blob: 5a51b877277e203a34f00210f07bc5302e7ae71b [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001#
Dan Williams685784a2007-07-09 11:56:42 -07002# Generic algorithms support
3#
4config XOR_BLOCKS
5 tristate
6
7#
Dan Williams9bc89cd2007-01-02 11:10:44 -07008# async_tx api: hardware offloaded memory transfer/transform support
9#
10source "crypto/async_tx/Kconfig"
11
12#
Linus Torvalds1da177e2005-04-16 15:20:36 -070013# Cryptographic API Configuration
14#
Jan Engelhardt2e290f42007-05-18 15:11:01 +100015menuconfig CRYPTO
Sebastian Siewiorc3715cb92008-03-30 16:36:09 +080016 tristate "Cryptographic API"
Linus Torvalds1da177e2005-04-16 15:20:36 -070017 help
18 This option provides the core Cryptographic API.
19
Herbert Xucce9e062006-08-21 21:08:13 +100020if CRYPTO
21
Sebastian Siewior584fffc2008-04-05 21:04:48 +080022comment "Crypto core or helper"
23
Neil Hormanccb778e2008-08-05 14:13:08 +080024config CRYPTO_FIPS
25 bool "FIPS 200 compliance"
Herbert Xuf2c89a12014-07-04 22:15:08 +080026 depends on (CRYPTO_ANSI_CPRNG || CRYPTO_DRBG) && !CRYPTO_MANAGER_DISABLE_TESTS
Alec Ari1f696092016-10-04 19:34:30 -030027 depends on (MODULE_SIG || !MODULES)
Neil Hormanccb778e2008-08-05 14:13:08 +080028 help
29 This options enables the fips boot option which is
30 required if you want to system to operate in a FIPS 200
31 certification. You should say no unless you know what
Chuck Ebberte84c5482010-09-03 19:17:49 +080032 this is.
Neil Hormanccb778e2008-08-05 14:13:08 +080033
Herbert Xucce9e062006-08-21 21:08:13 +100034config CRYPTO_ALGAPI
35 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110036 select CRYPTO_ALGAPI2
Herbert Xucce9e062006-08-21 21:08:13 +100037 help
38 This option provides the API for cryptographic algorithms.
39
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110040config CRYPTO_ALGAPI2
41 tristate
42
Herbert Xu1ae97822007-08-30 15:36:14 +080043config CRYPTO_AEAD
44 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110045 select CRYPTO_AEAD2
Herbert Xu1ae97822007-08-30 15:36:14 +080046 select CRYPTO_ALGAPI
47
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110048config CRYPTO_AEAD2
49 tristate
50 select CRYPTO_ALGAPI2
Herbert Xu149a3972015-08-13 17:28:58 +080051 select CRYPTO_NULL2
52 select CRYPTO_RNG2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110053
Herbert Xu5cde0af2006-08-22 00:07:53 +100054config CRYPTO_BLKCIPHER
55 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110056 select CRYPTO_BLKCIPHER2
Herbert Xu5cde0af2006-08-22 00:07:53 +100057 select CRYPTO_ALGAPI
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110058
59config CRYPTO_BLKCIPHER2
60 tristate
61 select CRYPTO_ALGAPI2
62 select CRYPTO_RNG2
Huang Ying0a2e8212009-02-19 14:44:02 +080063 select CRYPTO_WORKQUEUE
Herbert Xu5cde0af2006-08-22 00:07:53 +100064
Herbert Xu055bcee2006-08-19 22:24:23 +100065config CRYPTO_HASH
66 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110067 select CRYPTO_HASH2
Herbert Xu055bcee2006-08-19 22:24:23 +100068 select CRYPTO_ALGAPI
69
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110070config CRYPTO_HASH2
71 tristate
72 select CRYPTO_ALGAPI2
73
Neil Horman17f0f4a2008-08-14 22:15:52 +100074config CRYPTO_RNG
75 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110076 select CRYPTO_RNG2
Neil Horman17f0f4a2008-08-14 22:15:52 +100077 select CRYPTO_ALGAPI
78
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110079config CRYPTO_RNG2
80 tristate
81 select CRYPTO_ALGAPI2
82
Herbert Xu401e4232015-06-03 14:49:31 +080083config CRYPTO_RNG_DEFAULT
84 tristate
85 select CRYPTO_DRBG_MENU
86
Tadeusz Struk3c339ab2015-06-16 10:30:55 -070087config CRYPTO_AKCIPHER2
88 tristate
89 select CRYPTO_ALGAPI2
90
91config CRYPTO_AKCIPHER
92 tristate
93 select CRYPTO_AKCIPHER2
94 select CRYPTO_ALGAPI
95
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +010096config CRYPTO_KPP2
97 tristate
98 select CRYPTO_ALGAPI2
99
100config CRYPTO_KPP
101 tristate
102 select CRYPTO_ALGAPI
103 select CRYPTO_KPP2
104
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100105config CRYPTO_ACOMP2
106 tristate
107 select CRYPTO_ALGAPI2
108
109config CRYPTO_ACOMP
110 tristate
111 select CRYPTO_ALGAPI
112 select CRYPTO_ACOMP2
113
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700114config CRYPTO_RSA
115 tristate "RSA algorithm"
Tadeusz Struk425e0172015-06-19 10:27:39 -0700116 select CRYPTO_AKCIPHER
Tadeusz Struk58446fe2016-05-04 06:38:46 -0700117 select CRYPTO_MANAGER
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700118 select MPILIB
119 select ASN1
120 help
121 Generic implementation of the RSA public key algorithm.
122
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100123config CRYPTO_DH
124 tristate "Diffie-Hellman algorithm"
125 select CRYPTO_KPP
126 select MPILIB
127 help
128 Generic implementation of the Diffie-Hellman algorithm.
129
Salvatore Benedetto3c4b2392016-06-22 17:49:15 +0100130config CRYPTO_ECDH
131 tristate "ECDH algorithm"
132 select CRYTPO_KPP
133 help
134 Generic implementation of the ECDH algorithm
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100135
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000136config CRYPTO_MANAGER
137 tristate "Cryptographic algorithm manager"
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100138 select CRYPTO_MANAGER2
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000139 help
140 Create default cryptographic template instantiations such as
141 cbc(aes).
142
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100143config CRYPTO_MANAGER2
144 def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
145 select CRYPTO_AEAD2
146 select CRYPTO_HASH2
147 select CRYPTO_BLKCIPHER2
Tadeusz Struk946cc462015-06-16 10:31:06 -0700148 select CRYPTO_AKCIPHER2
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +0100149 select CRYPTO_KPP2
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100150 select CRYPTO_ACOMP2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100151
Steffen Klasserta38f7902011-09-27 07:23:50 +0200152config CRYPTO_USER
153 tristate "Userspace cryptographic algorithm configuration"
Herbert Xu5db017a2011-11-01 12:12:43 +1100154 depends on NET
Steffen Klasserta38f7902011-09-27 07:23:50 +0200155 select CRYPTO_MANAGER
156 help
Valdis.Kletnieks@vt.edud19978f2011-11-09 01:29:20 -0500157 Userspace configuration for cryptographic instantiations such as
Steffen Klasserta38f7902011-09-27 07:23:50 +0200158 cbc(aes).
159
Herbert Xu326a6342010-08-06 09:40:28 +0800160config CRYPTO_MANAGER_DISABLE_TESTS
161 bool "Disable run-time self tests"
Herbert Xu00ca28a2010-08-06 10:34:00 +0800162 default y
163 depends on CRYPTO_MANAGER2
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000164 help
Herbert Xu326a6342010-08-06 09:40:28 +0800165 Disable run-time self tests that normally take place at
166 algorithm registration.
