blob: f37e9cca50e19957762ea50adfb1fc3fde4b7429 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001#
Dan Williams685784a2007-07-09 11:56:42 -07002# Generic algorithms support
3#
4config XOR_BLOCKS
5 tristate
6
7#
Dan Williams9bc89cd2007-01-02 11:10:44 -07008# async_tx api: hardware offloaded memory transfer/transform support
9#
10source "crypto/async_tx/Kconfig"
11
12#
Linus Torvalds1da177e2005-04-16 15:20:36 -070013# Cryptographic API Configuration
14#
Jan Engelhardt2e290f42007-05-18 15:11:01 +100015menuconfig CRYPTO
Sebastian Siewiorc3715cb92008-03-30 16:36:09 +080016 tristate "Cryptographic API"
Linus Torvalds1da177e2005-04-16 15:20:36 -070017 help
18 This option provides the core Cryptographic API.
19
Herbert Xucce9e062006-08-21 21:08:13 +100020if CRYPTO
21
Sebastian Siewior584fffc2008-04-05 21:04:48 +080022comment "Crypto core or helper"
23
Neil Hormanccb778e2008-08-05 14:13:08 +080024config CRYPTO_FIPS
25 bool "FIPS 200 compliance"
Herbert Xuf2c89a12014-07-04 22:15:08 +080026 depends on (CRYPTO_ANSI_CPRNG || CRYPTO_DRBG) && !CRYPTO_MANAGER_DISABLE_TESTS
Alec Ari1f696092016-10-04 19:34:30 -030027 depends on (MODULE_SIG || !MODULES)
Neil Hormanccb778e2008-08-05 14:13:08 +080028 help
29 This options enables the fips boot option which is
30 required if you want to system to operate in a FIPS 200
31 certification. You should say no unless you know what
Chuck Ebberte84c5482010-09-03 19:17:49 +080032 this is.
Neil Hormanccb778e2008-08-05 14:13:08 +080033
Herbert Xucce9e062006-08-21 21:08:13 +100034config CRYPTO_ALGAPI
35 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110036 select CRYPTO_ALGAPI2
Herbert Xucce9e062006-08-21 21:08:13 +100037 help
38 This option provides the API for cryptographic algorithms.
39
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110040config CRYPTO_ALGAPI2
41 tristate
42
Herbert Xu1ae97822007-08-30 15:36:14 +080043config CRYPTO_AEAD
44 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110045 select CRYPTO_AEAD2
Herbert Xu1ae97822007-08-30 15:36:14 +080046 select CRYPTO_ALGAPI
47
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110048config CRYPTO_AEAD2
49 tristate
50 select CRYPTO_ALGAPI2
Herbert Xu149a3972015-08-13 17:28:58 +080051 select CRYPTO_NULL2
52 select CRYPTO_RNG2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110053
Herbert Xu5cde0af2006-08-22 00:07:53 +100054config CRYPTO_BLKCIPHER
55 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110056 select CRYPTO_BLKCIPHER2
Herbert Xu5cde0af2006-08-22 00:07:53 +100057 select CRYPTO_ALGAPI
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110058
59config CRYPTO_BLKCIPHER2
60 tristate
61 select CRYPTO_ALGAPI2
62 select CRYPTO_RNG2
Huang Ying0a2e8212009-02-19 14:44:02 +080063 select CRYPTO_WORKQUEUE
Herbert Xu5cde0af2006-08-22 00:07:53 +100064
Herbert Xu055bcee2006-08-19 22:24:23 +100065config CRYPTO_HASH
66 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110067 select CRYPTO_HASH2
Herbert Xu055bcee2006-08-19 22:24:23 +100068 select CRYPTO_ALGAPI
69
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110070config CRYPTO_HASH2
71 tristate
72 select CRYPTO_ALGAPI2
73
Neil Horman17f0f4a2008-08-14 22:15:52 +100074config CRYPTO_RNG
75 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110076 select CRYPTO_RNG2
Neil Horman17f0f4a2008-08-14 22:15:52 +100077 select CRYPTO_ALGAPI
78
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110079config CRYPTO_RNG2
80 tristate
81 select CRYPTO_ALGAPI2
82
Herbert Xu401e4232015-06-03 14:49:31 +080083config CRYPTO_RNG_DEFAULT
84 tristate
85 select CRYPTO_DRBG_MENU
86
Tadeusz Struk3c339ab2015-06-16 10:30:55 -070087config CRYPTO_AKCIPHER2
88 tristate
89 select CRYPTO_ALGAPI2
90
91config CRYPTO_AKCIPHER
92 tristate
93 select CRYPTO_AKCIPHER2
94 select CRYPTO_ALGAPI
95
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +010096config CRYPTO_KPP2
97 tristate
98 select CRYPTO_ALGAPI2
99
100config CRYPTO_KPP
101 tristate
102 select CRYPTO_ALGAPI
103 select CRYPTO_KPP2
104
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100105config CRYPTO_ACOMP2
106 tristate
107 select CRYPTO_ALGAPI2
108
109config CRYPTO_ACOMP
110 tristate
111 select CRYPTO_ALGAPI
112 select CRYPTO_ACOMP2
113
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700114config CRYPTO_RSA
115 tristate "RSA algorithm"
Tadeusz Struk425e0172015-06-19 10:27:39 -0700116 select CRYPTO_AKCIPHER
Tadeusz Struk58446fe2016-05-04 06:38:46 -0700117 select CRYPTO_MANAGER
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700118 select MPILIB
119 select ASN1
120 help
121 Generic implementation of the RSA public key algorithm.
122
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100123config CRYPTO_DH
124 tristate "Diffie-Hellman algorithm"
125 select CRYPTO_KPP
126 select MPILIB
127 help
128 Generic implementation of the Diffie-Hellman algorithm.
129
Salvatore Benedetto3c4b2392016-06-22 17:49:15 +0100130config CRYPTO_ECDH
131 tristate "ECDH algorithm"
132 select CRYTPO_KPP
133 help
134 Generic implementation of the ECDH algorithm
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100135
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000136config CRYPTO_MANAGER
137 tristate "Cryptographic algorithm manager"
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100138 select CRYPTO_MANAGER2
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000139 help
140 Create default cryptographic template instantiations such as
141 cbc(aes).
142
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100143config CRYPTO_MANAGER2
144 def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
145 select CRYPTO_AEAD2
146 select CRYPTO_HASH2
147 select CRYPTO_BLKCIPHER2
Tadeusz Struk946cc462015-06-16 10:31:06 -0700148 select CRYPTO_AKCIPHER2
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +0100149 select CRYPTO_KPP2
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100150 select CRYPTO_ACOMP2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100151
Steffen Klasserta38f7902011-09-27 07:23:50 +0200152config CRYPTO_USER
153 tristate "Userspace cryptographic algorithm configuration"
Herbert Xu5db017a2011-11-01 12:12:43 +1100154 depends on NET
Steffen Klasserta38f7902011-09-27 07:23:50 +0200155 select CRYPTO_MANAGER
156 help
Valdis.Kletnieks@vt.edud19978f2011-11-09 01:29:20 -0500157 Userspace configuration for cryptographic instantiations such as
Steffen Klasserta38f7902011-09-27 07:23:50 +0200158 cbc(aes).
159
Herbert Xu326a6342010-08-06 09:40:28 +0800160config CRYPTO_MANAGER_DISABLE_TESTS
161 bool "Disable run-time self tests"
Herbert Xu00ca28a2010-08-06 10:34:00 +0800162 default y
163 depends on CRYPTO_MANAGER2
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000164 help
Herbert Xu326a6342010-08-06 09:40:28 +0800165 Disable run-time self tests that normally take place at
166 algorithm registration.
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000167
Rik Snelc494e072006-11-29 18:59:44 +1100168config CRYPTO_GF128MUL
Jussi Kivilinna08c70fc2011-12-13 12:53:22 +0200169 tristate "GF(2^128) multiplication functions"
Rik Snelc494e072006-11-29 18:59:44 +1100170 help
171 Efficient table driven implementation of multiplications in the
172 field GF(2^128). This is needed by some cypher modes. This
173 option will be selected automatically if you select such a
174 cipher mode. Only select this option by hand if you expect to load
175 an external module that requires these functions.
176
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800177config CRYPTO_NULL
178 tristate "Null algorithms"
Herbert Xu149a3972015-08-13 17:28:58 +0800179 select CRYPTO_NULL2
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800180 help
181 These are 'Null' algorithms, used by IPsec, which do nothing.
182
Herbert Xu149a3972015-08-13 17:28:58 +0800183config CRYPTO_NULL2
Herbert Xudd43c4e2015-08-17 20:39:40 +0800184 tristate
Herbert Xu149a3972015-08-13 17:28:58 +0800185 select CRYPTO_ALGAPI2
186 select CRYPTO_BLKCIPHER2
187 select CRYPTO_HASH2
188
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100189config CRYPTO_PCRYPT
Kees Cook3b4afaf2012-10-02 11:16:49 -0700190 tristate "Parallel crypto engine"
191 depends on SMP
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100192 select PADATA
193 select CRYPTO_MANAGER
194 select CRYPTO_AEAD
195 help
196 This converts an arbitrary crypto algorithm into a parallel
197 algorithm that executes in kernel threads.
