The draft FIPS-186-3 allows the dsa parameter combination of 2048/224.

Currently crypto/dsa/dsa_gen.cSA_generate_parameters_ex() seems to
hard-code
256-bit length for modulus lengths >= 2048. Comments? Any particular
reason for this?

If not I'll try to rt.openssl.org with a patch?

Cheers
-r-

__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org