0 : context->local_context.algorithm.dhe_named_group = data16;
373 : } else {
374 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
375 : }
376 0 : break;
377 0 : case LIBSPDM_DATA_AEAD_CIPHER_SUITE:
378 0 : if (data_size != sizeof(uint16_t)) {
379 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
380 : }
381 0 : data16 = libspdm_read_uint16((const uint8_t *)data);
382 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
383 0 : context->connection_info.algorithm.aead_cipher_suite = data16;
384 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
385 0 : context->local_context.algorithm.aead_cipher_suite = data16;
386 : } else {
387 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
388 : }
389 0 : break;
390 0 : case LIBSPDM_DATA_REQ_BASE_ASYM_ALG:
391 0 : if (data_size != sizeof(uint16_t)) {
392 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
393 : }
394 0 : data16 = libspdm_read_uint16((const uint8_t *)data);
395 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
396 0 : context->connection_info.algorithm.req_base_asym_alg = data16;
397 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
398 0 : context->local_context.algorithm.req_base_asym_alg = data16;
399 : } else {
400 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
401 : }
402 0 : break;
403 0 : case LIBSPDM_DATA_KEY_SCHEDULE:
404 0 : if (data_size != sizeof(uint16_t)) {
405 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
406 : }
407 0 : data16 = libspdm_read_uint16((const uint8_t *)data);
408 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
409 0 : context->connection_info.algorithm.key_schedule = data16;
410 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
411 0 : context->local_context.algorithm.key_schedule = data16;
412 : } else {
413 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
414 : }
415 0 : break;
416 0 : case LIBSPDM_DATA_OTHER_PARAMS_SUPPORT:
417 0 : if (data_size != sizeof(uint8_t)) {
418 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
419 : }
420 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
421 0 : context->connection_info.algorithm.other_params_support = *(const uint8_t *)data;
422 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
423 0 : context->local_context.algorithm.other_params_support = *(const uint8_t *)data;
424 : } else {
425 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
426 : }
427 0 : break;
428 0 : case LIBSPDM_DATA_MEL_SPEC:
429 0 : if (data_size != sizeof(uint8_t)) {
430 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
431 : }
432 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
433 0 : context->connection_info.algorithm.mel_spec = *(const uint8_t *)data;
434 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
435 0 : context->local_context.algorithm.mel_spec = *(const uint8_t *)data;
436 : } else {
437 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
438 : }
439 0 : break;
440 0 : case LIBSPDM_DATA_PQC_ASYM_ALGO:
441 0 : if (data_size != sizeof(uint32_t)) {
442 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
443 : }
444 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
445 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
446 0 : context->connection_info.algorithm.pqc_asym_algo = data32;
447 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
448 0 : context->local_context.algorithm.pqc_asym_algo = data32;
449 : } else {
450 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
451 : }
452 0 : break;
453 0 : case LIBSPDM_DATA_REQ_PQC_ASYM_ALG:
454 0 : if (data_size != sizeof(uint32_t)) {
455 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
456 : }
457 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
458 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
459 0 : context->connection_info.algorithm.req_pqc_asym_alg = data32;
460 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
461 0 : context->local_context.algorithm.req_pqc_asym_alg = data32;
462 : } else {
463 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
464 : }
465 0 : break;
466 0 : case LIBSPDM_DATA_KEM_ALG:
467 0 : if (data_size != sizeof(uint32_t)) {
468 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
469 : }
470 0 : data32 = libspdm_read_uint32((const uint8_t *)data);
471 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
472 0 : context->connection_info.algorithm.kem_alg = data32;
473 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
474 0 : context->local_context.algorithm.kem_alg = data32;
475 : } else {
476 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
477 : }
478 0 : break;
479 0 : case LIBSPDM_DATA_ALGO_PRIORITY_PQC_FIRST:
480 0 : if (data_size != sizeof(bool)) {
481 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
482 : }
483 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
484 0 : context->local_context.algorithm.pqc_first = *(const bool *)data;
485 : } else {
486 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
487 : }
488 0 : break;
489 0 : case LIBSPDM_DATA_CONNECTION_STATE:
490 0 : if (data_size != sizeof(libspdm_connection_state_t)) {
491 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
492 : }
493 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
494 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
495 : }
496 0 : context->connection_info.connection_state = libspdm_read_uint32((const uint8_t *)data);
497 0 : break;
498 0 : case LIBSPDM_DATA_RESPONSE_STATE:
499 0 : if (data_size != sizeof(libspdm_response_state_t)) {
500 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
501 : }
502 0 : context->response_state = libspdm_read_uint32((const uint8_t *)data);
503 0 : break;
504 2 : case LIBSPDM_DATA_PEER_PUBLIC_ROOT_CERT:
505 2 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
506 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
507 : }
508 2 : root_cert_index = 0;
509 11 : while (context->local_context.peer_root_cert_provision[root_cert_index] != NULL) {
510 10 : root_cert_index++;
511 10 : if (root_cert_index >= LIBSPDM_MAX_ROOT_CERT_SUPPORT) {
512 1 : return LIBSPDM_STATUS_BUFFER_FULL;
513 : }
514 : }
515 1 : context->local_context.peer_root_cert_provision_size[root_cert_index] = data_size;
516 1 : context->local_context.peer_root_cert_provision[root_cert_index] = data;
517 1 : break;
518 0 : case LIBSPDM_DATA_LOCAL_PUBLIC_CERT_CHAIN:
519 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
520 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
521 : }
522 0 : slot_id = parameter->additional_data[0];
523 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
524 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
525 : }
526 0 : context->local_context.local_cert_chain_provision_size[slot_id] = data_size;
527 0 : context->local_context.local_cert_chain_provision[slot_id] = data;
528 0 : break;
529 0 : case LIBSPDM_DATA_LOCAL_SUPPORTED_SLOT_MASK:
530 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
531 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
532 : }
533 0 : if (data_size != sizeof(uint8_t)) {
534 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
535 : }
536 0 : context->local_context.local_supported_slot_mask = *(const uint8_t *)data;
537 0 : break;
538 0 : case LIBSPDM_DATA_LOCAL_KEY_PAIR_ID:
539 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
540 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
541 : }
542 0 : slot_id = parameter->additional_data[0];
543 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
544 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
545 : }
546 0 : if (data_size != sizeof(spdm_key_pair_id_t)) {
547 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
548 : }
549 0 : context->local_context.local_key_pair_id[slot_id] = *(const spdm_key_pair_id_t *)data;
550 0 : break;
551 0 : case LIBSPDM_DATA_LOCAL_CERT_INFO:
552 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
553 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
554 : }
555 0 : slot_id = parameter->additional_data[0];
556 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
557 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
558 : }
559 0 : if (data_size != sizeof(spdm_certificate_info_t)) {
560 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
561 : }
562 0 : context->local_context.local_cert_info[slot_id] = *(const spdm_certificate_info_t *)data;
563 0 : break;
564 0 : case LIBSPDM_DATA_LOCAL_KEY_USAGE_BIT_MASK:
565 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
566 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
567 : }
568 0 : slot_id = parameter->additional_data[0];
569 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
570 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
571 : }
572 0 : if (data_size != sizeof(spdm_key_usage_bit_mask_t)) {
573 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
574 : }
575 0 : context->local_context.local_key_usage_bit_mask[slot_id] =
576 0 : libspdm_read_uint16((const uint8_t *)data);
577 0 : break;
578 3 : case LIBSPDM_DATA_PEER_USED_CERT_CHAIN_BUFFER:
579 3 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
580 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
581 : }
582 3 : slot_id = parameter->additional_data[0];
583 3 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
584 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
585 : }
586 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
587 : if (data_size > LIBSPDM_MAX_CERT_CHAIN_SIZE) {
588 : return LIBSPDM_STATUS_BUFFER_TOO_SMALL;
589 : }
590 : context->connection_info.peer_used_cert_chain[slot_id].buffer_size = data_size;
591 : libspdm_copy_mem(context->connection_info.peer_used_cert_chain[slot_id].buffer,
592 : sizeof(context->connection_info.peer_used_cert_chain[slot_id].buffer),
593 : data, data_size);
594 : #else
595 : #if LIBSPDM_CERT_PARSE_SUPPORT
596 3 : status = libspdm_hash_all(
597 : context->connection_info.algorithm.base_hash_algo,
598 : data, data_size,
599 3 : context->connection_info.peer_used_cert_chain[slot_id].buffer_hash);
600 3 : if (!status) {
601 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
602 : }
603 :
604 6 : context->connection_info.peer_used_cert_chain[slot_id].buffer_hash_size =
605 3 : libspdm_get_hash_size(context->connection_info.algorithm.base_hash_algo);
606 :
607 : /*process the SPDM cert header and hash*/
608 3 : data = (const uint8_t *)data + sizeof(spdm_cert_chain_t) +
609 3 : libspdm_get_hash_size(context->connection_info.algorithm.base_hash_algo);
610 3 : data_size = data_size -
611 : (sizeof(spdm_cert_chain_t) +
612 3 : libspdm_get_hash_size(context->connection_info.algorithm.base_hash_algo));
613 :
614 : /* Get leaf cert from cert chain */
615 3 : status = libspdm_x509_get_cert_from_cert_chain(data, data_size, -1,
616 : &cert_buffer, &cert_buffer_size);
617 3 : if (!status) {
618 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
619 : }
620 :
621 3 : status = false;
622 : #if (LIBSPDM_RSA_SSA_SUPPORT) || (LIBSPDM_RSA_PSS_SUPPORT)
623 3 : if (!status) {
624 3 : status = libspdm_rsa_get_public_key_from_x509(
625 : cert_buffer, cert_buffer_size,
626 3 : &context->connection_info.peer_used_cert_chain[slot_id].leaf_cert_public_key);
627 : }
628 : #endif
629 : #if LIBSPDM_ECDSA_SUPPORT
630 3 : if (!status) {
631 3 : status = libspdm_ec_get_public_key_from_x509(
632 : cert_buffer, cert_buffer_size,
633 3 : &context->connection_info.peer_used_cert_chain[slot_id].leaf_cert_public_key);
634 : }
635 : #endif
636 : #if (LIBSPDM_EDDSA_ED25519_SUPPORT) || (LIBSPDM_EDDSA_ED448_SUPPORT)
637 : if (!status) {
638 : status = libspdm_ecd_get_public_key_from_x509(
639 : cert_buffer, cert_buffer_size,
640 : &context->connection_info.peer_used_cert_chain[slot_id].leaf_cert_public_key);
641 : }
642 : #endif
643 : #if LIBSPDM_SM2_DSA_SUPPORT
644 : if (!status) {
645 : status = libspdm_sm2_get_public_key_from_x509(
646 : cert_buffer, cert_buffer_size,
647 : &context->connection_info.peer_used_cert_chain[slot_id].leaf_cert_public_key);
648 : }
649 : #endif
650 3 : if (!status) {
651 0 : return LIBSPDM_STATUS_INVALID_CERT;
652 : }
653 : #else
654 : LIBSPDM_ASSERT (false);
655 : #endif /* LIBSPDM_CERT_PARSE_SUPPORT */
656 : #endif /* LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT */
657 3 : break;
658 0 : case LIBSPDM_DATA_PEER_PUBLIC_KEY:
659 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
660 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
661 : }
662 0 : context->local_context.peer_public_key_provision_size = data_size;
663 0 : context->local_context.peer_public_key_provision = data;
664 0 : break;
665 0 : case LIBSPDM_DATA_LOCAL_PUBLIC_KEY:
666 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
667 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
668 : }
669 0 : context->local_context.local_public_key_provision_size = data_size;
670 0 : context->local_context.local_public_key_provision = data;
671 0 : break;
672 0 : case LIBSPDM_DATA_MUT_AUTH_REQUESTED:
673 0 : if (data_size != sizeof(uint8_t)) {
674 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
675 : }
676 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
677 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
678 : }
679 0 : mut_auth_requested = *(const uint8_t *)data;
680 0 : if (((mut_auth_requested != 0) &&
681 : (mut_auth_requested !=
682 0 : SPDM_KEY_EXCHANGE_RESPONSE_MUT_AUTH_REQUESTED) &&
683 : (mut_auth_requested !=
684 0 : SPDM_KEY_EXCHANGE_RESPONSE_MUT_AUTH_REQUESTED_WITH_ENCAP_REQUEST) &&
685 : (mut_auth_requested !=
686 : SPDM_KEY_EXCHANGE_RESPONSE_MUT_AUTH_REQUESTED_WITH_GET_DIGESTS))) {
687 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
688 : }
689 0 : context->encap_context.request_id = 0;
690 0 : slot_id = parameter->additional_data[0];
691 0 : if ((slot_id >= SPDM_MAX_SLOT_COUNT) && (slot_id != 0xFF)) {
692 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
693 : }
694 0 : context->encap_context.req_slot_id = slot_id;
695 0 : break;
696 0 : case LIBSPDM_DATA_HEARTBEAT_PERIOD:
697 0 : if (data_size != sizeof(uint8_t)) {
698 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
699 : }
700 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
701 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
702 : }
703 0 : context->local_context.heartbeat_period = *(const uint8_t *)data;
704 0 : break;
705 4 : case LIBSPDM_DATA_APP_CONTEXT_DATA:
706 4 : if (data_size != sizeof(void *) || *(void *const *)data == NULL) {
707 2 : return LIBSPDM_STATUS_INVALID_PARAMETER;
708 : }
709 2 : context->app_context_data_ptr = *(void *const *)data;
710 2 : break;
711 0 : case LIBSPDM_DATA_HANDLE_ERROR_RETURN_POLICY:
712 0 : if (data_size != sizeof(uint8_t)) {
713 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
714 : }
715 0 : context->handle_error_return_policy = *(const uint8_t *)data;
716 0 : break;
717 0 : case LIBSPDM_DATA_VCA_CACHE:
718 0 : if (data_size > sizeof(context->transcript.message_a.buffer)) {
719 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
720 : }
721 0 : context->transcript.message_a.buffer_size = data_size;
722 0 : libspdm_copy_mem(context->transcript.message_a.buffer,
723 : sizeof(context->transcript.message_a.buffer),
724 : data, data_size);
725 0 : break;
726 0 : case LIBSPDM_DATA_IS_REQUESTER:
727 0 : if (data_size != sizeof(bool)) {
728 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
729 : }
730 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_LOCAL) {
731 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
732 : }
733 0 : context->local_context.is_requester = *(const bool *)data;
734 0 : break;