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000167
Rik Snelc494e072006-11-29 18:59:44 +1100168config CRYPTO_GF128MUL
Jussi Kivilinna08c70fc2011-12-13 12:53:22 +0200169 tristate "GF(2^128) multiplication functions"
Rik Snelc494e072006-11-29 18:59:44 +1100170 help
171 Efficient table driven implementation of multiplications in the
172 field GF(2^128). This is needed by some cypher modes. This
173 option will be selected automatically if you select such a
174 cipher mode. Only select this option by hand if you expect to load
175 an external module that requires these functions.
176
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800177config CRYPTO_NULL
178 tristate "Null algorithms"
Herbert Xu149a3972015-08-13 17:28:58 +0800179 select CRYPTO_NULL2
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800180 help
181 These are 'Null' algorithms, used by IPsec, which do nothing.
182
Herbert Xu149a3972015-08-13 17:28:58 +0800183config CRYPTO_NULL2
Herbert Xudd43c4e2015-08-17 20:39:40 +0800184 tristate
Herbert Xu149a3972015-08-13 17:28:58 +0800185 select CRYPTO_ALGAPI2
186 select CRYPTO_BLKCIPHER2
187 select CRYPTO_HASH2
188
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100189config CRYPTO_PCRYPT
Kees Cook3b4afaf2012-10-02 11:16:49 -0700190 tristate "Parallel crypto engine"
191 depends on SMP
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100192 select PADATA
193 select CRYPTO_MANAGER
194 select CRYPTO_AEAD
195 help
196 This converts an arbitrary crypto algorithm into a parallel
197 algorithm that executes in kernel threads.
198
Huang Ying25c38d32009-02-19 14:33:40 +0800199config CRYPTO_WORKQUEUE
200 tristate
201
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800202config CRYPTO_CRYPTD
203 tristate "Software async crypto daemon"
Herbert Xudb131ef2006-09-21 11:44:08 +1000204 select CRYPTO_BLKCIPHER
Loc Hob8a28252008-05-14 21:23:00 +0800205 select CRYPTO_HASH
Herbert Xu43518402006-10-16 21:28:58 +1000206 select CRYPTO_MANAGER
Huang Ying254eff72009-02-19 14:42:19 +0800207 select CRYPTO_WORKQUEUE
Herbert Xudb131ef2006-09-21 11:44:08 +1000208 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800209 This is a generic software asynchronous crypto daemon that
210 converts an arbitrary synchronous software crypto algorithm
211 into an asynchronous algorithm that executes in a kernel thread.
212
Tim Chen1e65b812014-07-31 10:29:51 -0700213config CRYPTO_MCRYPTD
214 tristate "Software async multi-buffer crypto daemon"
215 select CRYPTO_BLKCIPHER
216 select CRYPTO_HASH
217 select CRYPTO_MANAGER
218 select CRYPTO_WORKQUEUE
219 help
220 This is a generic software asynchronous crypto daemon that
221 provides the kernel thread to assist multi-buffer crypto
222 algorithms for submitting jobs and flushing jobs in multi-buffer
223 crypto algorithms. Multi-buffer crypto algorithms are executed
224 in the context of this kernel thread and drivers can post
Ted Percival0e566732014-09-04 15:18:21 +0800225 their crypto request asynchronously to be processed by this daemon.
Tim Chen1e65b812014-07-31 10:29:51 -0700226
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800227config CRYPTO_AUTHENC
228 tristate "Authenc support"
229 select CRYPTO_AEAD
230 select CRYPTO_BLKCIPHER
231 select CRYPTO_MANAGER
232 select CRYPTO_HASH
Herbert Xue94c6a72015-08-04 21:23:14 +0800233 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800234 help
235 Authenc: Combined mode wrapper for IPsec.
236 This is required for IPSec.
237
238config CRYPTO_TEST
239 tristate "Testing module"
240 depends on m
Herbert Xuda7f0332008-07-31 17:08:25 +0800241 select CRYPTO_MANAGER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800242 help
243 Quick & dirty crypto test module.
244
Ard Biesheuvela62b01c2013-09-20 09:55:40 +0200245config CRYPTO_ABLK_HELPER
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300246 tristate
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300247 select CRYPTO_CRYPTD
248
Herbert Xu266d0512016-11-22 20:08:25 +0800249config CRYPTO_SIMD
250 tristate
251 select CRYPTO_CRYPTD
252
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300253config CRYPTO_GLUE_HELPER_X86
254 tristate
255 depends on X86
Herbert Xu065ce322016-11-22 20:08:29 +0800256 select CRYPTO_BLKCIPHER
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300257
Baolin Wang735d37b2016-01-26 20:25:39 +0800258config CRYPTO_ENGINE
259 tristate
260
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800261comment "Authenticated Encryption with Associated Data"
262
263config CRYPTO_CCM
264 tristate "CCM support"
265 select CRYPTO_CTR
Ard Biesheuvelf15f05b2017-02-03 14:49:36 +0000266 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800267 select CRYPTO_AEAD
268 help
269 Support for Counter with CBC MAC. Required for IPsec.
270
271config CRYPTO_GCM
272 tristate "GCM/GMAC support"
273 select CRYPTO_CTR
274 select CRYPTO_AEAD
Huang Ying9382d972009-08-06 15:34:26 +1000275 select CRYPTO_GHASH
Jussi Kivilinna9489667d2013-04-07 16:43:41 +0300276 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800277 help
278 Support for Galois/Counter Mode (GCM) and Galois Message
279 Authentication Code (GMAC). Required for IPSec.
280
Martin Willi71ebc4d2015-06-01 13:44:00 +0200281config CRYPTO_CHACHA20POLY1305
282 tristate "ChaCha20-Poly1305 AEAD support"
283 select CRYPTO_CHACHA20
284 select CRYPTO_POLY1305
285 select CRYPTO_AEAD
286 help
287 ChaCha20-Poly1305 AEAD support, RFC7539.
288
289 Support for the AEAD wrapper using the ChaCha20 stream cipher combined
290 with the Poly1305 authenticator. It is defined in RFC7539 for use in
291 IETF protocols.
292
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800293config CRYPTO_SEQIV
294 tristate "Sequence Number IV Generator"
295 select CRYPTO_AEAD
296 select CRYPTO_BLKCIPHER
Herbert Xu856e3f402015-05-21 15:11:13 +0800297 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800298 select CRYPTO_RNG_DEFAULT
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800299 help
300 This IV generator generates an IV based on a sequence number by
301 xoring it with a salt. This algorithm is mainly useful for CTR
302
Herbert Xua10f5542015-05-21 15:11:15 +0800303config CRYPTO_ECHAINIV
304 tristate "Encrypted Chain IV Generator"
305 select CRYPTO_AEAD
306 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800307 select CRYPTO_RNG_DEFAULT
Herbert Xu34912442015-06-03 14:49:29 +0800308 default m
Herbert Xua10f5542015-05-21 15:11:15 +0800309 help
310 This IV generator generates an IV based on the encryption of
311 a sequence number xored with a salt. This is the default
312 algorithm for CBC.
313
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800314comment "Block modes"
Herbert Xudb131ef2006-09-21 11:44:08 +1000315
316config CRYPTO_CBC
317 tristate "CBC support"
318 select CRYPTO_BLKCIPHER
Herbert Xu43518402006-10-16 21:28:58 +1000319 select CRYPTO_MANAGER
Herbert Xudb131ef2006-09-21 11:44:08 +1000320 help
321 CBC: Cipher Block Chaining mode
322 This block cipher algorithm is required for IPSec.
323
Joy Latten23e353c2007-10-23 08:50:32 +0800324config CRYPTO_CTR
325 tristate "CTR support"
326 select CRYPTO_BLKCIPHER
Herbert Xu0a270322007-11-30 21:38:37 +1100327 select CRYPTO_SEQIV
Joy Latten23e353c2007-10-23 08:50:32 +0800328 select CRYPTO_MANAGER
Joy Latten23e353c2007-10-23 08:50:32 +0800329 help
330 CTR: Counter mode
331 This block cipher algorithm is required for IPSec.
332
Kevin Coffman76cb9522008-03-24 21:26:16 +0800333config CRYPTO_CTS
334 tristate "CTS support"
335 select CRYPTO_BLKCIPHER
336 help
337 CTS: Cipher Text Stealing
338 This is the Cipher Text Stealing mode as described by
339 Section 8 of rfc2040 and referenced by rfc3962.
340 (rfc3962 includes errata information in its Appendix A)
341 This mode is required for Kerberos gss mechanism support
342 for AES encryption.
