Hodie III Id. Dec. MMVII est, Stephan Bärwolf scripsit:
> probably there exists a bug in current openssl binary (linux & windows) in
> signing or verifying certificate revokation lists with moduli-sizes larger
> (2^16)-1 (for example 65536 Bits).
Apart from the fact that a 65536 bits key is a "little bit" overkill,
and the fact that your certificate starting date predates the first X.509
recommendation, the largest RSA key size handled by OpenSSL is 16384
bits:
crypto/rsa.h: #define OPENSSL_RSA_MAX_MODULUS_BITS 16384
You can't even verify your root certificate with OpenSSL.
--
Erwann ABALEA <[EMAIL PROTECTED]>
-----
``Average programmers should be rounded up and placed in internment
camps to keep them away from keyboards.''
Well known Linux personage
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