198
Huang Ying25c38d32009-02-19 14:33:40 +0800199config CRYPTO_WORKQUEUE
200 tristate
201
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800202config CRYPTO_CRYPTD
203 tristate "Software async crypto daemon"
Herbert Xudb131ef2006-09-21 11:44:08 +1000204 select CRYPTO_BLKCIPHER
Loc Hob8a28252008-05-14 21:23:00 +0800205 select CRYPTO_HASH
Herbert Xu43518402006-10-16 21:28:58 +1000206 select CRYPTO_MANAGER
Huang Ying254eff72009-02-19 14:42:19 +0800207 select CRYPTO_WORKQUEUE
Herbert Xudb131ef2006-09-21 11:44:08 +1000208 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800209 This is a generic software asynchronous crypto daemon that
210 converts an arbitrary synchronous software crypto algorithm
211 into an asynchronous algorithm that executes in a kernel thread.
212
Tim Chen1e65b812014-07-31 10:29:51 -0700213config CRYPTO_MCRYPTD
214 tristate "Software async multi-buffer crypto daemon"
215 select CRYPTO_BLKCIPHER
216 select CRYPTO_HASH
217 select CRYPTO_MANAGER
218 select CRYPTO_WORKQUEUE
219 help
220 This is a generic software asynchronous crypto daemon that
221 provides the kernel thread to assist multi-buffer crypto
222 algorithms for submitting jobs and flushing jobs in multi-buffer
223 crypto algorithms. Multi-buffer crypto algorithms are executed
224 in the context of this kernel thread and drivers can post
Ted Percival0e566732014-09-04 15:18:21 +0800225 their crypto request asynchronously to be processed by this daemon.
Tim Chen1e65b812014-07-31 10:29:51 -0700226
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800227config CRYPTO_AUTHENC
228 tristate "Authenc support"
229 select CRYPTO_AEAD
230 select CRYPTO_BLKCIPHER
231 select CRYPTO_MANAGER
232 select CRYPTO_HASH
Herbert Xue94c6a72015-08-04 21:23:14 +0800233 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800234 help
235 Authenc: Combined mode wrapper for IPsec.
236 This is required for IPSec.
237
238config CRYPTO_TEST
239 tristate "Testing module"
240 depends on m
Herbert Xuda7f0332008-07-31 17:08:25 +0800241 select CRYPTO_MANAGER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800242 help
243 Quick & dirty crypto test module.
244
Ard Biesheuvela62b01c2013-09-20 09:55:40 +0200245config CRYPTO_ABLK_HELPER
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300246 tristate
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300247 select CRYPTO_CRYPTD
248
Herbert Xu266d0512016-11-22 20:08:25 +0800249config CRYPTO_SIMD
250 tristate
251 select CRYPTO_CRYPTD
252
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300253config CRYPTO_GLUE_HELPER_X86
254 tristate
255 depends on X86
Herbert Xu065ce322016-11-22 20:08:29 +0800256 select CRYPTO_BLKCIPHER
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300257
Baolin Wang735d37b2016-01-26 20:25:39 +0800258config CRYPTO_ENGINE
259 tristate
260
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800261comment "Authenticated Encryption with Associated Data"
262
263config CRYPTO_CCM
264 tristate "CCM support"
265 select CRYPTO_CTR
Ard Biesheuvelf15f05b2017-02-03 14:49:36 +0000266 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800267 select CRYPTO_AEAD
268 help
269 Support for Counter with CBC MAC. Required for IPsec.
270
271config CRYPTO_GCM
272 tristate "GCM/GMAC support"
273 select CRYPTO_CTR
274 select CRYPTO_AEAD
Huang Ying9382d972009-08-06 15:34:26 +1000275 select CRYPTO_GHASH
Jussi Kivilinna9489667d2013-04-07 16:43:41 +0300276 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800277 help
278 Support for Galois/Counter Mode (GCM) and Galois Message
279 Authentication Code (GMAC). Required for IPSec.
280
Martin Willi71ebc4d2015-06-01 13:44:00 +0200281config CRYPTO_CHACHA20POLY1305
282 tristate "ChaCha20-Poly1305 AEAD support"
283 select CRYPTO_CHACHA20
284 select CRYPTO_POLY1305
285 select CRYPTO_AEAD
286 help
287 ChaCha20-Poly1305 AEAD support, RFC7539.
288
289 Support for the AEAD wrapper using the ChaCha20 stream cipher combined
290 with the Poly1305 authenticator. It is defined in RFC7539 for use in
291 IETF protocols.
292
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800293config CRYPTO_SEQIV
294 tristate "Sequence Number IV Generator"
295 select CRYPTO_AEAD
296 select CRYPTO_BLKCIPHER
Herbert Xu856e3f402015-05-21 15:11:13 +0800297 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800298 select CRYPTO_RNG_DEFAULT
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800299 help
300 This IV generator generates an IV based on a sequence number by
301 xoring it with a salt. This algorithm is mainly useful for CTR
302
Herbert Xua10f5542015-05-21 15:11:15 +0800303config CRYPTO_ECHAINIV
304 tristate "Encrypted Chain IV Generator"
305 select CRYPTO_AEAD
306 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800307 select CRYPTO_RNG_DEFAULT
Herbert Xu34912442015-06-03 14:49:29 +0800308 default m
Herbert Xua10f5542015-05-21 15:11:15 +0800309 help
310 This IV generator generates an IV based on the encryption of
311 a sequence number xored with a salt. This is the default
312 algorithm for CBC.
313
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800314comment "Block modes"
Herbert Xudb131ef2006-09-21 11:44:08 +1000315
316config CRYPTO_CBC
317 tristate "CBC support"
318 select CRYPTO_BLKCIPHER
Herbert Xu43518402006-10-16 21:28:58 +1000319 select CRYPTO_MANAGER
Herbert Xudb131ef2006-09-21 11:44:08 +1000320 help
321 CBC: Cipher Block Chaining mode
322 This block cipher algorithm is required for IPSec.
323
Joy Latten23e353c2007-10-23 08:50:32 +0800324config CRYPTO_CTR
325 tristate "CTR support"
326 select CRYPTO_BLKCIPHER
Herbert Xu0a270322007-11-30 21:38:37 +1100327 select CRYPTO_SEQIV
Joy Latten23e353c2007-10-23 08:50:32 +0800328 select CRYPTO_MANAGER
Joy Latten23e353c2007-10-23 08:50:32 +0800329 help
330 CTR: Counter mode
331 This block cipher algorithm is required for IPSec.
332
Kevin Coffman76cb9522008-03-24 21:26:16 +0800333config CRYPTO_CTS
334 tristate "CTS support"
335 select CRYPTO_BLKCIPHER
336 help
337 CTS: Cipher Text Stealing
338 This is the Cipher Text Stealing mode as described by
339 Section 8 of rfc2040 and referenced by rfc3962.
340 (rfc3962 includes errata information in its Appendix A)
341 This mode is required for Kerberos gss mechanism support
342 for AES encryption.
343
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800344config CRYPTO_ECB
345 tristate "ECB support"
Herbert Xu653ebd92007-11-27 19:48:27 +0800346 select CRYPTO_BLKCIPHER
Herbert Xu124b53d2007-04-16 20:49:20 +1000347 select CRYPTO_MANAGER
348 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800349 ECB: Electronic CodeBook mode
350 This is the simplest block cipher algorithm. It simply encrypts
351 the input block by block.
Herbert Xu124b53d2007-04-16 20:49:20 +1000352
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800353config CRYPTO_LRW
Jussi Kivilinna2470a2b2011-12-13 12:52:51 +0200354 tristate "LRW support"
David Howells90831632006-12-16 12:13:14 +1100355 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800356 select CRYPTO_MANAGER
357 select CRYPTO_GF128MUL
David Howells90831632006-12-16 12:13:14 +1100358 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800359 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
360 narrow block cipher mode for dm-crypt. Use it with cipher
361 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
362 The first 128, 192 or 256 bits in the key are used for AES and the
363 rest is used to tie each cipher block to its logical position.
David Howells90831632006-12-16 12:13:14 +1100364
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800365config CRYPTO_PCBC
366 tristate "PCBC support"
367 select CRYPTO_BLKCIPHER
368 select CRYPTO_MANAGER
369 help
370 PCBC: Propagating Cipher Block Chaining mode
371 This block cipher algorithm is required for RxRPC.
372
373config CRYPTO_XTS
Jussi Kivilinna5bcf8e62011-12-13 12:52:56 +0200374 tristate "XTS support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800375 select CRYPTO_BLKCIPHER
376 select CRYPTO_MANAGER
377 select CRYPTO_GF128MUL
Milan Broz12cb3a12017-02-23 08:38:26 +0100378 select CRYPTO_ECB
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800379 help
380 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
381 key size 256, 384 or 512 bits. This implementation currently
382 can't handle a sectorsize which is not a multiple of 16 bytes.
383
Stephan Mueller1c49678e2015-09-21 20:58:56 +0200384config CRYPTO_KEYWRAP
385 tristate "Key wrapping support"
386 select CRYPTO_BLKCIPHER
387 help
388 Support for key wrapping (NIST SP800-38F / RFC3394) without
389 padding.
390
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800391comment "Hash modes"
392
Jussi Kivilinna93b5e862013-04-08 10:48:44 +0300393config CRYPTO_CMAC
394 tristate "CMAC support"
395 select CRYPTO_HASH
396 select CRYPTO_MANAGER
397 help
398 Cipher-based Message Authentication Code (CMAC) specified by
399 The National Institute of Standards and Technology (NIST).
400
401 https://tools.ietf.org/html/rfc4493
402 http://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf
403
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800404config CRYPTO_HMAC
405 tristate "HMAC support"
406 select CRYPTO_HASH
407 select CRYPTO_MANAGER
408 help
409 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
410 This is required for IPSec.
411
412config CRYPTO_XCBC
413 tristate "XCBC support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800414 select CRYPTO_HASH
415 select CRYPTO_MANAGER
416 help
417 XCBC: Keyed-Hashing with encryption algorithm
418 http://www.ietf.org/rfc/rfc3566.txt
419 http://csrc.nist.gov/encryption/modes/proposedmodes/
420 xcbc-mac/xcbc-mac-spec.pdf
421
Shane Wangf1939f72009-09-02 20:05:22 +1000422config CRYPTO_VMAC
423 tristate "VMAC support"
Shane Wangf1939f72009-09-02 20:05:22 +1000424 select CRYPTO_HASH
425 select CRYPTO_MANAGER
426 help
427 VMAC is a message authentication algorithm designed for
428 very high speed on 64-bit architectures.
