search

DMTF / spdm-emu

BSD 3-Clause "New" or "Revised" License
31 stars 42 forks source link

Why SPDM responder read the requester certificate chain directly in negotiate state ? #286

Open owen126315 opened 1 year ago

owen126315 commented 1 year ago

https://github.com/DMTF/spdm-emu/blob/3630f472927a42a4f1b8847b0372258d715577a3/spdm_emu/spdm_responder_emu/spdm_responder_spdm.c#L446-L461

Should the responder get the requester certificate chain through mutual authentication, instead of file read it directly?

jyao1 commented 1 year ago

Read local == provision. Read peer == runtime check.