ProtoRrsig is used to produce the data that is signed. According to https://datatracker.ietf.org/doc/html/rfc4034#autoid-23, this serialization begins with the first rdata field which is type_covered, however ProtoRrsig is inserting a length at the beginning. As such, signatures produced by SortedRecords::sign() are invalid. Fix this by removing that length from the serialization.
ProtoRrsig
is used to produce the data that is signed. According to https://datatracker.ietf.org/doc/html/rfc4034#autoid-23, this serialization begins with the first rdata field which istype_covered
, howeverProtoRrsig
is inserting a length at the beginning. As such, signatures produced bySortedRecords::sign()
are invalid. Fix this by removing that length from the serialization.