Replies: 1 comment 2 replies
-
I am not sure what "this length" means. Libspdm calculates the valid message length and strip the padding bytes. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks for the quick response. Let me provide more details. On SPDM responder, we are using non-secure messages sending "get version, get capability, negotiate algorithms, get digest, get certificate" which is followed by challenge request. All this happens before any session is established. DOE is used as a transport layer. When we send packets to libspdm for handling, the transport decode function (registered in libspdm_register_transport_layer_func) and it provides the length from the transport layer (referred as 'this length' in original query) which is much more than the "real length" of the SPDM request. Libspdm dispatch the request and works on the request correctly. Due to the failure I get, I was wondering if the request data stored (using libspdm_append_message_a/b/c) for generating the signature in SPDM_CHALLENGE is correct or not? Please correct me if my understanding is wrong. Thanks |
Beta Was this translation helpful? Give feedback.
-
|
That is a bug. I filed #2610. |
Beta Was this translation helpful? Give feedback.
-
Hi,
I would like to discuss a topic where we are calculating Signature in SPDM CHALLENGE and issue I am facing on using DOE as transport. DOE states that we can send any length which is greater than the actual data present in the packet/buffer.
Due to some reason I do not have the actual length, and send additional length to DOE for SPDM and same is provided to SPDM library. Here, I notice that SPDM_CHALLENGE uses this length to calculate the signanature (using previous requests/responses) and not use the real valid length of the earlier requests/responses.
Is this correct and expected behavior? Kindly guide.
Thank you
Beta Was this translation helpful? Give feedback.
All reactions