crypto: skcipher - Move IV generators into their own modules
[deliverable/linux.git] / crypto / Kconfig
CommitLineData
685784aa
DW
1#
2# Generic algorithms support
3#
4config XOR_BLOCKS
5 tristate
6
1da177e4 7#
9bc89cd8 8# async_tx api: hardware offloaded memory transfer/transform support
1da177e4 9#
9bc89cd8 10source "crypto/async_tx/Kconfig"
1da177e4 11
9bc89cd8
DW
12#
13# Cryptographic API Configuration
14#
2e290f43 15menuconfig CRYPTO
c3715cb9 16 tristate "Cryptographic API"
1da177e4
LT
17 help
18 This option provides the core Cryptographic API.
19
cce9e06d
HX
20if CRYPTO
21
584fffc8
SS
22comment "Crypto core or helper"
23
cce9e06d
HX
24config CRYPTO_ALGAPI
25 tristate
26 help
27 This option provides the API for cryptographic algorithms.
28
1ae97820
HX
29config CRYPTO_AEAD
30 tristate
31 select CRYPTO_ALGAPI
32
5cde0af2
HX
33config CRYPTO_BLKCIPHER
34 tristate
35 select CRYPTO_ALGAPI
36
055bcee3
HX
37config CRYPTO_HASH
38 tristate
39 select CRYPTO_ALGAPI
40
2b8c19db
HX
41config CRYPTO_MANAGER
42 tristate "Cryptographic algorithm manager"
da7f033d
HX
43 select CRYPTO_AEAD
44 select CRYPTO_HASH
45 select CRYPTO_BLKCIPHER
2b8c19db
HX
46 help
47 Create default cryptographic template instantiations such as
48 cbc(aes).
49
584fffc8
SS
50config CRYPTO_GF128MUL
51 tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
333b0d7e 52 depends on EXPERIMENTAL
333b0d7e 53 help
584fffc8
SS
54 Efficient table driven implementation of multiplications in the
55 field GF(2^128). This is needed by some cypher modes. This
56 option will be selected automatically if you select such a
57 cipher mode. Only select this option by hand if you expect to load
58 an external module that requires these functions.
333b0d7e 59
1da177e4
LT
60config CRYPTO_NULL
61 tristate "Null algorithms"
cce9e06d 62 select CRYPTO_ALGAPI
c8620c25 63 select CRYPTO_BLKCIPHER
1da177e4
LT
64 help
65 These are 'Null' algorithms, used by IPsec, which do nothing.
66
584fffc8
SS
67config CRYPTO_CRYPTD
68 tristate "Software async crypto daemon"
69 select CRYPTO_BLKCIPHER
b8a28251 70 select CRYPTO_HASH
584fffc8 71 select CRYPTO_MANAGER
1da177e4 72 help
584fffc8
SS
73 This is a generic software asynchronous crypto daemon that
74 converts an arbitrary synchronous software crypto algorithm
75 into an asynchronous algorithm that executes in a kernel thread.
1da177e4 76
584fffc8
SS
77config CRYPTO_AUTHENC
78 tristate "Authenc support"
79 select CRYPTO_AEAD
80 select CRYPTO_BLKCIPHER
81 select CRYPTO_MANAGER
82 select CRYPTO_HASH
1da177e4 83 help
584fffc8
SS
84 Authenc: Combined mode wrapper for IPsec.
85 This is required for IPSec.
1da177e4 86
584fffc8
SS
87config CRYPTO_TEST
88 tristate "Testing module"
89 depends on m
da7f033d 90 select CRYPTO_MANAGER
1da177e4 91 help
584fffc8 92 Quick & dirty crypto test module.
1da177e4 93
584fffc8 94comment "Authenticated Encryption with Associated Data"
cd12fb90 95
584fffc8
SS
96config CRYPTO_CCM
97 tristate "CCM support"
98 select CRYPTO_CTR
99 select CRYPTO_AEAD
1da177e4 100 help
584fffc8 101 Support for Counter with CBC MAC. Required for IPsec.
