[MDEV-31474] KDF() function Created: 2023-06-13  Updated: 2023-10-01  Resolved: 2023-10-01

Status: Closed
Project: MariaDB Server
Component/s: Encryption, SSL
Fix Version/s: 11.3.1

Type: Task Priority: Critical
Reporter: Sergei Golubchik Assignee: Sergei Golubchik
Resolution: Fixed Votes: 1
Labels: Preview_11.3

Issue Links:
PartOf
includes MDEV-32047 KDF() with negative and multiple of e... Closed
includes MDEV-32048 It is needed surround the invalid arg... In Testing
Relates
relates to MDEV-9069 extend AES_ENCRYPT() and AES_DECRYPT(... Closed

 Description   

A key derivation function, with the same result as EVP_KDF_derive() of OpenSSL.
Something like

KDF(key_str, salt [, {info | iterations} [, kdf_name [, width ]]])

kdf_name could be one of "pbkdf2_hmac" (default) or "hkdf". The latter always returns NULL if built with OpenSSL 1.0 (default on CentOS 7 and SLES 12).

width is in bits, can be any positive number divisible by 8.
if the width is not specified, it's taken from the @@block_encyption_mode

 Comments   
Comment by Oleksandr Byelkin [ 2023-06-20 ]

OK with adding more diagnostic as we agreed.

Comment by Sergei Golubchik [ 2023-08-18 ]

commit f82120c294f in the bb-11.3-serg branch

Comment by Sergei Golubchik [ 2023-08-31 ]

commit f84726b56b3 in the bb-11.3-serg branch

Comment by Lena Startseva [ 2023-09-04 ]

Ok to push

Generated at Thu Feb 08 10:24:09 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.