From b625a6d1a9850905eb8c632c9024cafe0c9198f3 Mon Sep 17 00:00:00 2001
From: David Shaw <dshaw@jabberwocky.com>
Date: Thu, 20 Apr 2006 21:11:56 +0000
Subject: (generate): Tweak to allow keys larger than 1024 bits.  Enforce that
 the q size doesn't end between byte boundaries.

---
 cipher/dsa.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'cipher/dsa.c')

diff --git a/cipher/dsa.c b/cipher/dsa.c
index 447cea941..9745656f4 100644
--- a/cipher/dsa.c
+++ b/cipher/dsa.c
@@ -180,8 +180,9 @@ generate( DSA_secret_key *sk, unsigned nbits, unsigned qbits,
     MPI h, e;  /* helper */
     byte *rndbuf;
 
-    assert( nbits >= 512 && nbits <= 1024 );
+    assert( nbits >= 512 );
     assert( qbits >= 160 );
+    assert( qbits %8 == 0 );
 
     p = generate_elg_prime( 1, nbits, qbits, NULL, ret_factors );
     /* get q out of factors */
-- 
cgit v1.2.3