crypto/rsa: pss with zero salt length for backward compatiblity with openssl #45684
Labels
FrozenDueToAge
NeedsInvestigation
Someone must examine and confirm this is a valid issue and not a duplicate of an existing one.
WaitingForInfo
Issue is not actionable because of missing required information, which needs to be provided.
Milestone
What version of Go are you using (
go version
)?Does this issue reproduce with the latest release?
yes.
What did you do?
I have an application which is doing rsa pss sign using openssl and it is allowing zero salt length. Go crypto handles zero length in a different way, it maximizes the salt length.
I am migrating it to go crypto and there might be users who are using zero salt length in openssl and it may break for them.
What did you expect to see?
I expected it to work in same way as openssl because it may break some users.
What did you see instead?
I see that go crypto does not allow zero salt length, it maximizes the salt length when zero is passed for salt length.
The text was updated successfully, but these errors were encountered: