Commit ecd6d5c9 authored by Gilad Ben-Yossef's avatar Gilad Ben-Yossef Committed by Herbert Xu

crypto: cts - document NIST standard status

cts(cbc(aes)) as used in the kernel has been added to NIST
standard as CBC-CS3. Document it as such.
Signed-off-by: default avatarGilad Ben-Yossef <gilad@benyossef.com>
Suggested-by: default avatarStephan Mueller <smueller@chronox.de>
Acked-by: default avatarArd Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
parent 2eb4942b
...@@ -430,11 +430,14 @@ config CRYPTO_CTS ...@@ -430,11 +430,14 @@ config CRYPTO_CTS
help help
CTS: Cipher Text Stealing CTS: Cipher Text Stealing
This is the Cipher Text Stealing mode as described by This is the Cipher Text Stealing mode as described by
Section 8 of rfc2040 and referenced by rfc3962. Section 8 of rfc2040 and referenced by rfc3962
(rfc3962 includes errata information in its Appendix A) (rfc3962 includes errata information in its Appendix A) or
CBC-CS3 as defined by NIST in Sp800-38A addendum from Oct 2010.
This mode is required for Kerberos gss mechanism support This mode is required for Kerberos gss mechanism support
for AES encryption. for AES encryption.
See: https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final
config CRYPTO_ECB config CRYPTO_ECB
tristate "ECB support" tristate "ECB support"
select CRYPTO_BLKCIPHER select CRYPTO_BLKCIPHER
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment