projects / deliverable / linux.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge master.kernel.org:/pub/scm/linux/kernel/git/davej/cpufreq
[deliverable/linux.git] / crypto / Kconfig
1 #
2 # Generic algorithms support
3 #
4 config XOR_BLOCKS
5 tristate
6
7 #
8 # async_tx api: hardware offloaded memory transfer/transform support
9 #
10 source "crypto/async_tx/Kconfig"
11
12 #
13 # Cryptographic API Configuration
14 #
15 menu "Cryptographic options"
16
17 config CRYPTO
18 bool "Cryptographic API"
19 help
20 This option provides the core Cryptographic API.
21
22 if CRYPTO
23
24 config CRYPTO_ALGAPI
25 tristate
26 help
27 This option provides the API for cryptographic algorithms.
28
29 config CRYPTO_ABLKCIPHER
30 tristate
31 select CRYPTO_BLKCIPHER
32
33 config CRYPTO_BLKCIPHER
34 tristate
35 select CRYPTO_ALGAPI
36
37 config CRYPTO_HASH
38 tristate
39 select CRYPTO_ALGAPI
40
41 config CRYPTO_MANAGER
42 tristate "Cryptographic algorithm manager"
43 select CRYPTO_ALGAPI
44 help
45 Create default cryptographic template instantiations such as
46 cbc(aes).
47
48 config CRYPTO_HMAC
49 tristate "HMAC support"
50 select CRYPTO_HASH
51 select CRYPTO_MANAGER
52 help
53 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
54 This is required for IPSec.
55
56 config CRYPTO_XCBC
57 tristate "XCBC support"
58 depends on EXPERIMENTAL
59 select CRYPTO_HASH
60 select CRYPTO_MANAGER
61 help
62 XCBC: Keyed-Hashing with encryption algorithm
63 http://www.ietf.org/rfc/rfc3566.txt
64 http://csrc.nist.gov/encryption/modes/proposedmodes/
65 xcbc-mac/xcbc-mac-spec.pdf
66
67 config CRYPTO_NULL
68 tristate "Null algorithms"
69 select CRYPTO_ALGAPI
70 help
71 These are 'Null' algorithms, used by IPsec, which do nothing.
72
73 config CRYPTO_MD4
74 tristate "MD4 digest algorithm"
75 select CRYPTO_ALGAPI
76 help
77 MD4 message digest algorithm (RFC1320).
78
79 config CRYPTO_MD5
80 tristate "MD5 digest algorithm"
81 select CRYPTO_ALGAPI
82 help
83 MD5 message digest algorithm (RFC1321).
84
85 config CRYPTO_SHA1
86 tristate "SHA1 digest algorithm"
87 select CRYPTO_ALGAPI
88 help
89 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
90
91 config CRYPTO_SHA256
92 tristate "SHA256 digest algorithm"
93 select CRYPTO_ALGAPI
94 help
95 SHA256 secure hash standard (DFIPS 180-2).
96
97 This version of SHA implements a 256 bit hash with 128 bits of
98 security against collision attacks.
99
100 config CRYPTO_SHA512
101 tristate "SHA384 and SHA512 digest algorithms"
102 select CRYPTO_ALGAPI
103 help
104 SHA512 secure hash standard (DFIPS 180-2).
105
106 This version of SHA implements a 512 bit hash with 256 bits of
107 security against collision attacks.
108
109 This code also includes SHA-384, a 384 bit hash with 192 bits
110 of security against collision attacks.
111
112 config CRYPTO_WP512
113 tristate "Whirlpool digest algorithms"
114 select CRYPTO_ALGAPI
115 help
116 Whirlpool hash algorithm 512, 384 and 256-bit hashes
117
118 Whirlpool-512 is part of the NESSIE cryptographic primitives.
119 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
120
121 See also:
122 <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
123
124 config CRYPTO_TGR192
125 tristate "Tiger digest algorithms"
126 select CRYPTO_ALGAPI
127 help
128 Tiger hash algorithm 192, 160 and 128-bit hashes
129
130 Tiger is a hash function optimized for 64-bit processors while
131 still having decent performance on 32-bit processors.
