git.ipfire.org Git - thirdparty/openssl.git/commit

author	Dimitri John Ledkov <dimitri.ledkov@surgut.co.uk>
	Fri, 4 Oct 2024 22:41:44 +0000 (23:41 +0100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 8 Oct 2024 14:06:16 +0000 (16:06 +0200)
commit	0c5027316e0414438ec154cbb86a26be61b481f1
tree	5aa487386763611096fdbe98b8b477b17f745b94	tree
parent	e9d5ed8f3de2e9b7879f06dbdead633960ba3012	commit \| diff

doc: EVP_KDF document the semantic meaning of output

Explicitely document what semantic meaning do various EVP_KDF
algorithms produce.

PBKDF2 produces cryptographic keys that are subject to cryptographic
security measures, for example as defined in NIST SP 800-132.

All other algorithms produce keying material, not subject to explicit
output length checks in any known standards.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25610)

(cherry picked from commit 6f08353a4b816fc04ab53880855b0d79c833e777)

doc/man7/EVP_KDF-HKDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-KB.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-PBKDF2.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-SS.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-SSHKDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-TLS13_KDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-TLS1_PRF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-X942-ASN1.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-X963.pod		diff \| blob \| blame \| history