{"author":"Yedaya Katsman","author_email":"yedaya.ka@gmail.com","author_time":1743712565,"commit_time":1743715836,"committer":"Daniel Stenberg","committer_email":"daniel@haxx.se","hash":"fe1ba25c87e3fe1f797051ac4df96df7549e4d3a","message":"rustls: make max size of cert and key reasonable\n\nSIZE_MAX is an very overkill size for certificates or keys, lower it to\n100KiB for both certificate and keys. The default max size of openssl is\n100KiB for the entire chain [1], and it seems firefox fails at ~60kb\n[2].\n\nFound by https://github.com/curl/curl/pull/16923\n\n[0] https://docs.openssl.org/3.2/man3/SSL_CTX_set_max_cert_list/#notes\n[2] https://0x00.cl/blog/2024/exploring-tls-certs/\n\nCloses #16951\n","parents":["bdc42ba23e0ec6fdda74ed93b34373235fa62cd6"],"tree_hash":"bb7b0bfee30a47fbe0849fe5cb29631cd9c2acbf"}