343
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800344config CRYPTO_ECB
345 tristate "ECB support"
Herbert Xu653ebd92007-11-27 19:48:27 +0800346 select CRYPTO_BLKCIPHER
Herbert Xu124b53d2007-04-16 20:49:20 +1000347 select CRYPTO_MANAGER
348 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800349 ECB: Electronic CodeBook mode
350 This is the simplest block cipher algorithm. It simply encrypts
351 the input block by block.
Herbert Xu124b53d2007-04-16 20:49:20 +1000352
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800353config CRYPTO_LRW
Jussi Kivilinna2470a2b2011-12-13 12:52:51 +0200354 tristate "LRW support"
David Howells90831632006-12-16 12:13:14 +1100355 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800356 select CRYPTO_MANAGER
357 select CRYPTO_GF128MUL
David Howells90831632006-12-16 12:13:14 +1100358 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800359 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
360 narrow block cipher mode for dm-crypt. Use it with cipher
361 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
362 The first 128, 192 or 256 bits in the key are used for AES and the
363 rest is used to tie each cipher block to its logical position.
David Howells90831632006-12-16 12:13:14 +1100364
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800365config CRYPTO_PCBC
366 tristate "PCBC support"
367 select CRYPTO_BLKCIPHER
368 select CRYPTO_MANAGER
369 help
370 PCBC: Propagating Cipher Block Chaining mode
371 This block cipher algorithm is required for RxRPC.
372
373config CRYPTO_XTS
Jussi Kivilinna5bcf8e62011-12-13 12:52:56 +0200374 tristate "XTS support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800375 select CRYPTO_BLKCIPHER
376 select CRYPTO_MANAGER
377 select CRYPTO_GF128MUL
378 help
379 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
380 key size 256, 384 or 512 bits. This implementation currently
381 can't handle a sectorsize which is not a multiple of 16 bytes.
382
Stephan Mueller1c49678e2015-09-21 20:58:56 +0200383config CRYPTO_KEYWRAP
384 tristate "Key wrapping support"
385 select CRYPTO_BLKCIPHER
386 help
387 Support for key wrapping (NIST SP800-38F / RFC3394) without
388 padding.
389
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800390comment "Hash modes"
391
Jussi Kivilinna93b5e862013-04-08 10:48:44 +0300392config CRYPTO_CMAC
393 tristate "CMAC support"
394 select CRYPTO_HASH
395 select CRYPTO_MANAGER
396 help
397 Cipher-based Message Authentication Code (CMAC) specified by
398 The National Institute of Standards and Technology (NIST).
399
400 https://tools.ietf.org/html/rfc4493
401 http://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf
402
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800403config CRYPTO_HMAC
404 tristate "HMAC support"
405 select CRYPTO_HASH
406 select CRYPTO_MANAGER
407 help
408 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
409 This is required for IPSec.
410
411config CRYPTO_XCBC
412 tristate "XCBC support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800413 select CRYPTO_HASH
414 select CRYPTO_MANAGER
415 help
416 XCBC: Keyed-Hashing with encryption algorithm
417 http://www.ietf.org/rfc/rfc3566.txt
418 http://csrc.nist.gov/encryption/modes/proposedmodes/
419 xcbc-mac/xcbc-mac-spec.pdf
420
Shane Wangf1939f72009-09-02 20:05:22 +1000421config CRYPTO_VMAC
422 tristate "VMAC support"
Shane Wangf1939f72009-09-02 20:05:22 +1000423 select CRYPTO_HASH
424 select CRYPTO_MANAGER
425 help
426 VMAC is a message authentication algorithm designed for
427 very high speed on 64-bit architectures.
428
429 See also:
430 <http://fastcrypto.org/vmac>
431
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800432comment "Digest"
433
434config CRYPTO_CRC32C
435 tristate "CRC32c CRC algorithm"
Herbert Xu5773a3e2008-07-08 20:54:28 +0800436 select CRYPTO_HASH
Darrick J. Wong6a0962b2012-03-23 15:02:25 -0700437 select CRC32
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800438 help
439 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
440 by iSCSI for header and data digests and by others.
Herbert Xu69c35ef2008-11-07 15:11:47 +0800441 See Castagnoli93. Module will be crc32c.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800442
Austin Zhang8cb51ba2008-08-07 09:57:03 +0800443config CRYPTO_CRC32C_INTEL
444 tristate "CRC32c INTEL hardware acceleration"
445 depends on X86
446 select CRYPTO_HASH
447 help
448 In Intel processor with SSE4.2 supported, the processor will
449 support CRC32C implementation using hardware accelerated CRC32
450 instruction. This option will create 'crc32c-intel' module,
451 which will enable any routine to use the CRC32 instruction to
452 gain performance compared with software implementation.
453 Module will be crc32c-intel.
454
Jean Delvare7cf31862016-11-22 10:32:44 +0100455config CRYPTO_CRC32C_VPMSUM
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000456 tristate "CRC32c CRC algorithm (powerpc64)"
Michael Ellermanc12abf32016-08-09 08:46:15 +1000457 depends on PPC64 && ALTIVEC
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000458 select CRYPTO_HASH
459 select CRC32
460 help
461 CRC32c algorithm implemented using vector polynomial multiply-sum
462 (vpmsum) instructions, introduced in POWER8. Enable on POWER8
463 and newer processors for improved performance.
464
465
David S. Miller442a7c42012-08-22 20:47:36 -0700466config CRYPTO_CRC32C_SPARC64
467 tristate "CRC32c CRC algorithm (SPARC64)"
468 depends on SPARC64
469 select CRYPTO_HASH
470 select CRC32
471 help
472 CRC32c CRC algorithm implemented using sparc64 crypto instructions,
473 when available.
474
Alexander Boyko78c37d12013-01-10 18:54:59 +0400475config CRYPTO_CRC32
476 tristate "CRC32 CRC algorithm"
477 select CRYPTO_HASH
478 select CRC32
479 help
480 CRC-32-IEEE 802.3 cyclic redundancy-check algorithm.
481 Shash crypto api wrappers to crc32_le function.
482
483config CRYPTO_CRC32_PCLMUL
484 tristate "CRC32 PCLMULQDQ hardware acceleration"
485 depends on X86
486 select CRYPTO_HASH
487 select CRC32
488 help
489 From Intel Westmere and AMD Bulldozer processor with SSE4.2
490 and PCLMULQDQ supported, the processor will support
491 CRC32 PCLMULQDQ implementation using hardware accelerated PCLMULQDQ
492 instruction. This option will create 'crc32-plcmul' module,
493 which will enable any routine to use the CRC-32-IEEE 802.3 checksum
494 and gain better performance as compared with the table implementation.
495
Herbert Xu684115212013-09-07 12:56:26 +1000496config CRYPTO_CRCT10DIF
497 tristate "CRCT10DIF algorithm"
498 select CRYPTO_HASH
499 help
500 CRC T10 Data Integrity Field computation is being cast as
501 a crypto transform. This allows for faster crc t10 diff
502 transforms to be used if they are available.
503
504config CRYPTO_CRCT10DIF_PCLMUL
505 tristate "CRCT10DIF PCLMULQDQ hardware acceleration"
506 depends on X86 && 64BIT && CRC_T10DIF
507 select CRYPTO_HASH
508 help
509 For x86_64 processors with SSE4.2 and PCLMULQDQ supported,
510 CRC T10 DIF PCLMULQDQ computation can be hardware
511 accelerated PCLMULQDQ instruction. This option will create
512 'crct10dif-plcmul' module, which is faster when computing the
513 crct10dif checksum as compared with the generic table implementation.
