From 0ae7a89d782fa6b4e38e39cd853053a932eaa2e3 Mon Sep 17 00:00:00 2001
From: Simon Arlott <sa.me.uk>
Date: Sat, 23 Apr 2016 20:52:20 +0100
Subject: [PATCH] ircd: sslproc: certfp commands have a 9 byte header, not 5
 bytes

SHA512 hashes were being ignored because the message was too large
---
 ircd/sslproc.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ircd/sslproc.c b/ircd/sslproc.c
index 55c7ba6d..5472fbb0 100644
--- a/ircd/sslproc.c
+++ b/ircd/sslproc.c
@@ -453,7 +453,7 @@ ssl_process_certfp(ssl_ctl_t * ctl, ssl_ctl_buf_t * ctl_buf)
 	uint8_t *certfp;
 	char *certfp_string;
 
-	if(ctl_buf->buflen > 5 + RB_SSL_CERTFP_LEN)
+	if(ctl_buf->buflen > 9 + RB_SSL_CERTFP_LEN)
 		return;		/* bogus message..drop it.. XXX should warn here */
 
 	fd = buf_to_uint32(&ctl_buf->buf[1]);