Hello, > I am getting the following error in calling OCSP_basic_verify(): > > error:04067084:rsa routines:RSA_EAY_PUBLIC_DECRYPT:data too large for modulus > > Could somebody advice what is going wrong? In RSA you can encrypt/decrypt only as much data as RSA key size (size of RSA key is the size of modulus n = p*q). In this situation, RSA routine checks size of data to decrypt (probably signature) and this size of bigger than RSA key size, this if of course error. I think that in this situation this is possible when OCSP was signed with (for example) 2048 bit key (private key) and you have some certificate with (maybe old) 1024 bit public key. In this case this error may happen. My suggestion is to check signer certificate.
Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
