[openssl-users] Openssl software failure for RSA 16K modulus

Salz, Rich rsalz at akamai.com
Thu Jul 21 16:04:33 UTC 2016


> Wait, is OpenSSL "sanity checking" a message size dictated by the same ends
> local configuration against a fixed arbitrary limit rather than a limit computed
> from that local configuration?

Yup.  Call it a limitation of C, if you want.  "#define MAX_..." is just too hard to avoid.

It has been this way forever. There was an open ticket about removing all fixed-sized limits, I think.  But I doubt that will happen.





More information about the openssl-users mailing list