735 0 : case LIBSPDM_DATA_REQUEST_RETRY_TIMES:
736 0 : if (data_size != sizeof(uint8_t)) {
737 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
738 : }
739 0 : context->retry_times = *(const uint8_t *)data;
740 0 : break;
741 0 : case LIBSPDM_DATA_REQUEST_RETRY_DELAY_TIME:
742 0 : if (data_size != sizeof(uint64_t)) {
743 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
744 : }
745 0 : context->retry_delay_time = *(const uint64_t *)data;
746 0 : break;
747 5 : case LIBSPDM_DATA_MAX_DHE_SESSION_COUNT:
748 5 : if (data_size != sizeof(uint32_t)) {
749 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
750 : }
751 5 : if (*(const uint32_t *)data > LIBSPDM_MAX_SESSION_COUNT - context->max_psk_session_count) {
752 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
753 : }
754 5 : context->max_dhe_session_count = *(const uint32_t *)data;
755 5 : break;
756 5 : case LIBSPDM_DATA_MAX_PSK_SESSION_COUNT:
757 5 : if (data_size != sizeof(uint32_t)) {
758 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
759 : }
760 5 : if (*(const uint32_t *)data > LIBSPDM_MAX_SESSION_COUNT - context->max_dhe_session_count) {
761 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
762 : }
763 5 : context->max_psk_session_count = *(const uint32_t *)data;
764 5 : break;
765 0 : case LIBSPDM_DATA_MAX_SPDM_SESSION_SEQUENCE_NUMBER:
766 0 : if (data_size != sizeof(uint64_t)) {
767 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
768 : }
769 0 : context->max_spdm_session_sequence_number = *(const uint64_t *)data;
770 0 : if (context->max_spdm_session_sequence_number == 0) {
771 0 : context->max_spdm_session_sequence_number = LIBSPDM_MAX_SPDM_SESSION_SEQUENCE_NUMBER;
772 : }
773 0 : break;
774 0 : case LIBSPDM_DATA_SPDM_VERSION_10_11_VERIFY_SIGNATURE_ENDIAN:
775 0 : if (data_size != sizeof(uint8_t)) {
776 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
777 : }
778 0 : if (*(const uint8_t*)data != LIBSPDM_SPDM_10_11_VERIFY_SIGNATURE_ENDIAN_BIG_ONLY &&
779 0 : *(const uint8_t*)data != LIBSPDM_SPDM_10_11_VERIFY_SIGNATURE_ENDIAN_LITTLE_ONLY &&
780 0 : *(const uint8_t*)data != LIBSPDM_SPDM_10_11_VERIFY_SIGNATURE_ENDIAN_BIG_OR_LITTLE) {
781 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
782 : }
783 0 : context->spdm_10_11_verify_signature_endian = *(const uint8_t*)data;
784 0 : break;
785 0 : case LIBSPDM_DATA_SEQUENCE_NUMBER_ENDIAN:
786 0 : if (data_size != sizeof(uint8_t)) {
787 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
788 : }
789 0 : context->sequence_number_endian = *(const uint8_t *)data;
790 0 : break;
791 0 : case LIBSPDM_DATA_MULTI_KEY_CONN_REQ:
792 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
793 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
794 : }
795 0 : if (data_size != sizeof(bool)) {
796 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
797 : }
798 0 : context->connection_info.multi_key_conn_req = *(const bool *)data;
799 0 : break;
800 0 : case LIBSPDM_DATA_MULTI_KEY_CONN_RSP:
801 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
802 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
803 : }
804 0 : if (data_size != sizeof(bool)) {
805 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
806 : }
807 0 : context->connection_info.multi_key_conn_rsp = *(const bool *)data;
808 0 : break;
809 0 : default:
810 0 : return LIBSPDM_STATUS_UNSUPPORTED_CAP;
811 : break;
812 : }
813 :
814 16 : return LIBSPDM_STATUS_SUCCESS;
815 : }
816 :
817 12 : libspdm_return_t libspdm_get_data(void *spdm_context, libspdm_data_type_t data_type,
818 : const libspdm_data_parameter_t *parameter,
819 : void *data, size_t *data_size)
820 : {
821 : libspdm_context_t *context;
822 12 : libspdm_secured_message_context_t *secured_context = NULL;
823 : size_t target_data_size;
824 : void *target_data;
825 : uint32_t session_id;
826 : libspdm_session_info_t *session_info;
827 : uint8_t slot_id;
828 :
829 12 : if (spdm_context == NULL || data == NULL || data_size == NULL ||
830 : data_type >= LIBSPDM_DATA_MAX) {
831 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
832 : }
833 :
834 12 : context = spdm_context;
835 :
836 12 : if (data_type == LIBSPDM_DATA_SESSION_END_SESSION_ATTRIBUTES) {
837 : /* end_session_attributes is present in both a session context as well as an
838 : * spdm context. */
839 0 : session_id = libspdm_read_uint32(parameter->additional_data);
840 0 : session_info = libspdm_get_session_info_via_session_id(context, session_id);
841 12 : } else if (need_session_info_for_data(data_type)) {
842 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_SESSION) {
843 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
844 : }
845 0 : session_id = libspdm_read_uint32(parameter->additional_data);
846 0 : session_info = libspdm_get_session_info_via_session_id(context, session_id);
847 0 : if (session_info == NULL) {
848 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
849 : }
850 0 : secured_context = session_info->secured_message_context;
851 : } else {
852 12 : session_info = NULL;
853 : }
854 :
855 12 : switch (data_type) {
856 0 : case LIBSPDM_DATA_SPDM_VERSION:
857 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
858 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
859 : }
860 0 : target_data_size = sizeof(spdm_version_number_t);
861 0 : target_data = &(context->connection_info.version);
862 0 : break;
863 0 : case LIBSPDM_DATA_SESSION_SECURED_MESSAGE_VERSION:
864 0 : target_data_size = sizeof(spdm_version_number_t);
865 0 : target_data = &(secured_context->secured_message_version);
866 0 : break;
867 0 : case LIBSPDM_DATA_CAPABILITY_FLAGS:
868 0 : target_data_size = sizeof(uint32_t);
869 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
870 0 : target_data = &context->connection_info.capability.flags;
871 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
872 0 : target_data = &context->local_context.capability.flags;
873 : } else {
874 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
875 : }
876 0 : break;
877 0 : case LIBSPDM_DATA_CAPABILITY_EXT_FLAGS:
878 0 : target_data_size = sizeof(uint16_t);
879 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
880 0 : target_data = &context->connection_info.capability.ext_flags;
881 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
882 0 : target_data = &context->local_context.capability.ext_flags;
883 : } else {
884 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
885 : }
886 0 : break;
887 0 : case LIBSPDM_DATA_CAPABILITY_CT_EXPONENT:
888 0 : target_data_size = sizeof(uint8_t);
889 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
890 0 : target_data = &context->connection_info.capability.ct_exponent;
891 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
892 0 : target_data = &context->local_context.capability.ct_exponent;
893 : } else {
894 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
895 : }
896 0 : break;
897 0 : case LIBSPDM_DATA_CAPABILITY_DATA_TRANSFER_SIZE:
898 0 : target_data_size = sizeof(uint32_t);
899 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
900 0 : target_data = &context->connection_info.capability.data_transfer_size;
901 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
902 0 : target_data = &context->local_context.capability.data_transfer_size;
903 : } else {
904 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
905 : }
906 0 : break;
907 0 : case LIBSPDM_DATA_CAPABILITY_MAX_SPDM_MSG_SIZE:
908 0 : target_data_size = sizeof(uint32_t);
909 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
910 0 : target_data = &context->connection_info.capability.max_spdm_msg_size;
911 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
912 0 : target_data = &context->local_context.capability.max_spdm_msg_size;
913 : } else {
914 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
915 : }
916 0 : break;
917 0 : case LIBSPDM_DATA_CAPABILITY_SENDER_DATA_TRANSFER_SIZE:
918 0 : target_data_size = sizeof(uint32_t);
919 0 : if (parameter->location == LIBSPDM_DATA_LOCATION_CONNECTION) {
920 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
921 0 : } else if (parameter->location == LIBSPDM_DATA_LOCATION_LOCAL) {
922 0 : target_data = &context->local_context.capability.sender_data_transfer_size;
923 : } else {
924 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
925 : }
926 0 : break;
927 0 : case LIBSPDM_DATA_MEASUREMENT_SPEC:
928 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
929 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
930 : }
931 0 : target_data_size = sizeof(uint8_t);
932 0 : target_data = &context->connection_info.algorithm.measurement_spec;
933 0 : break;
934 0 : case LIBSPDM_DATA_MEASUREMENT_HASH_ALGO:
935 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
936 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
937 : }
938 0 : target_data_size = sizeof(uint32_t);
939 0 : target_data = &context->connection_info.algorithm.measurement_hash_algo;
940 0 : break;
941 0 : case LIBSPDM_DATA_BASE_ASYM_ALGO:
942 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
943 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
944 : }
945 0 : target_data_size = sizeof(uint32_t);
946 0 : target_data = &context->connection_info.algorithm.base_asym_algo;
947 0 : break;
948 0 : case LIBSPDM_DATA_BASE_HASH_ALGO:
949 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
950 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
951 : }
952 0 : target_data_size = sizeof(uint32_t);
953 0 : target_data = &context->connection_info.algorithm.base_hash_algo;
954 0 : break;
955 0 : case LIBSPDM_DATA_DHE_NAME_GROUP:
956 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
957 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
958 : }
959 0 : target_data_size = sizeof(uint16_t);
960 0 : target_data = &context->connection_info.algorithm.dhe_named_group;
961 0 : break;
962 0 : case LIBSPDM_DATA_AEAD_CIPHER_SUITE:
963 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
964 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
965 : }
966 0 : target_data_size = sizeof(uint16_t);
967 0 : target_data = &context->connection_info.algorithm.aead_cipher_suite;
968 0 : break;
969 0 : case LIBSPDM_DATA_REQ_BASE_ASYM_ALG:
970 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
971 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
972 : }
973 0 : target_data_size = sizeof(uint16_t);
974 0 : target_data = &context->connection_info.algorithm.req_base_asym_alg;
975 0 : break;
976 0 : case LIBSPDM_DATA_KEY_SCHEDULE:
977 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
978 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
979 : }
980 0 : target_data_size = sizeof(uint16_t);
981 0 : target_data = &context->connection_info.algorithm.key_schedule;
982 0 : break;
983 0 : case LIBSPDM_DATA_OTHER_PARAMS_SUPPORT:
984 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
985 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
986 : }
987 0 : target_data_size = sizeof(uint8_t);
988 0 : target_data = &context->connection_info.algorithm.other_params_support;
989 0 : break;
990 0 : case LIBSPDM_DATA_MEL_SPEC:
991 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
992 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
993 : }
994 0 : target_data_size = sizeof(uint8_t);
995 0 : target_data = &context->connection_info.algorithm.mel_spec;
996 0 : break;
997 0 : case LIBSPDM_DATA_PQC_ASYM_ALGO:
998 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
999 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1000 : }
1001 0 : target_data_size = sizeof(uint32_t);
1002 0 : target_data = &context->connection_info.algorithm.pqc_asym_algo;
1003 0 : break;
1004 0 : case LIBSPDM_DATA_REQ_PQC_ASYM_ALG:
1005 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1006 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1007 : }
1008 0 : target_data_size = sizeof(uint32_t);
1009 0 : target_data = &context->connection_info.algorithm.req_pqc_asym_alg;
1010 0 : break;
1011 0 : case LIBSPDM_DATA_KEM_ALG:
1012 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1013 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1014 : }
1015 0 : target_data_size = sizeof(uint32_t);
1016 0 : target_data = &context->connection_info.algorithm.kem_alg;
1017 0 : break;
1018 0 : case LIBSPDM_DATA_CONNECTION_STATE:
1019 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1020 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1021 : }
1022 0 : target_data_size = sizeof(libspdm_connection_state_t);
1023 0 : target_data = &context->connection_info.connection_state;
1024 0 : break;
1025 0 : case LIBSPDM_DATA_RESPONSE_STATE:
1026 0 : target_data_size = sizeof(libspdm_response_state_t);
1027 0 : target_data = &context->response_state;
1028 0 : break;
1029 6 : case LIBSPDM_DATA_PEER_PROVISIONED_SLOT_MASK:
1030 6 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1031 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1032 : }
1033 6 : target_data_size = sizeof(uint8_t);
1034 6 : target_data = &context->connection_info.peer_provisioned_slot_mask;
1035 6 : break;
1036 0 : case LIBSPDM_DATA_PEER_SUPPORTED_SLOT_MASK:
1037 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1038 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1039 : }
1040 0 : target_data_size = sizeof(uint8_t);
1041 0 : target_data = &context->connection_info.peer_supported_slot_mask;
1042 0 : break;
1043 0 : case LIBSPDM_DATA_PEER_KEY_PAIR_ID:
1044 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1045 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1046 : }
1047 0 : slot_id = parameter->additional_data[0];
1048 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
1049 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1050 : }
1051 0 : target_data_size = sizeof(spdm_key_pair_id_t);
1052 0 : target_data = &context->connection_info.peer_key_pair_id[slot_id];
1053 0 : break;
1054 0 : case LIBSPDM_DATA_PEER_CERT_INFO:
1055 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1056 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1057 : }
1058 0 : slot_id = parameter->additional_data[0];
1059 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
1060 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1061 : }
1062 0 : target_data_size = sizeof(spdm_certificate_info_t);
1063 0 : target_data = &context->connection_info.peer_cert_info[slot_id];
1064 0 : break;
1065 0 : case LIBSPDM_DATA_PEER_KEY_USAGE_BIT_MASK:
1066 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1067 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1068 : }
1069 0 : slot_id = parameter->additional_data[0];
1070 0 : if (slot_id >= SPDM_MAX_SLOT_COUNT) {
1071 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1072 : }
1073 0 : target_data_size = sizeof(spdm_key_usage_bit_mask_t);
1074 0 : target_data = &context->connection_info.peer_key_usage_bit_mask[slot_id];
1075 0 : break;
1076 0 : case LIBSPDM_DATA_SESSION_USE_PSK:
1077 0 : target_data_size = sizeof(bool);
1078 0 : target_data = &session_info->use_psk;
1079 0 : break;
1080 0 : case LIBSPDM_DATA_SESSION_MUT_AUTH_REQUESTED:
1081 0 : target_data_size = sizeof(uint8_t);
1082 0 : target_data = &session_info->mut_auth_requested;
1083 0 : break;
1084 0 : case LIBSPDM_DATA_SESSION_END_SESSION_ATTRIBUTES:
1085 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1086 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1087 : }
1088 0 : target_data_size = sizeof(uint8_t);
1089 0 : if (session_info == NULL) {
1090 0 : target_data = &context->connection_info.end_session_attributes;
