doc,lib,test: rename HKDF 'key' argument (!39474) · Merge requests · Rodrigo Test / Test Group-nodejs / node

Rodrigo Muino Tomonari requested to merge github/fork/tniessen/doc-rename-hkdf-key-arg into master Jul 20, 2021

HKDF is a key derivation function, which, as the name implies, can be used to produce a key. However, the input is usually not a cryptographic key. (Internally, HKDF passes the "key" to HMAC, but not as a key, but as data to be hashed. The salt argument is actually used as the key internally.)

To avoid confusion and the ambiguity of having two (or three) "keys" (input keying material and output keying material, and internally the pseudorandom key), this renames the argument in documentation and error messages.

I'd be happy about alternatives to the name ikm, which is not exactly self-explanatory. Is inputKeyingMaterial (or inputKeyMaterial) too verbose?

Refs: #39471 (closed)

Admin message

Admin message

doc,lib,test: rename HKDF 'key' argument

Merge request reports