132 Tiger was developed by Ross Anderson and Eli Biham.
133
134 See also:
135 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
136
137 config CRYPTO_GF128MUL
138 tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
139 depends on EXPERIMENTAL
140 help
141 Efficient table driven implementation of multiplications in the
142 field GF(2^128). This is needed by some cypher modes. This
143 option will be selected automatically if you select such a
144 cipher mode. Only select this option by hand if you expect to load
145 an external module that requires these functions.
146
147 config CRYPTO_ECB
148 tristate "ECB support"
149 select CRYPTO_BLKCIPHER
150 select CRYPTO_MANAGER
151 default m
152 help
153 ECB: Electronic CodeBook mode
154 This is the simplest block cipher algorithm. It simply encrypts
155 the input block by block.
156
157 config CRYPTO_CBC
158 tristate "CBC support"
159 select CRYPTO_BLKCIPHER
160 select CRYPTO_MANAGER
161 default m
162 help
163 CBC: Cipher Block Chaining mode
164 This block cipher algorithm is required for IPSec.
165
166 config CRYPTO_PCBC
167 tristate "PCBC support"
168 select CRYPTO_BLKCIPHER
169 select CRYPTO_MANAGER
170 default m
171 help
172 PCBC: Propagating Cipher Block Chaining mode
173 This block cipher algorithm is required for RxRPC.
174
175 config CRYPTO_LRW
176 tristate "LRW support (EXPERIMENTAL)"
177 depends on EXPERIMENTAL
178 select CRYPTO_BLKCIPHER
179 select CRYPTO_MANAGER
180 select CRYPTO_GF128MUL
181 help
182 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
183 narrow block cipher mode for dm-crypt. Use it with cipher
184 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
185 The first 128, 192 or 256 bits in the key are used for AES and the
186 rest is used to tie each cipher block to its logical position.
187
188 config CRYPTO_CRYPTD
189 tristate "Software async crypto daemon"
190 select CRYPTO_ABLKCIPHER
191 select CRYPTO_MANAGER
192 help
193 This is a generic software asynchronous crypto daemon that
194 converts an arbitrary synchronous software crypto algorithm
195 into an asynchronous algorithm that executes in a kernel thread.
196
197 config CRYPTO_DES
198 tristate "DES and Triple DES EDE cipher algorithms"
199 select CRYPTO_ALGAPI
200 help
201 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
202
203 config CRYPTO_FCRYPT
204 tristate "FCrypt cipher algorithm"
205 select CRYPTO_ALGAPI
206 select CRYPTO_BLKCIPHER
207 help
208 FCrypt algorithm used by RxRPC.
209
210 config CRYPTO_BLOWFISH
211 tristate "Blowfish cipher algorithm"
212 select CRYPTO_ALGAPI
213 help
214 Blowfish cipher algorithm, by Bruce Schneier.
215
216 This is a variable key length cipher which can use keys from 32
217 bits to 448 bits in length. It's fast, simple and specifically
218 designed for use on "large microprocessors".
219
220 See also:
221 <http://www.schneier.com/blowfish.html>
222
223 config CRYPTO_TWOFISH
224 tristate "Twofish cipher algorithm"
225 select CRYPTO_ALGAPI
226 select CRYPTO_TWOFISH_COMMON
227 help
228 Twofish cipher algorithm.
229
230 Twofish was submitted as an AES (Advanced Encryption Standard)
231 candidate cipher by researchers at CounterPane Systems. It is a
232 16 round block cipher supporting key sizes of 128, 192, and 256
233 bits.
234
235 See also:
236 <http://www.schneier.com/twofish.html>
237
238 config CRYPTO_TWOFISH_COMMON
239 tristate
240 help
241 Common parts of the Twofish cipher algorithm shared by the
242 generic c and the assembler implementations.