1091 : } else {
1092 0 : target_data = &session_info->end_session_attributes;
1093 : }
1094 0 : break;
1095 0 : case LIBSPDM_DATA_SESSION_POLICY:
1096 0 : target_data_size = sizeof(uint8_t);
1097 0 : target_data = &session_info->session_policy;
1098 0 : break;
1099 6 : case LIBSPDM_DATA_APP_CONTEXT_DATA:
1100 6 : target_data_size = sizeof(void *);
1101 6 : target_data = &context->app_context_data_ptr;
1102 6 : break;
1103 0 : case LIBSPDM_DATA_HANDLE_ERROR_RETURN_POLICY:
1104 0 : target_data_size = sizeof(uint8_t);
1105 0 : target_data = &context->handle_error_return_policy;
1106 0 : break;
1107 0 : case LIBSPDM_DATA_MAX_DHE_SESSION_COUNT:
1108 0 : target_data_size = sizeof(uint32_t);
1109 0 : target_data = &context->max_dhe_session_count;
1110 0 : break;
1111 0 : case LIBSPDM_DATA_MAX_PSK_SESSION_COUNT:
1112 0 : target_data_size = sizeof(uint32_t);
1113 0 : target_data = &context->max_psk_session_count;
1114 0 : break;
1115 0 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_REQ_DIR:
1116 0 : target_data_size = sizeof(uint64_t);
1117 0 : target_data = &secured_context->application_secret.request_data_sequence_number;
1118 0 : break;
1119 0 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_RSP_DIR:
1120 0 : target_data_size = sizeof(uint64_t);
1121 0 : target_data = &secured_context->application_secret.response_data_sequence_number;
1122 0 : break;
1123 0 : case LIBSPDM_DATA_MAX_SPDM_SESSION_SEQUENCE_NUMBER:
1124 0 : target_data_size = sizeof(uint64_t);
1125 0 : target_data = &context->max_spdm_session_sequence_number;
1126 0 : break;
1127 0 : case LIBSPDM_DATA_VCA_CACHE:
1128 0 : target_data_size = context->transcript.message_a.buffer_size;
1129 0 : target_data = context->transcript.message_a.buffer;
1130 0 : break;
1131 0 : case LIBSPDM_DATA_REQUEST_AND_SIZE:
1132 0 : target_data_size = context->last_spdm_request_size;
1133 0 : target_data = context->last_spdm_request;
1134 0 : break;
1135 0 : case LIBSPDM_DATA_SPDM_VERSION_10_11_VERIFY_SIGNATURE_ENDIAN:
1136 0 : target_data_size = sizeof(uint8_t);
1137 0 : target_data = &context->spdm_10_11_verify_signature_endian;
1138 0 : break;
1139 0 : case LIBSPDM_DATA_SEQUENCE_NUMBER_ENDIAN:
1140 0 : target_data_size = sizeof(uint8_t);
1141 0 : target_data = &context->sequence_number_endian;
1142 0 : break;
1143 0 : case LIBSPDM_DATA_SESSION_SEQUENCE_NUMBER_ENDIAN:
1144 0 : target_data_size = sizeof(uint8_t);
1145 0 : target_data = &secured_context->sequence_number_endian;
1146 0 : break;
1147 0 : case LIBSPDM_DATA_MULTI_KEY_CONN_REQ:
1148 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1149 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1150 : }
1151 0 : target_data_size = sizeof(bool);
1152 0 : target_data = &context->connection_info.multi_key_conn_req;
1153 0 : break;
1154 0 : case LIBSPDM_DATA_MULTI_KEY_CONN_RSP:
1155 0 : if (parameter->location != LIBSPDM_DATA_LOCATION_CONNECTION) {
1156 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
1157 : }
1158 0 : target_data_size = sizeof(bool);
1159 0 : target_data = &context->connection_info.multi_key_conn_rsp;
1160 0 : break;
1161 0 : default:
1162 0 : return LIBSPDM_STATUS_UNSUPPORTED_CAP;
1163 : break;
1164 : }
1165 :
1166 12 : if (*data_size < target_data_size) {
1167 1 : *data_size = target_data_size;
1168 1 : return LIBSPDM_STATUS_BUFFER_TOO_SMALL;
1169 : }
1170 11 : libspdm_copy_mem(data, *data_size, target_data, target_data_size);
1171 11 : *data_size = target_data_size;
1172 :
1173 11 : return LIBSPDM_STATUS_SUCCESS;
1174 : }
1175 :
1176 : #if LIBSPDM_CHECK_SPDM_CONTEXT
1177 3 : bool libspdm_check_context (void *spdm_context)
1178 : {
1179 : libspdm_context_t *context;
1180 : size_t index;
1181 :
1182 3 : context = spdm_context;
1183 :
1184 3 : if (context->local_context.capability.data_transfer_size <
1185 : SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12) {
1186 1 : LIBSPDM_DEBUG((LIBSPDM_DEBUG_ERROR,
1187 : "data_transfer_size must be greater than or equal "
1188 : "to SPDM_MIN_DATA_TRANSFER_SIZE (%d).\n",
1189 : SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12));
1190 1 : return false;
1191 : }
1192 :
1193 2 : if (context->local_context.capability.max_spdm_msg_size <
1194 2 : context->local_context.capability.data_transfer_size) {
1195 1 : LIBSPDM_DEBUG((LIBSPDM_DEBUG_ERROR,
1196 : "max_spdm_msg_size (%d) must be greater than or "
1197 : "equal to data_transfer_size (%d).\n",
1198 : context->local_context.capability.max_spdm_msg_size,
1199 : context->local_context.capability.data_transfer_size));
1200 1 : return false;
1201 : }
1202 :
1203 1 : if (context->local_context.capability.sender_data_transfer_size <
1204 : SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12) {
1205 0 : LIBSPDM_DEBUG((LIBSPDM_DEBUG_ERROR,
1206 : "sender_data_transfer_size must be greater than or equal "
1207 : "to %d.\n", SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12));
1208 0 : return false;
1209 : }
1210 :
1211 1 : if (context->local_context.capability.max_spdm_msg_size <
1212 1 : context->local_context.capability.sender_data_transfer_size) {
1213 0 : LIBSPDM_DEBUG((LIBSPDM_DEBUG_ERROR,
1214 : "max_spdm_msg_size (%d) must be greater than or "
1215 : "equal to sender_data_transfer_size (%d).\n",
1216 : context->local_context.capability.max_spdm_msg_size,
1217 : context->local_context.capability.sender_data_transfer_size));
1218 0 : return false;
1219 : }
1220 :
1221 1 : if (((context->local_context.capability.flags &
1222 0 : SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_CHUNK_CAP) != 0) &&
1223 0 : (context->local_context.capability.max_spdm_msg_size != 0)) {
1224 0 : for (index = 0; index < SPDM_MAX_SLOT_COUNT; index++) {
1225 0 : if ((context->local_context.local_cert_chain_provision_size[index] != 0) &&
1226 0 : (context->local_context.local_cert_chain_provision_size[index] +
1227 : sizeof(spdm_certificate_response_t) >
1228 0 : context->local_context.capability.max_spdm_msg_size)) {
1229 0 : LIBSPDM_DEBUG((LIBSPDM_DEBUG_ERROR,
1230 : "max_spdm_msg_size (%d) must be greater than or "
1231 : "equal to local_cert_chain_provision_size[%zu] (%zu).\n",
1232 : context->local_context.capability.max_spdm_msg_size, index,
1233 : context->local_context.local_cert_chain_provision_size[index]));
1234 0 : return false;
1235 : }
1236 : }
1237 : }
1238 :
1239 1 : return true;
1240 : }
1241 : #endif /* LIBSPDM_CHECK_CONTEXT */
1242 :
1243 678 : void libspdm_reset_message_a(libspdm_context_t *spdm_context)
1244 : {
1245 678 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_a);
1246 678 : }
1247 :
1248 51 : void libspdm_reset_message_d(libspdm_context_t *spdm_context)
1249 : {
1250 51 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_d);
1251 51 : }
1252 :
1253 1005 : void libspdm_reset_message_b(libspdm_context_t *spdm_context)
1254 : {
1255 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1256 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_b);
1257 : #else
1258 1005 : if (spdm_context->transcript.digest_context_m1m2 != NULL) {
1259 185 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1260 : spdm_context->transcript.digest_context_m1m2);
1261 185 : spdm_context->transcript.digest_context_m1m2 = NULL;
1262 : }
1263 : #endif
1264 1005 : }
1265 :
1266 589 : void libspdm_reset_message_c(libspdm_context_t *spdm_context)
1267 : {
1268 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1269 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_c);
1270 : #else
1271 589 : if (spdm_context->transcript.digest_context_m1m2 != NULL) {
1272 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1273 : spdm_context->transcript.digest_context_m1m2);
1274 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1275 : }
1276 : #endif
1277 589 : }
1278 :
1279 522 : void libspdm_reset_message_mut_b(libspdm_context_t *spdm_context)
1280 : {
1281 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1282 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_mut_b);
1283 : #else
1284 522 : if (spdm_context->transcript.digest_context_mut_m1m2 != NULL) {
1285 33 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1286 : spdm_context->transcript.digest_context_mut_m1m2);
1287 33 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1288 : }
1289 : #endif
1290 522 : }
1291 :
1292 500 : void libspdm_reset_message_mut_c(libspdm_context_t *spdm_context)
1293 : {
1294 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1295 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_mut_c);
1296 : #else
1297 500 : if (spdm_context->transcript.digest_context_mut_m1m2 != NULL) {
1298 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1299 : spdm_context->transcript.digest_context_mut_m1m2);
1300 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1301 : }
1302 : #endif
1303 500 : }
1304 :
1305 4163 : void libspdm_reset_message_m(libspdm_context_t *spdm_context, void *session_info)
1306 : {
1307 : libspdm_session_info_t *spdm_session_info;
1308 :
1309 4163 : spdm_session_info = session_info;
1310 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1311 : if (spdm_session_info == NULL) {
1312 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_m);
1313 : } else {
1314 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_m);
1315 : }
1316 : #else
1317 4163 : if (spdm_session_info == NULL) {
1318 3883 : if (spdm_context->transcript.digest_context_l1l2 != NULL) {
1319 62 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1320 : spdm_context->transcript.digest_context_l1l2);
1321 62 : spdm_context->transcript.digest_context_l1l2 = NULL;
1322 : }
1323 : } else {
1324 280 : if (spdm_session_info->session_transcript.digest_context_l1l2 != NULL) {
1325 2 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1326 : spdm_session_info->session_transcript.digest_context_l1l2);
1327 2 : spdm_session_info->session_transcript.digest_context_l1l2 = NULL;
1328 : }
1329 : }
1330 : #endif
1331 : #if LIBSPDM_ENABLE_CAPABILITY_MEAS_CAP
1332 4163 : if (spdm_context->spdm_meas_log_reset_callback != NULL) {
1333 79 : spdm_context->spdm_meas_log_reset_callback(
1334 : spdm_context, spdm_session_info == NULL ? NULL : &spdm_session_info->session_id);
1335 : }
1336 : #endif /* LIBSPDM_ENABLE_CAPABILITY_MEAS_CAP */
1337 4163 : }
1338 :
1339 0 : void libspdm_reset_message_k(libspdm_context_t *spdm_context, void *session_info)
1340 : {
1341 : libspdm_session_info_t *spdm_session_info;
1342 :
1343 0 : spdm_session_info = session_info;
1344 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1345 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_k);
1346 : #else
1347 : {
1348 0 : if (spdm_session_info->session_transcript.digest_context_th != NULL) {
1349 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1350 : spdm_session_info->session_transcript.digest_context_th);
1351 0 : spdm_session_info->session_transcript.digest_context_th = NULL;
1352 : }
1353 0 : if (spdm_session_info->session_transcript.digest_context_th_backup != NULL) {
1354 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1355 : spdm_session_info->session_transcript.digest_context_th_backup);
1356 0 : spdm_session_info->session_transcript.digest_context_th_backup = NULL;
1357 : }
1358 : }
1359 : #endif
1360 0 : }
1361 :
1362 6 : void libspdm_reset_message_encap_d(void *session_info)
1363 : {
1364 : libspdm_session_info_t *spdm_session_info;
1365 :
1366 6 : spdm_session_info = session_info;
1367 6 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_encap_d);
1368 6 : }
1369 :
1370 21 : void libspdm_reset_message_f(libspdm_context_t *spdm_context, void *session_info)
1371 : {
1372 : libspdm_session_info_t *spdm_session_info;
1373 :
1374 21 : spdm_session_info = session_info;
1375 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1376 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_f);
1377 : #else
1378 : {
1379 21 : if (spdm_session_info->session_transcript.digest_context_th != NULL) {
1380 21 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1381 : spdm_session_info->session_transcript.digest_context_th);
1382 21 : spdm_session_info->session_transcript.digest_context_th =
1383 21 : spdm_session_info->session_transcript.digest_context_th_backup;
1384 21 : spdm_session_info->session_transcript.digest_context_th_backup = NULL;
1385 : }
1386 21 : spdm_session_info->session_transcript.message_f_initialized = false;
1387 : }
1388 : #endif
1389 21 : }
1390 :
1391 185 : void libspdm_reset_message_e(libspdm_context_t *spdm_context, void *session_info)
1392 : {
1393 : libspdm_session_info_t *spdm_session_info;
1394 :
1395 185 : spdm_session_info = session_info;
1396 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1397 : if (spdm_session_info == NULL) {
1398 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_e);
1399 : } else {
1400 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_e);
1401 : }
1402 : #else
1403 185 : if (spdm_session_info == NULL) {
1404 177 : if (spdm_context->transcript.digest_context_il1il2 != NULL) {
1405 14 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1406 : spdm_context->transcript.digest_context_il1il2);
1407 14 : spdm_context->transcript.digest_context_il1il2 = NULL;
1408 : }
1409 : } else {
1410 8 : if (spdm_session_info->session_transcript.digest_context_il1il2 != NULL) {
1411 3 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1412 : spdm_session_info->session_transcript.digest_context_il1il2);
1413 3 : spdm_session_info->session_transcript.digest_context_il1il2 = NULL;
1414 : }
1415 : }
1416 : #endif
1417 185 : }
1418 :
1419 144 : void libspdm_reset_message_encap_e(libspdm_context_t *spdm_context, void *session_info)
1420 : {
1421 : libspdm_session_info_t *spdm_session_info;
1422 :
1423 144 : spdm_session_info = session_info;
1424 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1425 : if (spdm_session_info == NULL) {
1426 : libspdm_reset_managed_buffer(&spdm_context->transcript.message_encap_e);
1427 : } else {
1428 : libspdm_reset_managed_buffer(&spdm_session_info->session_transcript.message_encap_e);
1429 : }
1430 : #else
1431 144 : if (spdm_session_info == NULL) {
1432 137 : if (spdm_context->transcript.digest_context_encap_il1il2 != NULL) {
1433 12 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1434 : spdm_context->transcript.digest_context_encap_il1il2);
1435 12 : spdm_context->transcript.digest_context_encap_il1il2 = NULL;
1436 : }
1437 : } else {
1438 7 : if (spdm_session_info->session_transcript.digest_context_encap_il1il2 != NULL) {
1439 2 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1440 : spdm_session_info->session_transcript.digest_context_encap_il1il2);
1441 2 : spdm_session_info->session_transcript.digest_context_encap_il1il2 = NULL;
1442 : }
1443 : }
1444 : #endif
1445 144 : }
1446 :
1447 4257 : void libspdm_reset_message_buffer_via_request_code(void *context, void *session_info,
1448 : uint8_t request_code)
1449 : {
1450 : libspdm_context_t *spdm_context;
1451 :
1452 4257 : spdm_context = context;
1453 : /**
1454 : * Any request other than SPDM_GET_MEASUREMENTS resets L1/L2
1455 : */
1456 4257 : if (request_code != SPDM_GET_MEASUREMENTS) {
1457 3832 : libspdm_reset_message_m(spdm_context, session_info);
1458 : }
1459 : /**
1460 : * If the Requester issued GET_MEASUREMENTS or KEY_EXCHANGE or FINISH or PSK_EXCHANGE
1461 : * or PSK_FINISH or KEY_UPDATE or HEARTBEAT or GET_ENCAPSULATED_REQUEST or DELIVER_ENCAPSULATED_RESPONSE
1462 : * or END_SESSION request(s) or SPDM_GET_MEASUREMENT_EXTENSION_LOG and skipped CHALLENGE completion, M1 and M2 are reset to null.
1463 : */
1464 4257 : switch (request_code)
1465 : {
1466 876 : case SPDM_KEY_EXCHANGE:
1467 : case SPDM_GET_MEASUREMENTS:
1468 : case SPDM_FINISH:
1469 : case SPDM_PSK_EXCHANGE:
1470 : case SPDM_PSK_FINISH:
1471 : case SPDM_KEY_UPDATE:
1472 : case SPDM_HEARTBEAT:
1473 : case SPDM_GET_ENCAPSULATED_REQUEST:
1474 : case SPDM_END_SESSION:
1475 : case SPDM_GET_MEASUREMENT_EXTENSION_LOG:
1476 876 : if (spdm_context->connection_info.connection_state <
1477 : LIBSPDM_CONNECTION_STATE_AUTHENTICATED) {
1478 434 : libspdm_reset_message_b(spdm_context);
1479 434 : libspdm_reset_message_c(spdm_context);
1480 434 : libspdm_reset_message_mut_b(spdm_context);
1481 434 : libspdm_reset_message_mut_c(spdm_context);
1482 : }
1483 876 : break;
1484 5 : case SPDM_DELIVER_ENCAPSULATED_RESPONSE:
1485 5 : if (spdm_context->connection_info.connection_state <
1486 : LIBSPDM_CONNECTION_STATE_AUTHENTICATED) {
1487 5 : libspdm_reset_message_b(spdm_context);
1488 5 : libspdm_reset_message_c(spdm_context);
1489 : }
1490 5 : break;
1491 60 : case SPDM_GET_DIGESTS:
1492 60 : libspdm_reset_message_b(spdm_context);
1493 60 : break;
1494 56 : case SPDM_GET_ENDPOINT_INFO:
1495 56 : libspdm_reset_message_e(spdm_context, session_info);
1496 56 : libspdm_reset_message_encap_e(spdm_context, session_info);
1497 56 : break;
1498 3260 : default:
1499 3260 : break;
1500 : }
1501 4257 : }
1502 :
1503 179 : libspdm_return_t libspdm_append_message_a(libspdm_context_t *spdm_context, const void *message,
1504 : size_t message_size)
1505 : {
1506 179 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_a,
1507 : message, message_size);
1508 : }
1509 :
1510 7 : libspdm_return_t libspdm_append_message_d(libspdm_context_t *spdm_context, const void *message,
1511 : size_t message_size)
1512 : {
1513 : /* Only the first message D after VCA in connection counts */
1514 7 : if (libspdm_get_managed_buffer_size(&spdm_context->transcript.message_d) != 0) {
1515 1 : return LIBSPDM_STATUS_SUCCESS;
1516 : }
1517 6 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_d,
1518 : message, message_size);
1519 : }
1520 :
1521 5934 : libspdm_return_t libspdm_append_message_b(libspdm_context_t *spdm_context, const void *message,
1522 : size_t message_size)
1523 : {
1524 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1525 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_b,
1526 : message, message_size);
1527 : #else
1528 : {
1529 : bool result;
1530 :
1531 5934 : if (spdm_context->transcript.digest_context_m1m2 == NULL) {
1532 164 : spdm_context->transcript.digest_context_m1m2 = libspdm_hash_new (
1533 : spdm_context->connection_info.algorithm.base_hash_algo);
1534 164 : if (spdm_context->transcript.digest_context_m1m2 == NULL) {
1535 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1536 : }
1537 164 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1538 : spdm_context->transcript.digest_context_m1m2);
1539 164 : if (!result) {
1540 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1541 : spdm_context->transcript.digest_context_m1m2);
1542 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1543 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1544 : }
1545 164 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1546 : spdm_context->transcript.digest_context_m1m2,
1547 164 : libspdm_get_managed_buffer(&spdm_context->transcript.
1548 : message_a),
1549 164 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1550 : message_a));
1551 164 : if (!result) {
1552 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1553 : spdm_context->transcript.digest_context_m1m2);
1554 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1555 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1556 : }
1557 : }
1558 :
1559 5934 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1560 : spdm_context->transcript.digest_context_m1m2, message,
1561 : message_size);
1562 5934 : if (!result) {
1563 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1564 : spdm_context->transcript.digest_context_m1m2);
1565 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1566 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1567 : }
1568 :
1569 5934 : return LIBSPDM_STATUS_SUCCESS;
1570 : }
1571 : #endif
1572 : }
1573 :
1574 52 : libspdm_return_t libspdm_append_message_c(libspdm_context_t *spdm_context, const void *message,
1575 : size_t message_size)
1576 : {
1577 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1578 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_c,
1579 : message, message_size);
1580 : #else
1581 : {
1582 : bool result;
1583 :
1584 52 : if (spdm_context->transcript.digest_context_m1m2 == NULL) {
1585 25 : spdm_context->transcript.digest_context_m1m2 = libspdm_hash_new (
1586 : spdm_context->connection_info.algorithm.base_hash_algo);
1587 25 : if (spdm_context->transcript.digest_context_m1m2 == NULL) {
1588 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1589 : }
1590 25 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1591 : spdm_context->transcript.digest_context_m1m2);
1592 25 : if (!result) {
1593 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1594 : spdm_context->transcript.digest_context_m1m2);
1595 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1596 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1597 : }
1598 25 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1599 : spdm_context->transcript.digest_context_m1m2,
1600 25 : libspdm_get_managed_buffer(&spdm_context->transcript.
1601 : message_a),
1602 25 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1603 : message_a));
1604 25 : if (!result) {
1605 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1606 : spdm_context->transcript.digest_context_m1m2);
1607 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1608 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1609 : }
1610 : }
1611 :
1612 52 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1613 : spdm_context->transcript.digest_context_m1m2, message,
1614 : message_size);
1615 52 : if (!result) {
1616 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1617 : spdm_context->transcript.digest_context_m1m2);
1618 0 : spdm_context->transcript.digest_context_m1m2 = NULL;
1619 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1620 : }
1621 :
1622 52 : return LIBSPDM_STATUS_SUCCESS;
1623 : }
1624 : #endif
1625 : }
1626 :
1627 2847 : libspdm_return_t libspdm_append_message_mut_b(libspdm_context_t *spdm_context, const void *message,
1628 : size_t message_size)
1629 : {
1630 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1631 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_mut_b,
1632 : message, message_size);
1633 : #else
1634 : {
1635 : bool result;
1636 :
1637 2847 : if (spdm_context->transcript.digest_context_mut_m1m2 == NULL) {
1638 32 : spdm_context->transcript.digest_context_mut_m1m2 = libspdm_hash_new (
1639 : spdm_context->connection_info.algorithm.base_hash_algo);
1640 32 : if (spdm_context->transcript.digest_context_mut_m1m2 == NULL) {
1641 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1642 : }
1643 32 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1644 : spdm_context->transcript.digest_context_mut_m1m2);
1645 32 : if (!result) {
1646 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1647 : spdm_context->transcript.digest_context_mut_m1m2);
1648 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1649 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1650 : }
1651 32 : if ((spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT) >
1652 : SPDM_MESSAGE_VERSION_11) {
1653 :
1654 : /* Need append VCA since 1.2 script */
1655 5 : result = libspdm_hash_update (
1656 : spdm_context->connection_info.algorithm.base_hash_algo,
1657 : spdm_context->transcript.digest_context_mut_m1m2,
1658 5 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
1659 5 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1660 : message_a));
1661 5 : if (!result) {
1662 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1663 : spdm_context->transcript.digest_context_mut_m1m2);
1664 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1665 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1666 : }
1667 : }
1668 : }
1669 :
1670 2847 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1671 : spdm_context->transcript.digest_context_mut_m1m2, message,
1672 : message_size);
1673 2847 : if (!result) {
1674 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1675 : spdm_context->transcript.digest_context_mut_m1m2);
1676 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1677 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1678 : }
1679 :
1680 2847 : return LIBSPDM_STATUS_SUCCESS;
1681 : }
1682 : #endif
1683 : }
1684 :
1685 10 : libspdm_return_t libspdm_append_message_mut_c(libspdm_context_t *spdm_context, const void *message,
1686 : size_t message_size)
1687 : {
1688 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1689 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_mut_c,
1690 : message, message_size);
1691 : #else
1692 : {
1693 : bool result;
1694 :
1695 10 : if (spdm_context->transcript.digest_context_mut_m1m2 == NULL) {
1696 7 : spdm_context->transcript.digest_context_mut_m1m2 = libspdm_hash_new (
1697 : spdm_context->connection_info.algorithm.base_hash_algo);
1698 7 : if (spdm_context->transcript.digest_context_mut_m1m2 == NULL) {
1699 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1700 : }
1701 7 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1702 : spdm_context->transcript.digest_context_mut_m1m2);
1703 7 : if (!result) {
1704 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1705 : spdm_context->transcript.digest_context_mut_m1m2);
1706 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1707 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1708 : }
1709 7 : if ((spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT) >
1710 : SPDM_MESSAGE_VERSION_11) {
1711 :
1712 : /* Need append VCA since 1.2 script */
1713 2 : result = libspdm_hash_update (
1714 : spdm_context->connection_info.algorithm.base_hash_algo,
1715 : spdm_context->transcript.digest_context_mut_m1m2,
1716 2 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
1717 2 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1718 : message_a));
1719 2 : if (!result) {
1720 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1721 : spdm_context->transcript.digest_context_mut_m1m2);
1722 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1723 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1724 : }
1725 : }
1726 : }
1727 :
1728 10 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1729 : spdm_context->transcript.digest_context_mut_m1m2, message,
1730 : message_size);
1731 10 : if (!result) {
1732 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1733 : spdm_context->transcript.digest_context_mut_m1m2);
1734 0 : spdm_context->transcript.digest_context_mut_m1m2 = NULL;
1735 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1736 : }
1737 :
1738 10 : return LIBSPDM_STATUS_SUCCESS;
1739 : }
1740 : #endif
1741 : }
1742 :
1743 722 : libspdm_return_t libspdm_append_message_m(libspdm_context_t *spdm_context, void *session_info,
1744 : const void *message, size_t message_size)
1745 : {
1746 : libspdm_session_info_t *spdm_session_info;
1747 :
1748 722 : spdm_session_info = session_info;
1749 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1750 : if (spdm_session_info == NULL) {
1751 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_m,
1752 : message, message_size);
1753 : } else {
1754 : return libspdm_append_managed_buffer(&spdm_session_info->session_transcript.message_m,
1755 : message, message_size);
1756 : }
1757 : #else
1758 : {
1759 : bool result;
1760 :
1761 722 : if (spdm_session_info == NULL) {
1762 718 : if (spdm_context->transcript.digest_context_l1l2 == NULL) {
1763 62 : spdm_context->transcript.digest_context_l1l2 = libspdm_hash_new (
1764 : spdm_context->connection_info.algorithm.base_hash_algo);
1765 62 : if (spdm_context->transcript.digest_context_l1l2 == NULL) {
1766 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1767 : }
1768 62 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1769 : spdm_context->transcript.digest_context_l1l2);
1770 62 : if (!result) {
1771 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1772 : spdm_context->transcript.digest_context_l1l2);
1773 0 : spdm_context->transcript.digest_context_l1l2 = NULL;
1774 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1775 : }
1776 62 : if ((spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT) >
1777 : SPDM_MESSAGE_VERSION_11) {
1778 :
1779 : /* Need append VCA since 1.2 script */
1780 13 : result = libspdm_hash_update (
1781 : spdm_context->connection_info.algorithm.base_hash_algo,
1782 : spdm_context->transcript.digest_context_l1l2,
1783 13 : libspdm_get_managed_buffer(
1784 13 : &spdm_context->transcript.message_a),
1785 13 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1786 : message_a));
1787 13 : if (!result) {
1788 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1789 : spdm_context->transcript.digest_context_l1l2);
1790 0 : spdm_context->transcript.digest_context_l1l2 = NULL;
1791 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1792 : }
1793 : }
1794 : }
1795 718 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1796 : spdm_context->transcript.digest_context_l1l2, message,
1797 : message_size);
1798 718 : if (!result) {
1799 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1800 : spdm_context->transcript.digest_context_l1l2);
1801 0 : spdm_context->transcript.digest_context_l1l2 = NULL;
1802 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1803 : }
1804 : } else {
1805 4 : if (spdm_session_info->session_transcript.digest_context_l1l2 == NULL) {
1806 2 : spdm_session_info->session_transcript.digest_context_l1l2 = libspdm_hash_new (
1807 : spdm_context->connection_info.algorithm.base_hash_algo);
1808 2 : if (spdm_session_info->session_transcript.digest_context_l1l2 == NULL) {
1809 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1810 : }
1811 2 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1812 : spdm_session_info->session_transcript.digest_context_l1l2);
1813 2 : if (!result) {
1814 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1815 : spdm_session_info->session_transcript.digest_context_l1l2);
1816 0 : spdm_session_info->session_transcript.digest_context_l1l2 = NULL;
1817 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1818 : }
1819 2 : if ((spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT) >
1820 : SPDM_MESSAGE_VERSION_11) {
1821 :
1822 : /* Need append VCA since 1.2 script*/
1823 :
1824 0 : result = libspdm_hash_update (
1825 : spdm_context->connection_info.algorithm.base_hash_algo,
1826 : spdm_session_info->session_transcript.digest_context_l1l2,
1827 0 : libspdm_get_managed_buffer(
1828 0 : &spdm_context->transcript.message_a),
1829 0 : libspdm_get_managed_buffer_size(&spdm_context->transcript.
