What was the size of the certificate's key? I'd say a 4096 bit RSA key
for it to exceed that limit. For TLS v1.2 two extra bytes are used to
identify the signature type so just increasing the message limit by 2
should make it work again.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core develo
I encountered this problem implementing app using tls v1.2 method and
specifying SSL_VERIFY_PEER. Openssl function ssl3_get_cert_verify calls
function method->ssl_get_message specifying a max message length of 514 bytes
when in fact it can be longer when using tls 1.2 with peer cert verification