514
Huang Ying2cdc6892009-08-06 15:32:38 +1000515config CRYPTO_GHASH
516 tristate "GHASH digest algorithm"
Huang Ying2cdc6892009-08-06 15:32:38 +1000517 select CRYPTO_GF128MUL
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100518 select CRYPTO_HASH
Huang Ying2cdc6892009-08-06 15:32:38 +1000519 help
520 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
521
Martin Willif979e012015-06-01 13:43:58 +0200522config CRYPTO_POLY1305
523 tristate "Poly1305 authenticator algorithm"
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100524 select CRYPTO_HASH
Martin Willif979e012015-06-01 13:43:58 +0200525 help
526 Poly1305 authenticator algorithm, RFC7539.
527
528 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
529 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
530 in IETF protocols. This is the portable C implementation of Poly1305.
531
Martin Willic70f4ab2015-07-16 19:14:06 +0200532config CRYPTO_POLY1305_X86_64
Martin Willib1ccc8f2015-07-16 19:14:08 +0200533 tristate "Poly1305 authenticator algorithm (x86_64/SSE2/AVX2)"
Martin Willic70f4ab2015-07-16 19:14:06 +0200534 depends on X86 && 64BIT
535 select CRYPTO_POLY1305
536 help
537 Poly1305 authenticator algorithm, RFC7539.
538
539 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
540 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
541 in IETF protocols. This is the x86_64 assembler implementation using SIMD
542 instructions.
543
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800544config CRYPTO_MD4
545 tristate "MD4 digest algorithm"
Adrian-Ken Rueegsegger808a1762008-12-03 19:55:27 +0800546 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700547 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800548 MD4 message digest algorithm (RFC1320).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700549
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800550config CRYPTO_MD5
551 tristate "MD5 digest algorithm"
Adrian-Ken Rueegsegger14b75ba2008-12-03 19:57:12 +0800552 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700553 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800554 MD5 message digest algorithm (RFC1321).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700555
Aaro Koskinend69e75d2014-12-21 22:54:02 +0200556config CRYPTO_MD5_OCTEON
557 tristate "MD5 digest algorithm (OCTEON)"
558 depends on CPU_CAVIUM_OCTEON
559 select CRYPTO_MD5
560 select CRYPTO_HASH
561 help
562 MD5 message digest algorithm (RFC1321) implemented
563 using OCTEON crypto instructions, when available.
564
Markus Stockhausene8e59952015-03-01 19:30:46 +0100565config CRYPTO_MD5_PPC
566 tristate "MD5 digest algorithm (PPC)"
567 depends on PPC
568 select CRYPTO_HASH
569 help
570 MD5 message digest algorithm (RFC1321) implemented
571 in PPC assembler.
572
David S. Millerfa4dfed2012-08-19 21:51:26 -0700573config CRYPTO_MD5_SPARC64
574 tristate "MD5 digest algorithm (SPARC64)"
575 depends on SPARC64
576 select CRYPTO_MD5
577 select CRYPTO_HASH
578 help
579 MD5 message digest algorithm (RFC1321) implemented
580 using sparc64 crypto instructions, when available.
581
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800582config CRYPTO_MICHAEL_MIC
583 tristate "Michael MIC keyed digest algorithm"
Adrian-Ken Rueegsegger19e2bf12008-12-07 19:35:38 +0800584 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800585 help
586 Michael MIC is used for message integrity protection in TKIP
587 (IEEE 802.11i). This algorithm is required for TKIP, but it
588 should not be used for other purposes because of the weakness
589 of the algorithm.
590
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800591config CRYPTO_RMD128
Adrian Bunkb6d44342008-07-16 19:28:00 +0800592 tristate "RIPEMD-128 digest algorithm"
Herbert Xu7c4468b2008-11-08 09:10:40 +0800593 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800594 help
595 RIPEMD-128 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800596
Adrian Bunkb6d44342008-07-16 19:28:00 +0800597 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
Michael Witten35ed4b32011-07-09 04:02:31 +0000598 be used as a secure replacement for RIPEMD. For other use cases,
Adrian Bunkb6d44342008-07-16 19:28:00 +0800599 RIPEMD-160 should be used.
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800600
Adrian Bunkb6d44342008-07-16 19:28:00 +0800601 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800602 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800603
604config CRYPTO_RMD160
Adrian Bunkb6d44342008-07-16 19:28:00 +0800605 tristate "RIPEMD-160 digest algorithm"
Herbert Xue5835fb2008-11-08 09:18:51 +0800606 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800607 help
608 RIPEMD-160 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800609
Adrian Bunkb6d44342008-07-16 19:28:00 +0800610 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
611 to be used as a secure replacement for the 128-bit hash functions
612 MD4, MD5 and it's predecessor RIPEMD
613 (not to be confused with RIPEMD-128).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800614
Adrian Bunkb6d44342008-07-16 19:28:00 +0800615 It's speed is comparable to SHA1 and there are no known attacks
616 against RIPEMD-160.
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800617
Adrian Bunkb6d44342008-07-16 19:28:00 +0800618 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800619 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800620
621config CRYPTO_RMD256
Adrian Bunkb6d44342008-07-16 19:28:00 +0800622 tristate "RIPEMD-256 digest algorithm"
Herbert Xud8a5e2e2008-11-08 09:58:10 +0800623 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800624 help
625 RIPEMD-256 is an optional extension of RIPEMD-128 with a
626 256 bit hash. It is intended for applications that require
627 longer hash-results, without needing a larger security level
628 (than RIPEMD-128).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800629
Adrian Bunkb6d44342008-07-16 19:28:00 +0800630 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800631 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800632
633config CRYPTO_RMD320
Adrian Bunkb6d44342008-07-16 19:28:00 +0800634 tristate "RIPEMD-320 digest algorithm"
Herbert Xu3b8efb42008-11-08 10:11:09 +0800635 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800636 help
637 RIPEMD-320 is an optional extension of RIPEMD-160 with a
638 320 bit hash. It is intended for applications that require
639 longer hash-results, without needing a larger security level
640 (than RIPEMD-160).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800641
Adrian Bunkb6d44342008-07-16 19:28:00 +0800642 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800643 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800644
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800645config CRYPTO_SHA1
646 tristate "SHA1 digest algorithm"
Adrian-Ken Rueegsegger54ccb362008-12-02 21:08:20 +0800647 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800648 help
649 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
650
Mathias Krause66be8952011-08-04 20:19:25 +0200651config CRYPTO_SHA1_SSSE3
time38b6b72015-09-10 15:27:26 -0700652 tristate "SHA1 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Mathias Krause66be8952011-08-04 20:19:25 +0200653 depends on X86 && 64BIT
654 select CRYPTO_SHA1
655 select CRYPTO_HASH
656 help
657 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
658 using Supplemental SSE3 (SSSE3) instructions or Advanced Vector
time38b6b72015-09-10 15:27:26 -0700659 Extensions (AVX/AVX2) or SHA-NI(SHA Extensions New Instructions),
660 when available.
Mathias Krause66be8952011-08-04 20:19:25 +0200661
Tim Chen8275d1a2013-03-26 13:59:17 -0700662config CRYPTO_SHA256_SSSE3
time38b6b72015-09-10 15:27:26 -0700663 tristate "SHA256 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Tim Chen8275d1a2013-03-26 13:59:17 -0700664 depends on X86 && 64BIT
665 select CRYPTO_SHA256
666 select CRYPTO_HASH
667 help
668 SHA-256 secure hash standard (DFIPS 180-2) implemented
669 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
670 Extensions version 1 (AVX1), or Advanced Vector Extensions
time38b6b72015-09-10 15:27:26 -0700671 version 2 (AVX2) instructions, or SHA-NI (SHA Extensions New
672 Instructions) when available.
Tim Chen8275d1a2013-03-26 13:59:17 -0700673
Tim Chen87de4572013-03-26 14:00:02 -0700674config CRYPTO_SHA512_SSSE3
675 tristate "SHA512 digest algorithm (SSSE3/AVX/AVX2)"
676 depends on X86 && 64BIT
677 select CRYPTO_SHA512
678 select CRYPTO_HASH
679 help
680 SHA-512 secure hash standard (DFIPS 180-2) implemented
681 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
682 Extensions version 1 (AVX1), or Advanced Vector Extensions
683 version 2 (AVX2) instructions, when available.
