stroke: Properly parse bliss key strength in public key constraint
authorTobias Brunner <tobias@strongswan.org>
Wed, 25 Mar 2015 12:27:15 +0000 (13:27 +0100)
committerTobias Brunner <tobias@strongswan.org>
Wed, 25 Mar 2015 12:27:15 +0000 (13:27 +0100)
src/libcharon/plugins/stroke/stroke_config.c

index 0483ba2..55ec7cd 100644 (file)
@@ -334,7 +334,7 @@ static void parse_pubkey_constraints(char *auth, auth_cfg_t *cfg)
                        { "sha512",             SIGN_BLISS_WITH_SHA512,                 KEY_BLISS,      },
                };
 
-               if (rsa_len || ecdsa_len)
+               if (rsa_len || ecdsa_len || bliss_strength)
                {       /* expecting a key strength token */
                        strength = atoi(token);
                        if (strength)