1da177e4 102
584fffc8
SS
103config CRYPTO_GCM
104 tristate "GCM/GMAC support"
105 select CRYPTO_CTR
106 select CRYPTO_AEAD
107 select CRYPTO_GF128MUL
1da177e4 108 help
584fffc8
SS
109 Support for Galois/Counter Mode (GCM) and Galois Message
110 Authentication Code (GMAC). Required for IPSec.
1da177e4 111
584fffc8
SS
112config CRYPTO_SEQIV
113 tristate "Sequence Number IV Generator"
114 select CRYPTO_AEAD
115 select CRYPTO_BLKCIPHER
1da177e4 116 help
584fffc8
SS
117 This IV generator generates an IV based on a sequence number by
118 xoring it with a salt. This algorithm is mainly useful for CTR
1da177e4 119
584fffc8 120comment "Block modes"
c494e070 121
584fffc8
SS
122config CRYPTO_CBC
123 tristate "CBC support"
db131ef9 124 select CRYPTO_BLKCIPHER
43518407 125 select CRYPTO_MANAGER
db131ef9 126 help
584fffc8
SS
127 CBC: Cipher Block Chaining mode
128 This block cipher algorithm is required for IPSec.
db131ef9 129
584fffc8
SS
130config CRYPTO_CTR
131 tristate "CTR support"
db131ef9 132 select CRYPTO_BLKCIPHER
584fffc8 133 select CRYPTO_SEQIV
43518407 134 select CRYPTO_MANAGER
db131ef9 135 help
584fffc8 136 CTR: Counter mode
db131ef9
HX
137 This block cipher algorithm is required for IPSec.
138
584fffc8
SS
139config CRYPTO_CTS
140 tristate "CTS support"
141 select CRYPTO_BLKCIPHER
142 help
143 CTS: Cipher Text Stealing
144 This is the Cipher Text Stealing mode as described by
145 Section 8 of rfc2040 and referenced by rfc3962.
146 (rfc3962 includes errata information in its Appendix A)
147 This mode is required for Kerberos gss mechanism support
148 for AES encryption.
149
150config CRYPTO_ECB
151 tristate "ECB support"
91652be5
DH
152 select CRYPTO_BLKCIPHER
153 select CRYPTO_MANAGER
91652be5 154 help
584fffc8
SS
155 ECB: Electronic CodeBook mode
156 This is the simplest block cipher algorithm. It simply encrypts
157 the input block by block.
91652be5 158
64470f1b
RS
159config CRYPTO_LRW
160 tristate "LRW support (EXPERIMENTAL)"
161 depends on EXPERIMENTAL
162 select CRYPTO_BLKCIPHER
163 select CRYPTO_MANAGER
164 select CRYPTO_GF128MUL
165 help
166 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
167 narrow block cipher mode for dm-crypt. Use it with cipher
168 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
169 The first 128, 192 or 256 bits in the key are used for AES and the
170 rest is used to tie each cipher block to its logical position.
171
584fffc8
SS
172config CRYPTO_PCBC
173 tristate "PCBC support"
174 select CRYPTO_BLKCIPHER
175 select CRYPTO_MANAGER
176 help
177 PCBC: Propagating Cipher Block Chaining mode
178 This block cipher algorithm is required for RxRPC.
179
f19f5111
RS
180config CRYPTO_XTS
181 tristate "XTS support (EXPERIMENTAL)"
182 depends on EXPERIMENTAL
183 select CRYPTO_BLKCIPHER
184 select CRYPTO_MANAGER
185 select CRYPTO_GF128MUL
186 help
187 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
188 key size 256, 384 or 512 bits. This implementation currently
189 can't handle a sectorsize which is not a multiple of 16 bytes.
