Fix spelling mistakes across the repository

Spelling mistakes were identified using the following command:

$ codespell -w $(find . -type f \( -iname \*.c -o -iname \*.h -o -iname \*.md \))

Wherever possible, codespell automatically fixed the errors. For any issues that
could not be automatically corrected, those were addressed manually.

Signed-off-by: Manojkiran Eda <manojkiran.eda@gmail.com>

Author: manojkiraneda

doc/api/common_api.md

@@ -118,7 +118,7 @@ Enumeration value used for the `libspdm_set_data` and/or `libspdm_get_data` func
       timing." and is in units of microseconds. This value is only used by a Requester and is used
       in the following scenarios.
         - It is the value of the `timeout` argument in `libspdm_device_send_message_func`. When
-          sending a message this is a worst-case value, and the implementor of the function is free
+          sending a message this is a worst-case value, and the implementer of the function is free
           to reduce the timeout value based on knowledge of the underlying transport.
         - It is added to the Responder's `CT` or `ST1` value and passed via the `timeout` argument
           in `libspdm_device_receive_message_func`.

doc/api/secured_message_api.md

@@ -125,7 +125,7 @@ destination buffer.
 This function should only be called after the session has been fully established and
 `libspdm_secured_message_get_session_state()` returns `LIBSPDM_SESSION_STATE_ESTABLISHED`.
 
-The structure is packed and is layed out as
+The structure is packed and is laid out as
 - Struct Version (4 bytes)
 - AEAD Key Size (4 bytes)
 - AEAD IV Size (4 bytes)

doc/fips.md

@@ -77,7 +77,7 @@ If FIPS mode is enabled, then only FIPS-approved algorithms will be enabled, whi
 
 ### Key zeroization
 
-If a key is not used, then the variable to hold the key must be explictly zeroized. This is done in the libspdm.
+If a key is not used, then the variable to hold the key must be explicitly zeroized. This is done in the libspdm.
 
 The private key for signing is managed by the [requester-asymsignlib](https://github.com/DMTF/libspdm/blob/main/include/hal/library/requester/reqasymsignlib.h) and [responder-asymlib](https://github.com/DMTF/libspdm/blob/main/include/hal/library/responder/asymsignlib.h). The library provider shall guarantee the key is zeroized after use.
 
