On Thu, 9 May 2024 14:43:55 GMT, Weijun Wang <wei...@openjdk.org> wrote:
> Two comments on HKDF: > > 1. Expand length cannot exceed 255 * HashLen. See > https://datatracker.ietf.org/doc/html/rfc5869#section-2.3. > 2. Why disallow empty ikms and salts? For the salt side, RFC5869 allows [no > salt](https://datatracker.ietf.org/doc/html/rfc5869#autoid-4). For the key > size, I haven’t seen RFC5869 disallowing an empty key. I'm only disallowing when *both* are empty. ------------- PR Comment: https://git.openjdk.org/jdk/pull/18924#issuecomment-2105255867
