TLS_MAX_SALT_SIZE
char iv[TLS_MAX_IV_SIZE + TLS_MAX_SALT_SIZE];
static_assert(cipher ## _SALT_SIZE <= TLS_MAX_SALT_SIZE); \