@@ -132,4 +132,4 @@ The expected step is as follows:
 #endif
 ```
 
-NOTE: If a crypto library does not support a FIPS algorithm, then the algorithm must be disabled explictly. Otherwise `libspdm_fips_run_selftest()` will fail. For example, if the integrator links libspdm with mbedtls, then SHA3 and RdDSA related algorithms must be disabled via `LIBSPDM_SHA3_256_SUPPORT=0`, `LIBSPDM_SHA3_384_SUPPORT=0`, `LIBSPDM_SHA3_512_SUPPORT=0`, `LIBSPDM_EDDSA_ED25519_SUPPORT=0`, `LIBSPDM_EDDSA_ED448_SUPPORT=0`, because they are not supported by mbedtls yet.
+NOTE: If a crypto library does not support a FIPS algorithm, then the algorithm must be disabled explicitly. Otherwise `libspdm_fips_run_selftest()` will fail. For example, if the integrator links libspdm with mbedtls, then SHA3 and RdDSA related algorithms must be disabled via `LIBSPDM_SHA3_256_SUPPORT=0`, `LIBSPDM_SHA3_384_SUPPORT=0`, `LIBSPDM_SHA3_512_SUPPORT=0`, `LIBSPDM_EDDSA_ED25519_SUPPORT=0`, `LIBSPDM_EDDSA_ED448_SUPPORT=0`, because they are not supported by mbedtls yet.

doc/test.md

@@ -603,7 +603,7 @@ For riscv64 (RISCV64 GCC): `qemu-riscv64 -L /usr/riscv64-linux-gnu <TestBinary>`
 
    The output binary is created by the [goto-cc](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/goto-cc.md).
 
-   For more infomration on how to use [CBMC](https://github.com/diffblue/cbmc/), refer to [CBMC Manual](https://github.com/diffblue/cbmc/tree/develop/doc/cprover-manual), such as [properties](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/properties.md), [modeling-nondeterminism](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/modeling-nondeterminism.md), [api](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/api.md). Example below:
+   For more information on how to use [CBMC](https://github.com/diffblue/cbmc/), refer to [CBMC Manual](https://github.com/diffblue/cbmc/tree/develop/doc/cprover-manual), such as [properties](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/properties.md), [modeling-nondeterminism](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/modeling-nondeterminism.md), [api](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/api.md). Example below:
 
    Using [goto-instrument](https://github.com/diffblue/cbmc/blob/develop/doc/cprover-manual/goto-instrument.md) static analyzer operates on goto-binaries and generate a modified binary:
    `goto-instrument SpdmRequester.exe SpdmRequester.gb <instrumentation-options>`

os_stub/cryptlib_mbedtls/pk/x509.c

@@ -712,7 +712,7 @@ bool libspdm_x509_verify_cert_chain(const uint8_t *root_cert, size_t root_cert_l
     current_cert = (const unsigned char *)cert_chain;
 
 
-    /* Get Current certificate from certificates buffer and Verify with preciding cert*/
+    /* Get Current certificate from certificates buffer and Verify with preceding cert*/
 
     do {
         tmp_ptr = current_cert;
@@ -1750,7 +1750,7 @@ static bool libspdm_convert_subject_to_string(uint8_t *ptr, size_t obj_len,
         /*move to next SET*/
         ptr += obj_len;
 
-        /*sequece*/
+        /*sequence*/
         ret = libspdm_asn1_get_tag(&internal_p, end, &obj_len,
                                    LIBSPDM_CRYPTO_ASN1_SEQUENCE | LIBSPDM_CRYPTO_ASN1_CONSTRUCTED);
         if (!ret) {
@@ -1855,7 +1855,7 @@ bool libspdm_set_attribute_for_req(mbedtls_x509write_csr *req,
 
     /*integer:version*/
     ret = libspdm_asn1_get_tag(&ptr, end, &obj_len, LIBSPDM_CRYPTO_ASN1_INTEGER);
-    /*check req_info verson. spec PKCS#10: It shall be 0 for this version of the standard.*/
+    /*check req_info version. spec PKCS#10: It shall be 0 for this version of the standard.*/
     if ((obj_len != 1) || (*ptr != 0)) {
         return false;
     }

os_stub/cryptlib_null/pk/x509.c

@@ -313,16 +313,16 @@ bool libspdm_x509_verify_cert(const uint8_t *cert, size_t cert_size,
  *
  * @param[in]      cert_chain         One or more ASN.1 DER-encoded X.509 certificates
  *                                  where the first certificate is signed by the Root
- *                                  Certificate or is the Root Cerificate itself. and
- *                                  subsequent cerificate is signed by the preceding
- *                                  cerificate.
+ *                                  Certificate or is the Root Certificate itself. and
+ *                                  subsequent certificate is signed by the preceding
+ *                                  certificate.
  * @param[in]      cert_chain_length   Total length of the certificate chain, in bytes.
  *
  * @param[in]      root_cert          Trusted Root Certificate buffer
  *
  * @param[in]      root_cert_length    Trusted Root Certificate buffer length
  *
- * @retval  true   All cerificates was issued by the first certificate in X509Certchain.
+ * @retval  true   All certificates was issued by the first certificate in X509Certchain.
  * @retval  false  Invalid certificate or the certificate was not issued by the given
  *                trusted CA.
  **/
@@ -338,9 +338,9 @@ bool libspdm_x509_verify_cert_chain(const uint8_t *root_cert, size_t root_cert_l
  *
  * @param[in]      cert_chain         One or more ASN.1 DER-encoded X.509 certificates
  *                                  where the first certificate is signed by the Root
- *                                  Certificate or is the Root Cerificate itself. and
- *                                  subsequent cerificate is signed by the preceding
- *                                  cerificate.
+ *                                  Certificate or is the Root Certificate itself. and
