Merge branch 'dev' into cryptolib#369-fuzz

Author: Donnie-Ice

CMakeLists.txt

@@ -61,7 +61,6 @@ option(SA_FILE "Save Security Association to File" OFF)
 option(KEY_VALIDATION "Validate existance of key duplication" OFF)
 OPTION(KMC_MDB_RH "KMC-MDB-RedHat-Integration-Testing" OFF) #Disabled by default, enable with: -DKMC_MDB_RH=ON
 OPTION(KMC_MDB_DB "KMC-MDB-Debian-Integration-Testing" OFF) #Disabled by default, enable with: -DKMC_MDB_DB=ON
-OPTION(KMC_CFFI_EXCLUDE "KMC-Exclude-Problematic-CFFI-Code" OFF) #Disabled by default, enable with: -DKMC_CFFI_EXCLUDE=ON
 OPTION(CRYPTO_EPROC "Enables the building and use of Extended Procedures" OFF) #Disabled by default, enable with -DCRYPTO_EPROC=ON
 
 OPTION(MAC_SIZE "The size of the max MAC buffer in bytes")
@@ -154,12 +153,10 @@ endif()
 
 IF(KMC_MDB_RH)
     ADD_DEFINITIONS(-DKMC_MDB_RH)
-    ADD_DEFINITIONS(-DKMC_CFFI_EXCLUDE)
 ENDIF(KMC_MDB_RH)
 
 IF(KMC_MDB_DB)
     ADD_DEFINITIONS(-DKMC_MDB_DB)
-    ADD_DEFINITIONS(-DKMC_CFFI_EXCLUDE)
 ENDIF(KMC_MDB_DB)
 
 IF(CRYPTO_EPROC)

docs/wiki/Environment_Building.md

@@ -96,6 +96,5 @@ The two flags (DEBUG and TEST_ENC) can be used simultaneously, or separately.
 
 > * KMC_MDB_RH "KMC-MDB-RedHat-Integration-Testing" -- Default OFF 
 > * KMC_MDB_DB "KMC-MDB-Debian-Integration-Testing" -- Default OFF 
-> * KMC_CFFI_EXCLUDE "KMC-Exclude-Problematic-CFFI-Code" -- Default OFF
 
 > * CRYPTO_EPROC "Enables building of Extended Procedures -- Default OFF (CURRENTLY A WIP - Not ready for Operations)

include/crypto_error.h

@@ -153,8 +153,9 @@
 #define CRYPTO_LIB_ERR_INVALID_FHECF                                        (-79)
 #define CRYPTO_LIB_ERR_TM_SECONDARY_HDR_SIZE                                (-80)
 #define CRYPTO_LIB_ERR_TM_SECONDARY_HDR_VN                                  (-81)
+#define CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH                             (-82)
 
-#define CRYPTO_CORE_ERROR_CODES_MAX -81
+#define CRYPTO_CORE_ERROR_CODES_MAX -82
 
 // Define codes for returning MDB Strings, and determining error based on strings
 #define CAM_ERROR_CODES     600

include/crypto_structs.h

@@ -31,11 +31,9 @@
 #include "common_types.h"
 #endif // Assume build outside of NOS3/cFS infrastructure
 
-#ifndef KMC_CFFI_EXCLUDE // Exclude libraries that CFFI parser can’t process
 #include <stdlib.h>
 #include <stdint.h>
 #include <stdio.h>
-#endif
 
 /*
 ** Definitions

src/core/crypto_error.c

@@ -102,7 +102,8 @@ char *crypto_enum_errlist_core[] = {(char *)"CRYPTO_LIB_SUCCESS",
                                     (char *)"CRYPTO_LIB_ERR_TM_FL_LT_MAX_FRAME_SIZE",
                                     (char *)"CRYPTO_LIB_ERR_INVALID_FHECF",
                                     (char *)"CRYPTO_LIB_ERR_TM_SECONDARY_HDR_SIZE",
-                                    (char *)"CRYPTO_LIB_ERR_TM_SECONDARY_HDR_VN"};
+                                    (char *)"CRYPTO_LIB_ERR_TM_SECONDARY_HDR_VN",
+                                    (char *)"CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH"};
 
 char *crypto_enum_errlist_config[] = {
     (char *)"CRYPTO_CONFIGURATION_NOT_COMPLETE",

src/core/crypto_tc.c

@@ -992,6 +992,13 @@ int32_t Crypto_TC_ApplySecurity_Cam(const uint8_t *p_in_frame, const uint16_t in
         return status;
     }
 
