ircd: sslproc: certfp commands have a 9 byte header, not 5 bytes

SHA512 hashes were being ignored because the message was too large
This commit is contained in:
Simon Arlott 2016-04-23 20:52:20 +01:00
parent 5a9fa2e2fa
commit 0ae7a89d78
No known key found for this signature in database
GPG key ID: C8975F2043CA5D24

View file

@ -453,7 +453,7 @@ ssl_process_certfp(ssl_ctl_t * ctl, ssl_ctl_buf_t * ctl_buf)
uint8_t *certfp; uint8_t *certfp;
char *certfp_string; char *certfp_string;
if(ctl_buf->buflen > 5 + RB_SSL_CERTFP_LEN) if(ctl_buf->buflen > 9 + RB_SSL_CERTFP_LEN)
return; /* bogus message..drop it.. XXX should warn here */ return; /* bogus message..drop it.. XXX should warn here */
fd = buf_to_uint32(&ctl_buf->buf[1]); fd = buf_to_uint32(&ctl_buf->buf[1]);