Open emersion opened 7 months ago
RFC 9180 section 7.1.3 says:
For a given KEM, the ikm parameter given to DeriveKeyPair() SHOULD have length at least Nsk, and SHOULD have at least Nsk bytes of entropy.
Thus, it is not a requirement for HPKE to pass a seed with a fixed size. Protocols such as MLS rely on this.
Closes: https://github.com/cloudflare/circl/issues/486
RFC 9180 section 7.1.3 says:
Thus, it is not a requirement for HPKE to pass a seed with a fixed size. Protocols such as MLS rely on this.
Closes: https://github.com/cloudflare/circl/issues/486