Displaying 2 results from an estimated 2 matches for "bn_pseudo_rand".
2001 Feb 19
2
Dubious use of BN_num_bits in sshconnect1.c (resend)
...it public key where the most significant bit is zero.
You are confused. In an N-bit RSA modulus the Nth bit is the most significant
bit. This is very different from an random integer taken from an N-bit range.
OpenSSH uses BN_num_bits correctly.
>(this brings up a related flaw in the BN_rand/BN_pseudo_rand (which is the
>reason this bug doesn't show up with OpenSSH servers) in that when called to
>generate an N-bit (pseudo)random number, these functions actually return N-1
>bits of random data, with the msb set to 1, instead of the N random bits
>promised, but that's a side is...
2001 Feb 19
1
Dubious use of BN_num_bits in sshconnect1.c
...for the remote end
to generate an N-bit public key where the most significant bit is zero. When
this occurs, BN_num_bits returns a smaller number than the actual key size,
but this number is erroneously used to check against key size requirements.
(this brings up a related flaw in the BN_rand/BN_pseudo_rand (which is the
reason this bug doesn't show up with OpenSSH servers) in that when called to
generate an N-bit (pseudo)random number, these functions actually return N-1
bits of random data, with the msb set to 1, instead of the N random bits
promised, but that's a side issue)
So.. I...