diff options
author | Gilad Ben-Yossef <gilad@benyossef.com> | 2018-11-05 12:05:01 +0000 |
---|---|---|
committer | Herbert Xu <herbert@gondor.apana.org.au> | 2018-11-16 14:09:39 +0800 |
commit | cd9801d6f18ba7bbb80beafd4f871606bfac9cb0 (patch) | |
tree | c8ef68d65f5e0e5017042df5a165bdc5eb41cacd /crypto/Kconfig | |
parent | c64a86a8419ddd2ea29f56acf4613b259c396e66 (diff) | |
download | linux-crypto-cd9801d6f18ba7bbb80beafd4f871606bfac9cb0.tar.gz linux-crypto-cd9801d6f18ba7bbb80beafd4f871606bfac9cb0.zip |
crypto: cts - document NIST standard status
cts(cbc(aes)) as used in the kernel has been added to NIST
standard as CBC-CS3. Document it as such.
Signed-off-by: Gilad Ben-Yossef <gilad@benyossef.com>
Suggested-by: Stephan Mueller <smueller@chronox.de>
Acked-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Diffstat (limited to 'crypto/Kconfig')
-rw-r--r-- | crypto/Kconfig | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/crypto/Kconfig b/crypto/Kconfig index 75200520..06eb23ca 100644 --- a/crypto/Kconfig +++ b/crypto/Kconfig @@ -430,11 +430,14 @@ config CRYPTO_CTS help CTS: Cipher Text Stealing This is the Cipher Text Stealing mode as described by - Section 8 of rfc2040 and referenced by rfc3962. - (rfc3962 includes errata information in its Appendix A) + Section 8 of rfc2040 and referenced by rfc3962 + (rfc3962 includes errata information in its Appendix A) or + CBC-CS3 as defined by NIST in Sp800-38A addendum from Oct 2010. This mode is required for Kerberos gss mechanism support for AES encryption. + See: https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final + config CRYPTO_ECB tristate "ECB support" select CRYPTO_BLKCIPHER |