Project

General

Profile

Feature #5115

ValidationPolicySimpleHierarchy: accommodate certificate name in KeyLocator

Added by Junxiao Shi 8 months ago. Updated 6 months ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
2.00 h

Description

Currently, ValidationPolicySimpleHierarchy::checkPolicy assumes KeyLocator contains key name only:

if (klName.getPrefix(-2).isPrefixOf(interest.getName())) {

Since #5112, KeyLocator would contain certificate name. Additionally, legacy client may continue to send KeyLocator with key name.
Thus, this condition should be relaxed to accept either key name or certificate name as KeyLocator.

#1

Updated by Alex Afanasyev 8 months ago

  • Tags set to security
#2

Updated by Alex Afanasyev 7 months ago

  • Status changed from New to Code review
  • Assignee set to Alex Afanasyev
  • % Done changed from 0 to 100
#4

Updated by Davide Pesavento 6 months ago

  • Status changed from Code review to Closed
  • Target version set to v0.8

Also available in: Atom PDF