1830 : message_a));
1831 0 : if (!result) {
1832 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1833 : spdm_session_info->session_transcript.digest_context_l1l2);
1834 0 : spdm_session_info->session_transcript.digest_context_l1l2 = NULL;
1835 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1836 : }
1837 : }
1838 : }
1839 4 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1840 : spdm_session_info->session_transcript.digest_context_l1l2,
1841 : message, message_size);
1842 4 : if (!result) {
1843 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1844 : spdm_session_info->session_transcript.digest_context_l1l2);
1845 0 : spdm_session_info->session_transcript.digest_context_l1l2 = NULL;
1846 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1847 : }
1848 : }
1849 :
1850 722 : return LIBSPDM_STATUS_SUCCESS;
1851 : }
1852 : #endif
1853 : }
1854 :
1855 299 : libspdm_return_t libspdm_append_message_k(libspdm_context_t *spdm_context,
1856 : void *session_info,
1857 : bool is_requester, const void *message,
1858 : size_t message_size)
1859 : {
1860 : libspdm_session_info_t *spdm_session_info;
1861 :
1862 299 : spdm_session_info = session_info;
1863 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
1864 : return libspdm_append_managed_buffer(
1865 : &spdm_session_info->session_transcript.message_k, message,
1866 : message_size);
1867 : #else
1868 : {
1869 : uint8_t *cert_chain_buffer;
1870 : size_t cert_chain_buffer_size;
1871 : bool result;
1872 : uint8_t cert_chain_buffer_hash[LIBSPDM_MAX_HASH_SIZE];
1873 : uint32_t hash_size;
1874 : uint8_t slot_id;
1875 :
1876 299 : hash_size = libspdm_get_hash_size(spdm_context->connection_info.algorithm.base_hash_algo);
1877 :
1878 299 : if (spdm_session_info->session_transcript.digest_context_th == NULL) {
1879 155 : if (!spdm_session_info->use_psk) {
1880 90 : if (is_requester) {
1881 59 : slot_id = spdm_session_info->peer_used_cert_chain_slot_id;
1882 59 : LIBSPDM_ASSERT((slot_id < SPDM_MAX_SLOT_COUNT) || (slot_id == 0xFF));
1883 59 : if (slot_id == 0xFF) {
1884 2 : result = libspdm_get_peer_public_key_buffer(
1885 : spdm_context, (const void **)&cert_chain_buffer,
1886 : &cert_chain_buffer_size);
1887 2 : if (!result) {
1888 0 : return LIBSPDM_STATUS_INVALID_STATE_PEER;
1889 : }
1890 :
1891 2 : result = libspdm_hash_all(
1892 : spdm_context->connection_info.algorithm.base_hash_algo,
1893 : cert_chain_buffer, cert_chain_buffer_size,
1894 : cert_chain_buffer_hash);
1895 2 : if (!result) {
1896 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1897 : }
1898 : } else {
1899 57 : LIBSPDM_ASSERT(
1900 : hash_size ==
1901 : spdm_context->connection_info
1902 : .peer_used_cert_chain[slot_id].buffer_hash_size);
1903 :
1904 57 : libspdm_copy_mem(cert_chain_buffer_hash,
1905 : sizeof(cert_chain_buffer_hash),
1906 : spdm_context->connection_info
1907 57 : .peer_used_cert_chain[slot_id].buffer_hash,
1908 : hash_size);
1909 : }
1910 : } else {
1911 31 : slot_id = spdm_session_info->local_used_cert_chain_slot_id;
1912 31 : LIBSPDM_ASSERT((slot_id < SPDM_MAX_SLOT_COUNT) || (slot_id == 0xFF));
1913 31 : if (slot_id == 0xFF) {
1914 2 : result = libspdm_get_local_public_key_buffer(
1915 : spdm_context, (const void **)&cert_chain_buffer,
1916 : &cert_chain_buffer_size);
1917 2 : if (!result) {
1918 0 : return LIBSPDM_STATUS_INVALID_STATE_LOCAL;
1919 : }
1920 : } else {
1921 29 : libspdm_get_local_cert_chain_buffer(
1922 : spdm_context, slot_id, (const void **)&cert_chain_buffer,
1923 : &cert_chain_buffer_size);
1924 : }
1925 :
1926 31 : result = libspdm_hash_all(
1927 : spdm_context->connection_info.algorithm.base_hash_algo,
1928 : cert_chain_buffer, cert_chain_buffer_size,
1929 : cert_chain_buffer_hash);
1930 31 : if (!result) {
1931 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1932 : }
1933 : }
1934 : }
1935 : }
1936 :
1937 :
1938 : /* prepare digest_context_th*/
1939 :
1940 299 : if (spdm_session_info->session_transcript.digest_context_th == NULL) {
1941 155 : spdm_session_info->session_transcript.digest_context_th = libspdm_hash_new (
1942 : spdm_context->connection_info.algorithm.base_hash_algo);
1943 155 : if (spdm_session_info->session_transcript.digest_context_th == NULL) {
1944 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1945 : }
1946 155 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
1947 : spdm_session_info->session_transcript.digest_context_th);
1948 155 : if (!result) {
1949 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1950 : spdm_session_info->session_transcript.digest_context_th);
1951 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1952 : }
1953 155 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1954 : spdm_session_info->session_transcript.digest_context_th,
1955 155 : libspdm_get_managed_buffer(&spdm_context->transcript.
1956 : message_a),
1957 : libspdm_get_managed_buffer_size(
1958 155 : &spdm_context->transcript.message_a));
1959 155 : if (!result) {
1960 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1961 : spdm_session_info->session_transcript.digest_context_th);
1962 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1963 : }
1964 155 : if (!spdm_session_info->use_psk) {
1965 90 : if (spdm_context->connection_info.multi_key_conn_rsp) {
1966 0 : result = libspdm_hash_update (
1967 : spdm_context->connection_info.algorithm.base_hash_algo,
1968 : spdm_session_info->session_transcript.digest_context_th,
1969 0 : libspdm_get_managed_buffer(&spdm_context->transcript.message_d),
1970 0 : libspdm_get_managed_buffer_size(&spdm_context->transcript.message_d));
1971 0 : if (!result) {
1972 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1973 : spdm_session_info->session_transcript.digest_context_th);
1974 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1975 : }
1976 : }
1977 :
1978 90 : result = libspdm_hash_update (
1979 : spdm_context->connection_info.algorithm.base_hash_algo,
1980 : spdm_session_info->session_transcript.digest_context_th,
1981 : cert_chain_buffer_hash, hash_size);
1982 90 : if (!result) {
1983 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1984 : spdm_session_info->session_transcript.digest_context_th);
1985 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1986 : }
1987 : }
1988 : }
1989 299 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
1990 : spdm_session_info->session_transcript.digest_context_th,
1991 : message,
1992 : message_size);
1993 299 : if (!result) {
1994 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
1995 : spdm_session_info->session_transcript.digest_context_th);
1996 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
1997 : }
1998 299 : return LIBSPDM_STATUS_SUCCESS;
1999 : }
2000 : #endif
2001 : }
2002 :
2003 4 : libspdm_return_t libspdm_append_message_encap_d(void *session_info,
2004 : const void *message,
2005 : size_t message_size)
2006 : {
2007 : libspdm_session_info_t *spdm_session_info;
2008 :
2009 4 : spdm_session_info = session_info;
2010 : /* Only the first message EncapD in current session counts */
2011 4 : if (libspdm_get_managed_buffer_size(&spdm_session_info->session_transcript.message_encap_d) !=
2012 : 0) {
2013 0 : return LIBSPDM_STATUS_SUCCESS;
2014 : }
2015 4 : return libspdm_append_managed_buffer(
2016 4 : &spdm_session_info->session_transcript.message_encap_d, message,
2017 : message_size);
2018 : }
2019 :
2020 253 : libspdm_return_t libspdm_append_message_f(libspdm_context_t *spdm_context,
2021 : void *session_info,
2022 : bool is_requester, const void *message,
2023 : size_t message_size)
2024 : {
2025 : libspdm_session_info_t *spdm_session_info;
2026 :
2027 253 : spdm_session_info = session_info;
2028 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
2029 : return libspdm_append_managed_buffer(
2030 : &spdm_session_info->session_transcript.message_f, message,
2031 : message_size);
2032 : #else
2033 : {
2034 : const uint8_t *mut_cert_chain_buffer;
2035 : size_t mut_cert_chain_buffer_size;
2036 : bool result;
2037 : uint8_t mut_cert_chain_buffer_hash[LIBSPDM_MAX_HASH_SIZE];
2038 : uint32_t hash_size;
2039 : libspdm_return_t status;
2040 : uint8_t slot_id;
2041 :
2042 253 : hash_size = libspdm_get_hash_size(spdm_context->connection_info.algorithm.base_hash_algo);
2043 :
2044 253 : if (!spdm_session_info->session_transcript.message_f_initialized) {
2045 : /* digest_context_th might be NULL in unit test, where message_k is hardcoded. */
2046 96 : if (spdm_session_info->session_transcript.digest_context_th == NULL) {
2047 : status =
2048 95 : libspdm_append_message_k (spdm_context, session_info, is_requester, NULL, 0);
2049 95 : if (LIBSPDM_STATUS_IS_ERROR(status)) {
2050 0 : return status;
2051 : }
2052 : }
2053 :
2054 96 : if (!spdm_session_info->use_psk && (spdm_session_info->mut_auth_requested != 0)) {
2055 16 : if (is_requester) {
2056 5 : slot_id = spdm_session_info->local_used_cert_chain_slot_id;
2057 5 : LIBSPDM_ASSERT((slot_id < SPDM_MAX_SLOT_COUNT) || (slot_id == 0xFF));
2058 5 : if (slot_id == 0xFF) {
2059 0 : result = libspdm_get_local_public_key_buffer(
2060 : spdm_context,
2061 : (const void **)&mut_cert_chain_buffer,
2062 : &mut_cert_chain_buffer_size);
2063 0 : if (!result) {
2064 0 : return LIBSPDM_STATUS_INVALID_STATE_LOCAL;
2065 : }
2066 : } else {
2067 5 : libspdm_get_local_cert_chain_buffer(
2068 : spdm_context,
2069 : slot_id,
2070 : (const void **)&mut_cert_chain_buffer,
2071 : &mut_cert_chain_buffer_size);
2072 : }
2073 :
2074 5 : result = libspdm_hash_all(
2075 : spdm_context->connection_info.algorithm.base_hash_algo,
2076 : mut_cert_chain_buffer, mut_cert_chain_buffer_size,
2077 : mut_cert_chain_buffer_hash);
2078 5 : if (!result) {
2079 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2080 : }
2081 : } else {
2082 11 : slot_id = spdm_session_info->peer_used_cert_chain_slot_id;
2083 11 : LIBSPDM_ASSERT((slot_id < SPDM_MAX_SLOT_COUNT) || (slot_id == 0xFF));
2084 11 : if (slot_id == 0xFF) {
2085 1 : result = libspdm_get_peer_public_key_buffer(
2086 : spdm_context,
2087 : (const void **)&mut_cert_chain_buffer,
2088 : &mut_cert_chain_buffer_size);
2089 1 : if (!result) {
2090 0 : return LIBSPDM_STATUS_INVALID_STATE_PEER;
2091 : }
2092 :
2093 1 : result = libspdm_hash_all(
2094 : spdm_context->connection_info.algorithm.base_hash_algo,
2095 : mut_cert_chain_buffer, mut_cert_chain_buffer_size,
2096 : mut_cert_chain_buffer_hash);
2097 1 : if (!result) {
2098 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2099 : }
2100 : } else {
2101 10 : LIBSPDM_ASSERT(
2102 : hash_size ==
2103 : spdm_context->connection_info
2104 : .peer_used_cert_chain[slot_id].buffer_hash_size);
2105 :
2106 10 : libspdm_copy_mem(mut_cert_chain_buffer_hash,
2107 : sizeof(mut_cert_chain_buffer_hash),
2108 : spdm_context->connection_info
2109 10 : .peer_used_cert_chain[slot_id].buffer_hash,
2110 : hash_size);
2111 : }
2112 : }
2113 : }
2114 :
2115 : /* It is first time call, backup current message_k context
2116 : * this backup will be used in reset_message_f.*/
2117 :
2118 96 : LIBSPDM_ASSERT (spdm_session_info->session_transcript.digest_context_th != NULL);
2119 96 : spdm_session_info->session_transcript.digest_context_th_backup = libspdm_hash_new (
2120 : spdm_context->connection_info.algorithm.base_hash_algo);
2121 96 : if (spdm_session_info->session_transcript.digest_context_th_backup == NULL) {
2122 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2123 : }
2124 96 : result = libspdm_hash_duplicate (spdm_context->connection_info.algorithm.base_hash_algo,
2125 96 : spdm_session_info->session_transcript.digest_context_th,
2126 : spdm_session_info->session_transcript.digest_context_th_backup);
2127 96 : if (!result) {
2128 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2129 : spdm_session_info->session_transcript.digest_context_th_backup);
2130 0 : spdm_session_info->session_transcript.digest_context_th_backup = NULL;
2131 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2132 : }
2133 : }
2134 :
2135 :
2136 : /* prepare digest_context_th*/
2137 :
2138 253 : LIBSPDM_ASSERT (spdm_session_info->session_transcript.digest_context_th != NULL);
2139 253 : if (!spdm_session_info->session_transcript.message_f_initialized) {
2140 96 : if (!spdm_session_info->use_psk && (spdm_session_info->mut_auth_requested != 0)) {
2141 16 : if (spdm_context->connection_info.multi_key_conn_req) {
2142 0 : result = libspdm_hash_update (
2143 : spdm_context->connection_info.algorithm.base_hash_algo,
2144 : spdm_session_info->session_transcript.digest_context_th,
2145 0 : libspdm_get_managed_buffer(&spdm_session_info->session_transcript.
2146 : message_encap_d),
2147 0 : libspdm_get_managed_buffer_size(&spdm_session_info->session_transcript.
