From 59ae3366b585dc9f9b854c2a2ae48ca5a60483a5 Mon Sep 17 00:00:00 2001
From: Quim Muntal <quimmuntal@gmail.com>
Date: Mon, 25 Nov 2024 20:12:09 +0100
Subject: [PATCH] update RSA invalid salt length error message (#225)

---
 rsa.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rsa.go b/rsa.go
index cd5b3b8e..da5c7636 100644
--- a/rsa.go
+++ b/rsa.go
@@ -238,7 +238,7 @@ func saltLength(saltLen int, sign bool) (C.int, error) {
 	// A salt length of -2 is valid in OpenSSL, but not in crypto/rsa, so reject
 	// it, and lengths < -2, before we convert to the OpenSSL sentinel values.
 	if saltLen <= -2 {
-		return 0, errors.New("crypto/rsa: PSSOptions.SaltLength cannot be negative")
+		return 0, errors.New("crypto/rsa: invalid PSS salt length")
 	}
 	// OpenSSL uses sentinel salt length values like Go crypto does,
 	// but the values don't fully match for rsa.PSSSaltLengthAuto (0).