190
584fffc8
SS
191comment "Hash modes"
192
193config CRYPTO_HMAC
194 tristate "HMAC support"
195 select CRYPTO_HASH
23e353c8 196 select CRYPTO_MANAGER
23e353c8 197 help
584fffc8
SS
198 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
199 This is required for IPSec.
23e353c8 200
584fffc8
SS
201config CRYPTO_XCBC
202 tristate "XCBC support"
203 depends on EXPERIMENTAL
204 select CRYPTO_HASH
205 select CRYPTO_MANAGER
76cb9521 206 help
584fffc8
SS
207 XCBC: Keyed-Hashing with encryption algorithm
208 http://www.ietf.org/rfc/rfc3566.txt
209 http://csrc.nist.gov/encryption/modes/proposedmodes/
210 xcbc-mac/xcbc-mac-spec.pdf
76cb9521 211
584fffc8 212comment "Digest"
28db8e3e 213
584fffc8
SS
214config CRYPTO_CRC32C
215 tristate "CRC32c CRC algorithm"
5773a3e6 216 select CRYPTO_HASH
584fffc8 217 select LIBCRC32C
4a49b499 218 help
584fffc8
SS
219 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
220 by iSCSI for header and data digests and by others.
221 See Castagnoli93. This implementation uses lib/libcrc32c.
b6d44341 222 Module will be crc32c.
4a49b499 223
8cb51ba8
AZ
224config CRYPTO_CRC32C_INTEL
225 tristate "CRC32c INTEL hardware acceleration"
226 depends on X86
227 select CRYPTO_HASH
228 help
229 In Intel processor with SSE4.2 supported, the processor will
230 support CRC32C implementation using hardware accelerated CRC32
231 instruction. This option will create 'crc32c-intel' module,
232 which will enable any routine to use the CRC32 instruction to
233 gain performance compared with software implementation.
234 Module will be crc32c-intel.
235
584fffc8
SS
236config CRYPTO_MD4
237 tristate "MD4 digest algorithm"
238 select CRYPTO_ALGAPI
124b53d0 239 help
584fffc8 240 MD4 message digest algorithm (RFC1320).
124b53d0 241
584fffc8
SS
242config CRYPTO_MD5
243 tristate "MD5 digest algorithm"
cce9e06d 244 select CRYPTO_ALGAPI
1da177e4 245 help
584fffc8 246 MD5 message digest algorithm (RFC1321).
1da177e4 247
584fffc8
SS
248config CRYPTO_MICHAEL_MIC
249 tristate "Michael MIC keyed digest algorithm"
90831639 250 select CRYPTO_ALGAPI
90831639 251 help
584fffc8
SS
252 Michael MIC is used for message integrity protection in TKIP
253 (IEEE 802.11i). This algorithm is required for TKIP, but it
254 should not be used for other purposes because of the weakness
255 of the algorithm.
90831639 256
82798f90 257config CRYPTO_RMD128
b6d44341
AB
258 tristate "RIPEMD-128 digest algorithm"
259 select CRYPTO_ALGAPI
260 help
261 RIPEMD-128 (ISO/IEC 10118-3:2004).
82798f90 262
b6d44341
AB
263 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
264 to be used as a secure replacement for RIPEMD. For other use cases
265 RIPEMD-160 should be used.
82798f90 266
b6d44341
AB
267 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
268 See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
82798f90
AKR
269
270config CRYPTO_RMD160
b6d44341
AB
271 tristate "RIPEMD-160 digest algorithm"
272 select CRYPTO_ALGAPI
273 help
274 RIPEMD-160 (ISO/IEC 10118-3:2004).
82798f90 275
b6d44341
AB
276 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
277 to be used as a secure replacement for the 128-bit hash functions
278 MD4, MD5 and it's predecessor RIPEMD
279 (not to be confused with RIPEMD-128).
82798f90 280
b6d44341
AB
281 It's speed is comparable to SHA1 and there are no known attacks
282 against RIPEMD-160.
534fe2c1 283
b6d44341
AB
284 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
285 See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
534fe2c1
AKR
286
287config CRYPTO_RMD256
b6d44341
AB
288 tristate "RIPEMD-256 digest algorithm"
289 select CRYPTO_ALGAPI
290 help
291 RIPEMD-256 is an optional extension of RIPEMD-128 with a
292 256 bit hash. It is intended for applications that require
293 longer hash-results, without needing a larger security level
294 (than RIPEMD-128).
