Closed gdessouky closed 5 months ago
Unsupported/invalid digest sizes and key lengths are now mapped to SHA-2 256 and 256-bit key. We should instead flag an error to SW and not start the HMAC/SHA-2 operation; this is the most conservative and secure approach.
@gdessouky I think you're working on this in #22580, right?
Description
Unsupported/invalid digest sizes and key lengths are now mapped to SHA-2 256 and 256-bit key. We should instead flag an error to SW and not start the HMAC/SHA-2 operation; this is the most conservative and secure approach.