• Eric Biggers's avatar
    fscrypt: write CBC-CTS instead of CTS-CBC · 2f944c66
    Eric Biggers authored
    Calling CBC with ciphertext stealing "CBC-CTS" seems to be more common
    than calling it "CTS-CBC".  E.g., CBC-CTS is used by OpenSSL, Crypto++,
    RFC3962, and RFC6803.  The NIST SP800-38A addendum uses CBC-CS1,
    CBC-CS2, and CBC-CS3, distinguishing between different CTS conventions
    but similarly putting the CBC part first.  In the interest of avoiding
    any idiosyncratic terminology, update the fscrypt documentation and the
    fscrypt_mode "friendly names" to align with the more common convention.
    
    Changing the "friendly names" only affects some log messages.  The
    actual mode constants in the API are unchanged; those call it simply
    "CTS".  Add a note to the documentation that clarifies that "CBC" and
    "CTS" in the API really mean CBC-ESSIV and CBC-CTS, respectively.
    
    Link: https://lore.kernel.org/r/20240224053550.44659-1-ebiggers@kernel.orgSigned-off-by: default avatarEric Biggers <ebiggers@google.com>
    2f944c66
fscrypt.rst 66.7 KB