Quite right. I've no applied a patch to change this, please test
tomorrows snapshot.
Ticket resolved.
[EMAIL PROTECTED] - Thu Apr 17 21:37:09 2003]:
> Is it correct to use EVP_PKEY_size, which returns the maximum size of
a
> signature in bytes, to check the key length against the 512 bits
limit?
>
> In crypto\evp\evp.h:
> #define EVP_PKT_EXP 0x1000 /* <= 512 bit key */
>
> In crypto\x509\x509type.c:
> int X509_certificate_type(X509 *x, EVP_PKEY *pkey)
> {
> ...................
> if (EVP_PKEY_size(pk) <= 512)
> ret|=EVP_PKT_EXP;
> ...................
> }
>
>
--
Richard Levitte
[EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