+ *                                  subsequent certificate is signed by the preceding
+ *                                  certificate.
  * @param[in]      cert_chain_length   Total length of the certificate chain, in bytes.
  *
  * @param[in]      cert_index         index of certificate.

os_stub/cryptlib_openssl/pk/x509.c

@@ -417,7 +417,7 @@ libspdm_internal_x509_get_nid_name(X509_NAME *x509_name, const int32_t request_n
     }
 
 
-    /* Retrive the string from X.509 Subject base on the request_nid*/
+    /* Retrieve the string from X.509 Subject base on the request_nid*/
 
     index = X509_NAME_get_index_by_NID(x509_name, request_nid, -1);
     if (index < 0) {
@@ -1996,16 +1996,16 @@ bool libspdm_x509_get_tbs_cert(const uint8_t *cert, size_t cert_size,
  *
  * @param[in]      cert_chain         One or more ASN.1 DER-encoded X.509 certificates
  *                                  where the first certificate is signed by the Root
- *                                  Certificate or is the Root Cerificate itself. and
- *                                  subsequent cerificate is signed by the preceding
- *                                  cerificate.
+ *                                  Certificate or is the Root Certificate itself. and
+ *                                  subsequent certificate is signed by the preceding
+ *                                  certificate.
  * @param[in]      cert_chain_length   Total length of the certificate chain, in bytes.
  *
  * @param[in]      root_cert          Trusted Root Certificate buffer
  *
  * @param[in]      root_cert_length    Trusted Root Certificate buffer length
  *
- * @retval  true   All cerificates was issued by the first certificate in X509Certchain.
+ * @retval  true   All certificates was issued by the first certificate in X509Certchain.
  * @retval  false  Invalid certificate or the certificate was not issued by the given
  *                trusted CA.
  **/
@@ -2113,9 +2113,9 @@ bool libspdm_x509_verify_cert_chain(const uint8_t *root_cert, size_t root_cert_l
  *
  * @param[in]      cert_chain         One or more ASN.1 DER-encoded X.509 certificates
  *                                  where the first certificate is signed by the Root
- *                                  Certificate or is the Root Cerificate itself. and
- *                                  subsequent cerificate is signed by the preceding
- *                                  cerificate.
+ *                                  Certificate or is the Root Certificate itself. and
+ *                                  subsequent certificate is signed by the preceding
+ *                                  certificate.
  * @param[in]      cert_chain_length   Total length of the certificate chain, in bytes.
  *
  * @param[in]      cert_index         index of certificate.
@@ -2354,7 +2354,7 @@ bool libspdm_set_attribute_for_req(X509_REQ *req, uint8_t *req_info, size_t req_
 
     /*integer:version*/
     ret = libspdm_asn1_get_tag(&ptr, end, &obj_len, LIBSPDM_CRYPTO_ASN1_INTEGER);
-    /*check req_info verson. spec PKCS#10: It shall be 0 for this version of the standard.*/
+    /*check req_info version. spec PKCS#10: It shall be 0 for this version of the standard.*/
     if ((obj_len != 1) || (*ptr != 0)) {
         return false;
     }
@@ -2401,7 +2401,7 @@ bool libspdm_set_attribute_for_req(X509_REQ *req, uint8_t *req_info, size_t req_
                                    LIBSPDM_CRYPTO_ASN1_SEQUENCE |
                                    LIBSPDM_CRYPTO_ASN1_CONSTRUCTED);
         if (ret) {
-            /*save old positon*/
+            /*save old position*/
             ptr_old = ptr;
 
             /*move to the next sequence*/

os_stub/debuglib/debuglib.c

@@ -73,7 +73,7 @@ void libspdm_debug_print(size_t error_level, const char *format, ...)
     status = vsnprintf(buffer, sizeof(buffer), format, marker);
     va_end(marker);
 
-    /* If status is negative then an encoding error has ocurred. */
+    /* If status is negative then an encoding error has occurred. */
     assert(status >= 0);
     /* If status is greater than or equal to the size of the buffer then the buffer is not
      * large enough to handle the formatted string. */

os_stub/mbedtlslib/include/mbedtls/libspdm_mbedtls_config.h

@@ -1139,7 +1139,7 @@
  *           MBEDTLS_ECP_DP_SECP256R1_ENABLED
  *
  * \warning If SHA-256 is provided only by a PSA driver, you must call
- * psa_crypto_init() before the first hanshake (even if
+ * psa_crypto_init() before the first handshake (even if
  * MBEDTLS_USE_PSA_CRYPTO is disabled).
  *
  * This enables the following ciphersuites (if other requisites are
@@ -1633,7 +1633,7 @@
  * functions mbedtls_ssl_context_save() and mbedtls_ssl_context_load().
  *
  * This pair of functions allows one side of a connection to serialize the
- * context associated with the connection, then free or re-use that context
+ * context associated with the connection, then free or reuse that context
  * while the serialized state is persisted elsewhere, and finally deserialize
  * that state to a live context for resuming read/write operations on the
  * connection. From a protocol perspective, the state of the connection is
@@ -2646,7 +2646,7 @@
  * The CTR_DRBG generator uses AES-256 by default.
  * To use AES-128 instead, enable \c MBEDTLS_CTR_DRBG_USE_128_BIT_KEY above.
  *
- * AES support can either be achived through builtin (MBEDTLS_AES_C) or PSA.
+ * AES support can either be achieved through builtin (MBEDTLS_AES_C) or PSA.