2148 : message_encap_d));
2149 0 : if (!result) {
2150 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2151 : spdm_session_info->session_transcript.digest_context_th);
2152 0 : spdm_session_info->session_transcript.digest_context_th = NULL;
2153 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2154 : }
2155 : }
2156 :
2157 16 : result = libspdm_hash_update (
2158 : spdm_context->connection_info.algorithm.base_hash_algo,
2159 : spdm_session_info->session_transcript.digest_context_th,
2160 : mut_cert_chain_buffer_hash, hash_size);
2161 16 : if (!result) {
2162 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2163 : spdm_session_info->session_transcript.digest_context_th);
2164 0 : spdm_session_info->session_transcript.digest_context_th = NULL;
2165 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2166 : }
2167 : }
2168 : }
2169 253 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
2170 : spdm_session_info->session_transcript.digest_context_th,
2171 : message,
2172 : message_size);
2173 253 : if (!result) {
2174 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2175 : spdm_session_info->session_transcript.digest_context_th);
2176 0 : spdm_session_info->session_transcript.digest_context_th = NULL;
2177 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2178 : }
2179 :
2180 253 : spdm_session_info->session_transcript.message_f_initialized = true;
2181 253 : return LIBSPDM_STATUS_SUCCESS;
2182 : }
2183 : #endif
2184 : }
2185 :
2186 34 : libspdm_return_t libspdm_append_message_e(libspdm_context_t *spdm_context, void *session_info,
2187 : const void *message, size_t message_size)
2188 : {
2189 : libspdm_session_info_t *spdm_session_info;
2190 :
2191 34 : spdm_session_info = session_info;
2192 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
2193 : if (spdm_session_info == NULL) {
2194 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_e,
2195 : message, message_size);
2196 : } else {
2197 : return libspdm_append_managed_buffer(&spdm_session_info->session_transcript.message_e,
2198 : message, message_size);
2199 : }
2200 : #else
2201 : {
2202 : bool result;
2203 :
2204 34 : if (spdm_session_info == NULL) {
2205 28 : if (spdm_context->transcript.digest_context_il1il2 == NULL) {
2206 14 : spdm_context->transcript.digest_context_il1il2 = libspdm_hash_new (
2207 : spdm_context->connection_info.algorithm.base_hash_algo);
2208 14 : if (spdm_context->transcript.digest_context_il1il2 == NULL) {
2209 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2210 : }
2211 14 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
2212 : spdm_context->transcript.digest_context_il1il2);
2213 14 : if (!result) {
2214 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2215 : spdm_context->transcript.digest_context_il1il2);
2216 0 : spdm_context->transcript.digest_context_il1il2 = NULL;
2217 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2218 : }
2219 :
2220 14 : result = libspdm_hash_update (
2221 : spdm_context->connection_info.algorithm.base_hash_algo,
2222 : spdm_context->transcript.digest_context_il1il2,
2223 14 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
2224 14 : libspdm_get_managed_buffer_size(&spdm_context->transcript.message_a));
2225 :
2226 14 : if (!result) {
2227 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2228 : spdm_context->transcript.digest_context_il1il2);
2229 0 : spdm_context->transcript.digest_context_il1il2 = NULL;
2230 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2231 : }
2232 : }
2233 28 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
2234 : spdm_context->transcript.digest_context_il1il2, message,
2235 : message_size);
2236 28 : if (!result) {
2237 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2238 : spdm_context->transcript.digest_context_il1il2);
2239 0 : spdm_context->transcript.digest_context_il1il2 = NULL;
2240 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2241 : }
2242 : } else {
2243 6 : if (spdm_session_info->session_transcript.digest_context_il1il2 == NULL) {
2244 3 : spdm_session_info->session_transcript.digest_context_il1il2 = libspdm_hash_new (
2245 : spdm_context->connection_info.algorithm.base_hash_algo);
2246 3 : if (spdm_session_info->session_transcript.digest_context_il1il2 == NULL) {
2247 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2248 : }
2249 3 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
2250 : spdm_session_info->session_transcript.digest_context_il1il2);
2251 3 : if (!result) {
2252 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2253 : spdm_session_info->session_transcript.digest_context_il1il2);
2254 0 : spdm_session_info->session_transcript.digest_context_il1il2 = NULL;
2255 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2256 : }
2257 :
2258 3 : result = libspdm_hash_update (
2259 : spdm_context->connection_info.algorithm.base_hash_algo,
2260 : spdm_session_info->session_transcript.digest_context_il1il2,
2261 3 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
2262 3 : libspdm_get_managed_buffer_size(&spdm_context->transcript.message_a));
2263 :
2264 3 : if (!result) {
2265 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2266 : spdm_session_info->session_transcript.digest_context_il1il2);
2267 0 : spdm_session_info->session_transcript.digest_context_il1il2 = NULL;
2268 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2269 : }
2270 : }
2271 6 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
2272 : spdm_session_info->session_transcript.digest_context_il1il2,
2273 : message, message_size);
2274 6 : if (!result) {
2275 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2276 : spdm_session_info->session_transcript.digest_context_il1il2);
2277 0 : spdm_session_info->session_transcript.digest_context_il1il2 = NULL;
2278 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2279 : }
2280 : }
2281 :
2282 34 : return LIBSPDM_STATUS_SUCCESS;
2283 : }
2284 : #endif
2285 : }
2286 :
2287 24 : libspdm_return_t libspdm_append_message_encap_e(libspdm_context_t *spdm_context, void *session_info,
2288 : const void *message, size_t message_size)
2289 : {
2290 : libspdm_session_info_t *spdm_session_info;
2291 :
2292 24 : spdm_session_info = session_info;
2293 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
2294 : if (spdm_session_info == NULL) {
2295 : return libspdm_append_managed_buffer(&spdm_context->transcript.message_encap_e,
2296 : message, message_size);
2297 : } else {
2298 : return libspdm_append_managed_buffer(&spdm_session_info->session_transcript.message_encap_e,
2299 : message, message_size);
2300 : }
2301 : #else
2302 : {
2303 : bool result;
2304 :
2305 24 : if (spdm_session_info == NULL) {
2306 19 : if (spdm_context->transcript.digest_context_encap_il1il2 == NULL) {
2307 12 : spdm_context->transcript.digest_context_encap_il1il2 = libspdm_hash_new (
2308 : spdm_context->connection_info.algorithm.base_hash_algo);
2309 12 : if (spdm_context->transcript.digest_context_encap_il1il2 == NULL) {
2310 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2311 : }
2312 12 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
2313 : spdm_context->transcript.digest_context_encap_il1il2);
2314 12 : if (!result) {
2315 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2316 : spdm_context->transcript.digest_context_encap_il1il2);
2317 0 : spdm_context->transcript.digest_context_encap_il1il2 = NULL;
2318 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2319 : }
2320 :
2321 12 : result = libspdm_hash_update (
2322 : spdm_context->connection_info.algorithm.base_hash_algo,
2323 : spdm_context->transcript.digest_context_encap_il1il2,
2324 12 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
2325 12 : libspdm_get_managed_buffer_size(&spdm_context->transcript.message_a));
2326 :
2327 12 : if (!result) {
2328 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2329 : spdm_context->transcript.digest_context_encap_il1il2);
2330 0 : spdm_context->transcript.digest_context_encap_il1il2 = NULL;
2331 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2332 : }
2333 : }
2334 19 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
2335 : spdm_context->transcript.digest_context_encap_il1il2,
2336 : message,
2337 : message_size);
2338 19 : if (!result) {
2339 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2340 : spdm_context->transcript.digest_context_encap_il1il2);
2341 0 : spdm_context->transcript.digest_context_encap_il1il2 = NULL;
2342 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2343 : }
2344 : } else {
2345 5 : if (spdm_session_info->session_transcript.digest_context_encap_il1il2 == NULL) {
2346 3 : spdm_session_info->session_transcript.digest_context_encap_il1il2 =
2347 3 : libspdm_hash_new (spdm_context->connection_info.algorithm.base_hash_algo);
2348 3 : if (spdm_session_info->session_transcript.digest_context_encap_il1il2 == NULL) {
2349 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2350 : }
2351 3 : result = libspdm_hash_init (spdm_context->connection_info.algorithm.base_hash_algo,
2352 : spdm_session_info->session_transcript.digest_context_encap_il1il2);
2353 3 : if (!result) {
2354 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2355 : spdm_session_info->session_transcript.digest_context_encap_il1il2);
2356 0 : spdm_session_info->session_transcript.digest_context_encap_il1il2 = NULL;
2357 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2358 : }
2359 :
2360 3 : result = libspdm_hash_update (
2361 : spdm_context->connection_info.algorithm.base_hash_algo,
2362 : spdm_session_info->session_transcript.digest_context_encap_il1il2,
2363 3 : libspdm_get_managed_buffer(&spdm_context->transcript.message_a),
2364 3 : libspdm_get_managed_buffer_size(&spdm_context->transcript.message_a));
2365 :
2366 3 : if (!result) {
2367 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2368 : spdm_session_info->session_transcript.digest_context_encap_il1il2);
2369 0 : spdm_session_info->session_transcript.digest_context_encap_il1il2 = NULL;
2370 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2371 : }
2372 : }
2373 5 : result = libspdm_hash_update (spdm_context->connection_info.algorithm.base_hash_algo,
2374 : spdm_session_info->session_transcript.digest_context_encap_il1il2,
2375 : message, message_size);
2376 5 : if (!result) {
2377 0 : libspdm_hash_free (spdm_context->connection_info.algorithm.base_hash_algo,
2378 : spdm_session_info->session_transcript.digest_context_encap_il1il2);
2379 0 : spdm_session_info->session_transcript.digest_context_encap_il1il2 = NULL;
2380 0 : return LIBSPDM_STATUS_CRYPTO_ERROR;
2381 : }
2382 : }
2383 :
2384 24 : return LIBSPDM_STATUS_SUCCESS;
2385 : }
2386 : #endif
2387 : }
2388 0 : bool libspdm_is_version_supported(const libspdm_context_t *spdm_context, uint8_t version)
2389 : {
2390 0 : if (version == (spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT)) {
2391 0 : return true;
2392 : }
2393 :
2394 0 : return false;
2395 : }
2396 :
2397 273605 : uint8_t libspdm_get_connection_version(const libspdm_context_t *spdm_context)
2398 : {
2399 273605 : return (uint8_t)(spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT);
2400 : }
2401 :
2402 78325 : bool libspdm_is_capabilities_flag_supported(const libspdm_context_t *spdm_context,
2403 : bool is_requester,
2404 : uint32_t requester_capabilities_flag,
2405 : uint32_t responder_capabilities_flag)
2406 : {
2407 : uint32_t negotiated_requester_capabilities_flag;
2408 : uint32_t negotiated_responder_capabilities_flag;
2409 :
2410 78325 : if (is_requester) {
2411 73871 : negotiated_requester_capabilities_flag = spdm_context->local_context.capability.flags;
2412 73871 : negotiated_responder_capabilities_flag = spdm_context->connection_info.capability.flags;
2413 : } else {
2414 4454 : negotiated_requester_capabilities_flag = spdm_context->connection_info.capability.flags;
2415 4454 : negotiated_responder_capabilities_flag = spdm_context->local_context.capability.flags;
2416 : }
2417 :
2418 78325 : if (((requester_capabilities_flag == 0) ||
2419 74618 : ((negotiated_requester_capabilities_flag &
2420 71877 : requester_capabilities_flag) != 0)) &&
2421 70389 : ((responder_capabilities_flag == 0) ||
2422 70389 : ((negotiated_responder_capabilities_flag &
2423 : responder_capabilities_flag) != 0))) {
2424 70990 : return true;
2425 : } else {
2426 7335 : return false;
2427 : }
2428 : }
2429 :
2430 0 : bool libspdm_is_capabilities_ext_flag_supported(const libspdm_context_t *spdm_context,
2431 : bool is_requester,
2432 : uint16_t requester_capabilities_ext_flag,
2433 : uint16_t responder_capabilities_ext_flag)
2434 : {
2435 : uint16_t negotiated_requester_capabilities_ext_flag;
2436 : uint16_t negotiated_responder_capabilities_ext_flag;
2437 :
2438 0 : if (is_requester) {
2439 0 : negotiated_requester_capabilities_ext_flag = spdm_context->local_context.capability.ext_flags;
2440 0 : negotiated_responder_capabilities_ext_flag = spdm_context->connection_info.capability.ext_flags;
2441 : } else {
2442 0 : negotiated_requester_capabilities_ext_flag = spdm_context->connection_info.capability.ext_flags;
2443 0 : negotiated_responder_capabilities_ext_flag = spdm_context->local_context.capability.ext_flags;
2444 : }
2445 :
2446 0 : if (((requester_capabilities_ext_flag == 0) ||
2447 : ((negotiated_requester_capabilities_ext_flag &
2448 0 : requester_capabilities_ext_flag) != 0)) &&
2449 0 : ((responder_capabilities_ext_flag == 0) ||
2450 : ((negotiated_responder_capabilities_ext_flag &
2451 0 : responder_capabilities_ext_flag) != 0))) {
2452 0 : return true;
2453 : } else {
2454 0 : return false;
2455 : }
2456 : }
2457 :
2458 33 : bool libspdm_is_encap_supported(const libspdm_context_t *spdm_context)
2459 : {
2460 33 : if (libspdm_get_connection_version(spdm_context) == SPDM_MESSAGE_VERSION_10) {
2461 0 : return false;
2462 33 : } else if (libspdm_get_connection_version(spdm_context) == SPDM_MESSAGE_VERSION_12) {
2463 : /* ENCAP_CAP was erroneously deprecated in SPDM 1.2.0 and 1.2.1, and MUT_AUTH_CAP
2464 : * was used in its place. In SPDM 1.2.2 and later ENCAP_CAP is undeprecated. Since
2465 : * UpdateVersionNumber must be ignored when checking interoperability libspdm will check
2466 : * if ENCAP_CAP or MUT_AUTH_CAP is set. */
2467 2 : const bool is_req_encap_cap_supported = libspdm_is_capabilities_flag_supported(
2468 2 : spdm_context, spdm_context->local_context.is_requester,
2469 : SPDM_GET_CAPABILITIES_REQUEST_FLAGS_ENCAP_CAP, 0);
2470 2 : const bool is_req_mut_auth_cap_supported = libspdm_is_capabilities_flag_supported(
2471 2 : spdm_context, spdm_context->local_context.is_requester,
2472 : SPDM_GET_CAPABILITIES_REQUEST_FLAGS_MUT_AUTH_CAP, 0);
