From bc1b04d255eb31ba3cf80a82d98adbfbbadf621f Mon Sep 17 00:00:00 2001
From: "Dr. Stephen Henson" <steve@openssl.org>
Date: Sun, 16 Oct 2011 12:31:49 +0000
Subject: [PATCH] L=3072, N=256 provides 128 bits of security not 112.

---
 crypto/dsa/dsa_gen.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crypto/dsa/dsa_gen.c b/crypto/dsa/dsa_gen.c
index c013a7e66..d5f4debc9 100644
--- a/crypto/dsa/dsa_gen.c
+++ b/crypto/dsa/dsa_gen.c
@@ -405,7 +405,7 @@ static int dsa2_valid_parameters(size_t L, size_t N)
 	if (L == 2048 && N == 256)
 		return 112;
 	if (L == 3072 && N == 256)
-		return 112;
+		return 128;
 	return 0;
 	}