]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
projects / thirdparty / bind9.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 621093f)
Fix kasp min key size bug
authorMatthijs Mekking <matthijs@isc.org>
Thu, 1 Oct 2020 09:05:01 +0000 (11:05 +0200)
committerMatthijs Mekking <matthijs@isc.org>
Fri, 2 Oct 2020 07:20:40 +0000 (09:20 +0200)
The minimal size for RSASHA1, RSASHA256 is 512, but due to bad
assignment it was set to 1024.

lib/dns/kasp.c patch | blob | blame | history

diff --git a/lib/dns/kasp.c b/lib/dns/kasp.c
index fb945ddbbfab6bfd15ee7fd5d21aaf2edd42aad2..68ec3a965144782e5836bd2ed38b107110b9502f 100644 (file)
--- a/lib/dns/kasp.c
+++ b/lib/dns/kasp.c
@@ -394,7 +394,7 @@ dns_kasp_key_size(dns_kasp_key_t *key) {
        case DNS_KEYALG_NSEC3RSASHA1:
        case DNS_KEYALG_RSASHA256:
        case DNS_KEYALG_RSASHA512:
-               min = DNS_KEYALG_RSASHA512 ? 1024 : 512;
+               min = (key->algorithm == DNS_KEYALG_RSASHA512) ? 1024 : 512;
                if (key->length > -1) {
                        size = (unsigned int)key->length;
                        if (size < min) {
Mirror of https://gitlab.isc.org/isc-projects/bind9.git