In fact they are telling is starting between 500 and 1000. I made the test
and is if the error is hit at 512, you will have it at 1000 and 2000 also. In
fact somewhere they are also telling: "This is probably because there is an
hardcoded limit in the protocol: The CertificateRequest message must specify
the DNs of accepted CA. This DNs, all together, can occupy at the most 2^16-1
= 65535 bytes, so if there are too many CAs, this limit can be encountered.
For reference, this is paragraph 7.4.4 of RFC 2246. It describes TLS 1.0, but
there is little significant difference between TLS and SSL for what interest
us." Regards, Gabriel
--
[Message sent by forum member 'gabosu']
View Post: http://forums.java.net/node/889917