[gnutls-devel] GnuTLS | Key passphrase longer than 31 chars give 'No PIN given' error (#932)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Mar 20 15:48:48 CET 2020




Tim Rühsen commented:


This is basically due to
```
./lib/includes/gnutls/pkcs11.h:#define GNUTLS_PKCS11_MAX_PIN_LEN 32
./src/common.h:#define MAX_PIN_LEN GNUTLS_PKCS11_MAX_PIN_LEN
```

@nmav Is there a reason why we should not increase this to e.g. 1024 ?
I am against 'unlimited' password / PIN lengths as this might introduce new attack vectors.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/932#note_308586614
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200320/94ba71e7/attachment.html>


More information about the Gnutls-devel mailing list