The checking for Signature Algorithm
Fields is missed for DeviceCert / AliasCert
certificate models.
#2658
Labels
bug
Something isn't working
The checking for
Signature Algorithm
Fields is missed forDeviceCert / AliasCert
certificate models.For
DeviceCert / AliasCert
certificate models,Signature Algorithm
Fields is Mandatory.Refer to the paragraph 397
Table 42 — Field requirements
In DSP0274_1.3.0.pdf.But there is no checking for
Signature Algorithm
Fields in functionlibspdm_x509_common_certificate_check( )
when certificate model isDeviceCert
orAliasCert
.I think
/* 3. Verify public key algorithm. */
at the following line 1083 is not the checking forSignature Algorithm
Fields.libspdm/library/spdm_crypt_lib/libspdm_crypt_cert.c
Lines 1041 to 1095 in 828ef62
I think maybe
libspdm_x509_common_certificate_check()
should calllibspdm_x509_get_signature_algorithm()
to getSignature Algorithm
.The text was updated successfully, but these errors were encountered: