projects
/
openssl.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
| inline |
side by side
Don't set the two top bits to one when generating a random number < q.:wq
[openssl.git]
/
crypto
/
dsa
/
dsa_key.c
diff --git
a/crypto/dsa/dsa_key.c
b/crypto/dsa/dsa_key.c
index 5aef2d5fcffb6541a62f279c88d7ba1a2b43aab6..af3c56d770ecb2480b996875df3b5624dd205f26 100644
(file)
--- a/
crypto/dsa/dsa_key.c
+++ b/
crypto/dsa/dsa_key.c
@@
-84,7
+84,7
@@
int DSA_generate_key(DSA *dsa)
i=BN_num_bits(dsa->q);
for (;;)
{
- if (!BN_rand(priv_key,i,
1
,0))
+ if (!BN_rand(priv_key,i,
0
,0))
goto err;
if (BN_cmp(priv_key,dsa->q) >= 0)
BN_sub(priv_key,priv_key,dsa->q);