RFR: 8331008: KDF Implementation (Preview)
Kevin Driver
kdriver at openjdk.org
Fri May 10 20:59:05 UTC 2024
On Thu, 9 May 2024 14:43:55 GMT, Weijun Wang <weijun at openjdk.org> wrote:
> Two comments on HKDF:
>
> 1. Expand length cannot exceed 255 * HashLen. See https://datatracker.ietf.org/doc/html/rfc5869#section-2.3.
> 2. Why disallow empty ikms and salts? For the salt side, RFC5869 allows [no salt](https://datatracker.ietf.org/doc/html/rfc5869#autoid-4). For the key size, I haven’t seen RFC5869 disallowing an empty key.
I'm only disallowing when *both* are empty.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/18924#issuecomment-2105255867
More information about the security-dev
mailing list