Skip to content

Push Model agent is not sending amout of UEFI logs amount appropriately #1020

New issue
New issue
Open
#1022
Open
Push Model agent is not sending amout of UEFI logs amount appropriately#1020
#1022
Assignees
sarroutbi
Labels
Push ModelIssues that are specific to the Keylime Push Model new binarybugSomething isn't working
@sarroutbi

Description

@sarroutbi
sarroutbi
opened on Jun 9, 2025

When performing some integration tests between Keylime Push Model Agent it seems information being sent for the UEFI logs entry count is not appropriately sent:

DEBUG keylime_push_model_agent                               > Request body: "{\"data\":{\"attributes\":{\"evidence_supported\":[{\"capabilities\":{\"available_subjects\":{\"sha1\":[0,1,2,3,4,5,6,7],\"sha256\":[0,1,2,3,4,5,6,7]},\"certification_keys\":[{\"key_algorithm\":\"rsassa\",\"key_class\":\"asymmetric\",\"key_size\":2048,\"local_identifier\":\"000bcd3db204e9427c6c2dac542d03f803d01da31a9af075b1bc50f6dd1972831aca\",\"public\":\"AAEACwAFAHIAAAAQABQACwgAAAAAAAEAw35vo2cMoGKEVEVV8HLgfc/LlB7f1DaezSvRz4HOvftBX1YcIAiuak3RYbRyEgfe8/Z1x/jmbZwjyVKVzctNGah8DaZ6etdGGGVk4vxT6esrijOLoE153eWe9AOMFRq3cjyS5r13pn4o8+8L7oDVwt5hIWQT88B/fNuvgmq/smBkk63zpgRg0EkmaIlV2ynUHwTTD/4w4LYeWcAN489n8tQ2WlMHiG6184ecgCeUhgYp40aLDrtXxgrwO2x9jq6Q6dMmJKlZ5X517oIklZQGXfnhhV6c475Lhrz/cjYAosWaMyvPtdVLy98fFYwxnff3uVRScfgUbL9w+61VEnvCpQ==\",\"server_identifier\":\"ak\"}],\"component_version\":\"2.0\",\"hash_algorithms\":[\"sha1\",\"sha256\",\"sha384\"],\"signature_schemes\":[\"ecdsa\",\"ecschnorr\",\"rsapss\",\"rsassa\"]},\"evidence_class\":\"certification\",\"evidence_type\":\"tpm_quote\"},{\"capabilities\":{\"appendable\":true,\"entry_count\":0,\"evidence_version\":\"2.1\",\"formats\":[\"application/octet-stream\"],\"supports_partial_access\":true},\"evidence_class\":\"log\",\"evidence_type\":\"uefi_log\"},{\"capabilities\":{\"appendable\":true,\"entry_count\":0,\"formats\":[\"text/plain\"],\"supports_partial_access\":true},\"evidence_class\":\"log\",\"evidence_type\":\"ima_log\"}],\"system_info\":{\"boot_time\":\"2025-06-09T08:06:35.376900003Z\"}},\"type\":\"attestation\"}}"
 DEBUG reqwest::connect                                       > starting new connection: https://localhost:8881/

If we format previous entry, we can see the number of UEFI logs is not correct:

        {
          "capabilities": {
            "appendable": true,
            "entry_count": 0,
            "evidence_version": "2.1",
            "formats": [
              "application/octet-stream"
            ],
            "supports_partial_access": true
          },
          "evidence_class": "log",
          "evidence_type": "uefi_log"
        },

We should review this, as the host running the UEFI log has non zero size.

Metadata

Metadata

Assignees

Labels

Push ModelIssues that are specific to the Keylime Push Model new binarybugSomething isn't working

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions