projects / deliverable / linux.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
[CRYPTO] aes-i586: Remove setkey
[deliverable/linux.git] / crypto / Kconfig
1 #
2 # Generic algorithms support
3 #
4 config XOR_BLOCKS
5 tristate
6
7 #
8 # async_tx api: hardware offloaded memory transfer/transform support
9 #
10 source "crypto/async_tx/Kconfig"
11
12 #
13 # Cryptographic API Configuration
14 #
15 menuconfig CRYPTO
16 bool "Cryptographic API"
17 help
18 This option provides the core Cryptographic API.
19
20 if CRYPTO
21
22 config CRYPTO_ALGAPI
23 tristate
24 help
25 This option provides the API for cryptographic algorithms.
26
27 config CRYPTO_ABLKCIPHER
28 tristate
29 select CRYPTO_BLKCIPHER
30
31 config CRYPTO_AEAD
32 tristate
33 select CRYPTO_ALGAPI
34
35 config CRYPTO_BLKCIPHER
36 tristate
37 select CRYPTO_ALGAPI
38
39 config CRYPTO_HASH
40 tristate
41 select CRYPTO_ALGAPI
42
43 config CRYPTO_MANAGER
44 tristate "Cryptographic algorithm manager"
45 select CRYPTO_ALGAPI
46 help
47 Create default cryptographic template instantiations such as
48 cbc(aes).
49
50 config CRYPTO_HMAC
51 tristate "HMAC support"
52 select CRYPTO_HASH
53 select CRYPTO_MANAGER
54 help
55 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
56 This is required for IPSec.
57
58 config CRYPTO_XCBC
59 tristate "XCBC support"
60 depends on EXPERIMENTAL
61 select CRYPTO_HASH
62 select CRYPTO_MANAGER
63 help
64 XCBC: Keyed-Hashing with encryption algorithm
65 http://www.ietf.org/rfc/rfc3566.txt
66 http://csrc.nist.gov/encryption/modes/proposedmodes/
67 xcbc-mac/xcbc-mac-spec.pdf
68
69 config CRYPTO_NULL
70 tristate "Null algorithms"
71 select CRYPTO_ALGAPI
72 help
73 These are 'Null' algorithms, used by IPsec, which do nothing.
74
75 config CRYPTO_MD4
76 tristate "MD4 digest algorithm"
77 select CRYPTO_ALGAPI
78 help
79 MD4 message digest algorithm (RFC1320).
80
81 config CRYPTO_MD5
82 tristate "MD5 digest algorithm"
83 select CRYPTO_ALGAPI
84 help
85 MD5 message digest algorithm (RFC1321).
86
87 config CRYPTO_SHA1
88 tristate "SHA1 digest algorithm"
89 select CRYPTO_ALGAPI
90 help
91 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
92
93 config CRYPTO_SHA256
94 tristate "SHA256 digest algorithm"
95 select CRYPTO_ALGAPI
96 help
97 SHA256 secure hash standard (DFIPS 180-2).
98
99 This version of SHA implements a 256 bit hash with 128 bits of
100 security against collision attacks.
101
102 config CRYPTO_SHA512
103 tristate "SHA384 and SHA512 digest algorithms"
104 select CRYPTO_ALGAPI
105 help
106 SHA512 secure hash standard (DFIPS 180-2).
107
108 This version of SHA implements a 512 bit hash with 256 bits of
109 security against collision attacks.
110
111 This code also includes SHA-384, a 384 bit hash with 192 bits
112 of security against collision attacks.
113
114 config CRYPTO_WP512
115 tristate "Whirlpool digest algorithms"
116 select CRYPTO_ALGAPI
117 help
118 Whirlpool hash algorithm 512, 384 and 256-bit hashes
119
120 Whirlpool-512 is part of the NESSIE cryptographic primitives.
121 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
122
123 See also:
124 <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
125
126 config CRYPTO_TGR192
127 tristate "Tiger digest algorithms"
128 select CRYPTO_ALGAPI
129 help
130 Tiger hash algorithm 192, 160 and 128-bit hashes
131
132 Tiger is a hash function optimized for 64-bit processors while
133 still having decent performance on 32-bit processors.
134 Tiger was developed by Ross Anderson and Eli Biham.
135
136 See also:
137 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
138
139 config CRYPTO_GF128MUL
140 tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
141 depends on EXPERIMENTAL
142 help
143 Efficient table driven implementation of multiplications in the
144 field GF(2^128). This is needed by some cypher modes. This
145 option will be selected automatically if you select such a
146 cipher mode. Only select this option by hand if you expect to load
147 an external module that requires these functions.
