projects
/
openssl.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
| inline |
side by side
Don't set the two top bits to one when generating a random number < q.:wq
[openssl.git]
/
crypto
/
dsa
/
dsa_ossl.c
diff --git
a/crypto/dsa/dsa_ossl.c
b/crypto/dsa/dsa_ossl.c
index b51cf6ad8d45dca2cfafb5510873f379e4851640..094356518f2e74419fbeed3a741f79c473625dd3 100644
(file)
--- a/
crypto/dsa/dsa_ossl.c
+++ b/
crypto/dsa/dsa_ossl.c
@@
-181,7
+181,7
@@
static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, BIGNUM **rp)
/* Get random k */
for (;;)
{
- if (!BN_rand(&k, BN_num_bits(dsa->q),
1
, 0)) goto err;
+ if (!BN_rand(&k, BN_num_bits(dsa->q),
0
, 0)) goto err;
if (BN_cmp(&k,dsa->q) >= 0)
BN_sub(&k,&k,dsa->q);
if (!BN_is_zero(&k)) break;