2473 2 : const bool is_rsp_encap_cap_supported = libspdm_is_capabilities_flag_supported(
2474 2 : spdm_context, spdm_context->local_context.is_requester,
2475 : 0, SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_ENCAP_CAP);
2476 2 : const bool is_rsp_mut_auth_cap_supported = libspdm_is_capabilities_flag_supported(
2477 2 : spdm_context, spdm_context->local_context.is_requester,
2478 : 0, SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MUT_AUTH_CAP);
2479 :
2480 2 : return ((is_req_encap_cap_supported || is_req_mut_auth_cap_supported) &&
2481 0 : (is_rsp_encap_cap_supported || is_rsp_mut_auth_cap_supported));
2482 : } else {
2483 : /* For SPDM 1.1 and 1.3 and later only check ENCAP_CAP. */
2484 31 : return libspdm_is_capabilities_flag_supported(
2485 31 : spdm_context, spdm_context->local_context.is_requester,
2486 : SPDM_GET_CAPABILITIES_REQUEST_FLAGS_ENCAP_CAP,
2487 : SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_ENCAP_CAP);
2488 : }
2489 : }
2490 :
2491 109 : void libspdm_register_device_io_func(
2492 : void *spdm_context, libspdm_device_send_message_func send_message,
2493 : libspdm_device_receive_message_func receive_message)
2494 : {
2495 : libspdm_context_t *context;
2496 :
2497 109 : context = spdm_context;
2498 109 : context->send_message = send_message;
2499 109 : context->receive_message = receive_message;
2500 109 : }
2501 :
2502 110 : void libspdm_register_device_buffer_func(
2503 : void *spdm_context,
2504 : uint32_t sender_buffer_size,
2505 : uint32_t receiver_buffer_size,
2506 : libspdm_device_acquire_sender_buffer_func acquire_sender_buffer,
2507 : libspdm_device_release_sender_buffer_func release_sender_buffer,
2508 : libspdm_device_acquire_receiver_buffer_func acquire_receiver_buffer,
2509 : libspdm_device_release_receiver_buffer_func release_receiver_buffer)
2510 : {
2511 : libspdm_context_t *context;
2512 :
2513 110 : context = spdm_context;
2514 110 : context->sender_buffer_size = sender_buffer_size;
2515 110 : context->receiver_buffer_size = receiver_buffer_size;
2516 110 : context->acquire_sender_buffer = acquire_sender_buffer;
2517 110 : context->release_sender_buffer = release_sender_buffer;
2518 110 : context->acquire_receiver_buffer = acquire_receiver_buffer;
2519 110 : context->release_receiver_buffer = release_receiver_buffer;
2520 :
2521 110 : LIBSPDM_ASSERT (sender_buffer_size >=
2522 : context->local_context.capability.transport_header_size +
2523 : context->local_context.capability.transport_tail_size);
2524 110 : sender_buffer_size -= (context->local_context.capability.transport_header_size +
2525 110 : context->local_context.capability.transport_tail_size);
2526 110 : LIBSPDM_ASSERT (sender_buffer_size >= SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12);
2527 110 : context->local_context.capability.sender_data_transfer_size = sender_buffer_size;
2528 :
2529 110 : LIBSPDM_ASSERT(receiver_buffer_size >=
2530 : context->local_context.capability.transport_header_size +
2531 : context->local_context.capability.transport_tail_size);
2532 110 : receiver_buffer_size -= (context->local_context.capability.transport_header_size +
2533 110 : context->local_context.capability.transport_tail_size);
2534 110 : LIBSPDM_ASSERT (receiver_buffer_size >= SPDM_MIN_DATA_TRANSFER_SIZE_VERSION_12);
2535 110 : context->local_context.capability.data_transfer_size = receiver_buffer_size;
2536 110 : }
2537 :
2538 111 : void libspdm_register_transport_layer_func(
2539 : void *spdm_context,
2540 : uint32_t max_spdm_msg_size,
2541 : uint32_t transport_header_size,
2542 : uint32_t transport_tail_size,
2543 : libspdm_transport_encode_message_func transport_encode_message,
2544 : libspdm_transport_decode_message_func transport_decode_message)
2545 : {
2546 : libspdm_context_t *context;
2547 :
2548 111 : context = spdm_context;
2549 :
2550 : /* fix the data_transfer_size if it is set before */
2551 111 : if ((context->local_context.capability.data_transfer_size != 0) &&
2552 1 : (context->local_context.capability.data_transfer_size ==
2553 1 : context->receiver_buffer_size)) {
2554 0 : context->local_context.capability.data_transfer_size =
2555 0 : (uint32_t)(context->receiver_buffer_size -
2556 0 : (transport_header_size + transport_tail_size));
2557 : }
2558 111 : if ((context->local_context.capability.sender_data_transfer_size != 0) &&
2559 1 : (context->local_context.capability.sender_data_transfer_size ==
2560 1 : context->sender_buffer_size)) {
2561 0 : context->local_context.capability.sender_data_transfer_size =
2562 0 : (uint32_t)(context->sender_buffer_size -
2563 0 : (transport_header_size + transport_tail_size));
2564 : }
2565 :
2566 111 : context->local_context.capability.max_spdm_msg_size = max_spdm_msg_size;
2567 111 : context->local_context.capability.transport_header_size = transport_header_size;
2568 111 : context->local_context.capability.transport_tail_size = transport_tail_size;
2569 111 : context->transport_encode_message = transport_encode_message;
2570 111 : context->transport_decode_message = transport_decode_message;
2571 111 : }
2572 :
2573 0 : void libspdm_register_verify_spdm_cert_chain_func(
2574 : void *spdm_context,
2575 : const libspdm_verify_spdm_cert_chain_func verify_spdm_cert_chain)
2576 : {
2577 : libspdm_context_t *context;
2578 :
2579 0 : context = spdm_context;
2580 0 : context->local_context.verify_peer_spdm_cert_chain = verify_spdm_cert_chain;
2581 0 : }
2582 :
2583 114 : size_t libspdm_get_sizeof_required_scratch_buffer (void *spdm_context)
2584 : {
2585 : libspdm_context_t *context;
2586 : size_t scratch_buffer_size;
2587 :
2588 114 : context = spdm_context;
2589 114 : LIBSPDM_ASSERT (context->local_context.capability.max_spdm_msg_size != 0);
2590 :
2591 114 : scratch_buffer_size = libspdm_get_scratch_buffer_capacity(context);
2592 114 : return scratch_buffer_size;
2593 : }
2594 :
2595 114 : void libspdm_set_scratch_buffer (
2596 : void *spdm_context,
2597 : void *scratch_buffer,
2598 : size_t scratch_buffer_size)
2599 : {
2600 : libspdm_context_t *context;
2601 :
2602 114 : context = spdm_context;
2603 114 : LIBSPDM_ASSERT (context->local_context.capability.max_spdm_msg_size != 0);
2604 114 : LIBSPDM_ASSERT (scratch_buffer_size >= libspdm_get_scratch_buffer_capacity(spdm_context));
2605 114 : context->scratch_buffer = scratch_buffer;
2606 114 : context->scratch_buffer_size = scratch_buffer_size;
2607 114 : context->last_spdm_request = (uint8_t *)scratch_buffer +
2608 114 : libspdm_get_scratch_buffer_last_spdm_request_offset(spdm_context);
2609 : #if LIBSPDM_RESPOND_IF_READY_SUPPORT
2610 114 : context->cache_spdm_request = (uint8_t *)scratch_buffer +
2611 114 : libspdm_get_scratch_buffer_cache_spdm_request_offset(spdm_context);
2612 : #endif
2613 114 : }
2614 :
2615 136747 : void libspdm_get_scratch_buffer (
2616 : void *spdm_context,
2617 : void **scratch_buffer,
2618 : size_t *scratch_buffer_size)
2619 : {
2620 : libspdm_context_t *context;
2621 :
2622 136747 : context = spdm_context;
2623 136747 : LIBSPDM_ASSERT (context->scratch_buffer != NULL);
2624 136747 : LIBSPDM_ASSERT (context->scratch_buffer_size >=
2625 : libspdm_get_scratch_buffer_capacity(spdm_context));
2626 136747 : *scratch_buffer = context->scratch_buffer;
2627 136747 : *scratch_buffer_size = context->scratch_buffer_size;
2628 : /* need to remove last 2 sections, because they are for libspdm internal state track. */
2629 136747 : *scratch_buffer_size -= libspdm_get_scratch_buffer_last_spdm_request_capacity(spdm_context);
2630 : #if LIBSPDM_RESPOND_IF_READY_SUPPORT
2631 136747 : *scratch_buffer_size -= libspdm_get_scratch_buffer_cache_spdm_request_capacity(spdm_context);
2632 : #endif
2633 136747 : }
2634 :
2635 2617 : libspdm_return_t libspdm_acquire_sender_buffer (
2636 : libspdm_context_t *spdm_context, size_t *max_msg_size, void **msg_buf_ptr)
2637 : {
2638 : libspdm_return_t status;
2639 :
2640 2617 : LIBSPDM_ASSERT (spdm_context->sender_buffer == NULL);
2641 2617 : LIBSPDM_ASSERT (spdm_context->sender_buffer_size != 0);
2642 2617 : status = spdm_context->acquire_sender_buffer (spdm_context, msg_buf_ptr);
2643 2617 : if (status != LIBSPDM_STATUS_SUCCESS) {
2644 7 : return status;
2645 : }
2646 2610 : spdm_context->sender_buffer = *msg_buf_ptr;
2647 2610 : *max_msg_size = spdm_context->sender_buffer_size;
2648 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
2649 : /* it return scratch buffer, because the requester need build message there.*/
2650 5220 : *msg_buf_ptr = (uint8_t *)spdm_context->scratch_buffer +
2651 2610 : libspdm_get_scratch_buffer_large_sender_receiver_offset(spdm_context);
2652 2610 : *max_msg_size = libspdm_get_scratch_buffer_large_sender_receiver_capacity(spdm_context);
2653 : #endif
2654 2610 : return LIBSPDM_STATUS_SUCCESS;
2655 : }
2656 :
2657 2610 : void libspdm_release_sender_buffer (libspdm_context_t *spdm_context)
2658 : {
2659 2610 : LIBSPDM_ASSERT(spdm_context->sender_buffer != NULL);
2660 2610 : LIBSPDM_ASSERT(spdm_context->sender_buffer_size != 0);
2661 :
2662 2610 : spdm_context->release_sender_buffer (spdm_context, spdm_context->sender_buffer);
2663 2610 : spdm_context->sender_buffer = NULL;
2664 2610 : }
2665 :
2666 68223 : void libspdm_get_sender_buffer (
2667 : libspdm_context_t *spdm_context,
2668 : void **sender_buffer,
2669 : size_t *sender_buffer_size)
2670 : {
2671 68223 : *sender_buffer = spdm_context->sender_buffer;
2672 68223 : *sender_buffer_size = spdm_context->sender_buffer_size;
2673 68223 : }
2674 :
2675 2571 : libspdm_return_t libspdm_acquire_receiver_buffer (
2676 : libspdm_context_t *spdm_context, size_t *max_msg_size, void **msg_buf_ptr)
2677 : {
2678 : libspdm_return_t status;
2679 :
2680 2571 : LIBSPDM_ASSERT (spdm_context->receiver_buffer == NULL);
2681 2571 : LIBSPDM_ASSERT (spdm_context->receiver_buffer_size != 0);
2682 2571 : status = spdm_context->acquire_receiver_buffer (spdm_context, msg_buf_ptr);
2683 2571 : if (status != LIBSPDM_STATUS_SUCCESS) {
2684 7 : return status;
2685 : }
2686 2564 : spdm_context->receiver_buffer = *msg_buf_ptr;
2687 2564 : *max_msg_size = spdm_context->receiver_buffer_size;
2688 : #if LIBSPDM_ENABLE_CAPABILITY_CHUNK_CAP
2689 : /* it return scratch buffer, because the requester need build message there.*/
2690 5128 : *msg_buf_ptr = (uint8_t *)spdm_context->scratch_buffer +
2691 2564 : libspdm_get_scratch_buffer_large_sender_receiver_offset(spdm_context);
2692 2564 : *max_msg_size = libspdm_get_scratch_buffer_large_sender_receiver_capacity(spdm_context);
2693 : #endif
2694 2564 : return LIBSPDM_STATUS_SUCCESS;
2695 : }
2696 :
2697 2564 : void libspdm_release_receiver_buffer (libspdm_context_t *spdm_context)
2698 : {
2699 2564 : LIBSPDM_ASSERT(spdm_context->receiver_buffer != NULL);
2700 2564 : LIBSPDM_ASSERT(spdm_context->receiver_buffer_size != 0);
2701 :
2702 2564 : spdm_context->release_receiver_buffer (spdm_context, spdm_context->receiver_buffer);
2703 2564 : spdm_context->receiver_buffer = NULL;
2704 2564 : }
2705 :
2706 0 : void libspdm_get_receiver_buffer (
2707 : libspdm_context_t *spdm_context,
2708 : void **receiver_buffer,
2709 : size_t *receiver_buffer_size)
2710 : {
2711 0 : *receiver_buffer = spdm_context->receiver_buffer;
2712 0 : *receiver_buffer_size = spdm_context->receiver_buffer_size;
2713 0 : }
2714 :
2715 0 : void libspdm_get_last_spdm_error_struct(void *spdm_context, libspdm_error_struct_t *last_spdm_error)
2716 : {
2717 : libspdm_context_t *context;
2718 :
2719 0 : context = spdm_context;
2720 0 : libspdm_copy_mem(last_spdm_error, sizeof(libspdm_error_struct_t),
2721 0 : &context->last_spdm_error,sizeof(libspdm_error_struct_t));
2722 0 : }
2723 :
2724 68321 : void libspdm_set_last_spdm_error_struct(void *spdm_context, libspdm_error_struct_t *last_spdm_error)
2725 : {
2726 : libspdm_context_t *context;
2727 :
2728 68321 : context = spdm_context;
2729 68321 : libspdm_copy_mem(&context->last_spdm_error, sizeof(context->last_spdm_error),
2730 : last_spdm_error, sizeof(libspdm_error_struct_t));
2731 68321 : }
2732 :
2733 : #if LIBSPDM_FIPS_MODE
2734 0 : libspdm_return_t libspdm_init_fips_selftest_context(void *fips_selftest_context,
2735 : size_t buffer_size,
2736 : void *buffer)
2737 : {
2738 : libspdm_fips_selftest_context_t *context;
2739 0 : LIBSPDM_ASSERT(fips_selftest_context != NULL);
2740 : LIBSPDM_ASSERT(buffer_size >= LIBSPDM_FIPS_REQUIRED_BUFFER_SIZE);
2741 0 : if (buffer_size > 0) {
2742 0 : LIBSPDM_ASSERT(buffer != NULL);
2743 : }
2744 :
2745 0 : context = fips_selftest_context;
2746 :
2747 : /*No tested for every used algo*/
2748 0 : context->tested_algo = 0;
2749 : /*self_test result is false for every used algo*/
2750 0 : context->self_test_result = 0;
2751 : /*The buffer provided by integrator to hold large intermediate results*/
2752 0 : context->selftest_buffer_size = buffer_size;
2753 0 : context->selftest_buffer = buffer;
2754 :
2755 0 : return LIBSPDM_STATUS_SUCCESS;
2756 : }
2757 :
2758 0 : size_t libspdm_get_fips_selftest_context_size(void)
2759 : {
2760 : size_t size;
2761 :
2762 0 : size = sizeof(libspdm_fips_selftest_context_t);
2763 0 : return size;
2764 : }
2765 :
2766 0 : size_t libspdm_get_fips_selftest_buffer_size(void)
2767 : {
2768 0 : return LIBSPDM_FIPS_REQUIRED_BUFFER_SIZE;
2769 : }
2770 :
2771 0 : bool libspdm_import_fips_selftest_context_to_spdm_context(void *spdm_context,
2772 : void *fips_selftest_context,
2773 : size_t fips_selftest_context_size)
2774 : {
2775 : libspdm_fips_selftest_context_t *libspdm_fips_selftest_context;
2776 : libspdm_context_t *libspdm_context;
2777 :
2778 0 : libspdm_context = spdm_context;
2779 0 : libspdm_fips_selftest_context = fips_selftest_context;
2780 :
2781 0 : if ((libspdm_context == NULL) || (libspdm_fips_selftest_context == NULL)) {
2782 0 : return false;
2783 : }
2784 0 : if (fips_selftest_context_size != sizeof(libspdm_fips_selftest_context_t)) {
2785 0 : return false;
2786 : }
2787 :
2788 0 : libspdm_copy_mem(&(libspdm_context->fips_selftest_context),
2789 : sizeof(libspdm_fips_selftest_context_t),
2790 : libspdm_fips_selftest_context, sizeof(libspdm_fips_selftest_context_t));
2791 0 : return true;
2792 : }
2793 :
2794 0 : bool libspdm_export_fips_selftest_context_from_spdm_context(void *spdm_context,
2795 : void *fips_selftest_context,
2796 : size_t fips_selftest_context_size)
2797 : {
2798 : libspdm_fips_selftest_context_t *libspdm_fips_selftest_context;
2799 : libspdm_context_t *libspdm_context;
2800 :
2801 0 : libspdm_context = spdm_context;
2802 0 : libspdm_fips_selftest_context = fips_selftest_context;
2803 :
2804 0 : if ((libspdm_context == NULL) || (libspdm_fips_selftest_context == NULL)) {
2805 0 : return false;
2806 : }