148
149 config CRYPTO_ECB
150 tristate "ECB support"
151 select CRYPTO_BLKCIPHER
152 select CRYPTO_MANAGER
153 help
154 ECB: Electronic CodeBook mode
155 This is the simplest block cipher algorithm. It simply encrypts
156 the input block by block.
157
158 config CRYPTO_CBC
159 tristate "CBC support"
160 select CRYPTO_BLKCIPHER
161 select CRYPTO_MANAGER
162 help
163 CBC: Cipher Block Chaining mode
164 This block cipher algorithm is required for IPSec.
165
166 config CRYPTO_PCBC
167 tristate "PCBC support"
168 select CRYPTO_BLKCIPHER
169 select CRYPTO_MANAGER
170 help
171 PCBC: Propagating Cipher Block Chaining mode
172 This block cipher algorithm is required for RxRPC.
173
174 config CRYPTO_LRW
175 tristate "LRW support (EXPERIMENTAL)"
176 depends on EXPERIMENTAL
177 select CRYPTO_BLKCIPHER
178 select CRYPTO_MANAGER
179 select CRYPTO_GF128MUL
180 help
181 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
182 narrow block cipher mode for dm-crypt. Use it with cipher
183 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
184 The first 128, 192 or 256 bits in the key are used for AES and the
185 rest is used to tie each cipher block to its logical position.
186
187 config CRYPTO_XTS
188 tristate "XTS support (EXPERIMENTAL)"
189 depends on EXPERIMENTAL
190 select CRYPTO_BLKCIPHER
191 select CRYPTO_MANAGER
192 select CRYPTO_GF128MUL
193 help
194 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
195 key size 256, 384 or 512 bits. This implementation currently
196 can't handle a sectorsize which is not a multiple of 16 bytes.
197
198 config CRYPTO_CTR
199 tristate "CTR support"
200 select CRYPTO_BLKCIPHER
201 select CRYPTO_MANAGER
202 help
203 CTR: Counter mode
204 This block cipher algorithm is required for IPSec.
205
206 config CRYPTO_CRYPTD
207 tristate "Software async crypto daemon"
208 select CRYPTO_ABLKCIPHER
209 select CRYPTO_MANAGER
210 help
211 This is a generic software asynchronous crypto daemon that
212 converts an arbitrary synchronous software crypto algorithm
213 into an asynchronous algorithm that executes in a kernel thread.
214
215 config CRYPTO_DES
216 tristate "DES and Triple DES EDE cipher algorithms"
217 select CRYPTO_ALGAPI
218 help
219 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
220
221 config CRYPTO_FCRYPT
222 tristate "FCrypt cipher algorithm"
223 select CRYPTO_ALGAPI
224 select CRYPTO_BLKCIPHER
225 help
226 FCrypt algorithm used by RxRPC.
227
228 config CRYPTO_BLOWFISH
229 tristate "Blowfish cipher algorithm"
230 select CRYPTO_ALGAPI
231 help
232 Blowfish cipher algorithm, by Bruce Schneier.
233
234 This is a variable key length cipher which can use keys from 32
235 bits to 448 bits in length. It's fast, simple and specifically
236 designed for use on "large microprocessors".
237
238 See also:
239 <http://www.schneier.com/blowfish.html>
240
241 config CRYPTO_TWOFISH
242 tristate "Twofish cipher algorithm"
243 select CRYPTO_ALGAPI
244 select CRYPTO_TWOFISH_COMMON
245 help
246 Twofish cipher algorithm.
247
248 Twofish was submitted as an AES (Advanced Encryption Standard)
249 candidate cipher by researchers at CounterPane Systems. It is a
250 16 round block cipher supporting key sizes of 128, 192, and 256
251 bits.
252
253 See also:
254 <http://www.schneier.com/twofish.html>
255
256 config CRYPTO_TWOFISH_COMMON
257 tristate
258 help
259 Common parts of the Twofish cipher algorithm shared by the
260 generic c and the assembler implementations.
