Revert "removed pbits=1024, qbits=160 from the acceptable bit sizes in FIPS140-2 DSA parameter generation."

This reverts commit 110527d9bb9ca70a66ae8173769067f133fd3cf7.
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2014-08-22 08:17:17 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2014-08-22 08:17:17 +0200
commit: 936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9 (patch)
tree: db008e61c14d653d1e2b05343bb0bcdaf62b034b
parent: fee606130fcad767843ac627ba23e8d9c1012094 (diff)
download: gnutls-936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/lib/nettle/int/dsa-keygen-fips186.c b/lib/nettle/int/dsa-keygen-fips186.c
index 9ab00a9dc7..06338c92ed 100644
--- a/lib/nettle/int/dsa-keygen-fips186.c
+++ b/lib/nettle/int/dsa-keygen-fips186.c
@@ -39,6 +39,10 @@
 unsigned _dsa_check_qp_sizes(unsigned q_bits, unsigned p_bits)
 {
 	switch (q_bits) {
+	case 160:
+		if (p_bits != 1024)
+			return 0;
+		break;
 	case 224:
 		if (p_bits != 2048)
 			return 0;
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2014-08-22 08:17:17 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2014-08-22 08:17:17 +0200
commit	936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9 (patch)
tree	db008e61c14d653d1e2b05343bb0bcdaf62b034b
parent	fee606130fcad767843ac627ba23e8d9c1012094 (diff)
download	gnutls-936b5a1ef0bc1bae7f8164cb96e8dc406ba808c9.tar.gz