534fe2c1 295
b6d44341
AB
296 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
297 See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
534fe2c1
AKR
298
299config CRYPTO_RMD320
b6d44341
AB
300 tristate "RIPEMD-320 digest algorithm"
301 select CRYPTO_ALGAPI
302 help
303 RIPEMD-320 is an optional extension of RIPEMD-160 with a
304 320 bit hash. It is intended for applications that require
305 longer hash-results, without needing a larger security level
306 (than RIPEMD-160).
534fe2c1 307
b6d44341
AB
308 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
309 See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
82798f90 310
584fffc8
SS
311config CRYPTO_SHA1
312 tristate "SHA1 digest algorithm"
cce9e06d 313 select CRYPTO_ALGAPI
1da177e4 314 help
584fffc8 315 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
1da177e4 316
584fffc8
SS
317config CRYPTO_SHA256
318 tristate "SHA224 and SHA256 digest algorithm"
cce9e06d 319 select CRYPTO_ALGAPI
1da177e4 320 help
584fffc8 321 SHA256 secure hash standard (DFIPS 180-2).
1da177e4 322
584fffc8
SS
323 This version of SHA implements a 256 bit hash with 128 bits of
324 security against collision attacks.
2729bb42 325
b6d44341
AB
326 This code also includes SHA-224, a 224 bit hash with 112 bits
327 of security against collision attacks.
584fffc8
SS
328
329config CRYPTO_SHA512
330 tristate "SHA384 and SHA512 digest algorithms"
cce9e06d 331 select CRYPTO_ALGAPI
b9f535ff 332 help
584fffc8 333 SHA512 secure hash standard (DFIPS 180-2).
b9f535ff 334
584fffc8
SS
335 This version of SHA implements a 512 bit hash with 256 bits of
336 security against collision attacks.
b9f535ff 337
584fffc8
SS
338 This code also includes SHA-384, a 384 bit hash with 192 bits
339 of security against collision attacks.
b9f535ff 340
584fffc8
SS
341config CRYPTO_TGR192
342 tristate "Tiger digest algorithms"
cce9e06d 343 select CRYPTO_ALGAPI
eaf44088 344 help
584fffc8 345 Tiger hash algorithm 192, 160 and 128-bit hashes
eaf44088 346
584fffc8
SS
347 Tiger is a hash function optimized for 64-bit processors while
348 still having decent performance on 32-bit processors.
349 Tiger was developed by Ross Anderson and Eli Biham.
eaf44088
JF
350
351 See also:
584fffc8 352 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
eaf44088 353
584fffc8
SS
354config CRYPTO_WP512
355 tristate "Whirlpool digest algorithms"
cce9e06d 356 select CRYPTO_ALGAPI
1da177e4 357 help
584fffc8 358 Whirlpool hash algorithm 512, 384 and 256-bit hashes
1da177e4 359
584fffc8
SS
360 Whirlpool-512 is part of the NESSIE cryptographic primitives.
361 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
1da177e4
LT
362
363 See also:
584fffc8
SS
364 <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
365
366comment "Ciphers"
1da177e4
LT
367
368config CRYPTO_AES
369 tristate "AES cipher algorithms"
cce9e06d 370 select CRYPTO_ALGAPI
1da177e4 371 help
584fffc8 372 AES cipher algorithms (FIPS-197). AES uses the Rijndael
1da177e4
LT
373 algorithm.
374
375 Rijndael appears to be consistently a very good performer in
584fffc8
SS
376 both hardware and software across a wide range of computing
377 environments regardless of its use in feedback or non-feedback
378 modes. Its key setup time is excellent, and its key agility is
379 good. Rijndael's very low memory requirements make it very well
380 suited for restricted-space environments, in which it also
381 demonstrates excellent performance. Rijndael's operations are
382 among the easiest to defend against power and timing attacks.