261
262 config CRYPTO_TWOFISH_586
263 tristate "Twofish cipher algorithms (i586)"
264 depends on (X86 || UML_X86) && !64BIT
265 select CRYPTO_ALGAPI
266 select CRYPTO_TWOFISH_COMMON
267 help
268 Twofish cipher algorithm.
269
270 Twofish was submitted as an AES (Advanced Encryption Standard)
271 candidate cipher by researchers at CounterPane Systems. It is a
272 16 round block cipher supporting key sizes of 128, 192, and 256
273 bits.
274
275 See also:
276 <http://www.schneier.com/twofish.html>
277
278 config CRYPTO_TWOFISH_X86_64
279 tristate "Twofish cipher algorithm (x86_64)"
280 depends on (X86 || UML_X86) && 64BIT
281 select CRYPTO_ALGAPI
282 select CRYPTO_TWOFISH_COMMON
283 help
284 Twofish cipher algorithm (x86_64).
285
286 Twofish was submitted as an AES (Advanced Encryption Standard)
287 candidate cipher by researchers at CounterPane Systems. It is a
288 16 round block cipher supporting key sizes of 128, 192, and 256
289 bits.
290
291 See also:
292 <http://www.schneier.com/twofish.html>
293
294 config CRYPTO_SERPENT
295 tristate "Serpent cipher algorithm"
296 select CRYPTO_ALGAPI
297 help
298 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
299
300 Keys are allowed to be from 0 to 256 bits in length, in steps
301 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
302 variant of Serpent for compatibility with old kerneli.org code.
303
304 See also:
305 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
306
307 config CRYPTO_AES
308 tristate "AES cipher algorithms"
309 select CRYPTO_ALGAPI
310 help
311 AES cipher algorithms (FIPS-197). AES uses the Rijndael
312 algorithm.
313
314 Rijndael appears to be consistently a very good performer in
315 both hardware and software across a wide range of computing
316 environments regardless of its use in feedback or non-feedback
317 modes. Its key setup time is excellent, and its key agility is
318 good. Rijndael's very low memory requirements make it very well
319 suited for restricted-space environments, in which it also
320 demonstrates excellent performance. Rijndael's operations are
321 among the easiest to defend against power and timing attacks.
322
323 The AES specifies three key sizes: 128, 192 and 256 bits
324
325 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
326
327 config CRYPTO_AES_586
328 tristate "AES cipher algorithms (i586)"
329 depends on (X86 || UML_X86) && !64BIT
330 select CRYPTO_ALGAPI
331 select CRYPTO_AES
332 help
333 AES cipher algorithms (FIPS-197). AES uses the Rijndael
334 algorithm.
335
336 Rijndael appears to be consistently a very good performer in
337 both hardware and software across a wide range of computing
338 environments regardless of its use in feedback or non-feedback
339 modes. Its key setup time is excellent, and its key agility is
340 good. Rijndael's very low memory requirements make it very well
341 suited for restricted-space environments, in which it also
342 demonstrates excellent performance. Rijndael's operations are
343 among the easiest to defend against power and timing attacks.
344
345 The AES specifies three key sizes: 128, 192 and 256 bits
346
347 See <http://csrc.nist.gov/encryption/aes/> for more information.
348
349 config CRYPTO_AES_X86_64
350 tristate "AES cipher algorithms (x86_64)"
351 depends on (X86 || UML_X86) && 64BIT
352 select CRYPTO_ALGAPI
353 select CRYPTO_AES
354 help
355 AES cipher algorithms (FIPS-197). AES uses the Rijndael
356 algorithm.
357
358 Rijndael appears to be consistently a very good performer in
359 both hardware and software across a wide range of computing
360 environments regardless of its use in feedback or non-feedback
361 modes. Its key setup time is excellent, and its key agility is
362 good. Rijndael's very low memory requirements make it very well
363 suited for restricted-space environments, in which it also
364 demonstrates excellent performance. Rijndael's operations are
365 among the easiest to defend against power and timing attacks.
366
367 The AES specifies three key sizes: 128, 192 and 256 bits
368
369 See <http://csrc.nist.gov/encryption/aes/> for more information.
370
371 config CRYPTO_CAST5
372 tristate "CAST5 (CAST-128) cipher algorithm"
373 select CRYPTO_ALGAPI
374 help
375 The CAST5 encryption algorithm (synonymous with CAST-128) is
376 described in RFC2144.
377
378 config CRYPTO_CAST6
379 tristate "CAST6 (CAST-256) cipher algorithm"
380 select CRYPTO_ALGAPI
381 help
382 The CAST6 encryption algorithm (synonymous with CAST-256) is
383 described in RFC2612.