243
244 config CRYPTO_TWOFISH_586
245 tristate "Twofish cipher algorithms (i586)"
246 depends on (X86 || UML_X86) && !64BIT
247 select CRYPTO_ALGAPI
248 select CRYPTO_TWOFISH_COMMON
249 help
250 Twofish cipher algorithm.
251
252 Twofish was submitted as an AES (Advanced Encryption Standard)
253 candidate cipher by researchers at CounterPane Systems. It is a
254 16 round block cipher supporting key sizes of 128, 192, and 256
255 bits.
256
257 See also:
258 <http://www.schneier.com/twofish.html>
259
260 config CRYPTO_TWOFISH_X86_64
261 tristate "Twofish cipher algorithm (x86_64)"
262 depends on (X86 || UML_X86) && 64BIT
263 select CRYPTO_ALGAPI
264 select CRYPTO_TWOFISH_COMMON
265 help
266 Twofish cipher algorithm (x86_64).
267
268 Twofish was submitted as an AES (Advanced Encryption Standard)
269 candidate cipher by researchers at CounterPane Systems. It is a
270 16 round block cipher supporting key sizes of 128, 192, and 256
271 bits.
272
273 See also:
274 <http://www.schneier.com/twofish.html>
275
276 config CRYPTO_SERPENT
277 tristate "Serpent cipher algorithm"
278 select CRYPTO_ALGAPI
279 help
280 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
281
282 Keys are allowed to be from 0 to 256 bits in length, in steps
283 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
284 variant of Serpent for compatibility with old kerneli.org code.
285
286 See also:
287 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
288
289 config CRYPTO_AES
290 tristate "AES cipher algorithms"
291 select CRYPTO_ALGAPI
292 help
293 AES cipher algorithms (FIPS-197). AES uses the Rijndael
294 algorithm.
295
296 Rijndael appears to be consistently a very good performer in
297 both hardware and software across a wide range of computing
298 environments regardless of its use in feedback or non-feedback
299 modes. Its key setup time is excellent, and its key agility is
300 good. Rijndael's very low memory requirements make it very well
301 suited for restricted-space environments, in which it also
302 demonstrates excellent performance. Rijndael's operations are
303 among the easiest to defend against power and timing attacks.
304
305 The AES specifies three key sizes: 128, 192 and 256 bits
306
307 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
308
309 config CRYPTO_AES_586
310 tristate "AES cipher algorithms (i586)"
311 depends on (X86 || UML_X86) && !64BIT
312 select CRYPTO_ALGAPI
313 help
314 AES cipher algorithms (FIPS-197). AES uses the Rijndael
315 algorithm.
316
317 Rijndael appears to be consistently a very good performer in
318 both hardware and software across a wide range of computing
319 environments regardless of its use in feedback or non-feedback
320 modes. Its key setup time is excellent, and its key agility is
321 good. Rijndael's very low memory requirements make it very well
322 suited for restricted-space environments, in which it also
323 demonstrates excellent performance. Rijndael's operations are
324 among the easiest to defend against power and timing attacks.
325
326 The AES specifies three key sizes: 128, 192 and 256 bits
327
328 See <http://csrc.nist.gov/encryption/aes/> for more information.
329
330 config CRYPTO_AES_X86_64
331 tristate "AES cipher algorithms (x86_64)"
332 depends on (X86 || UML_X86) && 64BIT
333 select CRYPTO_ALGAPI
334 help
335 AES cipher algorithms (FIPS-197). AES uses the Rijndael
336 algorithm.
337
338 Rijndael appears to be consistently a very good performer in
339 both hardware and software across a wide range of computing
340 environments regardless of its use in feedback or non-feedback
341 modes. Its key setup time is excellent, and its key agility is
342 good. Rijndael's very low memory requirements make it very well
343 suited for restricted-space environments, in which it also
344 demonstrates excellent performance. Rijndael's operations are
345 among the easiest to defend against power and timing attacks.
346
347 The AES specifies three key sizes: 128, 192 and 256 bits
348
349 See <http://csrc.nist.gov/encryption/aes/> for more information.
350
351 config CRYPTO_CAST5
352 tristate "CAST5 (CAST-128) cipher algorithm"
353 select CRYPTO_ALGAPI
354 help
355 The CAST5 encryption algorithm (synonymous with CAST-128) is
356 described in RFC2144.
