go-tuf icon indicating copy to clipboard operation
go-tuf copied to clipboard
verified publisher icon theupdateframework

Multiple key ids for a key.PublicKey

Open asraa opened this issue 4 years ago • 2 comments

Brought up in review of https://github.com/theupdateframework/go-tuf/pull/148#discussion_r717159404

go-tuf holds a list of KEY IDs for a given key, but in practice, this only returns a single string. The python implementation also includes only one key id generated by https://github.com/secure-systems-lab/securesystemslib/blob/9b3ea003ab93ab6909d1327dfb2ab7af0309e7cc/securesystemslib/keys.py#L563

Was there a reason for this? If not, I can handle cleaning this up after #148

@hosseinsia

asraa avatar Sep 28 '21 14:09 asraa

From @trishankatdatadog

Yeah, this could be related to the old key_hashing_algorithms kerfuffle (TLDR: we allowed using SHA2-256 and/or SHA2-512 to compute different, collision-resistant keyids for the same key).

asraa avatar Sep 28 '21 18:09 asraa

@asraa to reroute

znewman01 avatar Sep 07 '22 16:09 znewman01

Closing since the code base changed and so it is no longer valid.

Thanks for raising this! 👍

rdimitrov avatar Jan 31 '24 21:01 rdimitrov