transport: storage: add support for SPDM over the storage binding (DSP0286) #2827
Conversation
twilfredo
force-pushed
the
wilfred/add-trans-storage-05.9
branch
7 times, most recently
from
8ab52c6
to
7a14888
Compare
|
A couple of high level comments.
|
twilfredo
force-pushed
the
wilfred/add-trans-storage-05.9
branch
from
7a14888
to
c63269b
Compare
Yeah that sounds good, just wanted to get comments early on
I've updated the license header with an author tag, is that sufficient? Diff: https://github.com/DMTF/libspdm/compare/7a14888587717c8a16e7390388fd39629e7a7076..c63269b162af091a35ef282052980087a378c68f |
|
Presumably authorship is recorded in the commit log, but if you want to put it in the file itself: |
| typedef struct { | ||
| uint16_t data_length; | ||
| uint16_t storage_binding_version; | ||
| uint8_t max_connection_id : 2; |
There was a problem hiding this comment.
The codebase avoids bitfields due to ambiguities in the C specification. The current specification calls this Byte4 which should probably be changed to something more descriptive. See https://github.com/DMTF/SPDM-WG/issues/3621.
There was a problem hiding this comment.
okay sounds good, do we want to wait on this until the spec is updated then?
There was a problem hiding this comment.
Yes, we'll probably discuss this issue at the VF2F meeting today.
There was a problem hiding this comment.
right. Using bitfield is not recommended.
I recommend you just using uint8_t max_connection_id, then use bitmask MACRO, such as SPDM_STORAGE_MAX_CONNECTION_ID_MASK 0x3 to get the value.
| uint16_t storage_binding_version; | ||
| uint8_t max_connection_id : 2; | ||
| uint8_t _reserved1[3]; | ||
| uint8_t supported_operations[8]; |
There was a problem hiding this comment.
This should be one byte in the specification if https://github.com/DMTF/SPDM-WG/issues/3609 gets approved.
| #define STORAGE_OPERATION_CODE_MESSAGE 0x05 | ||
| #define STORAGE_OPERATION_CODE_SECURED_MESSAGE 0x06 | ||
|
|
||
| #define STORAGE_MAX_SIZE_IN_BYTE 0x00100000 |
There was a problem hiding this comment.
This is defined or inferred from the specification?
There was a problem hiding this comment.
This is not from the spec, we used the DoE transport for layer as a reference for this.
There was a problem hiding this comment.
The PCIe specification explicitly defines those values. If they are not in DSP0286 or an underlying specification then they should be removed.
There was a problem hiding this comment.
right. only SPDM storage binding spec defined data should be here.
Any other implementation definition should NOT be added here.
| return LIBSPDM_STATUS_INVALID_MSG_FIELD; | ||
| } | ||
|
|
||
| #if CMAKE_C_BYTE_ORDER == LITTLE_ENDIAN |
There was a problem hiding this comment.
SPDM message fields (and libspdm) are all little-endian. Is there a big-endian field coming from the underlying storage technology?
There was a problem hiding this comment.
It was to be consistent with the byte ordering defined in the SCSI Primary Commands specification (SPC) where BE is used for the command blocks. The SPC is referred to by the NVMe spec for the Security In/Out implementation also.
There was a problem hiding this comment.
For context in qemu, we will generate the header as such: https://github.com/twilfredo/qemu/blob/d40afa3ad43417d01cf7a6e758a434e3858d0200/hw/nvme/ctrl.c#L7124
There was a problem hiding this comment.
So NVMe / SCSI use BE. What about ATA?
@bhenning10 the specification should probably have a statement on endianness.
There was a problem hiding this comment.
The ATA Spec specifies the trusted send/recv commands to be a 28bit command block in LE. Since this is a virtual header (libspdm specific) we are parsing here, would it be best to use LE to stay consistent with SPDM message fields? What do we think?
There was a problem hiding this comment.
@twilfredo we can discuss that in https://github.com/DMTF/SPDM-WG/issues/3625.
twilfredo
force-pushed
the
wilfred/add-trans-storage-05.9
branch
2 times, most recently
from
2edb3cf
to
e50ff9f
Compare
As defined by DSP0826, add support for SPDM storage transport. The transport layer uses a virtual storage header that encapsulates SPDM requests to allow the caller to generate the required parameters for a storage SPDM request. SPDM responses are not transport encoded, with this header, instead just the message is returned. Signed-off-by: Wilfred Mallawa <[email protected]> Signed-off-by: Alistair Francis <[email protected]>
This allows transports such as Storage (DSP0286) to determine if the next response is protected via secured messages. Unlike other transport layers, storage does not encode the message type in a response header. As such, the requester must track the expected type. The issue [1] discusses this implementation requirement in further detail with regards to DSP0286. [1] DMTF/SPDM-WG#3520 Signed-off-by: Wilfred Mallawa <[email protected]> Signed-off-by: Alistair Francis <[email protected]>
twilfredo
force-pushed
the
wilfred/add-trans-storage-05.9
branch
from
e50ff9f
to
8fc10b2
Compare
| #include "hal/library/debuglib.h" | ||
| #include "hal/library/memlib.h" | ||
|
|
||
| # define BSWAP32(x) ((((x) & 0x000000ff) << 24) | \ |
There was a problem hiding this comment.
libspdm/include/internal/libspdm_common_lib.h
Line 1705 in b327ead
libspdm_byte_swap_* and place them there. libspdm_le_to_be_64 can be renamed to libspdm_byte_swap_64 in a subsequent pull request to make things consistent.
|
Usually, the implementation for WIP should NOT be posted to main, but a WIP specific branch The WIP branch can be merged into main, after the WIP spec becomes official standard. |
Okay noted, are you happy to keep this up for now? since review is in progress. |
That is fine. We can keep reviewing and address all feedback in this PR. Whenever you think it is done and ready for merge, you can switch to branch merge request. |
| uint8_t reserved1[3]; | ||
| uint8_t supported_operations[8]; | ||
| uint8_t reserved2[16]; | ||
| } storage_discovery_response_t; |
There was a problem hiding this comment.
If this is SPDM storage binding spec, please always use spdm_storage_ as prefix, as namespace.
| uint32_t response_length; | ||
| } storage_pending_info_response_t; | ||
|
|
||
| #define STORAGE_SECURITY_BINDING_VERSION 0x1000 |
There was a problem hiding this comment.
If this is SPDM storage binding spec, please always use SPDM_STORAGE_ as prefix, as namespace.
| * Definitions of SPDM over the Storage as defined in DSP0286 | ||
| **/ | ||
|
|
||
| #ifndef STORAGE_BINDING_H |
There was a problem hiding this comment.
Can we add spdm_ as prefix for the file name, such as spdm_storage_binding.h?
| **/ | ||
|
|
||
| /** | ||
| * Author: Wilfred Mallawa <[email protected]> |
There was a problem hiding this comment.
Usually, we dont put author name in this project.
| * Alistair Francis <[email protected]> | ||
| **/ | ||
|
|
||
| #include "library/spdm_transport_storage_lib.h" |
There was a problem hiding this comment.
Do you have any unit test associated to prove the correctness of this function?
This series adds
libspdmtransport support for SPDM over Storage Binding Specification [1]. This allows for example NVMe or SCSI devices that conform to [1] to communicate with a host requester using the storage transport medium as defined in [1].[1] https://www.dmtf.org/sites/default/files/standards/documents/DSP0286_1.0.0WIP90.pdf