RFR: 8331008: Implement JEP 478: Key Derivation Function API (Preview) [v78]

[Sean Mullan]

On Thu, 23 May 2024 15:49:57 GMT, Kevin Driver <kdriver at openjdk.org> wrote:

>> Introduce an API for Key Derivation Functions (KDFs), which are cryptographic algorithms for deriving additional keys from a secret key and other data. See [JEP 478](https://openjdk.org/jeps/478).
>
> Kevin Driver has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains 98 additional commits since the last revision:
> 
>  - Merge remote-tracking branch 'origin/master' into kdf-jep-wip
>    # Please enter a commit message to explain why this merge is necessary,
>    # especially if it merges an updated upstream into a topic branch.
>    #
>    # Lines starting with '#' will be ignored, and an empty message aborts
>    # the commit.
>  - javadoc formatting
>  - javadoc formatting
>  - remove unused declared exception in impls
>  - throw a ProviderException instead of "eating" an NSAE for Mac
>  - fix edge-case in consolidateKeyMaterial
>  - change thrown exception in engineDeriveKey in impl code
>  - edge case handling in deriveXXX methods and a few javadoc fixes
>  - getInstance javadoc consistency
>  - getInstance javadoc consistency
>  - ... and 88 more: https://git.openjdk.org/jdk/compare/3ee1f70a...ef718cbf

As part of this API, we should also add a KEY_DERIVATION enum to the `java.security.CryptoPrimitive` class.

-------------

PR Comment: https://git.openjdk.org/jdk/pull/18924#issuecomment-2147471151