diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2014-08-22 08:17:17 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2014-08-22 08:17:17 +0200 |
commit | 936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9 (patch) | |
tree | db008e61c14d653d1e2b05343bb0bcdaf62b034b | |
parent | fee606130fcad767843ac627ba23e8d9c1012094 (diff) | |
download | gnutls-936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9.tar.gz |
Revert "removed pbits=1024, qbits=160 from the acceptable bit sizes in FIPS140-2 DSA parameter generation."
This reverts commit 110527d9bb9ca70a66ae8173769067f133fd3cf7.
-rw-r--r-- | lib/nettle/int/dsa-keygen-fips186.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/lib/nettle/int/dsa-keygen-fips186.c b/lib/nettle/int/dsa-keygen-fips186.c index 9ab00a9dc7..06338c92ed 100644 --- a/lib/nettle/int/dsa-keygen-fips186.c +++ b/lib/nettle/int/dsa-keygen-fips186.c @@ -39,6 +39,10 @@ unsigned _dsa_check_qp_sizes(unsigned q_bits, unsigned p_bits) { switch (q_bits) { + case 160: + if (p_bits != 1024) + return 0; + break; case 224: if (p_bits != 2048) return 0; |