429
430 See also:
431 <http://fastcrypto.org/vmac>
432
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800433comment "Digest"
434
435config CRYPTO_CRC32C
436 tristate "CRC32c CRC algorithm"
Herbert Xu5773a3e2008-07-08 20:54:28 +0800437 select CRYPTO_HASH
Darrick J. Wong6a0962b2012-03-23 15:02:25 -0700438 select CRC32
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800439 help
440 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
441 by iSCSI for header and data digests and by others.
Herbert Xu69c35ef2008-11-07 15:11:47 +0800442 See Castagnoli93. Module will be crc32c.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800443
Austin Zhang8cb51ba2008-08-07 09:57:03 +0800444config CRYPTO_CRC32C_INTEL
445 tristate "CRC32c INTEL hardware acceleration"
446 depends on X86
447 select CRYPTO_HASH
448 help
449 In Intel processor with SSE4.2 supported, the processor will
450 support CRC32C implementation using hardware accelerated CRC32
451 instruction. This option will create 'crc32c-intel' module,
452 which will enable any routine to use the CRC32 instruction to
453 gain performance compared with software implementation.
454 Module will be crc32c-intel.
455
Jean Delvare7cf31862016-11-22 10:32:44 +0100456config CRYPTO_CRC32C_VPMSUM
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000457 tristate "CRC32c CRC algorithm (powerpc64)"
Michael Ellermanc12abf32016-08-09 08:46:15 +1000458 depends on PPC64 && ALTIVEC
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000459 select CRYPTO_HASH
460 select CRC32
461 help
462 CRC32c algorithm implemented using vector polynomial multiply-sum
463 (vpmsum) instructions, introduced in POWER8. Enable on POWER8
464 and newer processors for improved performance.
465
466
David S. Miller442a7c42012-08-22 20:47:36 -0700467config CRYPTO_CRC32C_SPARC64
468 tristate "CRC32c CRC algorithm (SPARC64)"
469 depends on SPARC64
470 select CRYPTO_HASH
471 select CRC32
472 help
473 CRC32c CRC algorithm implemented using sparc64 crypto instructions,
474 when available.
475
Alexander Boyko78c37d12013-01-10 18:54:59 +0400476config CRYPTO_CRC32
477 tristate "CRC32 CRC algorithm"
478 select CRYPTO_HASH
479 select CRC32
480 help
481 CRC-32-IEEE 802.3 cyclic redundancy-check algorithm.
482 Shash crypto api wrappers to crc32_le function.
483
484config CRYPTO_CRC32_PCLMUL
485 tristate "CRC32 PCLMULQDQ hardware acceleration"
486 depends on X86
487 select CRYPTO_HASH
488 select CRC32
489 help
490 From Intel Westmere and AMD Bulldozer processor with SSE4.2
491 and PCLMULQDQ supported, the processor will support
492 CRC32 PCLMULQDQ implementation using hardware accelerated PCLMULQDQ
493 instruction. This option will create 'crc32-plcmul' module,
494 which will enable any routine to use the CRC-32-IEEE 802.3 checksum
495 and gain better performance as compared with the table implementation.
496
Herbert Xu684115212013-09-07 12:56:26 +1000497config CRYPTO_CRCT10DIF
498 tristate "CRCT10DIF algorithm"
499 select CRYPTO_HASH
500 help
501 CRC T10 Data Integrity Field computation is being cast as
502 a crypto transform. This allows for faster crc t10 diff
503 transforms to be used if they are available.
504
505config CRYPTO_CRCT10DIF_PCLMUL
506 tristate "CRCT10DIF PCLMULQDQ hardware acceleration"
507 depends on X86 && 64BIT && CRC_T10DIF
508 select CRYPTO_HASH
509 help
510 For x86_64 processors with SSE4.2 and PCLMULQDQ supported,
511 CRC T10 DIF PCLMULQDQ computation can be hardware
512 accelerated PCLMULQDQ instruction. This option will create
513 'crct10dif-plcmul' module, which is faster when computing the
514 crct10dif checksum as compared with the generic table implementation.
515
Huang Ying2cdc6892009-08-06 15:32:38 +1000516config CRYPTO_GHASH
517 tristate "GHASH digest algorithm"
Huang Ying2cdc6892009-08-06 15:32:38 +1000518 select CRYPTO_GF128MUL
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100519 select CRYPTO_HASH
Huang Ying2cdc6892009-08-06 15:32:38 +1000520 help
521 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
522
Martin Willif979e012015-06-01 13:43:58 +0200523config CRYPTO_POLY1305
524 tristate "Poly1305 authenticator algorithm"
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100525 select CRYPTO_HASH
Martin Willif979e012015-06-01 13:43:58 +0200526 help
527 Poly1305 authenticator algorithm, RFC7539.
528
529 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
530 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
531 in IETF protocols. This is the portable C implementation of Poly1305.
532
Martin Willic70f4ab2015-07-16 19:14:06 +0200533config CRYPTO_POLY1305_X86_64
Martin Willib1ccc8f2015-07-16 19:14:08 +0200534 tristate "Poly1305 authenticator algorithm (x86_64/SSE2/AVX2)"
Martin Willic70f4ab2015-07-16 19:14:06 +0200535 depends on X86 && 64BIT
536 select CRYPTO_POLY1305
537 help
538 Poly1305 authenticator algorithm, RFC7539.
539
540 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
541 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
542 in IETF protocols. This is the x86_64 assembler implementation using SIMD
543 instructions.
544
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800545config CRYPTO_MD4
546 tristate "MD4 digest algorithm"
Adrian-Ken Rueegsegger808a1762008-12-03 19:55:27 +0800547 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700548 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800549 MD4 message digest algorithm (RFC1320).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700550
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800551config CRYPTO_MD5
552 tristate "MD5 digest algorithm"
Adrian-Ken Rueegsegger14b75ba2008-12-03 19:57:12 +0800553 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700554 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800555 MD5 message digest algorithm (RFC1321).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700556
Aaro Koskinend69e75d2014-12-21 22:54:02 +0200557config CRYPTO_MD5_OCTEON
558 tristate "MD5 digest algorithm (OCTEON)"
559 depends on CPU_CAVIUM_OCTEON
560 select CRYPTO_MD5
561 select CRYPTO_HASH
562 help
563 MD5 message digest algorithm (RFC1321) implemented
564 using OCTEON crypto instructions, when available.
565
Markus Stockhausene8e59952015-03-01 19:30:46 +0100566config CRYPTO_MD5_PPC
567 tristate "MD5 digest algorithm (PPC)"
568 depends on PPC
569 select CRYPTO_HASH
570 help
571 MD5 message digest algorithm (RFC1321) implemented
572 in PPC assembler.
573
David S. Millerfa4dfed2012-08-19 21:51:26 -0700574config CRYPTO_MD5_SPARC64
575 tristate "MD5 digest algorithm (SPARC64)"
576 depends on SPARC64
577 select CRYPTO_MD5
578 select CRYPTO_HASH
579 help
580 MD5 message digest algorithm (RFC1321) implemented
581 using sparc64 crypto instructions, when available.
582
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800583config CRYPTO_MICHAEL_MIC
584 tristate "Michael MIC keyed digest algorithm"
Adrian-Ken Rueegsegger19e2bf12008-12-07 19:35:38 +0800585 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800586 help
587 Michael MIC is used for message integrity protection in TKIP
588 (IEEE 802.11i). This algorithm is required for TKIP, but it
589 should not be used for other purposes because of the weakness
590 of the algorithm.
591
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800592config CRYPTO_RMD128
Adrian Bunkb6d44342008-07-16 19:28:00 +0800593 tristate "RIPEMD-128 digest algorithm"
Herbert Xu7c4468b2008-11-08 09:10:40 +0800594 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800595 help
596 RIPEMD-128 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800597
Adrian Bunkb6d44342008-07-16 19:28:00 +0800598 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
Michael Witten35ed4b32011-07-09 04:02:31 +0000599 be used as a secure replacement for RIPEMD. For other use cases,
Adrian Bunkb6d44342008-07-16 19:28:00 +0800600 RIPEMD-160 should be used.
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800601
Adrian Bunkb6d44342008-07-16 19:28:00 +0800602 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800603 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800604
605config CRYPTO_RMD160
Adrian Bunkb6d44342008-07-16 19:28:00 +0800606 tristate "RIPEMD-160 digest algorithm"
Herbert Xue5835fb2008-11-08 09:18:51 +0800607 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800608 help
609 RIPEMD-160 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800610
Adrian Bunkb6d44342008-07-16 19:28:00 +0800611 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
612 to be used as a secure replacement for the 128-bit hash functions
613 MD4, MD5 and it's predecessor RIPEMD
614 (not to be confused with RIPEMD-128).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800615
Adrian Bunkb6d44342008-07-16 19:28:00 +0800616 It's speed is comparable to SHA1 and there are no known attacks
617 against RIPEMD-160.
