libspdm_verify_set_cert_leaf_cert_basic_constraints currently allows the existence of a device certificate's CA field to be optional. This is mandatory for SPDM 1.3 and its value must be true. In addition the function should handle generic certificates the same as device certificates. The current logic treats generic certificates the same as alias certificates, which is incorrect.
Follow-up to #2657.
libspdm_verify_set_cert_leaf_cert_basic_constraints
currently allows the existence of a device certificate's CA field to be optional. This is mandatory for SPDM 1.3 and its value must be true. In addition the function should handle generic certificates the same as device certificates. The current logic treats generic certificates the same as alias certificates, which is incorrect.