684
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200685config CRYPTO_SHA1_OCTEON
686 tristate "SHA1 digest algorithm (OCTEON)"
687 depends on CPU_CAVIUM_OCTEON
688 select CRYPTO_SHA1
689 select CRYPTO_HASH
690 help
691 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
692 using OCTEON crypto instructions, when available.
693
David S. Miller4ff28d42012-08-19 15:41:53 -0700694config CRYPTO_SHA1_SPARC64
695 tristate "SHA1 digest algorithm (SPARC64)"
696 depends on SPARC64
697 select CRYPTO_SHA1
698 select CRYPTO_HASH
699 help
700 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
701 using sparc64 crypto instructions, when available.
702
Michael Ellerman323a6bf2012-09-13 23:00:49 +0000703config CRYPTO_SHA1_PPC
704 tristate "SHA1 digest algorithm (powerpc)"
705 depends on PPC
706 help
707 This is the powerpc hardware accelerated implementation of the
708 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
709
Markus Stockhausend9850fc2015-02-24 20:36:50 +0100710config CRYPTO_SHA1_PPC_SPE
711 tristate "SHA1 digest algorithm (PPC SPE)"
712 depends on PPC && SPE
713 help
714 SHA-1 secure hash standard (DFIPS 180-4) implemented
715 using powerpc SPE SIMD instruction set.
716
Tim Chen1e65b812014-07-31 10:29:51 -0700717config CRYPTO_SHA1_MB
718 tristate "SHA1 digest algorithm (x86_64 Multi-Buffer, Experimental)"
719 depends on X86 && 64BIT
720 select CRYPTO_SHA1
721 select CRYPTO_HASH
722 select CRYPTO_MCRYPTD
723 help
724 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
725 using multi-buffer technique. This algorithm computes on
726 multiple data lanes concurrently with SIMD instructions for
727 better throughput. It should not be enabled by default but
728 used when there is significant amount of work to keep the keep
729 the data lanes filled to get performance benefit. If the data
730 lanes remain unfilled, a flush operation will be initiated to
731 process the crypto jobs, adding a slight latency.
732
Megha Dey9be7e242016-06-23 18:40:43 -0700733config CRYPTO_SHA256_MB
734 tristate "SHA256 digest algorithm (x86_64 Multi-Buffer, Experimental)"
735 depends on X86 && 64BIT
736 select CRYPTO_SHA256
737 select CRYPTO_HASH
738 select CRYPTO_MCRYPTD
739 help
740 SHA-256 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
741 using multi-buffer technique. This algorithm computes on
742 multiple data lanes concurrently with SIMD instructions for
743 better throughput. It should not be enabled by default but
744 used when there is significant amount of work to keep the keep
745 the data lanes filled to get performance benefit. If the data
746 lanes remain unfilled, a flush operation will be initiated to
747 process the crypto jobs, adding a slight latency.
748
Megha Dey026bb8a2016-06-27 10:20:05 -0700749config CRYPTO_SHA512_MB
750 tristate "SHA512 digest algorithm (x86_64 Multi-Buffer, Experimental)"
751 depends on X86 && 64BIT
752 select CRYPTO_SHA512
753 select CRYPTO_HASH
754 select CRYPTO_MCRYPTD
755 help
756 SHA-512 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
757 using multi-buffer technique. This algorithm computes on
758 multiple data lanes concurrently with SIMD instructions for
759 better throughput. It should not be enabled by default but
760 used when there is significant amount of work to keep the keep
761 the data lanes filled to get performance benefit. If the data
762 lanes remain unfilled, a flush operation will be initiated to
763 process the crypto jobs, adding a slight latency.
764
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800765config CRYPTO_SHA256
766 tristate "SHA224 and SHA256 digest algorithm"
Adrian-Ken Rueegsegger50e109b52008-12-03 19:57:49 +0800767 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800768 help
769 SHA256 secure hash standard (DFIPS 180-2).
770
771 This version of SHA implements a 256 bit hash with 128 bits of
772 security against collision attacks.
773
Adrian Bunkb6d44342008-07-16 19:28:00 +0800774 This code also includes SHA-224, a 224 bit hash with 112 bits
775 of security against collision attacks.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800776
Markus Stockhausen2ecc1e92015-01-30 15:39:34 +0100777config CRYPTO_SHA256_PPC_SPE
778 tristate "SHA224 and SHA256 digest algorithm (PPC SPE)"
779 depends on PPC && SPE
780 select CRYPTO_SHA256
781 select CRYPTO_HASH
782 help
783 SHA224 and SHA256 secure hash standard (DFIPS 180-2)
784 implemented using powerpc SPE SIMD instruction set.
785
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200786config CRYPTO_SHA256_OCTEON
787 tristate "SHA224 and SHA256 digest algorithm (OCTEON)"
788 depends on CPU_CAVIUM_OCTEON
789 select CRYPTO_SHA256
790 select CRYPTO_HASH
791 help
792 SHA-256 secure hash standard (DFIPS 180-2) implemented
793 using OCTEON crypto instructions, when available.
794
David S. Miller86c93b22012-08-19 17:11:37 -0700795config CRYPTO_SHA256_SPARC64
796 tristate "SHA224 and SHA256 digest algorithm (SPARC64)"
797 depends on SPARC64
798 select CRYPTO_SHA256
799 select CRYPTO_HASH
800 help
801 SHA-256 secure hash standard (DFIPS 180-2) implemented
802 using sparc64 crypto instructions, when available.
803
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800804config CRYPTO_SHA512
805 tristate "SHA384 and SHA512 digest algorithms"
Adrian-Ken Rueegseggerbd9d20d2008-12-17 16:49:02 +1100806 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800807 help
808 SHA512 secure hash standard (DFIPS 180-2).
809
810 This version of SHA implements a 512 bit hash with 256 bits of
811 security against collision attacks.
812
813 This code also includes SHA-384, a 384 bit hash with 192 bits
814 of security against collision attacks.
815
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200816config CRYPTO_SHA512_OCTEON
817 tristate "SHA384 and SHA512 digest algorithms (OCTEON)"
818 depends on CPU_CAVIUM_OCTEON
819 select CRYPTO_SHA512
820 select CRYPTO_HASH
821 help
822 SHA-512 secure hash standard (DFIPS 180-2) implemented
823 using OCTEON crypto instructions, when available.
824
David S. Miller775e0c62012-08-19 17:37:56 -0700825config CRYPTO_SHA512_SPARC64
826 tristate "SHA384 and SHA512 digest algorithm (SPARC64)"
827 depends on SPARC64
828 select CRYPTO_SHA512
829 select CRYPTO_HASH
830 help
831 SHA-512 secure hash standard (DFIPS 180-2) implemented
832 using sparc64 crypto instructions, when available.
833
Jeff Garzik53964b92016-06-17 10:30:35 +0530834config CRYPTO_SHA3
835 tristate "SHA3 digest algorithm"
836 select CRYPTO_HASH
837 help
838 SHA-3 secure hash standard (DFIPS 202). It's based on
839 cryptographic sponge function family called Keccak.
840
841 References:
842 http://keccak.noekeon.org/
843
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800844config CRYPTO_TGR192
845 tristate "Tiger digest algorithms"
Adrian-Ken Rueegseggerf63fbd32008-12-03 19:58:32 +0800846 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800847 help
848 Tiger hash algorithm 192, 160 and 128-bit hashes
849
850 Tiger is a hash function optimized for 64-bit processors while
851 still having decent performance on 32-bit processors.
