dsa_sign_hash: testing k < q
Karel Miko
10 years ago
72 | 72 | /* read k */ |
73 | 73 | if ((err = mp_read_unsigned_bin(k, buf, key->qord)) != CRYPT_OK) { goto error; } |
74 | 74 | |
75 | /* k > 1 ? */ | |
76 | if (mp_cmp_d(k, 1) != LTC_MP_GT) { goto retry; } | |
75 | /* k > 1 and k < q ? */ | |
76 | if (mp_cmp_d(k, 1) != LTC_MP_GT || mp_cmp(k, key->q) != LTC_MP_LT) { goto retry; } | |
77 | 77 | |
78 | 78 | /* test gcd */ |
79 | 79 | if ((err = mp_gcd(k, key->q, tmp)) != CRYPT_OK) { goto error; } |