+    if (temp_tc_header.fl + 1 != in_frame_length)
+    {
+        status = CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH;
+        mc_if->mc_log(status);
+        return status;
+    }
+
 #ifdef SA_DEBUG
     printf(KYEL "DEBUG - Printing SA Entry for current frame.\n" RESET);
     Crypto_saPrint(sa_ptr);
@@ -1033,16 +1040,20 @@ int32_t Crypto_TC_ApplySecurity_Cam(const uint8_t *p_in_frame, const uint16_t in
     uint8_t fecf_len        = FECF_SIZE;
     uint8_t ocf_len         = TELEMETRY_FRAME_OCF_CLCW_SIZE;
     Crypto_TC_Calc_Lengths(&fecf_len, &segment_hdr_len, &ocf_len);
-    // Calculate tf_payload length here to be used in other logic
 
-    if (temp_tc_header.fl <= TC_FRAME_HEADER_SIZE - segment_hdr_len - fecf_len + 1)
+    // Calculate tf_payload length here to be used in other logic
+    int16_t payload_calc = temp_tc_header.fl - TC_FRAME_HEADER_SIZE - segment_hdr_len - fecf_len + 1;
+    // check if payload length underflows
+    if (payload_calc < 0)
     {
+#ifdef TC_DEBUG
+        printf("Payload Calculation Underflow: %d\n", payload_calc);
+#endif
         status = CRYPTO_LIB_ERR_TC_FRAME_LENGTH_UNDERFLOW;
         mc_if->mc_log(status);
         return status;
     }
-
-    tf_payload_len = temp_tc_header.fl - TC_FRAME_HEADER_SIZE - segment_hdr_len - fecf_len + 1;
+    tf_payload_len = (uint16_t)payload_calc;
 
     /**
      * A note on plaintext: Take a permissive approach to allow the lengths of fields that aren't going to be used.
@@ -1826,9 +1837,9 @@ int32_t Crypto_TC_ProcessSecurity_Cam(uint8_t *ingest, int *len_ingest, TC_t *tc
     tc_sdls_processed_frame->tc_header.fsn = (uint8_t)ingest[byte_idx];
     byte_idx++;
 
-    if (*len_ingest < tc_sdls_processed_frame->tc_header.fl + 1) // Specified frame length larger than provided frame!
+    if (tc_sdls_processed_frame->tc_header.fl + 1 != *len_ingest) // Specified frame length larger than provided frame!
     {
-        status = CRYPTO_LIB_ERR_INPUT_FRAME_LENGTH_SHORTER_THAN_FRAME_HEADERS_LENGTH;
+        status = CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH;
         mc_if->mc_log(status);
         return status;
     }
@@ -1844,14 +1855,6 @@ int32_t Crypto_TC_ProcessSecurity_Cam(uint8_t *ingest, int *len_ingest, TC_t *tc
         return status;
     } // Unable to get necessary Managed Parameters for TC TF -- return with error.
 
-    // The frame thinks it should be size X, but we received <X bytes
-    if ((tc_sdls_processed_frame->tc_header.fl + 1) < *len_ingest)
-    {
-        status = CRYPTO_LIB_ERR_TC_FRAME_LENGTH_UNDERFLOW;
-        mc_if->mc_log(status);
-        return status;
-    }
-
     // Segment Header
     Crypto_TC_Set_Segment_Header(tc_sdls_processed_frame, ingest, &byte_idx);
 
@@ -1908,13 +1911,6 @@ int32_t Crypto_TC_ProcessSecurity_Cam(uint8_t *ingest, int *len_ingest, TC_t *tc
 
