The draft FIPS-186-3 allows the dsa parameter combination of 2048/224.
Currently crypto/dsa/dsa_gen.c:DSA_generate_parameters_ex() seems to hard-code 256-bit length for modulus lengths >= 2048. Comments? Any particular reason for this?
If not I'll try to rt.openssl.org with a patch? Cheers -r- ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
