PBKDF2 derive bits should throw OperationError when length is zero #274

littledivy · 2021-08-25T16:37:44Z

WPT has a test for it https://github.com/web-platform-tests/wpt/blob/561fc4c5463673e5291894705c7a6aeb88e78d99/WebCryptoAPI/derive_bits_keys/pbkdf2.js#L118

I'm confused if the underlying implementation (following RFC 2898 Section 5.2) should already be validating that. If not so, the spec should consider adding this step.

twiss · 2021-08-26T14:12:09Z

Technically speaking the underlying algorithm doesn't validate, but merely requires that dkLen is a positive integer. So yeah, I agree this should be checked in this step. Thanks for raising this! If you feel like making a PR, it'd be very welcome, otherwise I can do so :)
Also, we should probably add the same check in HKDF, as well.

littledivy mentioned this issue Aug 25, 2021

feat(ext/crypto): implement importKey and deriveBits for Pbkdf2 denoland/deno#11642

Merged

littledivy mentioned this issue Aug 27, 2021

PBKDF2 & HKDF derive bits should throw OperationError when length is zero #275

Merged

twiss closed this as completed in #275 Sep 2, 2021

javifernandez mentioned this issue Oct 7, 2024

Interop issue with HKDF deriveBits operation when length is zero #370

Closed

twiss mentioned this issue Oct 25, 2024

Allow length=0 in HKDF and PBKDF2 derive bits operations #380

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

PBKDF2 derive bits should throw OperationError when length is zero #274

PBKDF2 derive bits should throw OperationError when length is zero #274

littledivy commented Aug 25, 2021

twiss commented Aug 26, 2021

PBKDF2 derive bits should throw OperationError when length is zero #274

PBKDF2 derive bits should throw OperationError when length is zero #274

Comments

littledivy commented Aug 25, 2021

twiss commented Aug 26, 2021