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800618
Adrian Bunkb6d44342008-07-16 19:28:00 +0800619 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800620 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800621
622config CRYPTO_RMD256
Adrian Bunkb6d44342008-07-16 19:28:00 +0800623 tristate "RIPEMD-256 digest algorithm"
Herbert Xud8a5e2e2008-11-08 09:58:10 +0800624 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800625 help
626 RIPEMD-256 is an optional extension of RIPEMD-128 with a
627 256 bit hash. It is intended for applications that require
628 longer hash-results, without needing a larger security level
629 (than RIPEMD-128).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800630
Adrian Bunkb6d44342008-07-16 19:28:00 +0800631 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800632 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800633
634config CRYPTO_RMD320
Adrian Bunkb6d44342008-07-16 19:28:00 +0800635 tristate "RIPEMD-320 digest algorithm"
Herbert Xu3b8efb42008-11-08 10:11:09 +0800636 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800637 help
638 RIPEMD-320 is an optional extension of RIPEMD-160 with a
639 320 bit hash. It is intended for applications that require
640 longer hash-results, without needing a larger security level
641 (than RIPEMD-160).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800642
Adrian Bunkb6d44342008-07-16 19:28:00 +0800643 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800644 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800645
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800646config CRYPTO_SHA1
647 tristate "SHA1 digest algorithm"
Adrian-Ken Rueegsegger54ccb362008-12-02 21:08:20 +0800648 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800649 help
650 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
651
Mathias Krause66be8952011-08-04 20:19:25 +0200652config CRYPTO_SHA1_SSSE3
time38b6b72015-09-10 15:27:26 -0700653 tristate "SHA1 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Mathias Krause66be8952011-08-04 20:19:25 +0200654 depends on X86 && 64BIT
655 select CRYPTO_SHA1
656 select CRYPTO_HASH
657 help
658 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
659 using Supplemental SSE3 (SSSE3) instructions or Advanced Vector
time38b6b72015-09-10 15:27:26 -0700660 Extensions (AVX/AVX2) or SHA-NI(SHA Extensions New Instructions),
661 when available.
Mathias Krause66be8952011-08-04 20:19:25 +0200662
Tim Chen8275d1a2013-03-26 13:59:17 -0700663config CRYPTO_SHA256_SSSE3
time38b6b72015-09-10 15:27:26 -0700664 tristate "SHA256 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Tim Chen8275d1a2013-03-26 13:59:17 -0700665 depends on X86 && 64BIT
666 select CRYPTO_SHA256
667 select CRYPTO_HASH
668 help
669 SHA-256 secure hash standard (DFIPS 180-2) implemented
670 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
671 Extensions version 1 (AVX1), or Advanced Vector Extensions
time38b6b72015-09-10 15:27:26 -0700672 version 2 (AVX2) instructions, or SHA-NI (SHA Extensions New
673 Instructions) when available.
Tim Chen8275d1a2013-03-26 13:59:17 -0700674
Tim Chen87de4572013-03-26 14:00:02 -0700675config CRYPTO_SHA512_SSSE3
676 tristate "SHA512 digest algorithm (SSSE3/AVX/AVX2)"
677 depends on X86 && 64BIT
678 select CRYPTO_SHA512
679 select CRYPTO_HASH
680 help
681 SHA-512 secure hash standard (DFIPS 180-2) implemented
682 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
683 Extensions version 1 (AVX1), or Advanced Vector Extensions
684 version 2 (AVX2) instructions, when available.
685
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200686config CRYPTO_SHA1_OCTEON
687 tristate "SHA1 digest algorithm (OCTEON)"
688 depends on CPU_CAVIUM_OCTEON
689 select CRYPTO_SHA1
690 select CRYPTO_HASH
691 help
692 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
693 using OCTEON crypto instructions, when available.
694
David S. Miller4ff28d42012-08-19 15:41:53 -0700695config CRYPTO_SHA1_SPARC64
696 tristate "SHA1 digest algorithm (SPARC64)"
697 depends on SPARC64
698 select CRYPTO_SHA1
699 select CRYPTO_HASH
700 help
701 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
702 using sparc64 crypto instructions, when available.
703
Michael Ellerman323a6bf2012-09-13 23:00:49 +0000704config CRYPTO_SHA1_PPC
705 tristate "SHA1 digest algorithm (powerpc)"
706 depends on PPC
707 help
708 This is the powerpc hardware accelerated implementation of the
709 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
710
Markus Stockhausend9850fc2015-02-24 20:36:50 +0100711config CRYPTO_SHA1_PPC_SPE
712 tristate "SHA1 digest algorithm (PPC SPE)"
713 depends on PPC && SPE
714 help
715 SHA-1 secure hash standard (DFIPS 180-4) implemented
716 using powerpc SPE SIMD instruction set.
717
Tim Chen1e65b812014-07-31 10:29:51 -0700718config CRYPTO_SHA1_MB
719 tristate "SHA1 digest algorithm (x86_64 Multi-Buffer, Experimental)"
720 depends on X86 && 64BIT
721 select CRYPTO_SHA1
722 select CRYPTO_HASH
723 select CRYPTO_MCRYPTD
724 help
725 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
726 using multi-buffer technique. This algorithm computes on
727 multiple data lanes concurrently with SIMD instructions for
728 better throughput. It should not be enabled by default but
729 used when there is significant amount of work to keep the keep
730 the data lanes filled to get performance benefit. If the data
731 lanes remain unfilled, a flush operation will be initiated to
732 process the crypto jobs, adding a slight latency.
733
Megha Dey9be7e242016-06-23 18:40:43 -0700734config CRYPTO_SHA256_MB
735 tristate "SHA256 digest algorithm (x86_64 Multi-Buffer, Experimental)"
736 depends on X86 && 64BIT
737 select CRYPTO_SHA256
738 select CRYPTO_HASH
739 select CRYPTO_MCRYPTD
740 help
741 SHA-256 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
742 using multi-buffer technique. This algorithm computes on
743 multiple data lanes concurrently with SIMD instructions for
744 better throughput. It should not be enabled by default but
745 used when there is significant amount of work to keep the keep
746 the data lanes filled to get performance benefit. If the data
747 lanes remain unfilled, a flush operation will be initiated to
748 process the crypto jobs, adding a slight latency.
749
Megha Dey026bb8a2016-06-27 10:20:05 -0700750config CRYPTO_SHA512_MB
751 tristate "SHA512 digest algorithm (x86_64 Multi-Buffer, Experimental)"
752 depends on X86 && 64BIT
753 select CRYPTO_SHA512
754 select CRYPTO_HASH
755 select CRYPTO_MCRYPTD
756 help
757 SHA-512 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
758 using multi-buffer technique. This algorithm computes on
759 multiple data lanes concurrently with SIMD instructions for
760 better throughput. It should not be enabled by default but
761 used when there is significant amount of work to keep the keep
762 the data lanes filled to get performance benefit. If the data
763 lanes remain unfilled, a flush operation will be initiated to
764 process the crypto jobs, adding a slight latency.
765
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800766config CRYPTO_SHA256
767 tristate "SHA224 and SHA256 digest algorithm"
Adrian-Ken Rueegsegger50e109b52008-12-03 19:57:49 +0800768 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800769 help
770 SHA256 secure hash standard (DFIPS 180-2).
771
772 This version of SHA implements a 256 bit hash with 128 bits of
773 security against collision attacks.
774
Adrian Bunkb6d44342008-07-16 19:28:00 +0800775 This code also includes SHA-224, a 224 bit hash with 112 bits
776 of security against collision attacks.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800777
Markus Stockhausen2ecc1e92015-01-30 15:39:34 +0100778config CRYPTO_SHA256_PPC_SPE
779 tristate "SHA224 and SHA256 digest algorithm (PPC SPE)"
780 depends on PPC && SPE
781 select CRYPTO_SHA256
782 select CRYPTO_HASH
783 help
784 SHA224 and SHA256 secure hash standard (DFIPS 180-2)
785 implemented using powerpc SPE SIMD instruction set.
786
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200787config CRYPTO_SHA256_OCTEON
788 tristate "SHA224 and SHA256 digest algorithm (OCTEON)"
789 depends on CPU_CAVIUM_OCTEON
790 select CRYPTO_SHA256
791 select CRYPTO_HASH
792 help
793 SHA-256 secure hash standard (DFIPS 180-2) implemented
794 using OCTEON crypto instructions, when available.
795
David S. Miller86c93b22012-08-19 17:11:37 -0700796config CRYPTO_SHA256_SPARC64
797 tristate "SHA224 and SHA256 digest algorithm (SPARC64)"
798 depends on SPARC64
799 select CRYPTO_SHA256
800 select CRYPTO_HASH
801 help
802 SHA-256 secure hash standard (DFIPS 180-2) implemented
803 using sparc64 crypto instructions, when available.
804
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800805config CRYPTO_SHA512
806 tristate "SHA384 and SHA512 digest algorithms"
Adrian-Ken Rueegseggerbd9d20d2008-12-17 16:49:02 +1100807 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800808 help
809 SHA512 secure hash standard (DFIPS 180-2).
810
811 This version of SHA implements a 512 bit hash with 256 bits of
812 security against collision attacks.
813
814 This code also includes SHA-384, a 384 bit hash with 192 bits
815 of security against collision attacks.
816
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200817config CRYPTO_SHA512_OCTEON
818 tristate "SHA384 and SHA512 digest algorithms (OCTEON)"
819 depends on CPU_CAVIUM_OCTEON
820 select CRYPTO_SHA512
821 select CRYPTO_HASH
822 help
823 SHA-512 secure hash standard (DFIPS 180-2) implemented
824 using OCTEON crypto instructions, when available.
