PR: 2671

Submitted by: steve Update maximum message size for certifiate verify messages to support 4096 bit RSA keys again as TLS v1.2 messages is two bytes longer.
author: Dr. Stephen Henson <steve@openssl.org> 2012-01-05 00:28:29 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2012-01-05 00:28:29 +0000
commit: e0b9678d7f7401d34f899f8dc2ba66bdb44b6135 (patch)
tree: b181b0fa61de09bd2ce0348e1fcd17709529ae5c
parent: 166dea6ac8495719983ab241170793584e3ece8c (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c
index 45c36aed4f..a60e4d699c 100644
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -2911,7 +2911,7 @@ int ssl3_get_cert_verify(SSL *s)
 		SSL3_ST_SR_CERT_VRFY_A,
 		SSL3_ST_SR_CERT_VRFY_B,
 		-1,
-		514, /* 514? */
+		516, /* Enough for 4096 bit RSA key with TLS v1.2 */
 		&ok);
 
 	if (!ok) return((int)n);
author	Dr. Stephen Henson <steve@openssl.org>	2012-01-05 00:28:29 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2012-01-05 00:28:29 +0000
commit	e0b9678d7f7401d34f899f8dc2ba66bdb44b6135 (patch)
tree	b181b0fa61de09bd2ce0348e1fcd17709529ae5c
parent	166dea6ac8495719983ab241170793584e3ece8c (diff)