     Crypto_TC_Calc_Lengths(&fecf_len, &segment_hdr_len, &ocf_len);
 
-    if (tc_sdls_processed_frame->tc_header.fl <= TC_FRAME_HEADER_SIZE - segment_hdr_len - fecf_len + 1)
-    {
-        status = CRYPTO_LIB_ERR_TC_FRAME_LENGTH_UNDERFLOW;
-        mc_if->mc_log(status);
-        return status;
-    }
-
     // Parse & Check FECF
     status = Crypto_TC_Parse_Check_FECF(ingest, len_ingest, tc_sdls_processed_frame);
     if (status != CRYPTO_LIB_SUCCESS)

src/sa/internal/sa_interface_inmemory.template.c

@@ -1019,11 +1019,8 @@ static int32_t sa_start(TC_t *tc_frame)
                 gvcid.tfvn = (sdls_frame.tlv_pdu.data[count] >> 4);
                 gvcid.scid = (sdls_frame.tlv_pdu.data[count] << 12) | (sdls_frame.tlv_pdu.data[count + 1] << 4) |
                              (sdls_frame.tlv_pdu.data[count + 2] >> 4);
-                gvcid.vcid =
-                    ((sdls_frame.tlv_pdu.data[count + 2] << 4) | (sdls_frame.tlv_pdu.data[count + 3] & 0xC0) >> 6);
-
-                printf("\nParsed GVCID %d:\n\tTFVN: %d\n\tSCID: %d\n\tVCID: %d\n", x, gvcid.tfvn, gvcid.scid,
-                       gvcid.vcid);
+                gvcid.vcid = (((sdls_frame.tlv_pdu.data[count + 2] & 0x0F) << 2) |
+                              (sdls_frame.tlv_pdu.data[count + 3] & 0xC0) >> 6);
 
                 if (current_managed_parameters_struct.has_segmentation_hdr == TC_HAS_SEGMENT_HDRS)
                 {

support/scripts/build_kmc.sh

@@ -11,4 +11,4 @@ source $SCRIPT_DIR/env.sh
 
 rm $BASE_DIR/CMakeCache.txt
 
-cmake $BASE_DIR -DCODECOV=1 -DDEBUG=1 -DCRYPTO_KMC=1 -DKEY_KMC=1 -DMC_DISABLED=1 -DSA_MARIADB=1 -DTEST=1 -DKMC_CFFI_EXCLUDE=1 -DSA_FILE=1 -DKMC_MDB_DB=1 && make && make test
+cmake $BASE_DIR -DCODECOV=1 -DDEBUG=1 -DCRYPTO_KMC=1 -DKEY_KMC=1 -DMC_DISABLED=1 -DSA_MARIADB=1 -DTEST=1 -DSA_FILE=1 -DKMC_MDB_DB=1 && make && make test

support/scripts/internal_docker_build.sh

@@ -17,5 +17,5 @@ mkdir $BASE_DIR/build/internal > /dev/null 2>&1
 
 echo "Internal build and test..."
 $DFLAGS -v $BASE_DIR:$BASE_DIR -w $BASE_DIR/build/internal $DBOX bash -c \
-    "../../support/scripts/build_support.sh"
+    "../../support/scripts/build_internal.sh"
 echo ""

