Added libspdm_get_detailed_connection_version and checked it in set_certificate

Author: JakubLedworowski

include/industry_standard/spdm.h

@@ -90,6 +90,7 @@ typedef struct {
 #define SPDM_MESSAGE_VERSION_11 0x11
 #define SPDM_MESSAGE_VERSION_12 0x12
 #define SPDM_MESSAGE_VERSION SPDM_MESSAGE_VERSION_10
+#define SPDM_MESSAGE_VERSION_121_WITH_SET_CERT_CAP 1
 
 /* SPDM GET_VERSION request */
 typedef struct {
@@ -116,6 +117,7 @@ typedef struct {
  * bit[3:0]   alpha*/
 typedef uint16_t spdm_version_number_t;
 #define SPDM_VERSION_NUMBER_SHIFT_BIT 8
+#define SPDM_VERSION_NUMBER_DETAILED_SHIFT_BIT 4
 
 #define SPDM_VERSION_1_2_SIGNING_PREFIX_CONTEXT "dmtf-spdm-v1.2.*"
 #define SPDM_VERSION_1_2_SIGNING_PREFIX_CONTEXT_SIZE \

include/internal/libspdm_common_lib.h

@@ -785,6 +785,15 @@ bool libspdm_is_version_supported(const libspdm_context_t *spdm_context, uint8_t
  **/
 uint8_t libspdm_get_connection_version(const libspdm_context_t *spdm_context);
 
+/**
+ * This function returns update_version_number negotiated by GET_VERSION/VERSION.
+ *
+ * @param  spdm_context                  A pointer to the SPDM context.
+ *
+ * @return the connection update_version_number.
+ **/
+uint8_t libspdm_get_detailed_connection_version(const libspdm_context_t *spdm_context);
+
 /**
  * This function returns if a capabilities flag is supported in current SPDM connection.
  *

library/spdm_common_lib/libspdm_com_context_data.c

@@ -2025,6 +2025,18 @@ uint8_t libspdm_get_connection_version(const libspdm_context_t *spdm_context)
     return (uint8_t)(spdm_context->connection_info.version >> SPDM_VERSION_NUMBER_SHIFT_BIT);
 }
 
+/**
+ * This function returns update_version_number negotiated by GET_VERSION/VERSION.
+ *
+ * @param  spdm_context                  A pointer to the SPDM context.
+ *
+ * @return the connection update_version_number.
+ **/
+uint8_t libspdm_get_detailed_connection_version(const libspdm_context_t *spdm_context)
+{
+    return (uint8_t)((spdm_context->connection_info.version & 0xF0) >> SPDM_VERSION_NUMBER_DETAILED_SHIFT_BIT);
+}
+
 /**
  * This function returns if a capabilities flag is supported in current SPDM connection.
  *

library/spdm_requester_lib/libspdm_req_set_certificate.c

@@ -43,10 +43,13 @@ static libspdm_return_t libspdm_try_set_certificate(libspdm_context_t *spdm_cont
         return LIBSPDM_STATUS_UNSUPPORTED_CAP;
     }
 
-    if (!libspdm_is_capabilities_flag_supported(
-            spdm_context, true, 0,
-            SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_SET_CERT_CAP)) {
-        return LIBSPDM_STATUS_UNSUPPORTED_CAP;
+    if (libspdm_get_connection_version(spdm_context) == SPDM_MESSAGE_VERSION_12
+        && libspdm_get_detailed_connection_version(spdm_context) >= SPDM_MESSAGE_VERSION_121_WITH_SET_CERT_CAP) {
+        if (!libspdm_is_capabilities_flag_supported(
+                spdm_context, true, 0,
+                SPDM_GET_CAPABILITIES_RESPONSE_FLAGS_SET_CERT_CAP)) {
+            return LIBSPDM_STATUS_UNSUPPORTED_CAP;
+        }
     }
 
     LIBSPDM_ASSERT(slot_id < SPDM_MAX_SLOT_COUNT);