852 Tiger was developed by Ross Anderson and Eli Biham.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700853
854 See also:
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800855 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
856
857config CRYPTO_WP512
858 tristate "Whirlpool digest algorithms"
Adrian-Ken Rueegsegger49465102008-12-07 19:34:37 +0800859 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800860 help
861 Whirlpool hash algorithm 512, 384 and 256-bit hashes
862
863 Whirlpool-512 is part of the NESSIE cryptographic primitives.
864 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
865
866 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800867 <http://www.larc.usp.br/~pbarreto/WhirlpoolPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800868
Huang Ying0e1227d2009-10-19 11:53:06 +0900869config CRYPTO_GHASH_CLMUL_NI_INTEL
870 tristate "GHASH digest algorithm (CLMUL-NI accelerated)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800871 depends on X86 && 64BIT
Huang Ying0e1227d2009-10-19 11:53:06 +0900872 select CRYPTO_CRYPTD
873 help
874 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
875 The implementation is accelerated by CLMUL-NI of Intel.
876
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800877comment "Ciphers"
Linus Torvalds1da177e2005-04-16 15:20:36 -0700878
879config CRYPTO_AES
880 tristate "AES cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +1000881 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -0700882 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800883 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700884 algorithm.
885
886 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800887 both hardware and software across a wide range of computing
888 environments regardless of its use in feedback or non-feedback
889 modes. Its key setup time is excellent, and its key agility is
890 good. Rijndael's very low memory requirements make it very well
891 suited for restricted-space environments, in which it also
892 demonstrates excellent performance. Rijndael's operations are
893 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700894
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800895 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700896
897 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
898
Ard Biesheuvelb5e0b032017-02-02 16:37:40 +0000899config CRYPTO_AES_TI
900 tristate "Fixed time AES cipher"
901 select CRYPTO_ALGAPI
902 help
903 This is a generic implementation of AES that attempts to eliminate
904 data dependent latencies as much as possible without affecting
905 performance too much. It is intended for use by the generic CCM
906 and GCM drivers, and other CTR or CMAC/XCBC based modes that rely
907 solely on encryption (although decryption is supported as well, but
908 with a more dramatic performance hit)
909
910 Instead of using 16 lookup tables of 1 KB each, (8 for encryption and
911 8 for decryption), this implementation only uses just two S-boxes of
912 256 bytes each, and attempts to eliminate data dependent latencies by
913 prefetching the entire table into the cache at the start of each
914 block.
915
Linus Torvalds1da177e2005-04-16 15:20:36 -0700916config CRYPTO_AES_586
917 tristate "AES cipher algorithms (i586)"
Herbert Xucce9e062006-08-21 21:08:13 +1000918 depends on (X86 || UML_X86) && !64BIT
919 select CRYPTO_ALGAPI
Sebastian Siewior5157dea2007-11-10 19:07:16 +0800920 select CRYPTO_AES
Linus Torvalds1da177e2005-04-16 15:20:36 -0700921 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800922 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700923 algorithm.
924
925 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800926 both hardware and software across a wide range of computing
927 environments regardless of its use in feedback or non-feedback
928 modes. Its key setup time is excellent, and its key agility is
929 good. Rijndael's very low memory requirements make it very well
930 suited for restricted-space environments, in which it also
931 demonstrates excellent performance. Rijndael's operations are
932 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700933
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800934 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700935
936 See <http://csrc.nist.gov/encryption/aes/> for more information.
937
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700938config CRYPTO_AES_X86_64
939 tristate "AES cipher algorithms (x86_64)"
Herbert Xucce9e062006-08-21 21:08:13 +1000940 depends on (X86 || UML_X86) && 64BIT
941 select CRYPTO_ALGAPI
Sebastian Siewior81190b32007-11-08 21:25:04 +0800942 select CRYPTO_AES
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700943 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800944 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700945 algorithm.
946
947 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800948 both hardware and software across a wide range of computing
949 environments regardless of its use in feedback or non-feedback
950 modes. Its key setup time is excellent, and its key agility is
951 good. Rijndael's very low memory requirements make it very well
952 suited for restricted-space environments, in which it also
953 demonstrates excellent performance. Rijndael's operations are
954 among the easiest to defend against power and timing attacks.
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700955
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800956 The AES specifies three key sizes: 128, 192 and 256 bits
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700957
958 See <http://csrc.nist.gov/encryption/aes/> for more information.
959
Huang Ying54b6a1b2009-01-18 16:28:34 +1100960config CRYPTO_AES_NI_INTEL
961 tristate "AES cipher algorithms (AES-NI)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800962 depends on X86
Herbert Xu85671862016-11-22 20:08:33 +0800963 select CRYPTO_AEAD
Mathias Krause0d258ef2010-11-27 16:34:46 +0800964 select CRYPTO_AES_X86_64 if 64BIT
965 select CRYPTO_AES_586 if !64BIT
Huang Ying54b6a1b2009-01-18 16:28:34 +1100966 select CRYPTO_ALGAPI
Herbert Xu85671862016-11-22 20:08:33 +0800967 select CRYPTO_BLKCIPHER
Jussi Kivilinna7643a112013-04-10 18:39:20 +0300968 select CRYPTO_GLUE_HELPER_X86 if 64BIT
Herbert Xu85671862016-11-22 20:08:33 +0800969 select CRYPTO_SIMD
Huang Ying54b6a1b2009-01-18 16:28:34 +1100970 help
971 Use Intel AES-NI instructions for AES algorithm.
972
973 AES cipher algorithms (FIPS-197). AES uses the Rijndael
974 algorithm.
975
976 Rijndael appears to be consistently a very good performer in
977 both hardware and software across a wide range of computing
978 environments regardless of its use in feedback or non-feedback
979 modes. Its key setup time is excellent, and its key agility is
980 good. Rijndael's very low memory requirements make it very well
981 suited for restricted-space environments, in which it also
982 demonstrates excellent performance. Rijndael's operations are
983 among the easiest to defend against power and timing attacks.
984
985 The AES specifies three key sizes: 128, 192 and 256 bits
986
987 See <http://csrc.nist.gov/encryption/aes/> for more information.
988
Mathias Krause0d258ef2010-11-27 16:34:46 +0800989 In addition to AES cipher algorithm support, the acceleration
990 for some popular block cipher mode is supported too, including
991 ECB, CBC, LRW, PCBC, XTS. The 64 bit version has additional
992 acceleration for CTR.
Huang Ying2cf4ac82009-03-29 15:41:20 +0800993
David S. Miller9bf48522012-08-21 03:58:13 -0700994config CRYPTO_AES_SPARC64
995 tristate "AES cipher algorithms (SPARC64)"
996 depends on SPARC64
997 select CRYPTO_CRYPTD
998 select CRYPTO_ALGAPI
999 help
1000 Use SPARC64 crypto opcodes for AES algorithm.
1001
1002 AES cipher algorithms (FIPS-197). AES uses the Rijndael
1003 algorithm.
1004
1005 Rijndael appears to be consistently a very good performer in
1006 both hardware and software across a wide range of computing
1007 environments regardless of its use in feedback or non-feedback
1008 modes. Its key setup time is excellent, and its key agility is
1009 good. Rijndael's very low memory requirements make it very well
1010 suited for restricted-space environments, in which it also
1011 demonstrates excellent performance. Rijndael's operations are
1012 among the easiest to defend against power and timing attacks.
1013
1014 The AES specifies three key sizes: 128, 192 and 256 bits
1015
1016 See <http://csrc.nist.gov/encryption/aes/> for more information.
1017
1018 In addition to AES cipher algorithm support, the acceleration
1019 for some popular block cipher mode is supported too, including
1020 ECB and CBC.
1021
Markus Stockhausen504c6142015-02-22 10:00:10 +01001022config CRYPTO_AES_PPC_SPE
1023 tristate "AES cipher algorithms (PPC SPE)"
1024 depends on PPC && SPE
1025 help
1026 AES cipher algorithms (FIPS-197). Additionally the acceleration
1027 for popular block cipher modes ECB, CBC, CTR and XTS is supported.
1028 This module should only be used for low power (router) devices
1029 without hardware AES acceleration (e.g. caam crypto). It reduces the
1030 size of the AES tables from 16KB to 8KB + 256 bytes and mitigates
1031 timining attacks. Nevertheless it might be not as secure as other
1032 architecture specific assembler implementations that work on 1KB
1033 tables or 256 bytes S-boxes.
1034
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001035config CRYPTO_ANUBIS
1036 tristate "Anubis cipher algorithm"
1037 select CRYPTO_ALGAPI
1038 help
1039 Anubis cipher algorithm.
1040
1041 Anubis is a variable key length cipher which can use keys from
1042 128 bits to 320 bits in length. It was evaluated as a entrant
1043 in the NESSIE competition.
1044
1045 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001046 <https://www.cosic.esat.kuleuven.be/nessie/reports/>
1047 <http://www.larc.usp.br/~pbarreto/AnubisPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001048
1049config CRYPTO_ARC4
1050 tristate "ARC4 cipher algorithm"
Sebastian Andrzej Siewiorb9b0f082012-06-26 18:13:46 +02001051 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001052 help
1053 ARC4 cipher algorithm.
1054
1055 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
1056 bits in length. This algorithm is required for driver-based
1057 WEP, but it should not be for other purposes because of the
1058 weakness of the algorithm.
1059
1060config CRYPTO_BLOWFISH
1061 tristate "Blowfish cipher algorithm"
1062 select CRYPTO_ALGAPI
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001063 select CRYPTO_BLOWFISH_COMMON
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001064 help
1065 Blowfish cipher algorithm, by Bruce Schneier.
1066
1067 This is a variable key length cipher which can use keys from 32
1068 bits to 448 bits in length. It's fast, simple and specifically
1069 designed for use on "large microprocessors".
1070
1071 See also:
1072 <http://www.schneier.com/blowfish.html>
1073
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001074config CRYPTO_BLOWFISH_COMMON
1075 tristate
1076 help
1077 Common parts of the Blowfish cipher algorithm shared by the
1078 generic c and the assembler implementations.
1079
1080 See also:
1081 <http://www.schneier.com/blowfish.html>
1082
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001083config CRYPTO_BLOWFISH_X86_64
1084 tristate "Blowfish cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001085 depends on X86 && 64BIT
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001086 select CRYPTO_ALGAPI
1087 select CRYPTO_BLOWFISH_COMMON
1088 help
1089 Blowfish cipher algorithm (x86_64), by Bruce Schneier.
1090
1091 This is a variable key length cipher which can use keys from 32
1092 bits to 448 bits in length. It's fast, simple and specifically
1093 designed for use on "large microprocessors".
1094
1095 See also:
1096 <http://www.schneier.com/blowfish.html>
1097
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001098config CRYPTO_CAMELLIA
1099 tristate "Camellia cipher algorithms"
1100 depends on CRYPTO
1101 select CRYPTO_ALGAPI
1102 help
1103 Camellia cipher algorithms module.
1104
1105 Camellia is a symmetric key block cipher developed jointly
1106 at NTT and Mitsubishi Electric Corporation.
1107
1108 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1109
1110 See also:
1111 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1112
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001113config CRYPTO_CAMELLIA_X86_64
1114 tristate "Camellia cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001115 depends on X86 && 64BIT
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001116 depends on CRYPTO
1117 select CRYPTO_ALGAPI
Jussi Kivilinna964263a2012-06-18 14:07:29 +03001118 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001119 select CRYPTO_LRW
1120 select CRYPTO_XTS
1121 help
1122 Camellia cipher algorithm module (x86_64).
1123
1124 Camellia is a symmetric key block cipher developed jointly
1125 at NTT and Mitsubishi Electric Corporation.
1126
1127 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1128
1129 See also:
1130 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1131
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001132config CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1133 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX)"
1134 depends on X86 && 64BIT
1135 depends on CRYPTO
1136 select CRYPTO_ALGAPI
1137 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001138 select CRYPTO_ABLK_HELPER
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001139 select CRYPTO_GLUE_HELPER_X86
1140 select CRYPTO_CAMELLIA_X86_64
1141 select CRYPTO_LRW
1142 select CRYPTO_XTS
1143 help
1144 Camellia cipher algorithm module (x86_64/AES-NI/AVX).
1145
1146 Camellia is a symmetric key block cipher developed jointly
1147 at NTT and Mitsubishi Electric Corporation.
1148
1149 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1150
1151 See also:
1152 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1153
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001154config CRYPTO_CAMELLIA_AESNI_AVX2_X86_64
1155 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX2)"
1156 depends on X86 && 64BIT
1157 depends on CRYPTO
1158 select CRYPTO_ALGAPI
1159 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001160 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001161 select CRYPTO_GLUE_HELPER_X86
1162 select CRYPTO_CAMELLIA_X86_64
1163 select CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1164 select CRYPTO_LRW
1165 select CRYPTO_XTS
1166 help
1167 Camellia cipher algorithm module (x86_64/AES-NI/AVX2).
1168
1169 Camellia is a symmetric key block cipher developed jointly
1170 at NTT and Mitsubishi Electric Corporation.
1171
1172 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1173
1174 See also:
1175 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1176
David S. Miller81658ad2012-08-28 12:05:54 -07001177config CRYPTO_CAMELLIA_SPARC64
1178 tristate "Camellia cipher algorithm (SPARC64)"
1179 depends on SPARC64
1180 depends on CRYPTO
1181 select CRYPTO_ALGAPI
1182 help
1183 Camellia cipher algorithm module (SPARC64).
1184
1185 Camellia is a symmetric key block cipher developed jointly
1186 at NTT and Mitsubishi Electric Corporation.
1187
1188 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1189
1190 See also:
1191 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1192
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001193config CRYPTO_CAST_COMMON
1194 tristate
1195 help
1196 Common parts of the CAST cipher algorithms shared by the
1197 generic c and the assembler implementations.
1198
Linus Torvalds1da177e2005-04-16 15:20:36 -07001199config CRYPTO_CAST5
1200 tristate "CAST5 (CAST-128) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001201 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001202 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001203 help
1204 The CAST5 encryption algorithm (synonymous with CAST-128) is
1205 described in RFC2144.
1206
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001207config CRYPTO_CAST5_AVX_X86_64
1208 tristate "CAST5 (CAST-128) cipher algorithm (x86_64/AVX)"
1209 depends on X86 && 64BIT
1210 select CRYPTO_ALGAPI
1211 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001212 select CRYPTO_ABLK_HELPER
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001213 select CRYPTO_CAST_COMMON
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001214 select CRYPTO_CAST5
1215 help
1216 The CAST5 encryption algorithm (synonymous with CAST-128) is
1217 described in RFC2144.
1218
1219 This module provides the Cast5 cipher algorithm that processes
1220 sixteen blocks parallel using the AVX instruction set.
1221
Linus Torvalds1da177e2005-04-16 15:20:36 -07001222config CRYPTO_CAST6
1223 tristate "CAST6 (CAST-256) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001224 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001225 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001226 help
1227 The CAST6 encryption algorithm (synonymous with CAST-256) is
1228 described in RFC2612.
1229
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001230config CRYPTO_CAST6_AVX_X86_64
1231 tristate "CAST6 (CAST-256) cipher algorithm (x86_64/AVX)"
1232 depends on X86 && 64BIT
1233 select CRYPTO_ALGAPI
1234 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001235 select CRYPTO_ABLK_HELPER
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001236 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001237 select CRYPTO_CAST_COMMON
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001238 select CRYPTO_CAST6
1239 select CRYPTO_LRW
1240 select CRYPTO_XTS
1241 help
1242 The CAST6 encryption algorithm (synonymous with CAST-256) is
1243 described in RFC2612.
1244
1245 This module provides the Cast6 cipher algorithm that processes
1246 eight blocks parallel using the AVX instruction set.
