Project

General

Profile

Actions

Bug #2052

closed

ndnsec doesn't correctly infer prefix before KEY

Added by Alex Afanasyev about 10 years ago. Updated about 10 years ago.

Status:
Closed
Priority:
High
Assignee:
Category:
Security
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:

Description

Somehow, ndnsec doesn't perform proper inference for the prefix before KEY based on signing identity.

Say:

  • signing identity: /alex
  • request for identity: /alex/hello/world (name in request: /alex/hello/world/KEY/ksk-1412971757948/ID-CERT/%00%00%01H%FB%AE%01%CD)

Run:

ndnsec-cert-gen -N 'test' -s /alex -r -

Expected certificate name:

/alex/KEY/hello/world/ksk-1412971757948/ID-CERT/%00%00%01H%FB%B0P%7E

Actual certificate name:

/KEY/alex/hello/world/ksk-1412971757948/ID-CERT/%00%00%01H%FB%B0P%7E

The current workaround is to add --cert-prefix=/alex, but this shouldn't be the case.


Related issues 1 (0 open1 closed)

Related to ndn-cxx - Task #1659: Allow user to explicitly specify the cert name prefix in ndnsec-certgenClosedYingdi Yu06/12/2014

Actions
Actions

Also available in: Atom PDF