825
David S. Miller775e0c62012-08-19 17:37:56 -0700826config CRYPTO_SHA512_SPARC64
827 tristate "SHA384 and SHA512 digest algorithm (SPARC64)"
828 depends on SPARC64
829 select CRYPTO_SHA512
830 select CRYPTO_HASH
831 help
832 SHA-512 secure hash standard (DFIPS 180-2) implemented
833 using sparc64 crypto instructions, when available.
834
Jeff Garzik53964b92016-06-17 10:30:35 +0530835config CRYPTO_SHA3
836 tristate "SHA3 digest algorithm"
837 select CRYPTO_HASH
838 help
839 SHA-3 secure hash standard (DFIPS 202). It's based on
840 cryptographic sponge function family called Keccak.
841
842 References:
843 http://keccak.noekeon.org/
844
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800845config CRYPTO_TGR192
846 tristate "Tiger digest algorithms"
Adrian-Ken Rueegseggerf63fbd32008-12-03 19:58:32 +0800847 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800848 help
849 Tiger hash algorithm 192, 160 and 128-bit hashes
850
851 Tiger is a hash function optimized for 64-bit processors while
852 still having decent performance on 32-bit processors.
853 Tiger was developed by Ross Anderson and Eli Biham.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700854
855 See also:
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800856 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
857
858config CRYPTO_WP512
859 tristate "Whirlpool digest algorithms"
Adrian-Ken Rueegsegger49465102008-12-07 19:34:37 +0800860 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800861 help
862 Whirlpool hash algorithm 512, 384 and 256-bit hashes
863
864 Whirlpool-512 is part of the NESSIE cryptographic primitives.
865 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
866
867 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800868 <http://www.larc.usp.br/~pbarreto/WhirlpoolPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800869
Huang Ying0e1227d2009-10-19 11:53:06 +0900870config CRYPTO_GHASH_CLMUL_NI_INTEL
871 tristate "GHASH digest algorithm (CLMUL-NI accelerated)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800872 depends on X86 && 64BIT
Huang Ying0e1227d2009-10-19 11:53:06 +0900873 select CRYPTO_CRYPTD
874 help
875 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
876 The implementation is accelerated by CLMUL-NI of Intel.
877
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800878comment "Ciphers"
Linus Torvalds1da177e2005-04-16 15:20:36 -0700879
880config CRYPTO_AES
881 tristate "AES cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +1000882 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -0700883 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800884 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700885 algorithm.
886
887 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800888 both hardware and software across a wide range of computing
889 environments regardless of its use in feedback or non-feedback
890 modes. Its key setup time is excellent, and its key agility is
891 good. Rijndael's very low memory requirements make it very well
892 suited for restricted-space environments, in which it also
893 demonstrates excellent performance. Rijndael's operations are
894 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700895
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800896 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700897
898 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
899
Ard Biesheuvelb5e0b032017-02-02 16:37:40 +0000900config CRYPTO_AES_TI
901 tristate "Fixed time AES cipher"
902 select CRYPTO_ALGAPI
903 help
904 This is a generic implementation of AES that attempts to eliminate
905 data dependent latencies as much as possible without affecting
906 performance too much. It is intended for use by the generic CCM
907 and GCM drivers, and other CTR or CMAC/XCBC based modes that rely
908 solely on encryption (although decryption is supported as well, but
909 with a more dramatic performance hit)
910
911 Instead of using 16 lookup tables of 1 KB each, (8 for encryption and
912 8 for decryption), this implementation only uses just two S-boxes of
913 256 bytes each, and attempts to eliminate data dependent latencies by
914 prefetching the entire table into the cache at the start of each
915 block.
916
Linus Torvalds1da177e2005-04-16 15:20:36 -0700917config CRYPTO_AES_586
918 tristate "AES cipher algorithms (i586)"
Herbert Xucce9e062006-08-21 21:08:13 +1000919 depends on (X86 || UML_X86) && !64BIT
920 select CRYPTO_ALGAPI
Sebastian Siewior5157dea2007-11-10 19:07:16 +0800921 select CRYPTO_AES
Linus Torvalds1da177e2005-04-16 15:20:36 -0700922 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800923 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700924 algorithm.
925
926 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800927 both hardware and software across a wide range of computing
928 environments regardless of its use in feedback or non-feedback
929 modes. Its key setup time is excellent, and its key agility is
930 good. Rijndael's very low memory requirements make it very well
931 suited for restricted-space environments, in which it also
932 demonstrates excellent performance. Rijndael's operations are
933 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700934
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800935 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700936
937 See <http://csrc.nist.gov/encryption/aes/> for more information.
938
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700939config CRYPTO_AES_X86_64
940 tristate "AES cipher algorithms (x86_64)"
Herbert Xucce9e062006-08-21 21:08:13 +1000941 depends on (X86 || UML_X86) && 64BIT
942 select CRYPTO_ALGAPI
Sebastian Siewior81190b32007-11-08 21:25:04 +0800943 select CRYPTO_AES
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700944 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800945 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700946 algorithm.
947
948 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800949 both hardware and software across a wide range of computing
950 environments regardless of its use in feedback or non-feedback
951 modes. Its key setup time is excellent, and its key agility is
952 good. Rijndael's very low memory requirements make it very well
953 suited for restricted-space environments, in which it also
954 demonstrates excellent performance. Rijndael's operations are
955 among the easiest to defend against power and timing attacks.
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700956
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800957 The AES specifies three key sizes: 128, 192 and 256 bits
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700958
959 See <http://csrc.nist.gov/encryption/aes/> for more information.
960
Huang Ying54b6a1b2009-01-18 16:28:34 +1100961config CRYPTO_AES_NI_INTEL
962 tristate "AES cipher algorithms (AES-NI)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800963 depends on X86
Herbert Xu85671862016-11-22 20:08:33 +0800964 select CRYPTO_AEAD
Mathias Krause0d258ef2010-11-27 16:34:46 +0800965 select CRYPTO_AES_X86_64 if 64BIT
966 select CRYPTO_AES_586 if !64BIT
Huang Ying54b6a1b2009-01-18 16:28:34 +1100967 select CRYPTO_ALGAPI
Herbert Xu85671862016-11-22 20:08:33 +0800968 select CRYPTO_BLKCIPHER
Jussi Kivilinna7643a112013-04-10 18:39:20 +0300969 select CRYPTO_GLUE_HELPER_X86 if 64BIT
Herbert Xu85671862016-11-22 20:08:33 +0800970 select CRYPTO_SIMD
Huang Ying54b6a1b2009-01-18 16:28:34 +1100971 help
972 Use Intel AES-NI instructions for AES algorithm.
973
974 AES cipher algorithms (FIPS-197). AES uses the Rijndael
975 algorithm.
976
977 Rijndael appears to be consistently a very good performer in
978 both hardware and software across a wide range of computing
979 environments regardless of its use in feedback or non-feedback
980 modes. Its key setup time is excellent, and its key agility is
981 good. Rijndael's very low memory requirements make it very well
982 suited for restricted-space environments, in which it also
983 demonstrates excellent performance. Rijndael's operations are
984 among the easiest to defend against power and timing attacks.
985
986 The AES specifies three key sizes: 128, 192 and 256 bits
987
988 See <http://csrc.nist.gov/encryption/aes/> for more information.
989
Mathias Krause0d258ef2010-11-27 16:34:46 +0800990 In addition to AES cipher algorithm support, the acceleration
991 for some popular block cipher mode is supported too, including
992 ECB, CBC, LRW, PCBC, XTS. The 64 bit version has additional
993 acceleration for CTR.
Huang Ying2cf4ac82009-03-29 15:41:20 +0800994
David S. Miller9bf48522012-08-21 03:58:13 -0700995config CRYPTO_AES_SPARC64
996 tristate "AES cipher algorithms (SPARC64)"
997 depends on SPARC64
998 select CRYPTO_CRYPTD
999 select CRYPTO_ALGAPI
1000 help
1001 Use SPARC64 crypto opcodes for AES algorithm.
1002
1003 AES cipher algorithms (FIPS-197). AES uses the Rijndael
1004 algorithm.
1005
1006 Rijndael appears to be consistently a very good performer in
1007 both hardware and software across a wide range of computing
1008 environments regardless of its use in feedback or non-feedback
1009 modes. Its key setup time is excellent, and its key agility is
1010 good. Rijndael's very low memory requirements make it very well
1011 suited for restricted-space environments, in which it also
1012 demonstrates excellent performance. Rijndael's operations are
1013 among the easiest to defend against power and timing attacks.
1014
1015 The AES specifies three key sizes: 128, 192 and 256 bits
1016
1017 See <http://csrc.nist.gov/encryption/aes/> for more information.
1018
1019 In addition to AES cipher algorithm support, the acceleration
1020 for some popular block cipher mode is supported too, including
1021 ECB and CBC.
1022
Markus Stockhausen504c6142015-02-22 10:00:10 +01001023config CRYPTO_AES_PPC_SPE
1024 tristate "AES cipher algorithms (PPC SPE)"
1025 depends on PPC && SPE
1026 help
1027 AES cipher algorithms (FIPS-197). Additionally the acceleration
1028 for popular block cipher modes ECB, CBC, CTR and XTS is supported.
1029 This module should only be used for low power (router) devices
1030 without hardware AES acceleration (e.g. caam crypto). It reduces the
1031 size of the AES tables from 16KB to 8KB + 256 bytes and mitigates
1032 timining attacks. Nevertheless it might be not as secure as other
1033 architecture specific assembler implementations that work on 1KB
1034 tables or 256 bytes S-boxes.
1035
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001036config CRYPTO_ANUBIS
1037 tristate "Anubis cipher algorithm"
1038 select CRYPTO_ALGAPI
1039 help
1040 Anubis cipher algorithm.
1041
1042 Anubis is a variable key length cipher which can use keys from
1043 128 bits to 320 bits in length. It was evaluated as a entrant
1044 in the NESSIE competition.