1da177e4 383
584fffc8 384 The AES specifies three key sizes: 128, 192 and 256 bits
1da177e4
LT
385
386 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
387
388config CRYPTO_AES_586
389 tristate "AES cipher algorithms (i586)"
cce9e06d
HX
390 depends on (X86 || UML_X86) && !64BIT
391 select CRYPTO_ALGAPI
5157dea8 392 select CRYPTO_AES
1da177e4 393 help
584fffc8 394 AES cipher algorithms (FIPS-197). AES uses the Rijndael
1da177e4
LT
395 algorithm.
396
397 Rijndael appears to be consistently a very good performer in
584fffc8
SS
398 both hardware and software across a wide range of computing
399 environments regardless of its use in feedback or non-feedback
400 modes. Its key setup time is excellent, and its key agility is
401 good. Rijndael's very low memory requirements make it very well
402 suited for restricted-space environments, in which it also
403 demonstrates excellent performance. Rijndael's operations are
404 among the easiest to defend against power and timing attacks.
1da177e4 405
584fffc8 406 The AES specifies three key sizes: 128, 192 and 256 bits
a2a892a2
AS
407
408 See <http://csrc.nist.gov/encryption/aes/> for more information.
409
410config CRYPTO_AES_X86_64
411 tristate "AES cipher algorithms (x86_64)"
cce9e06d
HX
412 depends on (X86 || UML_X86) && 64BIT
413 select CRYPTO_ALGAPI
81190b32 414 select CRYPTO_AES
a2a892a2 415 help
584fffc8 416 AES cipher algorithms (FIPS-197). AES uses the Rijndael
a2a892a2
AS
417 algorithm.
418
419 Rijndael appears to be consistently a very good performer in
584fffc8
SS
420 both hardware and software across a wide range of computing
421 environments regardless of its use in feedback or non-feedback
422 modes. Its key setup time is excellent, and its key agility is
423 good. Rijndael's very low memory requirements make it very well
424 suited for restricted-space environments, in which it also
425 demonstrates excellent performance. Rijndael's operations are
426 among the easiest to defend against power and timing attacks.
a2a892a2 427
584fffc8 428 The AES specifies three key sizes: 128, 192 and 256 bits
1da177e4
LT
429
430 See <http://csrc.nist.gov/encryption/aes/> for more information.
431
584fffc8
SS
432config CRYPTO_ANUBIS
433 tristate "Anubis cipher algorithm"
434 select CRYPTO_ALGAPI
435 help
436 Anubis cipher algorithm.
437
438 Anubis is a variable key length cipher which can use keys from
439 128 bits to 320 bits in length. It was evaluated as a entrant
440 in the NESSIE competition.
441
442 See also:
443 <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
444 <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
445
446config CRYPTO_ARC4
447 tristate "ARC4 cipher algorithm"
448 select CRYPTO_ALGAPI
449 help
450 ARC4 cipher algorithm.
451
452 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
453 bits in length. This algorithm is required for driver-based
454 WEP, but it should not be for other purposes because of the
455 weakness of the algorithm.
456
457config CRYPTO_BLOWFISH
458 tristate "Blowfish cipher algorithm"
459 select CRYPTO_ALGAPI
460 help
461 Blowfish cipher algorithm, by Bruce Schneier.
462
463 This is a variable key length cipher which can use keys from 32
464 bits to 448 bits in length. It's fast, simple and specifically
465 designed for use on "large microprocessors".
466
467 See also:
468 <http://www.schneier.com/blowfish.html>
469
470config CRYPTO_CAMELLIA
471 tristate "Camellia cipher algorithms"
472 depends on CRYPTO
473 select CRYPTO_ALGAPI
474 help
475 Camellia cipher algorithms module.
476
477 Camellia is a symmetric key block cipher developed jointly
478 at NTT and Mitsubishi Electric Corporation.