357
358 config CRYPTO_CAST6
359 tristate "CAST6 (CAST-256) cipher algorithm"
360 select CRYPTO_ALGAPI
361 help
362 The CAST6 encryption algorithm (synonymous with CAST-256) is
363 described in RFC2612.
364
365 config CRYPTO_TEA
366 tristate "TEA, XTEA and XETA cipher algorithms"
367 select CRYPTO_ALGAPI
368 help
369 TEA cipher algorithm.
370
371 Tiny Encryption Algorithm is a simple cipher that uses
372 many rounds for security. It is very fast and uses
373 little memory.
374
375 Xtendend Tiny Encryption Algorithm is a modification to
376 the TEA algorithm to address a potential key weakness
377 in the TEA algorithm.
378
379 Xtendend Encryption Tiny Algorithm is a mis-implementation
380 of the XTEA algorithm for compatibility purposes.
381
382 config CRYPTO_ARC4
383 tristate "ARC4 cipher algorithm"
384 select CRYPTO_ALGAPI
385 help
386 ARC4 cipher algorithm.
387
388 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
389 bits in length. This algorithm is required for driver-based
390 WEP, but it should not be for other purposes because of the
391 weakness of the algorithm.
392
393 config CRYPTO_KHAZAD
394 tristate "Khazad cipher algorithm"
395 select CRYPTO_ALGAPI
396 help
397 Khazad cipher algorithm.
398
399 Khazad was a finalist in the initial NESSIE competition. It is
400 an algorithm optimized for 64-bit processors with good performance
401 on 32-bit processors. Khazad uses an 128 bit key size.
402
403 See also:
404 <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
405
406 config CRYPTO_ANUBIS
407 tristate "Anubis cipher algorithm"
408 select CRYPTO_ALGAPI
409 help
410 Anubis cipher algorithm.
411
412 Anubis is a variable key length cipher which can use keys from
413 128 bits to 320 bits in length. It was evaluated as a entrant
414 in the NESSIE competition.
415
416 See also:
417 <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
418 <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
419
420
421 config CRYPTO_DEFLATE
422 tristate "Deflate compression algorithm"
423 select CRYPTO_ALGAPI
424 select ZLIB_INFLATE
425 select ZLIB_DEFLATE
426 help
427 This is the Deflate algorithm (RFC1951), specified for use in
428 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
429
430 You will most probably want this if using IPSec.
431
432 config CRYPTO_MICHAEL_MIC
433 tristate "Michael MIC keyed digest algorithm"
434 select CRYPTO_ALGAPI
435 help
436 Michael MIC is used for message integrity protection in TKIP
437 (IEEE 802.11i). This algorithm is required for TKIP, but it
438 should not be used for other purposes because of the weakness
439 of the algorithm.
440
441 config CRYPTO_CRC32C
442 tristate "CRC32c CRC algorithm"
443 select CRYPTO_ALGAPI
444 select LIBCRC32C
445 help
446 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
447 by iSCSI for header and data digests and by others.
448 See Castagnoli93. This implementation uses lib/libcrc32c.
449 Module will be crc32c.
450
451 config CRYPTO_CAMELLIA
452 tristate "Camellia cipher algorithms"
453 depends on CRYPTO
454 select CRYPTO_ALGAPI
455 help
456 Camellia cipher algorithms module.
457
458 Camellia is a symmetric key block cipher developed jointly
459 at NTT and Mitsubishi Electric Corporation.
460
461 The Camellia specifies three key sizes: 128, 192 and 256 bits.
462
463 See also:
464 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
465
466 config CRYPTO_TEST
467 tristate "Testing module"
468 depends on m
469 select CRYPTO_ALGAPI
470 help
471 Quick & dirty crypto test module.
472
473 source "drivers/crypto/Kconfig"
474
475 endif # if CRYPTO
476
477 endmenu
Linux kernel - Deliverables
This page took 0.042019 seconds and 6 git commands to generate.