PR: 2671

Submitted by: steve Update maximum message size for certifiate verify messages to support 4096 bit RSA keys again as TLS v1.2 messages is two bytes longer.
2012-01-05 00:28:43 +00:00 · 2012-01-05 00:28:43 +00:00 · 59e68615ce
commit 59e68615ce
parent 192540b522
1 changed files with 1 additions and 1 deletions
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@ -2921,7 +2921,7 @@ int ssl3_get_cert_verify(SSL *s)
 		SSL3_ST_SR_CERT_VRFY_A,
 		SSL3_ST_SR_CERT_VRFY_B,
 		-1,
-		514, /* 514? */
+		516, /* Enough for 4096 bit RSA key with TLS v1.2 */
 		&ok);

 	if (!ok) return((int)n);