ExternalVendorCode/HIRS
1
0
Fork 0
mirror of https://github.com/nsacyber/HIRS.git synced 2025-01-30 16:13:55 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Match only the actual extension bytes of the SKID

Browse Source
This commit is contained in:
chubtub 2021-10-27 13:41:55 -04:00
parent 962ca45bb7
commit bc7e07583f
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
HIRS_Utils/src/main/java/hirs/utils/ReferenceManifestValidator.java
View File

@ -182,7 +182,7 @@ public class ReferenceManifestValidator {
} }
} else { } else {
subjectKeyIdentifier = getKeyName(rim); subjectKeyIdentifier = getKeyName(rim);
if (subjectKeyIdentifier.equals(cert.getSubjectKeyIdString())) { if (subjectKeyIdentifier.equals(cert.getSubjectKeyIdString().substring(8))) {
context = new DOMValidateContext(cert.getX509Certificate().getPublicKey(), context = new DOMValidateContext(cert.getX509Certificate().getPublicKey(),
nodes.item(0)); nodes.item(0));
} }
@ -354,6 +354,7 @@ public class ReferenceManifestValidator {
/** /**
* This method returns the subjectKeyIdentifier from a given X509Certificate. * This method returns the subjectKeyIdentifier from a given X509Certificate.
*
* @param certificate the cert to pull the subjectKeyIdentifier from * @param certificate the cert to pull the subjectKeyIdentifier from
* @return the String representation of the subjectKeyIdentifier * @return the String representation of the subjectKeyIdentifier
* @throws IOException * @throws IOException