crypto: cts - document NIST standard status cts(cbc(aes)) as used in the kernel has been added to NIST standard as CBC-CS3. Document it as such. Signed-off-by: Gilad Ben-Yossef <gilad@benyossef.com> Suggested-by: Stephan Mueller <smueller@chronox.de> Acked-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

commit: ecd6d5c9cba5fc6053ba21e3f8a4c536f65ea27a [log] [tgz]
author: Gilad Ben-Yossef <gilad@benyossef.com> Mon Nov 05 12:05:01 2018 +0000
committer: Herbert Xu <herbert@gondor.apana.org.au> Fri Nov 16 14:09:39 2018 +0800
tree: 48dbb493f2890b9382fbeab4947a98115f961335
parent: 2eb4942b6609d35a4e835644a33203b0aef7443d [diff] [blame]
diff --git a/crypto/Kconfig b/crypto/Kconfig
index 7520052..06eb23c 100644
--- a/crypto/Kconfig
+++ b/crypto/Kconfig

@@ -430,11 +430,14 @@
 	help
 	  CTS: Cipher Text Stealing
 	  This is the Cipher Text Stealing mode as described by
-	  Section 8 of rfc2040 and referenced by rfc3962.
-	  (rfc3962 includes errata information in its Appendix A)
+	  Section 8 of rfc2040 and referenced by rfc3962
+	  (rfc3962 includes errata information in its Appendix A) or
+	  CBC-CS3 as defined by NIST in Sp800-38A addendum from Oct 2010.
 	  This mode is required for Kerberos gss mechanism support
 	  for AES encryption.
 
+	  See: https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final
+
 config CRYPTO_ECB
 	tristate "ECB support"
 	select CRYPTO_BLKCIPHER
commit	ecd6d5c9cba5fc6053ba21e3f8a4c536f65ea27a	[log] [tgz]
author	Gilad Ben-Yossef <gilad@benyossef.com>	Mon Nov 05 12:05:01 2018 +0000
committer	Herbert Xu <herbert@gondor.apana.org.au>	Fri Nov 16 14:09:39 2018 +0800
tree	48dbb493f2890b9382fbeab4947a98115f961335
parent	2eb4942b6609d35a4e835644a33203b0aef7443d [diff] [blame]