setting the two most significant bits assures an RSA modulus of maximum bit size

author: Andreas Steffen <andreas.steffen@strongswan.org> 2010-03-15 15:13:26 +0100
committer: Andreas Steffen <andreas.steffen@strongswan.org> 2010-03-15 15:13:26 +0100
commit: a3316c2b9ffeb17c4a53517eb2b0aedbc5422948 (patch)
tree: 43a162880742ce650f60f3394a9338b1474fac33
parent: c0df187cb40dfaf427f5b343275e2edc46f5c4d1 (diff)
download: strongswan-a3316c2b9ffeb17c4a53517eb2b0aedbc5422948.tar.bz2
strongswan-a3316c2b9ffeb17c4a53517eb2b0aedbc5422948.tar.xz
1 files changed, 2 insertions, 2 deletions
diff --git a/src/libstrongswan/plugins/gmp/gmp_rsa_private_key.c b/src/libstrongswan/plugins/gmp/gmp_rsa_private_key.c
index c58097f88..211ce411e 100644
--- a/src/libstrongswan/plugins/gmp/gmp_rsa_private_key.c
+++ b/src/libstrongswan/plugins/gmp/gmp_rsa_private_key.c
@@ -149,8 +149,8 @@ static status_t compute_prime(private_gmp_rsa_private_key_t *this,
 	do
 	{
 		rng->allocate_bytes(rng, prime_size, &random_bytes);
-		/* make sure most significant bit is set */
-		random_bytes.ptr[0] = random_bytes.ptr[0] | 0x80;
+		/* make sure the two most significant bits are set */
+		random_bytes.ptr[0] = random_bytes.ptr[0] | 0xC0;
 
 		mpz_import(*prime, random_bytes.len, 1, 1, 1, 0, random_bytes.ptr);
 		mpz_nextprime (*prime, *prime);
author	Andreas Steffen <andreas.steffen@strongswan.org>	2010-03-15 15:13:26 +0100
committer	Andreas Steffen <andreas.steffen@strongswan.org>	2010-03-15 15:13:26 +0100
commit	a3316c2b9ffeb17c4a53517eb2b0aedbc5422948 (patch)
tree	43a162880742ce650f60f3394a9338b1474fac33
parent	c0df187cb40dfaf427f5b343275e2edc46f5c4d1 (diff)
download	strongswan-a3316c2b9ffeb17c4a53517eb2b0aedbc5422948.tar.bz2 strongswan-a3316c2b9ffeb17c4a53517eb2b0aedbc5422948.tar.xz