2807 0 : if (fips_selftest_context_size != sizeof(libspdm_fips_selftest_context_t)) {
2808 0 : return false;
2809 : }
2810 :
2811 0 : libspdm_copy_mem(libspdm_fips_selftest_context,
2812 : sizeof(libspdm_fips_selftest_context_t),
2813 0 : &(libspdm_context->fips_selftest_context),
2814 : sizeof(libspdm_fips_selftest_context_t));
2815 0 : return true;
2816 : }
2817 :
2818 : #endif /* LIBSPDM_FIPS_MODE */
2819 :
2820 117 : libspdm_return_t libspdm_init_context_with_secured_context(void *spdm_context,
2821 : void **secured_contexts,
2822 : size_t num_secured_contexts)
2823 : {
2824 : libspdm_context_t *context;
2825 : size_t index;
2826 :
2827 117 : LIBSPDM_ASSERT(spdm_context != NULL);
2828 117 : LIBSPDM_ASSERT(secured_contexts != NULL);
2829 117 : LIBSPDM_ASSERT(num_secured_contexts == LIBSPDM_MAX_SESSION_COUNT);
2830 :
2831 117 : context = spdm_context;
2832 117 : libspdm_zero_mem(context, sizeof(libspdm_context_t));
2833 117 : context->version = LIBSPDM_CONTEXT_STRUCT_VERSION;
2834 117 : context->transcript.message_a.max_buffer_size =
2835 : sizeof(context->transcript.message_a.buffer);
2836 117 : context->transcript.message_d.max_buffer_size =
2837 : sizeof(context->transcript.message_d.buffer);
2838 : #if LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT
2839 : context->transcript.message_b.max_buffer_size =
2840 : sizeof(context->transcript.message_b.buffer);
2841 : context->transcript.message_c.max_buffer_size =
2842 : sizeof(context->transcript.message_c.buffer);
2843 : context->transcript.message_mut_b.max_buffer_size =
2844 : sizeof(context->transcript.message_mut_b.buffer);
2845 : context->transcript.message_mut_c.max_buffer_size =
2846 : sizeof(context->transcript.message_mut_c.buffer);
2847 : context->transcript.message_m.max_buffer_size =
2848 : sizeof(context->transcript.message_m.buffer);
2849 : context->transcript.message_e.max_buffer_size =
2850 : sizeof(context->transcript.message_e.buffer);
2851 : context->transcript.message_encap_e.max_buffer_size =
2852 : sizeof(context->transcript.message_encap_e.buffer);
2853 : #endif
2854 117 : context->response_state = LIBSPDM_RESPONSE_STATE_NORMAL;
2855 117 : context->local_context.version.spdm_version_count = SPDM_MAX_VERSION_COUNT;
2856 117 : context->local_context.version.spdm_version[0] = SPDM_MESSAGE_VERSION_10 <<
2857 : SPDM_VERSION_NUMBER_SHIFT_BIT;
2858 117 : context->local_context.version.spdm_version[1] = SPDM_MESSAGE_VERSION_11 <<
2859 : SPDM_VERSION_NUMBER_SHIFT_BIT;
2860 117 : context->local_context.version.spdm_version[2] = SPDM_MESSAGE_VERSION_12 <<
2861 : SPDM_VERSION_NUMBER_SHIFT_BIT;
2862 117 : context->local_context.version.spdm_version[3] = SPDM_MESSAGE_VERSION_13 <<
2863 : SPDM_VERSION_NUMBER_SHIFT_BIT;
2864 117 : context->local_context.version.spdm_version[4] = SPDM_MESSAGE_VERSION_14 <<
2865 : SPDM_VERSION_NUMBER_SHIFT_BIT;
2866 117 : context->local_context.secured_message_version.secured_message_version_count =
2867 : SECURED_SPDM_MAX_VERSION_COUNT;
2868 117 : context->local_context.secured_message_version.secured_message_version[0] =
2869 : SECURED_SPDM_VERSION_10 << SPDM_VERSION_NUMBER_SHIFT_BIT;
2870 117 : context->local_context.secured_message_version.secured_message_version[1] =
2871 : SECURED_SPDM_VERSION_11 << SPDM_VERSION_NUMBER_SHIFT_BIT;
2872 117 : context->local_context.secured_message_version.secured_message_version[2] =
2873 : SECURED_SPDM_VERSION_12 << SPDM_VERSION_NUMBER_SHIFT_BIT;
2874 117 : context->local_context.capability.st1 = SPDM_ST1_VALUE_US;
2875 :
2876 117 : context->mut_auth_cert_chain_buffer_size = 0;
2877 :
2878 117 : context->max_spdm_session_sequence_number = LIBSPDM_MAX_SPDM_SESSION_SEQUENCE_NUMBER;
2879 :
2880 117 : context->latest_session_id = INVALID_SESSION_ID;
2881 117 : context->last_spdm_request_session_id = INVALID_SESSION_ID;
2882 117 : context->last_spdm_request_session_id_valid = false;
2883 117 : context->last_spdm_request_size = 0;
2884 :
2885 : /* To be updated in libspdm_register_device_buffer_func */
2886 117 : context->local_context.capability.data_transfer_size = 0;
2887 117 : context->local_context.capability.sender_data_transfer_size = 0;
2888 117 : context->local_context.capability.max_spdm_msg_size = 0;
2889 :
2890 585 : for (index = 0; index < num_secured_contexts; index++) {
2891 468 : if (secured_contexts[index] == NULL) {
2892 0 : return LIBSPDM_STATUS_INVALID_PARAMETER;
2893 : }
2894 :
2895 468 : context->session_info[index].secured_message_context = secured_contexts[index];
2896 468 : libspdm_secured_message_init_context(
2897 : context->session_info[index].secured_message_context);
2898 : }
2899 :
2900 117 : return LIBSPDM_STATUS_SUCCESS;
2901 : }
2902 :
2903 116 : libspdm_return_t libspdm_init_context(void *spdm_context)
2904 : {
2905 : libspdm_context_t *context;
2906 : void *secured_context;
2907 : void *secured_contexts[LIBSPDM_MAX_SESSION_COUNT];
2908 : size_t secured_context_size;
2909 : size_t index;
2910 :
2911 116 : LIBSPDM_ASSERT(spdm_context != NULL);
2912 :
2913 : /* libspdm_get_context_size() allocates space for all secured message
2914 : * contexts. They are appended to the general SPDM context. */
2915 116 : context = spdm_context;
2916 116 : secured_context = (void *)((size_t)(context + 1));
2917 116 : secured_context_size = libspdm_secured_message_get_context_size();
2918 :
2919 580 : for (index = 0; index < LIBSPDM_MAX_SESSION_COUNT; index++)
2920 : {
2921 464 : secured_contexts[index] = (uint8_t *)secured_context + secured_context_size * index;
2922 : }
2923 :
2924 116 : return libspdm_init_context_with_secured_context(spdm_context,
2925 : secured_contexts,
2926 : LIBSPDM_MAX_SESSION_COUNT);
2927 : }
2928 :
2929 42 : void libspdm_reset_context(void *spdm_context)
2930 : {
2931 : libspdm_context_t *context;
2932 : size_t index;
2933 :
2934 42 : context = spdm_context;
2935 :
2936 : /* Clear all information about previous connection. Local context information is preserved. */
2937 :
2938 : /* Need to clear session information and message transcripts before negotiated algorithm
2939 : * information is cleared. */
2940 210 : for (index = 0; index < LIBSPDM_MAX_SESSION_COUNT; index++)
2941 : {
2942 168 : libspdm_session_info_init(context,
2943 : &context->session_info[index],
2944 : INVALID_SESSION_ID,
2945 : 0,
2946 : false);
2947 : }
2948 :
2949 42 : libspdm_reset_message_a(spdm_context);
2950 42 : libspdm_reset_message_d(spdm_context);
2951 42 : libspdm_reset_message_b(spdm_context);
2952 42 : libspdm_reset_message_c(spdm_context);
2953 42 : libspdm_reset_message_mut_b(spdm_context);
2954 42 : libspdm_reset_message_mut_c(spdm_context);
2955 42 : libspdm_reset_message_m(spdm_context, NULL);
2956 42 : libspdm_reset_message_e(spdm_context, NULL);
2957 42 : libspdm_reset_message_encap_e(spdm_context, NULL);
2958 :
2959 42 : context->connection_info.connection_state = LIBSPDM_CONNECTION_STATE_NOT_STARTED;
2960 42 : libspdm_zero_mem(&context->connection_info.version, sizeof(spdm_version_number_t));
2961 42 : libspdm_zero_mem(&context->connection_info.capability,
2962 : sizeof(libspdm_device_capability_t));
2963 42 : libspdm_zero_mem(&context->connection_info.algorithm, sizeof(libspdm_device_algorithm_t));
2964 42 : libspdm_zero_mem(&context->last_spdm_error, sizeof(libspdm_error_struct_t));
2965 42 : libspdm_zero_mem(&context->encap_context, sizeof(libspdm_encap_context_t));
2966 42 : context->connection_info.multi_key_conn_req = false;
2967 42 : context->connection_info.multi_key_conn_rsp = false;
2968 : #if LIBSPDM_RESPOND_IF_READY_SUPPORT
2969 42 : context->cache_spdm_request_size = 0;
2970 : #endif
2971 42 : context->response_state = LIBSPDM_RESPONSE_STATE_NORMAL;
2972 42 : context->current_token = 0;
2973 42 : context->latest_session_id = INVALID_SESSION_ID;
2974 42 : context->last_spdm_request_session_id = INVALID_SESSION_ID;
2975 42 : context->last_spdm_request_session_id_valid = false;
2976 42 : context->last_spdm_request_size = 0;
2977 42 : context->mut_auth_cert_chain_buffer_size = 0;
2978 42 : context->current_dhe_session_count = 0;
2979 42 : context->current_psk_session_count = 0;
2980 42 : }
2981 :
2982 0 : void libspdm_deinit_context(void *spdm_context)
2983 : {
2984 : uint32_t session_id;
2985 : libspdm_context_t *context;
2986 : libspdm_session_info_t *session_info;
2987 : #if !(LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT)
2988 : void *pubkey_context;
2989 : bool is_requester;
2990 : uint8_t slot_index;
2991 : #endif
2992 :
2993 0 : context = spdm_context;
2994 :
2995 : #if !(LIBSPDM_RECORD_TRANSCRIPT_DATA_SUPPORT)
2996 0 : is_requester = context->local_context.is_requester;
2997 :
2998 0 : for (slot_index = 0; slot_index < SPDM_MAX_SLOT_COUNT; slot_index++) {
2999 0 : pubkey_context = context->connection_info.peer_used_cert_chain[slot_index].
3000 : leaf_cert_public_key;
3001 :
3002 0 : if (pubkey_context != NULL) {
3003 0 : if (is_requester) {
3004 0 : if (context->connection_info.algorithm.pqc_asym_algo != 0) {
3005 0 : libspdm_pqc_asym_free(
3006 : context->connection_info.algorithm.pqc_asym_algo, pubkey_context);
3007 : } else {
3008 0 : libspdm_asym_free(
3009 : context->connection_info.algorithm.base_asym_algo, pubkey_context);
3010 : }
3011 : } else {
3012 0 : if (context->connection_info.algorithm.req_pqc_asym_alg != 0) {
3013 0 : libspdm_req_pqc_asym_free(
3014 : context->connection_info.algorithm.req_pqc_asym_alg, pubkey_context);
3015 : } else {
3016 0 : libspdm_req_asym_free(
3017 0 : context->connection_info.algorithm.req_base_asym_alg, pubkey_context);
3018 : }
3019 : }
3020 :
3021 0 : context->connection_info.peer_used_cert_chain[slot_index].leaf_cert_public_key = NULL;
3022 : }
3023 : }
3024 : #endif
3025 :
3026 0 : libspdm_reset_message_a(context);
3027 0 : libspdm_reset_message_d(context);
3028 0 : libspdm_reset_message_b(context);
3029 0 : libspdm_reset_message_c(context);
3030 0 : libspdm_reset_message_mut_b(context);
3031 0 : libspdm_reset_message_mut_c(context);
3032 0 : libspdm_reset_message_m(spdm_context, NULL);
3033 0 : libspdm_reset_message_e(spdm_context, NULL);
3034 0 : libspdm_reset_message_encap_e(spdm_context, NULL);
3035 0 : for (session_id = 0; session_id < LIBSPDM_MAX_SESSION_COUNT; session_id++) {
3036 0 : session_info = &context->session_info[session_id];
3037 0 : libspdm_reset_message_m(context, session_info);
3038 0 : libspdm_reset_message_e(context, session_info);
3039 0 : libspdm_reset_message_encap_e(context, session_info);
3040 0 : libspdm_reset_message_encap_d(session_info);
3041 0 : libspdm_reset_message_k(context, session_info);
3042 0 : libspdm_reset_message_f(context, session_info);
3043 : }
3044 0 : }
3045 :
3046 116 : size_t libspdm_get_context_size(void)
3047 : {
3048 : size_t size;
3049 :
3050 116 : size = sizeof(libspdm_context_t) +
3051 116 : libspdm_secured_message_get_context_size() * LIBSPDM_MAX_SESSION_COUNT;
3052 116 : LIBSPDM_ASSERT (size == LIBSPDM_CONTEXT_SIZE_ALL);
3053 116 : return size;
3054 : }
3055 :
3056 1 : size_t libspdm_get_context_size_without_secured_context(void)
3057 : {
3058 : size_t size;
3059 :
3060 1 : size = sizeof(libspdm_context_t);
3061 1 : LIBSPDM_ASSERT (size == LIBSPDM_CONTEXT_SIZE_WITHOUT_SECURED_CONTEXT);
3062 1 : return size;
3063 : }
3064 :
3065 245 : uint8_t libspdm_get_version_from_version_number(spdm_version_number_t ver)
3066 : {
3067 245 : return (uint8_t)(ver >> SPDM_VERSION_NUMBER_SHIFT_BIT);
3068 : }
3069 :
3070 60 : void libspdm_version_number_sort(spdm_version_number_t *ver_set, size_t ver_num)
3071 : {
3072 : size_t index;
3073 : size_t index_sort;
3074 : size_t index_max;
3075 : spdm_version_number_t version;
3076 :
3077 : /* Select sort */
3078 60 : if (ver_num > 1) {
3079 135 : for (index_sort = 0; index_sort < ver_num; index_sort++) {
3080 103 : index_max = index_sort;
3081 230 : for (index = index_sort + 1; index < ver_num; index++) {
3082 : /* if ver_ser[index] higher than ver_set[index_max] */
3083 127 : if (ver_set[index] > ver_set[index_max]) {
3084 74 : index_max = index;
3085 : }
3086 : }
3087 : /* swap ver_ser[index_min] and ver_set[index_sort] */
3088 103 : version = ver_set[index_sort];
3089 103 : ver_set[index_sort] = ver_set[index_max];
3090 103 : ver_set[index_max] = version;
3091 : }
3092 : }
3093 60 : }
3094 :
3095 30 : bool libspdm_negotiate_connection_version(spdm_version_number_t *common_version,
3096 : spdm_version_number_t *req_ver_set,
3097 : size_t req_ver_num,
3098 : const spdm_version_number_t *res_ver_set,
3099 : size_t res_ver_num)
3100 : {
3101 : spdm_version_number_t req_version_list[LIBSPDM_MAX_VERSION_COUNT];
3102 : spdm_version_number_t res_version_list[LIBSPDM_MAX_VERSION_COUNT];
3103 : size_t req_index;
3104 : size_t res_index;
3105 :
3106 30 : if (req_ver_num > LIBSPDM_MAX_VERSION_COUNT || res_ver_num > LIBSPDM_MAX_VERSION_COUNT) {
3107 0 : return false;
3108 : }
3109 :
3110 30 : if (req_ver_set == NULL || req_ver_num == 0 || res_ver_set == NULL || res_ver_num == 0) {
3111 0 : return false;
3112 : }
3113 :
3114 30 : libspdm_zero_mem(req_version_list, sizeof(spdm_version_number_t) * LIBSPDM_MAX_VERSION_COUNT);
3115 30 : libspdm_zero_mem(res_version_list, sizeof(spdm_version_number_t) * LIBSPDM_MAX_VERSION_COUNT);
3116 :
3117 30 : libspdm_copy_mem(req_version_list, sizeof(spdm_version_number_t) * LIBSPDM_MAX_VERSION_COUNT,
3118 : req_ver_set, sizeof(spdm_version_number_t) * req_ver_num);
3119 30 : libspdm_copy_mem(res_version_list, sizeof(spdm_version_number_t) * LIBSPDM_MAX_VERSION_COUNT,
3120 : res_ver_set, sizeof(spdm_version_number_t) * res_ver_num);
3121 :
3122 : /* Sort SPDMversion in descending order. */
3123 30 : libspdm_version_number_sort(req_version_list, req_ver_num);
3124 30 : libspdm_version_number_sort(res_version_list, res_ver_num);
3125 :
3126 : /**
3127 : * Find highest same version and make req_index point to it.
3128 : * If not found, return false.
3129 : **/
3130 35 : for (res_index = 0; res_index < res_ver_num; res_index++) {
3131 67 : for (req_index = 0; req_index < req_ver_num; req_index++) {
3132 124 : if (libspdm_get_version_from_version_number(req_version_list[req_index]) ==
3133 62 : libspdm_get_version_from_version_number(res_version_list[res_index])) {
3134 29 : *common_version = req_version_list[req_index];
3135 29 : return true;
3136 : }
3137 : }
3138 : }
3139 1 : return false;
3140 : }
3141 :
3142 : #if LIBSPDM_EVENT_RECIPIENT_SUPPORT
3143 20 : void libspdm_register_event_callback(void *context,
3144 : libspdm_process_event_func process_event_func)
3145 : {
3146 : libspdm_context_t *spdm_context;
3147 :
3148 20 : spdm_context = context;
3149 20 : spdm_context->process_event = process_event_func;
3150 20 : }
3151 : #endif /* LIBSPDM_EVENT_RECIPIENT_SUPPORT */
|
