Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

DeviceSecurityPkg: test exceed LIBSPDM_MAX_ROOT_CERT_SUPPORT. #337

Draft
wants to merge 106 commits into
base: DeviceSecurity
Choose a base branch
from

Conversation

Zhiqiang520
Copy link

@Zhiqiang520 Zhiqiang520 commented Nov 16, 2022

  1. there is only one SignatureList in database.
  2. The total number of RootCert in database exceed the LIBSPDM_MAX_ROOT_CERT_SUPPORT.
  3. Then fail to set multiple root certificates as trust anchors in SPDM context.
  4. Finally extend some error in PCR.

Signed-off-by: Zhao, Zhiqiang [email protected]

jyao1 and others added 30 commits October 25, 2022 10:14
Signed-off-by: Jiewen Yao <[email protected]>
Signed-off-by: Qi Zhang <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
…ly, DeviceSecurityPolicy is Measurement Only, DeviceSecurityPolicy is None of Authentication and Measurement.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
…t has been modified again.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
Signed-off-by: Jiewen Yao <[email protected]>
Signed-off-by: Qi Zhang <[email protected]>
…est config: Set SPDM responder support RSASSA_3072 and SHA_384 default.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
Signed-off-by: Zhao, Zhiqiang <[email protected]>
qizhangz and others added 22 commits November 30, 2022 09:55
1. Set SPDM responder only support SPDM_MESSAGE_VERSION_11.
2. Do later device authentication and measurement successfully.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
1. Set SPDM responder only support SPDM_MESSAGE_VERSION_10.
2. Do later device authentication and measurement successfully.
3. SPDM 1.0 does not support KEY_EXCHANGE or PSK_EXCHANGE, so skip.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
1. there is only one SignatureList in database.
2. The total number of RootCert in database exceed the
 LIBSPDM_MAX_ROOT_CERT_SUPPORT.
3. Then fail to set multiple root certificates as
 trust anchors in SPDM context.
4. Finally fail to create a connection with the SPDM device
 and extend some error in PCR.

Signed-off-by: Zhao, Zhiqiang <[email protected]>
@Zhiqiang520 Zhiqiang520 marked this pull request as draft July 28, 2023 06:49
@jyao1 jyao1 force-pushed the DeviceSecurity branch 5 times, most recently from dbba8e5 to c0fcefd Compare February 26, 2024 02:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants