openssl: Fix invalid keyid length check

Check was designed for base64 conversion, however a hex conversion is being performed, which requires more memory.
2018-10-23 23:20:17 +02:00 · 2018-10-23 23:20:17 +02:00 · b148517c6b
parent d99e73548e
commit b148517c6b
1 changed files with 1 additions and 1 deletions
--- a/src/libstrongswan/plugins/openssl/openssl_plugin.c
+++ b/src/libstrongswan/plugins/openssl/openssl_plugin.c
@ -405,7 +405,7 @@ static private_key_t *openssl_private_key_connect(key_type_t type,
 	{
 		snprintf(keyname, sizeof(keyname), "%d:", slot);
 	}
-	if (sizeof(keyname) - strlen(keyname) <= keyid.len * 4 / 3 + 1)
+	if (sizeof(keyname) - strlen(keyname) <= keyid.len * 2 + 1)
 	{
 		return NULL;
 	}