Xiangfei Ma
Xiangfei Ma
Looks #873 is talking about populating the spdm context with the new certificate on Responder side. Would you share the further plan about this one and #873? I saw it...
> Only the leaf certificate is required. Yes though, it is still a certificate instead of the raw public key. How about change to use just ASN.1 SubjectPublicKeyInfo of a...
Hi @steven-bellock , it is already asserted in `libspdm_init_mut_auth_encap_state()` so I think it would be fine. https://github.com/DMTF/libspdm/blob/1051934e41d02b6de82ab273a1c858e36c81de13/library/spdm_responder_lib/libspdm_rsp_encap_response.c#L204-L210
@steven-bellock I would take this.
Hi @jyao1 @steven-bellock, from my first attempt to fix this, I found currently the `peer_digest_slot_mask` in context would never be used after it is set by `get_digests()` process. Instead we...
Thank you, let's close this.
Looking into it.
I closed #1486 because recently some merged and incoming patches changed a lot of the slot_id checking logic (#1520 and #1524). I will make a new PR base on them.
1/31/2023 update Recently I tried most algorithms that libspdm supports but I can not reproduce this issue. Latest libspdm with openssl 1.1.1q + test cert chains in UT folder works...