1045
1046 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001047 <https://www.cosic.esat.kuleuven.be/nessie/reports/>
1048 <http://www.larc.usp.br/~pbarreto/AnubisPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001049
1050config CRYPTO_ARC4
1051 tristate "ARC4 cipher algorithm"
Sebastian Andrzej Siewiorb9b0f082012-06-26 18:13:46 +02001052 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001053 help
1054 ARC4 cipher algorithm.
1055
1056 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
1057 bits in length. This algorithm is required for driver-based
1058 WEP, but it should not be for other purposes because of the
1059 weakness of the algorithm.
1060
1061config CRYPTO_BLOWFISH
1062 tristate "Blowfish cipher algorithm"
1063 select CRYPTO_ALGAPI
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001064 select CRYPTO_BLOWFISH_COMMON
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001065 help
1066 Blowfish cipher algorithm, by Bruce Schneier.
1067
1068 This is a variable key length cipher which can use keys from 32
1069 bits to 448 bits in length. It's fast, simple and specifically
1070 designed for use on "large microprocessors".
1071
1072 See also:
1073 <http://www.schneier.com/blowfish.html>
1074
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001075config CRYPTO_BLOWFISH_COMMON
1076 tristate
1077 help
1078 Common parts of the Blowfish cipher algorithm shared by the
1079 generic c and the assembler implementations.
1080
1081 See also:
1082 <http://www.schneier.com/blowfish.html>
1083
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001084config CRYPTO_BLOWFISH_X86_64
1085 tristate "Blowfish cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001086 depends on X86 && 64BIT
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001087 select CRYPTO_ALGAPI
1088 select CRYPTO_BLOWFISH_COMMON
1089 help
1090 Blowfish cipher algorithm (x86_64), by Bruce Schneier.
1091
1092 This is a variable key length cipher which can use keys from 32
1093 bits to 448 bits in length. It's fast, simple and specifically
1094 designed for use on "large microprocessors".
1095
1096 See also:
1097 <http://www.schneier.com/blowfish.html>
1098
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001099config CRYPTO_CAMELLIA
1100 tristate "Camellia cipher algorithms"
1101 depends on CRYPTO
1102 select CRYPTO_ALGAPI
1103 help
1104 Camellia cipher algorithms module.
1105
1106 Camellia is a symmetric key block cipher developed jointly
1107 at NTT and Mitsubishi Electric Corporation.
1108
1109 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1110
1111 See also:
1112 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1113
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001114config CRYPTO_CAMELLIA_X86_64
1115 tristate "Camellia cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001116 depends on X86 && 64BIT
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001117 depends on CRYPTO
1118 select CRYPTO_ALGAPI
Jussi Kivilinna964263a2012-06-18 14:07:29 +03001119 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001120 select CRYPTO_LRW
1121 select CRYPTO_XTS
1122 help
1123 Camellia cipher algorithm module (x86_64).
1124
1125 Camellia is a symmetric key block cipher developed jointly
1126 at NTT and Mitsubishi Electric Corporation.
1127
1128 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1129
1130 See also:
1131 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1132
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001133config CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1134 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX)"
1135 depends on X86 && 64BIT
1136 depends on CRYPTO
1137 select CRYPTO_ALGAPI
1138 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001139 select CRYPTO_ABLK_HELPER
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001140 select CRYPTO_GLUE_HELPER_X86
1141 select CRYPTO_CAMELLIA_X86_64
1142 select CRYPTO_LRW
1143 select CRYPTO_XTS
1144 help
1145 Camellia cipher algorithm module (x86_64/AES-NI/AVX).
1146
1147 Camellia is a symmetric key block cipher developed jointly
1148 at NTT and Mitsubishi Electric Corporation.
1149
1150 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1151
1152 See also:
1153 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1154
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001155config CRYPTO_CAMELLIA_AESNI_AVX2_X86_64
1156 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX2)"
1157 depends on X86 && 64BIT
1158 depends on CRYPTO
1159 select CRYPTO_ALGAPI
1160 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001161 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001162 select CRYPTO_GLUE_HELPER_X86
1163 select CRYPTO_CAMELLIA_X86_64
1164 select CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1165 select CRYPTO_LRW
1166 select CRYPTO_XTS
1167 help
1168 Camellia cipher algorithm module (x86_64/AES-NI/AVX2).
1169
1170 Camellia is a symmetric key block cipher developed jointly
1171 at NTT and Mitsubishi Electric Corporation.
1172
1173 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1174
1175 See also:
1176 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1177
David S. Miller81658ad2012-08-28 12:05:54 -07001178config CRYPTO_CAMELLIA_SPARC64
1179 tristate "Camellia cipher algorithm (SPARC64)"
1180 depends on SPARC64
1181 depends on CRYPTO
1182 select CRYPTO_ALGAPI
1183 help
1184 Camellia cipher algorithm module (SPARC64).
1185
1186 Camellia is a symmetric key block cipher developed jointly
1187 at NTT and Mitsubishi Electric Corporation.
1188
1189 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1190
1191 See also:
1192 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1193
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001194config CRYPTO_CAST_COMMON
1195 tristate
1196 help
1197 Common parts of the CAST cipher algorithms shared by the
1198 generic c and the assembler implementations.
1199
Linus Torvalds1da177e2005-04-16 15:20:36 -07001200config CRYPTO_CAST5
1201 tristate "CAST5 (CAST-128) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001202 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001203 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001204 help
1205 The CAST5 encryption algorithm (synonymous with CAST-128) is
1206 described in RFC2144.
1207
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001208config CRYPTO_CAST5_AVX_X86_64
1209 tristate "CAST5 (CAST-128) cipher algorithm (x86_64/AVX)"
1210 depends on X86 && 64BIT
1211 select CRYPTO_ALGAPI
1212 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001213 select CRYPTO_ABLK_HELPER
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001214 select CRYPTO_CAST_COMMON
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001215 select CRYPTO_CAST5
1216 help
1217 The CAST5 encryption algorithm (synonymous with CAST-128) is
1218 described in RFC2144.
1219
1220 This module provides the Cast5 cipher algorithm that processes
1221 sixteen blocks parallel using the AVX instruction set.
1222
Linus Torvalds1da177e2005-04-16 15:20:36 -07001223config CRYPTO_CAST6
1224 tristate "CAST6 (CAST-256) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001225 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001226 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001227 help
1228 The CAST6 encryption algorithm (synonymous with CAST-256) is
1229 described in RFC2612.
1230
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001231config CRYPTO_CAST6_AVX_X86_64
1232 tristate "CAST6 (CAST-256) cipher algorithm (x86_64/AVX)"
1233 depends on X86 && 64BIT
1234 select CRYPTO_ALGAPI
1235 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001236 select CRYPTO_ABLK_HELPER
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001237 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001238 select CRYPTO_CAST_COMMON
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001239 select CRYPTO_CAST6
1240 select CRYPTO_LRW
1241 select CRYPTO_XTS
1242 help
1243 The CAST6 encryption algorithm (synonymous with CAST-256) is
1244 described in RFC2612.
1245
1246 This module provides the Cast6 cipher algorithm that processes
1247 eight blocks parallel using the AVX instruction set.
1248
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001249config CRYPTO_DES
1250 tristate "DES and Triple DES EDE cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +10001251 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001252 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001253 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
Linus Torvalds1da177e2005-04-16 15:20:36 -07001254
David S. Millerc5aac2d2012-08-25 22:37:23 -07001255config CRYPTO_DES_SPARC64
1256 tristate "DES and Triple DES EDE cipher algorithms (SPARC64)"
Dave Jones97da37b2012-10-02 17:13:20 -04001257 depends on SPARC64
David S. Millerc5aac2d2012-08-25 22:37:23 -07001258 select CRYPTO_ALGAPI
1259 select CRYPTO_DES
1260 help
1261 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3),
1262 optimized using SPARC64 crypto opcodes.
1263
Jussi Kivilinna6574e6c2014-06-09 20:59:54 +03001264config CRYPTO_DES3_EDE_X86_64
1265 tristate "Triple DES EDE cipher algorithm (x86-64)"
1266 depends on X86 && 64BIT
1267 select CRYPTO_ALGAPI
1268 select CRYPTO_DES
1269 help
1270 Triple DES EDE (FIPS 46-3) algorithm.
1271
1272 This module provides implementation of the Triple DES EDE cipher
1273 algorithm that is optimized for x86-64 processors. Two versions of
1274 algorithm are provided; regular processing one input block and
1275 one that processes three blocks parallel.
1276
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001277config CRYPTO_FCRYPT
1278 tristate "FCrypt cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001279 select CRYPTO_ALGAPI
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001280 select CRYPTO_BLKCIPHER
Linus Torvalds1da177e2005-04-16 15:20:36 -07001281 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001282 FCrypt algorithm used by RxRPC.
Linus Torvalds1da177e2005-04-16 15:20:36 -07001283
1284config CRYPTO_KHAZAD
1285 tristate "Khazad cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001286 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001287 help
1288 Khazad cipher algorithm.
1289
1290 Khazad was a finalist in the initial NESSIE competition. It is
1291 an algorithm optimized for 64-bit processors with good performance
1292 on 32-bit processors. Khazad uses an 128 bit key size.
