summaryrefslogtreecommitdiffstats
path: root/crypto
diff options
context:
space:
mode:
authorGilad Ben-Yossef <gilad@benyossef.com>2018-11-05 13:05:01 +0100
committerHerbert Xu <herbert@gondor.apana.org.au>2018-11-16 07:09:39 +0100
commitecd6d5c9cba5fc6053ba21e3f8a4c536f65ea27a (patch)
tree48dbb493f2890b9382fbeab4947a98115f961335 /crypto
parentcrypto: ecc - check for invalid values in the key verification test (diff)
downloadlinux-ecd6d5c9cba5fc6053ba21e3f8a4c536f65ea27a.tar.xz
linux-ecd6d5c9cba5fc6053ba21e3f8a4c536f65ea27a.zip
crypto: cts - document NIST standard status
cts(cbc(aes)) as used in the kernel has been added to NIST standard as CBC-CS3. Document it as such. Signed-off-by: Gilad Ben-Yossef <gilad@benyossef.com> Suggested-by: Stephan Mueller <smueller@chronox.de> Acked-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Diffstat (limited to 'crypto')
-rw-r--r--crypto/Kconfig7
1 files changed, 5 insertions, 2 deletions
diff --git a/crypto/Kconfig b/crypto/Kconfig
index 752005201013..06eb23cade43 100644
--- a/crypto/Kconfig
+++ b/crypto/Kconfig
@@ -430,11 +430,14 @@ config CRYPTO_CTS
help
CTS: Cipher Text Stealing
This is the Cipher Text Stealing mode as described by
- Section 8 of rfc2040 and referenced by rfc3962.
- (rfc3962 includes errata information in its Appendix A)
+ Section 8 of rfc2040 and referenced by rfc3962
+ (rfc3962 includes errata information in its Appendix A) or
+ CBC-CS3 as defined by NIST in Sp800-38A addendum from Oct 2010.
This mode is required for Kerberos gss mechanism support
for AES encryption.
+ See: https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final
+
config CRYPTO_ECB
tristate "ECB support"
select CRYPTO_BLKCIPHER