479
480 The Camellia specifies three key sizes: 128, 192 and 256 bits.
481
482 See also:
483 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
484
1da177e4
LT
485config CRYPTO_CAST5
486 tristate "CAST5 (CAST-128) cipher algorithm"
cce9e06d 487 select CRYPTO_ALGAPI
1da177e4
LT
488 help
489 The CAST5 encryption algorithm (synonymous with CAST-128) is
490 described in RFC2144.
491
492config CRYPTO_CAST6
493 tristate "CAST6 (CAST-256) cipher algorithm"
cce9e06d 494 select CRYPTO_ALGAPI
1da177e4
LT
495 help
496 The CAST6 encryption algorithm (synonymous with CAST-256) is
497 described in RFC2612.
498
584fffc8
SS
499config CRYPTO_DES
500 tristate "DES and Triple DES EDE cipher algorithms"
cce9e06d 501 select CRYPTO_ALGAPI
1da177e4 502 help
584fffc8 503 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
fb4f10ed 504
584fffc8
SS
505config CRYPTO_FCRYPT
506 tristate "FCrypt cipher algorithm"
cce9e06d 507 select CRYPTO_ALGAPI
584fffc8 508 select CRYPTO_BLKCIPHER
1da177e4 509 help
584fffc8 510 FCrypt algorithm used by RxRPC.
1da177e4
LT
511
512config CRYPTO_KHAZAD
513 tristate "Khazad cipher algorithm"
cce9e06d 514 select CRYPTO_ALGAPI
1da177e4
LT
515 help
516 Khazad cipher algorithm.
517
518 Khazad was a finalist in the initial NESSIE competition. It is
519 an algorithm optimized for 64-bit processors with good performance
520 on 32-bit processors. Khazad uses an 128 bit key size.
521
522 See also:
523 <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
524
2407d608
TSH
525config CRYPTO_SALSA20
526 tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
527 depends on EXPERIMENTAL
528 select CRYPTO_BLKCIPHER
529 help
530 Salsa20 stream cipher algorithm.
531
532 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
533 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
974e4b75
TSH
534
535 The Salsa20 stream cipher algorithm is designed by Daniel J.
536 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
537
538config CRYPTO_SALSA20_586
539 tristate "Salsa20 stream cipher algorithm (i586) (EXPERIMENTAL)"
540 depends on (X86 || UML_X86) && !64BIT
541 depends on EXPERIMENTAL
542 select CRYPTO_BLKCIPHER
974e4b75
TSH
543 help
544 Salsa20 stream cipher algorithm.
545
546 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
547 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
9a7dafbb
TSH
548
549 The Salsa20 stream cipher algorithm is designed by Daniel J.
550 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
551
552config CRYPTO_SALSA20_X86_64
553 tristate "Salsa20 stream cipher algorithm (x86_64) (EXPERIMENTAL)"
554 depends on (X86 || UML_X86) && 64BIT
555 depends on EXPERIMENTAL
556 select CRYPTO_BLKCIPHER
9a7dafbb
TSH
557 help
558 Salsa20 stream cipher algorithm.
559
560 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
561 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
2407d608
TSH
562
563 The Salsa20 stream cipher algorithm is designed by Daniel J.
564 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1da177e4 565
584fffc8
SS
566config CRYPTO_SEED
567 tristate "SEED cipher algorithm"
cce9e06d 568 select CRYPTO_ALGAPI
1da177e4 569 help
584fffc8 570 SEED cipher algorithm (RFC4269).
1da177e4 571
584fffc8
SS
572 SEED is a 128-bit symmetric key block cipher that has been
573 developed by KISA (Korea Information Security Agency) as a
574 national standard encryption algorithm of the Republic of Korea.
575 It is a 16 round block cipher with the key size of 128 bit.
576
577 See also:
578 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
579
580config CRYPTO_SERPENT
581 tristate "Serpent cipher algorithm"
cce9e06d 582 select CRYPTO_ALGAPI
1da177e4 583 help
584fffc8 584 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1da177e4 585
584fffc8
SS
586 Keys are allowed to be from 0 to 256 bits in length, in steps
587 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
588 variant of Serpent for compatibility with old kerneli.org code.
