kcapi_pbkdf - Man Page

Password-based Key Derivation Function

Synopsis

ssize_t kcapi_pbkdf(const char * hashname, const uint8_t * pw, uint32_t pwlen, const uint8_t * salt, size_t saltlen, uint32_t count, uint8_t * key, size_t keylen);

Arguments

hashname

[in] kernel crypto API name of a keyed hash (e.g. hmac(sha1))

pw

[in] Password a key shall be derived from

pwlen

[in] Length of password string

salt

[in] Salt as defined in SP800-132

saltlen

[in] Length of salt buffer

count

[in] Numbers of iterations to be performed for the PBKDF

key

[out] Buffer to store the generated key in

keylen

[in] Size of the key to be generated (i.e. length of the key buffer)

Description

This function is an implementation of the PBKDF as defined in SP800-132.

return 0 upon success; a negative errno-style error code if an error occurred

Author

Stephan Mueller <smueller@chronox.de>

Author.

Info

August 2024 libkcapi Manual 1.5.0 Programming Interface