Stefan Hristozov

Thank you for your feedback sijohans! I tried to address the issue, see https://github.com/Fraunhofer-AISEC/uoscore-uedhoc/blob/0b2a48f569952038d660b517c9108db6eb3ed328/modules/oscore/src/coap.c#L260 and also to add size checking for the other parts of the parsing. "The T1__COAP_REQ does...

Hi sijohans, I totally agree with you that we need a very robust interface for everything which comes from outside. The approach to use fuzzing to identify places where things...

Thank you sijohans! I will take a deeper look. The reason for using Zephyr is that Zephyr comes with compilers for many platforms (ARM/RISC-V/x86/Xtensa) and therefore it is very easy...

> > not use sites 0 and 1 with Zephyr. (we still have sites 2 and 3 working with P256 and embedtls) > > This option higly depends on how...

The mbedtls [roadmap](https://developer.trustedfirmware.org/w/mbed-tls/roadmap/) say 2022 CQ3. Probably the best will be to integrate compact25519 and later remove it when mbedtls has support for eddsa.

Hi, this is just an example showing the happy path of interaction. Generally for me it sounds reasonable what you are saying and I will be happy to merge a...

The spec is very clear on this. See [EDHOC Message 4](https://datatracker.ietf.org/doc/html/draft-ietf-lake-edhoc-19#name-edhoc-message-4). - Can you confirm this behavior? -> yes, message 4 is optional and if the initiator and the responder...

Hi Sabor, thanks for rising this question. Generally, currently we can have a singe server talking to a single client. Concurrent operations are not possible yet. Actually some time ago...

The problem originates most likely in: " A client MUST consider the notification with the highest Partial IV as the freshest, regardless of the order of arrival. In order to...

It looks like your network configuration is not working. But if you have an ESP32 you may want to use wifi instead of BLE. Just make sure that you can...