589
590 See also:
591 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
592
593config CRYPTO_TEA
594 tristate "TEA, XTEA and XETA cipher algorithms"
cce9e06d 595 select CRYPTO_ALGAPI
1da177e4 596 help
584fffc8 597 TEA cipher algorithm.
1da177e4 598
584fffc8
SS
599 Tiny Encryption Algorithm is a simple cipher that uses
600 many rounds for security. It is very fast and uses
601 little memory.
602
603 Xtendend Tiny Encryption Algorithm is a modification to
604 the TEA algorithm to address a potential key weakness
605 in the TEA algorithm.
606
607 Xtendend Encryption Tiny Algorithm is a mis-implementation
608 of the XTEA algorithm for compatibility purposes.
609
610config CRYPTO_TWOFISH
611 tristate "Twofish cipher algorithm"
04ac7db3 612 select CRYPTO_ALGAPI
584fffc8 613 select CRYPTO_TWOFISH_COMMON
04ac7db3 614 help
584fffc8 615 Twofish cipher algorithm.
04ac7db3 616
584fffc8
SS
617 Twofish was submitted as an AES (Advanced Encryption Standard)
618 candidate cipher by researchers at CounterPane Systems. It is a
619 16 round block cipher supporting key sizes of 128, 192, and 256
620 bits.
04ac7db3 621
584fffc8
SS
622 See also:
623 <http://www.schneier.com/twofish.html>
624
625config CRYPTO_TWOFISH_COMMON
626 tristate
627 help
628 Common parts of the Twofish cipher algorithm shared by the
629 generic c and the assembler implementations.
630
631config CRYPTO_TWOFISH_586
632 tristate "Twofish cipher algorithms (i586)"
633 depends on (X86 || UML_X86) && !64BIT
634 select CRYPTO_ALGAPI
635 select CRYPTO_TWOFISH_COMMON
636 help
637 Twofish cipher algorithm.
638
639 Twofish was submitted as an AES (Advanced Encryption Standard)
640 candidate cipher by researchers at CounterPane Systems. It is a
641 16 round block cipher supporting key sizes of 128, 192, and 256
642 bits.
04ac7db3
NT
643
644 See also:
584fffc8 645 <http://www.schneier.com/twofish.html>
04ac7db3 646
584fffc8
SS
647config CRYPTO_TWOFISH_X86_64
648 tristate "Twofish cipher algorithm (x86_64)"
649 depends on (X86 || UML_X86) && 64BIT
cce9e06d 650 select CRYPTO_ALGAPI
584fffc8 651 select CRYPTO_TWOFISH_COMMON
1da177e4 652 help
584fffc8 653 Twofish cipher algorithm (x86_64).
1da177e4 654
584fffc8
SS
655 Twofish was submitted as an AES (Advanced Encryption Standard)
656 candidate cipher by researchers at CounterPane Systems. It is a
657 16 round block cipher supporting key sizes of 128, 192, and 256
658 bits.
659
660 See also:
661 <http://www.schneier.com/twofish.html>
662
663comment "Compression"
664
665config CRYPTO_DEFLATE
666 tristate "Deflate compression algorithm"
667 select CRYPTO_ALGAPI
668 select ZLIB_INFLATE
669 select ZLIB_DEFLATE
3c09f17c 670 help
584fffc8
SS
671 This is the Deflate algorithm (RFC1951), specified for use in
672 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
673
674 You will most probably want this if using IPSec.
3c09f17c 675
0b77abb3
ZS
676config CRYPTO_LZO
677 tristate "LZO compression algorithm"
678 select CRYPTO_ALGAPI
679 select LZO_COMPRESS
680 select LZO_DECOMPRESS
681 help
682 This is the LZO algorithm.
683
1da177e4 684source "drivers/crypto/Kconfig"
1da177e4 685
cce9e06d 686endif # if CRYPTO
This page took 0.671764 seconds and 5 git commands to generate.