[gnutls-dev] [PATCH] another large RSA modulus problem

Nikos Mavroyanopoulos nmav@gnutls.org
Tue Apr 1 01:06:02 2003


On Mon, Mar 31, 2003 at 05:27:38PM -0500, Ian Peters wrote:

> The same Thawte certificate as last time (with a 2048 byte signature
> length) triggers a new problem in lib/x509/x509.c.  Patch bumps length
> from 640 to 2400.  Should this just be MAX_PARAMETER_SIZE instead?
> Also, any particular reason you're overestimating sizes like this?  In
> most of these cases you can assume powers of two, so, why e.g. 640
> instead of 512, etc?

I do not remember why. In any case I've dropped the MAX_PARAMETERS_SIZE
limitation, so there shouldn't be any problem now.

> Ian



-- 
Nikos Mavroyanopoulos