384
385 config CRYPTO_TEA
386 tristate "TEA, XTEA and XETA cipher algorithms"
387 select CRYPTO_ALGAPI
388 help
389 TEA cipher algorithm.
390
391 Tiny Encryption Algorithm is a simple cipher that uses
392 many rounds for security. It is very fast and uses
393 little memory.
394
395 Xtendend Tiny Encryption Algorithm is a modification to
396 the TEA algorithm to address a potential key weakness
397 in the TEA algorithm.
398
399 Xtendend Encryption Tiny Algorithm is a mis-implementation
400 of the XTEA algorithm for compatibility purposes.
401
402 config CRYPTO_ARC4
403 tristate "ARC4 cipher algorithm"
404 select CRYPTO_ALGAPI
405 help
406 ARC4 cipher algorithm.
407
408 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
409 bits in length. This algorithm is required for driver-based
410 WEP, but it should not be for other purposes because of the
411 weakness of the algorithm.
412
413 config CRYPTO_KHAZAD
414 tristate "Khazad cipher algorithm"
415 select CRYPTO_ALGAPI
416 help
417 Khazad cipher algorithm.
418
419 Khazad was a finalist in the initial NESSIE competition. It is
420 an algorithm optimized for 64-bit processors with good performance
421 on 32-bit processors. Khazad uses an 128 bit key size.
422
423 See also:
424 <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
425
426 config CRYPTO_ANUBIS
427 tristate "Anubis cipher algorithm"
428 select CRYPTO_ALGAPI
429 help
430 Anubis cipher algorithm.
431
432 Anubis is a variable key length cipher which can use keys from
433 128 bits to 320 bits in length. It was evaluated as a entrant
434 in the NESSIE competition.
435
436 See also:
437 <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
438 <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
439
440 config CRYPTO_SEED
441 tristate "SEED cipher algorithm"
442 select CRYPTO_ALGAPI
443 help
444 SEED cipher algorithm (RFC4269).
445
446 SEED is a 128-bit symmetric key block cipher that has been
447 developed by KISA (Korea Information Security Agency) as a
448 national standard encryption algorithm of the Republic of Korea.
449 It is a 16 round block cipher with the key size of 128 bit.
450
451 See also:
452 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
453
454
455 config CRYPTO_DEFLATE
456 tristate "Deflate compression algorithm"
457 select CRYPTO_ALGAPI
458 select ZLIB_INFLATE
459 select ZLIB_DEFLATE
460 help
461 This is the Deflate algorithm (RFC1951), specified for use in
462 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
463
464 You will most probably want this if using IPSec.
465
466 config CRYPTO_MICHAEL_MIC
467 tristate "Michael MIC keyed digest algorithm"
468 select CRYPTO_ALGAPI
469 help
470 Michael MIC is used for message integrity protection in TKIP
471 (IEEE 802.11i). This algorithm is required for TKIP, but it
472 should not be used for other purposes because of the weakness
473 of the algorithm.
474
475 config CRYPTO_CRC32C
476 tristate "CRC32c CRC algorithm"
477 select CRYPTO_ALGAPI
478 select LIBCRC32C
479 help
480 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
481 by iSCSI for header and data digests and by others.
482 See Castagnoli93. This implementation uses lib/libcrc32c.
483 Module will be crc32c.
484
485 config CRYPTO_CAMELLIA
486 tristate "Camellia cipher algorithms"
487 depends on CRYPTO
488 select CRYPTO_ALGAPI
489 help
490 Camellia cipher algorithms module.
491
492 Camellia is a symmetric key block cipher developed jointly
493 at NTT and Mitsubishi Electric Corporation.
494
495 The Camellia specifies three key sizes: 128, 192 and 256 bits.
496
497 See also:
498 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
499
500 config CRYPTO_TEST
501 tristate "Testing module"
502 depends on m
503 select CRYPTO_ALGAPI
504 help
505 Quick & dirty crypto test module.
506
507 config CRYPTO_AUTHENC
508 tristate "Authenc support"
509 select CRYPTO_AEAD
510 select CRYPTO_MANAGER
511 help
512 Authenc: Combined mode wrapper for IPsec.
513 This is required for IPSec.
514
515 source "drivers/crypto/Kconfig"
516
517 endif # if CRYPTO
Linux kernel - Deliverables
This page took 0.049256 seconds and 6 git commands to generate.