This was originally posted as an answer to the question “Spring WebFlux differences when Netty vs. Tomcat is used under the hood” on stackoverflow.com.
Implementation of the single-step key derivation function (KDF) as described in NIST Special Publication 800-56C Rev1 supporting messages digest and HMAC.
Using Android KeyStore to generate a password. The code create a public/private key pair and uses the base64 encoded form of the certificate to as the password. The code modified the KeystoreHelper class from AOSP demo projects.