Project

General

Profile

Actions

Feature #5115

closed

ValidationPolicySimpleHierarchy: accommodate certificate name in KeyLocator

Added by Junxiao Shi almost 4 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
2.00 h

Description

Currently, ValidationPolicySimpleHierarchy::checkPolicy assumes KeyLocator contains key name only:

if (klName.getPrefix(-2).isPrefixOf(interest.getName())) {

Since #5112, KeyLocator would contain certificate name. Additionally, legacy client may continue to send KeyLocator with key name.
Thus, this condition should be relaxed to accept either key name or certificate name as KeyLocator.

Actions

Also available in: Atom PDF