git.ipfire.org Git - thirdparty/openssl.git/commit

author	Dimitri John Ledkov <dimitri.ledkov@surgut.co.uk>
	Fri, 4 Oct 2024 22:41:44 +0000 (23:41 +0100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 8 Oct 2024 14:06:45 +0000 (16:06 +0200)
commit	518a687452239c6719236c46f36772669d7ae9d9
tree	177f63f9f8e85af1bb682c84a949aaa4e4114181	tree
parent	4d8e2d7ab532711c5181092f7464462b2ff1fbde	commit \| diff

doc: EVP_KDF document the semantic meaning of output

Explicitely document what semantic meaning do various EVP_KDF
algorithms produce.

PBKDF2 produces cryptographic keys that are subject to cryptographic
security measures, for example as defined in NIST SP 800-132.

All other algorithms produce keying material, not subject to explicit
output length checks in any known standards.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25610)

(cherry picked from commit 6f08353a4b816fc04ab53880855b0d79c833e777)

doc/man7/EVP_KDF-HKDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-KB.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-PBKDF2.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-SS.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-SSHKDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-TLS13_KDF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-TLS1_PRF.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-X942-ASN1.pod		diff \| blob \| blame \| history
doc/man7/EVP_KDF-X963.pod		diff \| blob \| blame \| history