  * Builtin is the default option when MBEDTLS_AES_C is defined otherwise PSA
  * is used.
  *

os_stub/spdm_device_secret_lib_sample/read_special_cert.c

@@ -114,7 +114,7 @@ bool libspdm_read_responder_public_certificate_chain_by_size(
 
     is_requester_cert = false;
 
-    /*defalut is true*/
+    /*default is true*/
     is_device_cert_model = true;
 
     *data = NULL;

unit_test/fuzzing/test_requester/test_spdm_requester_key_update/key_update.c

@@ -322,7 +322,7 @@ void libspdm_run_test_harness(void *test_buffer, size_t test_buffer_size)
     libspdm_test_requester_key_update_case1(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Sucessful response  update all keys*/
+    /* Successful response  update all keys*/
     libspdm_unit_test_group_setup(&State);
     libspdm_test_requester_key_update_case2(&State);
     libspdm_unit_test_group_teardown(&State);

unit_test/fuzzing/test_responder/test_spdm_responder_algorithms/algorithms.c

@@ -476,32 +476,32 @@ void libspdm_run_test_harness(void *test_buffer, size_t test_buffer_size)
     libspdm_test_responder_algorithms_case2(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag: SPDM_GET_CAPABILITIES_REQUEST_FLAGS_MAC_CAP*/
+    /* Support capabilities flag: SPDM_GET_CAPABILITIES_REQUEST_FLAGS_MAC_CAP*/
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case3(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag */
+    /* Support capabilities flag */
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case4(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MUT_AUTH_CAP*/
+    /* Support capabilities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MUT_AUTH_CAP*/
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case5(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MUT_AUTH_CAP */
+    /* Support capabilities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MUT_AUTH_CAP */
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case6(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag: SPDM_GET_CAPABILITIES_REQUEST_FLAGS_KEY_EX_CAP*/
+    /* Support capabilities flag: SPDM_GET_CAPABILITIES_REQUEST_FLAGS_KEY_EX_CAP*/
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case7(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Support capablities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_PSK_CAP*/
+    /* Support capabilities flag: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_PSK_CAP*/
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case8(&State);
     libspdm_unit_test_group_teardown(&State);
@@ -511,7 +511,7 @@ void libspdm_run_test_harness(void *test_buffer, size_t test_buffer_size)
     libspdm_test_responder_algorithms_case9(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* capablities: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MEAS_CAP */
+    /* capabilities: SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_MEAS_CAP */
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_algorithms_case10(&State);
     libspdm_unit_test_group_teardown(&State);

unit_test/fuzzing/test_responder/test_spdm_responder_chunk_get/chunk_get.c

@@ -325,7 +325,7 @@ void libspdm_run_test_harness(void *test_buffer, size_t test_buffer_size)
     libspdm_test_responder_chunk_get_case3(&State);
     libspdm_unit_test_group_teardown(&State);
 
-    /* Succesful request of  chunk, where size is exactly max chunk size */
+    /* Successful request of  chunk, where size is exactly max chunk size */
     libspdm_unit_test_group_setup(&State);
     libspdm_test_responder_chunk_get_case4(&State);
     libspdm_unit_test_group_teardown(&State);

unit_test/test_spdm_common/context_data.c

@@ -103,7 +103,7 @@ size_t libspdm_get_multi_element_opaque_data_supported_version_data_size(
  *                                           On input, it means the size in bytes of data_out buffer.
  *                                           On output, it means the size in bytes of copied data_out buffer if RETURN_SUCCESS is returned,
  *                                           and means the size in bytes of desired data_out buffer if RETURN_BUFFER_TOO_SMALL is returned.
- * @param  data_out[in]                      A pointer to the desination buffer to store the opaque data supported version.
+ * @param  data_out[in]                      A pointer to the destination buffer to store the opaque data supported version.
  * @param  element_num[in]                   in this test function, the element number < 9 is right. because element id is changed with element_index
  *
  * @retval RETURN_SUCCESS               The opaque data supported version is built successfully.
@@ -266,7 +266,7 @@ size_t libspdm_get_multi_element_opaque_data_version_selection_data_size(
  *                                           On input, it means the size in bytes of data_out buffer.
  *                                           On output, it means the size in bytes of copied data_out buffer if RETURN_SUCCESS is returned,
  *                                           and means the size in bytes of desired data_out buffer if RETURN_BUFFER_TOO_SMALL is returned.
- * @param  data_out[in]                      A pointer to the desination buffer to store the opaque data selection version.
+ * @param  data_out[in]                      A pointer to the destination buffer to store the opaque data selection version.
  * @param  element_num[in]                   in this test function, the element number < 9 is right. because element id is changed with element_index
  *
  * @retval RETURN_SUCCESS               The opaque data selection version is built successfully.