test/unit/ut_tc_apply.c

@@ -1480,6 +1480,7 @@ UTEST(TC_APPLY_SECURITY, TC_KEY_STATE_TEST)
 UTEST(TC_APPLY_SECURITY, TC_HEAP_BUFFER_OVERFLOW_TEST)
 {
     remove("sa_save_file.bin");
+    int status = CRYPTO_LIB_SUCCESS;
     // Setup & Initialize CryptoLib
     Crypto_Config_CryptoLib(KEY_TYPE_INTERNAL, MC_TYPE_INTERNAL, SA_TYPE_INMEMORY, CRYPTOGRAPHY_TYPE_LIBGCRYPT,
                             IV_INTERNAL, CRYPTO_TC_CREATE_FECF_TRUE, TC_PROCESS_SDLS_PDUS_TRUE, TC_HAS_PUS_HDR,
@@ -1490,7 +1491,8 @@ UTEST(TC_APPLY_SECURITY, TC_HEAP_BUFFER_OVERFLOW_TEST)
     GvcidManagedParameters_t TC_UT_Managed_Parameters = {
         1, 0x0003, 0, TC_NO_FECF, AOS_FHEC_NA, AOS_IZ_NA, 0, TC_NO_SEGMENT_HDRS, 1024, TC_OCF_NA, 1};
     Crypto_Config_Add_Gvcid_Managed_Parameters(TC_UT_Managed_Parameters);
-    Crypto_Init();
+    status = Crypto_Init();
+    ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
     // Test string
     char *test_frame_pt_h   = "6403000000";
     char *test_frame_pt_b   = NULL;
@@ -1506,7 +1508,41 @@ UTEST(TC_APPLY_SECURITY, TC_HEAP_BUFFER_OVERFLOW_TEST)
 
     Crypto_Shutdown();
     free(test_frame_pt_b);
-    ASSERT_EQ(CRYPTO_LIB_ERR_TC_FRAME_LENGTH_UNDERFLOW, return_val);
+    ASSERT_EQ(CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH, return_val);
+}
+
+UTEST(TC_APPLY_SECURITY, TC_HEAP_BUFFER_OVERFLOW_TEST_2)
+{
+    remove("sa_save_file.bin");
+    int status = CRYPTO_LIB_SUCCESS;
+    // Setup & Initialize CryptoLib
+    Crypto_Config_CryptoLib(KEY_TYPE_INTERNAL, MC_TYPE_INTERNAL, SA_TYPE_INMEMORY, CRYPTOGRAPHY_TYPE_LIBGCRYPT,
+                            IV_INTERNAL, CRYPTO_TC_CREATE_FECF_TRUE, TC_PROCESS_SDLS_PDUS_TRUE, TC_HAS_PUS_HDR,
+                            TC_IGNORE_SA_STATE_FALSE, TC_IGNORE_ANTI_REPLAY_FALSE, TC_UNIQUE_SA_PER_MAP_ID_TRUE,
+                            TC_CHECK_FECF_TRUE, 0x3F, SA_INCREMENT_NONTRANSMITTED_IV_TRUE);
+    // Crypto_Config_Add_Gvcid_Managed_Parameter(0, 0x0003, 0, TC_HAS_FECF, TC_NO_SEGMENT_HDRS, TC_OCF_NA, 1024,
+    // AOS_FHEC_NA, AOS_IZ_NA, 0);
+    GvcidManagedParameters_t TC_UT_Managed_Parameters = {
+        0, 0x0003, 0, TC_HAS_FECF, AOS_FHEC_NA, AOS_IZ_NA, 0, TC_HAS_SEGMENT_HDRS, 1024, TC_OCF_NA, 1};
+    Crypto_Config_Add_Gvcid_Managed_Parameters(TC_UT_Managed_Parameters);
+    status = Crypto_Init();
+    ASSERT_EQ(CRYPTO_LIB_SUCCESS, status);
+    // Test string
+    char *test_frame_pt_h   = "20030006190031FA2A79206F7F0DAD55CE54899DD37FA6D007B4E86DB4E86DA4B4E867";
+    char *test_frame_pt_b   = NULL;
+    int   test_frame_pt_len = 0;
+
+    hex_conversion(test_frame_pt_h, (char **)&test_frame_pt_b, &test_frame_pt_len);
+
+    uint8_t *ptr_enc_frame = NULL;
+    uint16_t enc_frame_len = 0;
+    int32_t  return_val    = CRYPTO_LIB_ERROR;
+
+    return_val = Crypto_TC_ApplySecurity((uint8_t *)test_frame_pt_b, test_frame_pt_len, &ptr_enc_frame, &enc_frame_len);
+
+    Crypto_Shutdown();
+    free(test_frame_pt_b);
+    ASSERT_EQ(CRYPTO_LIB_ERR_TC_FRAME_LENGTH_MISMATCH, return_val);
 }
 
 UTEST_MAIN();