lib/crypto: Document nettle supported crypto

Signed-off-by: Michael Ledford <michael@ledford.cc>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>

1 files changed, 21 insertions, 0 deletions

diff --git a/lib/crypto/REQUIREMENTS b/lib/crypto/REQUIREMENTS
index d0b175f68f..4b1e21a4e5 100644
--- a/lib/crypto/REQUIREMENTS
+++ b/lib/crypto/REQUIREMENTS
@@ -2,6 +2,7 @@ A list of the crypto operations that we require, and what uses them.
 
 This list is to allow research into using external crypto libraries.
 Those possibly supported in the git version of GnuTLS are indicated as '# GNUTLS'
+Those possibly supported in the git version of nettle are indicated as '# NETTLE'
 
 ARCFOUR (RC4)
  - the old SamOEMHash
@@ -11,6 +12,7 @@ ARCFOUR (RC4)
  - genrate_random_data()
 
  # GNUTLS
+ # NETTLE
 
 DES
  - NTLM challenge-response
@@ -19,9 +21,13 @@ DES
  - ServerGetTrustInfo returned passwords
  - RID encryption of passwords
 
+ # NETTLE
+
 3DES
  - NETLOGON Credentials
 
+ # NETTLE
+
 CRC32
  - DRSUAPI replication replicated secrets
 
@@ -32,13 +38,19 @@ AES CFB8
 AES 128
  - SMB VFS traffic analyzer
 
+ # NETTLE (AES-NI available)
+
 AES128 CCM
  - SMB2 2.24 SMB encryption
+
  # GNUTLS
+ # NETTLE (AES-NI available)
 
 AES128 GCM
  - SMB2 3.10 SMB encryption
+
  # GNUTLS
+ # NETTLE (AES-NI available)
 
 AES128 CMAC
  - SMB2 0x224 SMB Signing
@@ -47,6 +59,8 @@ MD4
  - NTLM password hash
  - genrate_random_number()
 
+ # NETTLE
+
 MD5
  - NTLM2
  - SCHANNEL
@@ -62,36 +76,43 @@ MD5
  - NTP ntp_signd
 
  # GNUTLS
+ # NETTLE
 
 HMAC-MD5
  - NTLMv2
 
  # GNUTLS
+ # NETTLE
 
 HMACSHA256
  - SMB2 < 2.24 SMB signing
  - SMB2 Key derivation
 
  # GNUTLS
+ # NETTLE
 
 HMACSHA1
  - BackupKey ServerWrap
 
  # GNUTLS
+ # NETTLE
 
 SHA256
  - Security Descriptor hash for vfs_acl_xattr
  - oLschema2ldif
 
  # GNUTLS
+ # NETTLE
 
 SHA512
  - SMB2 Pre-auth integrity verification
  - BackupKey ClientWrap
 
  # GNUTLS
+ # NETTLE
 
 RSA
  - BackupKey ClientWrap
 
  # GNUTLS
+ # NETTLE