1293
1294 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001295 <http://www.larc.usp.br/~pbarreto/KhazadPage.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001296
Tan Swee Heng2407d602007-11-23 19:45:00 +08001297config CRYPTO_SALSA20
Kees Cook3b4afaf2012-10-02 11:16:49 -07001298 tristate "Salsa20 stream cipher algorithm"
Tan Swee Heng2407d602007-11-23 19:45:00 +08001299 select CRYPTO_BLKCIPHER
1300 help
1301 Salsa20 stream cipher algorithm.
1302
1303 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1304 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1305
1306 The Salsa20 stream cipher algorithm is designed by Daniel J.
1307 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001308
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001309config CRYPTO_SALSA20_586
Kees Cook3b4afaf2012-10-02 11:16:49 -07001310 tristate "Salsa20 stream cipher algorithm (i586)"
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001311 depends on (X86 || UML_X86) && !64BIT
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001312 select CRYPTO_BLKCIPHER
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001313 help
1314 Salsa20 stream cipher algorithm.
1315
1316 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1317 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1318
1319 The Salsa20 stream cipher algorithm is designed by Daniel J.
1320 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1321
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001322config CRYPTO_SALSA20_X86_64
Kees Cook3b4afaf2012-10-02 11:16:49 -07001323 tristate "Salsa20 stream cipher algorithm (x86_64)"
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001324 depends on (X86 || UML_X86) && 64BIT
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001325 select CRYPTO_BLKCIPHER
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001326 help
1327 Salsa20 stream cipher algorithm.
1328
1329 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1330 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1331
1332 The Salsa20 stream cipher algorithm is designed by Daniel J.
1333 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1334
Martin Willic08d0e62015-06-01 13:43:56 +02001335config CRYPTO_CHACHA20
1336 tristate "ChaCha20 cipher algorithm"
1337 select CRYPTO_BLKCIPHER
1338 help
1339 ChaCha20 cipher algorithm, RFC7539.
1340
1341 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1342 Bernstein and further specified in RFC7539 for use in IETF protocols.
1343 This is the portable C implementation of ChaCha20.
1344
1345 See also:
1346 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1347
Martin Willic9320b62015-07-16 19:14:01 +02001348config CRYPTO_CHACHA20_X86_64
Martin Willi3d1e93c2015-07-16 19:14:03 +02001349 tristate "ChaCha20 cipher algorithm (x86_64/SSSE3/AVX2)"
Martin Willic9320b62015-07-16 19:14:01 +02001350 depends on X86 && 64BIT
1351 select CRYPTO_BLKCIPHER
1352 select CRYPTO_CHACHA20
1353 help
1354 ChaCha20 cipher algorithm, RFC7539.
1355
1356 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1357 Bernstein and further specified in RFC7539 for use in IETF protocols.
1358 This is the x86_64 assembler implementation using SIMD instructions.
1359
1360 See also:
1361 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1362
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001363config CRYPTO_SEED
1364 tristate "SEED cipher algorithm"
1365 select CRYPTO_ALGAPI
1366 help
1367 SEED cipher algorithm (RFC4269).
1368
1369 SEED is a 128-bit symmetric key block cipher that has been
1370 developed by KISA (Korea Information Security Agency) as a
1371 national standard encryption algorithm of the Republic of Korea.
1372 It is a 16 round block cipher with the key size of 128 bit.
1373
1374 See also:
1375 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
1376
1377config CRYPTO_SERPENT
1378 tristate "Serpent cipher algorithm"
1379 select CRYPTO_ALGAPI
1380 help
1381 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1382
1383 Keys are allowed to be from 0 to 256 bits in length, in steps
1384 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
1385 variant of Serpent for compatibility with old kerneli.org code.
1386
1387 See also:
1388 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1389
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001390config CRYPTO_SERPENT_SSE2_X86_64
1391 tristate "Serpent cipher algorithm (x86_64/SSE2)"
1392 depends on X86 && 64BIT
1393 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001394 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001395 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001396 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001397 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001398 select CRYPTO_LRW
1399 select CRYPTO_XTS
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001400 help
1401 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1402
1403 Keys are allowed to be from 0 to 256 bits in length, in steps
1404 of 8 bits.
1405
Masanari Iida1e6232f2015-04-04 00:20:30 +09001406 This module provides Serpent cipher algorithm that processes eight
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001407 blocks parallel using SSE2 instruction set.
1408
1409 See also:
1410 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1411
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001412config CRYPTO_SERPENT_SSE2_586
1413 tristate "Serpent cipher algorithm (i586/SSE2)"
1414 depends on X86 && !64BIT
1415 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001416 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001417 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001418 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001419 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001420 select CRYPTO_LRW
1421 select CRYPTO_XTS
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001422 help
1423 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1424
1425 Keys are allowed to be from 0 to 256 bits in length, in steps
1426 of 8 bits.
1427
1428 This module provides Serpent cipher algorithm that processes four
1429 blocks parallel using SSE2 instruction set.
1430
1431 See also:
1432 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1433
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001434config CRYPTO_SERPENT_AVX_X86_64
1435 tristate "Serpent cipher algorithm (x86_64/AVX)"
1436 depends on X86 && 64BIT
1437 select CRYPTO_ALGAPI
1438 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001439 select CRYPTO_ABLK_HELPER
Jussi Kivilinna1d0debb2012-06-18 14:07:24 +03001440 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001441 select CRYPTO_SERPENT
1442 select CRYPTO_LRW
1443 select CRYPTO_XTS
1444 help
1445 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1446
1447 Keys are allowed to be from 0 to 256 bits in length, in steps
1448 of 8 bits.
1449
1450 This module provides the Serpent cipher algorithm that processes
1451 eight blocks parallel using the AVX instruction set.
1452
1453 See also:
1454 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1455
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001456config CRYPTO_SERPENT_AVX2_X86_64
1457 tristate "Serpent cipher algorithm (x86_64/AVX2)"
1458 depends on X86 && 64BIT
1459 select CRYPTO_ALGAPI
1460 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001461 select CRYPTO_ABLK_HELPER
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001462 select CRYPTO_GLUE_HELPER_X86
1463 select CRYPTO_SERPENT
1464 select CRYPTO_SERPENT_AVX_X86_64
1465 select CRYPTO_LRW
1466 select CRYPTO_XTS
1467 help
1468 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1469
1470 Keys are allowed to be from 0 to 256 bits in length, in steps
1471 of 8 bits.
1472
1473 This module provides Serpent cipher algorithm that processes 16
1474 blocks parallel using AVX2 instruction set.
1475
1476 See also:
1477 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1478
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001479config CRYPTO_TEA
1480 tristate "TEA, XTEA and XETA cipher algorithms"
1481 select CRYPTO_ALGAPI
1482 help
1483 TEA cipher algorithm.
1484
1485 Tiny Encryption Algorithm is a simple cipher that uses
1486 many rounds for security. It is very fast and uses
1487 little memory.
1488
1489 Xtendend Tiny Encryption Algorithm is a modification to
1490 the TEA algorithm to address a potential key weakness
1491 in the TEA algorithm.
1492
1493 Xtendend Encryption Tiny Algorithm is a mis-implementation
1494 of the XTEA algorithm for compatibility purposes.
1495
1496config CRYPTO_TWOFISH
1497 tristate "Twofish cipher algorithm"
1498 select CRYPTO_ALGAPI
1499 select CRYPTO_TWOFISH_COMMON
1500 help
1501 Twofish cipher algorithm.
1502
1503 Twofish was submitted as an AES (Advanced Encryption Standard)
1504 candidate cipher by researchers at CounterPane Systems. It is a
1505 16 round block cipher supporting key sizes of 128, 192, and 256
1506 bits.
1507
1508 See also:
1509 <http://www.schneier.com/twofish.html>
1510
1511config CRYPTO_TWOFISH_COMMON
1512 tristate
1513 help
1514 Common parts of the Twofish cipher algorithm shared by the
1515 generic c and the assembler implementations.
1516
1517config CRYPTO_TWOFISH_586
1518 tristate "Twofish cipher algorithms (i586)"
1519 depends on (X86 || UML_X86) && !64BIT
1520 select CRYPTO_ALGAPI
1521 select CRYPTO_TWOFISH_COMMON
1522 help
1523 Twofish cipher algorithm.
1524
1525 Twofish was submitted as an AES (Advanced Encryption Standard)
1526 candidate cipher by researchers at CounterPane Systems. It is a
1527 16 round block cipher supporting key sizes of 128, 192, and 256
1528 bits.
1529
1530 See also:
1531 <http://www.schneier.com/twofish.html>
1532
1533config CRYPTO_TWOFISH_X86_64
1534 tristate "Twofish cipher algorithm (x86_64)"
1535 depends on (X86 || UML_X86) && 64BIT
1536 select CRYPTO_ALGAPI
1537 select CRYPTO_TWOFISH_COMMON
1538 help
1539 Twofish cipher algorithm (x86_64).
1540
1541 Twofish was submitted as an AES (Advanced Encryption Standard)
1542 candidate cipher by researchers at CounterPane Systems. It is a
1543 16 round block cipher supporting key sizes of 128, 192, and 256
1544 bits.
1545
1546 See also:
1547 <http://www.schneier.com/twofish.html>
1548
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001549config CRYPTO_TWOFISH_X86_64_3WAY
1550 tristate "Twofish cipher algorithm (x86_64, 3-way parallel)"
Al Virof21a7c12012-04-08 20:31:22 -04001551 depends on X86 && 64BIT
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001552 select CRYPTO_ALGAPI
1553 select CRYPTO_TWOFISH_COMMON
1554 select CRYPTO_TWOFISH_X86_64
Jussi Kivilinna414cb5e2012-06-18 14:07:34 +03001555 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinnae7cda5d2011-12-13 12:53:01 +02001556 select CRYPTO_LRW
1557 select CRYPTO_XTS
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001558 help
1559 Twofish cipher algorithm (x86_64, 3-way parallel).
1560
1561 Twofish was submitted as an AES (Advanced Encryption Standard)
1562 candidate cipher by researchers at CounterPane Systems. It is a
1563 16 round block cipher supporting key sizes of 128, 192, and 256
1564 bits.
