From: Miek Gieben <miekg@NLnetLabs.nl>
Date: Wed, 30 Mar 2005 15:46:23 +0000 (+0000)
Subject: it signs perfectly. It's the verify that is fucked up.
X-Git-Tag: release-0.50~184
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=fdd74b2f1b3f8800a9148a2b2dfc6ea4b6cfced2;p=thirdparty%2Fldns.git

it signs perfectly. It's the verify that is fucked up.
prob. because the inception/expiration is 0?

Need to find a way to compare known good sigs with what we
produce....
---

diff --git a/run-test18.c b/run-test18.c
index 62c4c88a..e7bb7fab 100644
--- a/run-test18.c
+++ b/run-test18.c
@@ -36,8 +36,8 @@ main()
 	ldns_rr_print(stdout, rr);
 	printf("\n");
 
-	privkey = ldns_key_new_frm_algorithm(LDNS_SIGN_RSASHA1, 1024);
-	privkey_dsa = ldns_key_new_frm_algorithm(LDNS_SIGN_DSA, 1024);
+	privkey = ldns_key_new_frm_algorithm(LDNS_SIGN_RSASHA1, 512);
+	privkey_dsa = ldns_key_new_frm_algorithm(LDNS_SIGN_DSA, 512);
 	if (!privkey || !privkey_dsa) {
 		printf("Ah, keygen failed");
 		exit(1);
@@ -52,7 +52,7 @@ main()
 	/*	SSL_load_error_strings();*/
 
 	ldns_key_list_push_key(keys, privkey);
-	ldns_key_list_push_key(keys, privkey_dsa);
+	/* ldns_key_list_push_key(keys, privkey_dsa); */
 
 	ldns_rr_list_push_rr(rrs, rr);
 	
@@ -76,14 +76,16 @@ main()
 	} else {
 		exit(1);
 	}
+	/* no verify */
 	ldns_rr_list_push_rr(dnskeys, dnskey);
-	/* only rsa for now */
-/*	ldns_rr_list_push_rr(dnskeys, dnskey_dsa); */
+	ldns_rr_list_push_rr(dnskeys, dnskey_dsa); 
 
 	signatures = ldns_sign_public(rrs, keys);
 
 	ldns_rr_list_print(stdout, signatures);
 
+	return 0;
+	/* END */
 	printf("Now we are going to verify\n");
 
 	printf("\n[%d]\n", ldns_verify(rrs, signatures, dnskeys));