Skip to content

Commit

Permalink
Fix an inaccuracy
Browse files Browse the repository at this point in the history 
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
  • Loading branch information
@mpg
mpg committed Feb 8, 2022
1 parent 80759c4 commit 839bb8a
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion docs/architecture/psa-migration/psa-limitations.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -162,7 +162,7 @@ match a limitation of the PSA API.
It is unclear what parameters people use in practice. It looks like by default
OpenSSL picks saltlen = keylen - hashlen - 2 (tested with openssl 1.1.1f).
The `certool` command provided by GnuTLS seems to be picking saltlen = hashlen
by default (tested with GnuTLS 3.6.13). FIPS 186-4 recommends 0 <= saltlen <=
by default (tested with GnuTLS 3.6.13). FIPS 186-4 requires 0 <= saltlen <=
hashlen.

### Use in TLS
Expand Down

0 comments on commit 839bb8a

Please sign in to comment.