Closed GoogleCodeExporter closed 9 years ago
Ok i think i am insane. I just tried ioath token and the results match those of
oathtoken. What going on?? How can the documented test case in the official RFC
spec differ from those that programs written implementing that spec generate?
Am i missing something?
Original comment by yumek...@gmail.com
on 26 Jul 2010 at 5:51
Mobile-OTP for Android confirms my initial response. The output of that matches
mine and the RFC.
Original comment by yumek...@gmail.com
on 26 Jul 2010 at 6:17
My guess is you are entering the key wrong. The key in the RFC is expressed as
an ASCII string "12345678901234567890". But in hexadecimal binary - the format
used by OATH Token and mod-authn-otp, that would be:
"3132333435363738393031323334353637383930".
You can verify things match the RFC using the "otptool" utility from
mod-authn-otp:
{{$ for i in 0 1 2 3 5 6 7 8 9; do otptool -c $i
3132333435363738393031323334353637383930; done
0: 755224 93cf18
1: 287082 397eea
2: 359152 2fef30
3: 969429 ef7655
5: 254676 c083d4
6: 287922 56c032
7: 162583 e5b397
8: 399871 23443f
9: 520489 79dc69
}}
Original comment by archie.c...@gmail.com
on 26 Jul 2010 at 7:10
aaaaaaaaahhhh thank you :)) A little confusing how different projects use
different formats. Glad I'm wasnt crazy.
Original comment by yumek...@gmail.com
on 26 Jul 2010 at 9:32
Original issue reported on code.google.com by
yumek...@gmail.com
on 26 Jul 2010 at 5:43