NSEC3PARAM: check that saltlen is consistent with the rdata length

(cherry picked from commit 7dc8e720ff1360837fc8c0649445bcaa2b1236d4)

diff --git a/lib/dns/rdata/generic/nsec3param_51.c b/lib/dns/rdata/generic/nsec3param_51.c
index 6140276b54b029f34d8bc773a3b0c57f606cca7b..c515e33c0f68b57c5e109e372036083f988777d0 100644 (file)
--- a/lib/dns/rdata/generic/nsec3param_51.c
+++ b/lib/dns/rdata/generic/nsec3param_51.c
@@ -156,8 +156,9 @@ fromwire_nsec3param(ARGS_FROMWIRE) {
        saltlen = sr.base[4];
        isc_region_consume(&sr, 5);
 
-       if (sr.length < saltlen)
+       if (sr.length != saltlen) {
                RETERR(DNS_R_FORMERR);
+       }
        isc_region_consume(&sr, saltlen);
        RETERR(mem_tobuffer(target, rr.base, rr.length));
        isc_buffer_forward(source, rr.length);