1565
1566 This module provides Twofish cipher algorithm that processes three
1567 blocks parallel, utilizing resources of out-of-order CPUs better.
1568
1569 See also:
1570 <http://www.schneier.com/twofish.html>
1571
Johannes Goetzfried107778b2012-05-28 15:54:24 +02001572config CRYPTO_TWOFISH_AVX_X86_64
1573 tristate "Twofish cipher algorithm (x86_64/AVX)"
1574 depends on X86 && 64BIT
1575 select CRYPTO_ALGAPI
1576 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001577 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaa7378d42012-06-18 14:07:39 +03001578 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried107778b2012-05-28 15:54:24 +02001579 select CRYPTO_TWOFISH_COMMON
1580 select CRYPTO_TWOFISH_X86_64
1581 select CRYPTO_TWOFISH_X86_64_3WAY
1582 select CRYPTO_LRW
1583 select CRYPTO_XTS
1584 help
1585 Twofish cipher algorithm (x86_64/AVX).
1586
1587 Twofish was submitted as an AES (Advanced Encryption Standard)
1588 candidate cipher by researchers at CounterPane Systems. It is a
1589 16 round block cipher supporting key sizes of 128, 192, and 256
1590 bits.
1591
1592 This module provides the Twofish cipher algorithm that processes
1593 eight blocks parallel using the AVX Instruction Set.
1594
1595 See also:
1596 <http://www.schneier.com/twofish.html>
1597
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001598comment "Compression"
1599
Linus Torvalds1da177e2005-04-16 15:20:36 -07001600config CRYPTO_DEFLATE
1601 tristate "Deflate compression algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001602 select CRYPTO_ALGAPI
Giovanni Cabidduf6ded092016-10-21 13:19:53 +01001603 select CRYPTO_ACOMP2
Linus Torvalds1da177e2005-04-16 15:20:36 -07001604 select ZLIB_INFLATE
1605 select ZLIB_DEFLATE
1606 help
1607 This is the Deflate algorithm (RFC1951), specified for use in
1608 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001609
Linus Torvalds1da177e2005-04-16 15:20:36 -07001610 You will most probably want this if using IPSec.
1611
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001612config CRYPTO_LZO
1613 tristate "LZO compression algorithm"
1614 select CRYPTO_ALGAPI
Giovanni Cabidduac9d2c42016-10-21 13:19:49 +01001615 select CRYPTO_ACOMP2
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001616 select LZO_COMPRESS
1617 select LZO_DECOMPRESS
1618 help
1619 This is the LZO algorithm.
1620
Seth Jennings35a1fc12012-07-19 09:42:41 -05001621config CRYPTO_842
1622 tristate "842 compression algorithm"
Dan Streetman2062c5b2015-05-07 13:49:15 -04001623 select CRYPTO_ALGAPI
Giovanni Cabiddu6a8de3a2016-10-21 13:19:52 +01001624 select CRYPTO_ACOMP2
Dan Streetman2062c5b2015-05-07 13:49:15 -04001625 select 842_COMPRESS
1626 select 842_DECOMPRESS
Seth Jennings35a1fc12012-07-19 09:42:41 -05001627 help
1628 This is the 842 algorithm.
1629
Chanho Min0ea85302013-07-08 16:01:51 -07001630config CRYPTO_LZ4
1631 tristate "LZ4 compression algorithm"
1632 select CRYPTO_ALGAPI
Giovanni Cabiddu8cd93302016-10-21 13:19:50 +01001633 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001634 select LZ4_COMPRESS
1635 select LZ4_DECOMPRESS
1636 help
1637 This is the LZ4 algorithm.
1638
1639config CRYPTO_LZ4HC
1640 tristate "LZ4HC compression algorithm"
1641 select CRYPTO_ALGAPI
Giovanni Cabiddu91d53d92016-10-21 13:19:51 +01001642 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001643 select LZ4HC_COMPRESS
1644 select LZ4_DECOMPRESS
1645 help
1646 This is the LZ4 high compression mode algorithm.
1647
Neil Horman17f0f4a2008-08-14 22:15:52 +10001648comment "Random Number Generation"
1649
1650config CRYPTO_ANSI_CPRNG
1651 tristate "Pseudo Random Number Generation for Cryptographic modules"
1652 select CRYPTO_AES
1653 select CRYPTO_RNG
Neil Horman17f0f4a2008-08-14 22:15:52 +10001654 help
1655 This option enables the generic pseudo random number generator
1656 for cryptographic modules. Uses the Algorithm specified in
Jiri Kosina7dd607e2010-01-27 01:00:10 +01001657 ANSI X9.31 A.2.4. Note that this option must be enabled if
1658 CRYPTO_FIPS is selected
Neil Horman17f0f4a2008-08-14 22:15:52 +10001659
Herbert Xuf2c89a12014-07-04 22:15:08 +08001660menuconfig CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001661 tristate "NIST SP800-90A DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001662 help
1663 NIST SP800-90A compliant DRBG. In the following submenu, one or
1664 more of the DRBG types must be selected.
1665
Herbert Xuf2c89a12014-07-04 22:15:08 +08001666if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001667
1668config CRYPTO_DRBG_HMAC
Herbert Xu401e4232015-06-03 14:49:31 +08001669 bool
Stephan Mueller419090c2014-05-31 17:22:31 +02001670 default y
Stephan Mueller419090c2014-05-31 17:22:31 +02001671 select CRYPTO_HMAC
Herbert Xu826775b2015-06-11 08:55:10 +08001672 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001673
1674config CRYPTO_DRBG_HASH
1675 bool "Enable Hash DRBG"
Herbert Xu826775b2015-06-11 08:55:10 +08001676 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001677 help
1678 Enable the Hash DRBG variant as defined in NIST SP800-90A.
1679
1680config CRYPTO_DRBG_CTR
1681 bool "Enable CTR DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001682 select CRYPTO_AES
Stephan Mueller35591282016-06-14 07:34:13 +02001683 depends on CRYPTO_CTR
Stephan Mueller419090c2014-05-31 17:22:31 +02001684 help
1685 Enable the CTR DRBG variant as defined in NIST SP800-90A.
1686
Herbert Xuf2c89a12014-07-04 22:15:08 +08001687config CRYPTO_DRBG
1688 tristate
Herbert Xu401e4232015-06-03 14:49:31 +08001689 default CRYPTO_DRBG_MENU
Herbert Xuf2c89a12014-07-04 22:15:08 +08001690 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001691 select CRYPTO_JITTERENTROPY
Herbert Xuf2c89a12014-07-04 22:15:08 +08001692
1693endif # if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001694
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001695config CRYPTO_JITTERENTROPY
1696 tristate "Jitterentropy Non-Deterministic Random Number Generator"
Arnd Bergmann2f313e02016-01-26 14:47:10 +01001697 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001698 help
1699 The Jitterentropy RNG is a noise that is intended
1700 to provide seed to another RNG. The RNG does not
1701 perform any cryptographic whitening of the generated
1702 random numbers. This Jitterentropy RNG registers with
1703 the kernel crypto API and can be used by any caller.
1704
Herbert Xu03c8efc2010-10-19 21:12:39 +08001705config CRYPTO_USER_API
1706 tristate
1707
Herbert Xufe869cd2010-10-19 21:23:00 +08001708config CRYPTO_USER_API_HASH
1709 tristate "User-space interface for hash algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001710 depends on NET
Herbert Xufe869cd2010-10-19 21:23:00 +08001711 select CRYPTO_HASH
1712 select CRYPTO_USER_API
1713 help
1714 This option enables the user-spaces interface for hash
1715 algorithms.
1716
Herbert Xu8ff59092010-10-19 21:31:55 +08001717config CRYPTO_USER_API_SKCIPHER
1718 tristate "User-space interface for symmetric key cipher algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001719 depends on NET
Herbert Xu8ff59092010-10-19 21:31:55 +08001720 select CRYPTO_BLKCIPHER
1721 select CRYPTO_USER_API
1722 help
1723 This option enables the user-spaces interface for symmetric
1724 key cipher algorithms.
1725
Stephan Mueller2f3755382014-12-25 23:00:39 +01001726config CRYPTO_USER_API_RNG
1727 tristate "User-space interface for random number generator algorithms"
1728 depends on NET
1729 select CRYPTO_RNG
1730 select CRYPTO_USER_API
1731 help
1732 This option enables the user-spaces interface for random
1733 number generator algorithms.
1734
Herbert Xub64a2d92015-05-28 11:30:35 +08001735config CRYPTO_USER_API_AEAD
1736 tristate "User-space interface for AEAD cipher algorithms"
1737 depends on NET
1738 select CRYPTO_AEAD
1739 select CRYPTO_USER_API
1740 help
1741 This option enables the user-spaces interface for AEAD
1742 cipher algorithms.
1743
Dmitry Kasatkinee089972013-05-06 15:40:01 +03001744config CRYPTO_HASH_INFO
1745 bool
1746
Linus Torvalds1da177e2005-04-16 15:20:36 -07001747source "drivers/crypto/Kconfig"
David Howells964f3b32012-09-13 15:17:21 +01001748source crypto/asymmetric_keys/Kconfig
David Howellscfc411e2015-08-14 15:20:41 +01001749source certs/Kconfig
Linus Torvalds1da177e2005-04-16 15:20:36 -07001750
Herbert Xucce9e062006-08-21 21:08:13 +10001751endif # if CRYPTO