1247
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001248config CRYPTO_DES
1249 tristate "DES and Triple DES EDE cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +10001250 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001251 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001252 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
Linus Torvalds1da177e2005-04-16 15:20:36 -07001253
David S. Millerc5aac2d2012-08-25 22:37:23 -07001254config CRYPTO_DES_SPARC64
1255 tristate "DES and Triple DES EDE cipher algorithms (SPARC64)"
Dave Jones97da37b2012-10-02 17:13:20 -04001256 depends on SPARC64
David S. Millerc5aac2d2012-08-25 22:37:23 -07001257 select CRYPTO_ALGAPI
1258 select CRYPTO_DES
1259 help
1260 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3),
1261 optimized using SPARC64 crypto opcodes.
1262
Jussi Kivilinna6574e6c2014-06-09 20:59:54 +03001263config CRYPTO_DES3_EDE_X86_64
1264 tristate "Triple DES EDE cipher algorithm (x86-64)"
1265 depends on X86 && 64BIT
1266 select CRYPTO_ALGAPI
1267 select CRYPTO_DES
1268 help
1269 Triple DES EDE (FIPS 46-3) algorithm.
1270
1271 This module provides implementation of the Triple DES EDE cipher
1272 algorithm that is optimized for x86-64 processors. Two versions of
1273 algorithm are provided; regular processing one input block and
1274 one that processes three blocks parallel.
1275
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001276config CRYPTO_FCRYPT
1277 tristate "FCrypt cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001278 select CRYPTO_ALGAPI
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001279 select CRYPTO_BLKCIPHER
Linus Torvalds1da177e2005-04-16 15:20:36 -07001280 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001281 FCrypt algorithm used by RxRPC.
Linus Torvalds1da177e2005-04-16 15:20:36 -07001282
1283config CRYPTO_KHAZAD
1284 tristate "Khazad cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001285 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001286 help
1287 Khazad cipher algorithm.
1288
1289 Khazad was a finalist in the initial NESSIE competition. It is
1290 an algorithm optimized for 64-bit processors with good performance
1291 on 32-bit processors. Khazad uses an 128 bit key size.
1292
1293 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001294 <http://www.larc.usp.br/~pbarreto/KhazadPage.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001295
Tan Swee Heng2407d602007-11-23 19:45:00 +08001296config CRYPTO_SALSA20
Kees Cook3b4afaf2012-10-02 11:16:49 -07001297 tristate "Salsa20 stream cipher algorithm"
Tan Swee Heng2407d602007-11-23 19:45:00 +08001298 select CRYPTO_BLKCIPHER
1299 help
1300 Salsa20 stream cipher algorithm.
1301
1302 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1303 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1304
1305 The Salsa20 stream cipher algorithm is designed by Daniel J.
1306 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001307
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001308config CRYPTO_SALSA20_586
Kees Cook3b4afaf2012-10-02 11:16:49 -07001309 tristate "Salsa20 stream cipher algorithm (i586)"
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001310 depends on (X86 || UML_X86) && !64BIT
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001311 select CRYPTO_BLKCIPHER
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001312 help
1313 Salsa20 stream cipher algorithm.
1314
1315 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1316 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1317
1318 The Salsa20 stream cipher algorithm is designed by Daniel J.
1319 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1320
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001321config CRYPTO_SALSA20_X86_64
Kees Cook3b4afaf2012-10-02 11:16:49 -07001322 tristate "Salsa20 stream cipher algorithm (x86_64)"
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001323 depends on (X86 || UML_X86) && 64BIT
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001324 select CRYPTO_BLKCIPHER
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001325 help
1326 Salsa20 stream cipher algorithm.
1327
1328 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1329 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1330
1331 The Salsa20 stream cipher algorithm is designed by Daniel J.
1332 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1333
Martin Willic08d0e62015-06-01 13:43:56 +02001334config CRYPTO_CHACHA20
1335 tristate "ChaCha20 cipher algorithm"
1336 select CRYPTO_BLKCIPHER
1337 help
1338 ChaCha20 cipher algorithm, RFC7539.
1339
1340 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1341 Bernstein and further specified in RFC7539 for use in IETF protocols.
1342 This is the portable C implementation of ChaCha20.
1343
1344 See also:
1345 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1346
Martin Willic9320b62015-07-16 19:14:01 +02001347config CRYPTO_CHACHA20_X86_64
Martin Willi3d1e93c2015-07-16 19:14:03 +02001348 tristate "ChaCha20 cipher algorithm (x86_64/SSSE3/AVX2)"
Martin Willic9320b62015-07-16 19:14:01 +02001349 depends on X86 && 64BIT
1350 select CRYPTO_BLKCIPHER
1351 select CRYPTO_CHACHA20
1352 help
1353 ChaCha20 cipher algorithm, RFC7539.
1354
1355 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1356 Bernstein and further specified in RFC7539 for use in IETF protocols.
1357 This is the x86_64 assembler implementation using SIMD instructions.
1358
1359 See also:
1360 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1361
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001362config CRYPTO_SEED
1363 tristate "SEED cipher algorithm"
1364 select CRYPTO_ALGAPI
1365 help
1366 SEED cipher algorithm (RFC4269).
1367
1368 SEED is a 128-bit symmetric key block cipher that has been
1369 developed by KISA (Korea Information Security Agency) as a
1370 national standard encryption algorithm of the Republic of Korea.
1371 It is a 16 round block cipher with the key size of 128 bit.
1372
1373 See also:
1374 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
1375
1376config CRYPTO_SERPENT
1377 tristate "Serpent cipher algorithm"
1378 select CRYPTO_ALGAPI
1379 help
1380 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1381
1382 Keys are allowed to be from 0 to 256 bits in length, in steps
1383 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
1384 variant of Serpent for compatibility with old kerneli.org code.
1385
1386 See also:
1387 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1388
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001389config CRYPTO_SERPENT_SSE2_X86_64
1390 tristate "Serpent cipher algorithm (x86_64/SSE2)"
1391 depends on X86 && 64BIT
1392 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001393 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001394 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001395 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001396 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001397 select CRYPTO_LRW
1398 select CRYPTO_XTS
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001399 help
1400 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1401
1402 Keys are allowed to be from 0 to 256 bits in length, in steps
1403 of 8 bits.
1404
Masanari Iida1e6232f2015-04-04 00:20:30 +09001405 This module provides Serpent cipher algorithm that processes eight
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001406 blocks parallel using SSE2 instruction set.
1407
1408 See also:
1409 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1410
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001411config CRYPTO_SERPENT_SSE2_586
1412 tristate "Serpent cipher algorithm (i586/SSE2)"
1413 depends on X86 && !64BIT
1414 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001415 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001416 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001417 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001418 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001419 select CRYPTO_LRW
1420 select CRYPTO_XTS
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001421 help
1422 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1423
1424 Keys are allowed to be from 0 to 256 bits in length, in steps
1425 of 8 bits.
1426
1427 This module provides Serpent cipher algorithm that processes four
1428 blocks parallel using SSE2 instruction set.
1429
1430 See also:
1431 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1432
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001433config CRYPTO_SERPENT_AVX_X86_64
1434 tristate "Serpent cipher algorithm (x86_64/AVX)"
1435 depends on X86 && 64BIT
1436 select CRYPTO_ALGAPI
1437 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001438 select CRYPTO_ABLK_HELPER
Jussi Kivilinna1d0debb2012-06-18 14:07:24 +03001439 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001440 select CRYPTO_SERPENT
1441 select CRYPTO_LRW
1442 select CRYPTO_XTS
1443 help
1444 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1445
1446 Keys are allowed to be from 0 to 256 bits in length, in steps
1447 of 8 bits.
1448
1449 This module provides the Serpent cipher algorithm that processes
1450 eight blocks parallel using the AVX instruction set.
1451
1452 See also:
1453 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1454
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001455config CRYPTO_SERPENT_AVX2_X86_64
1456 tristate "Serpent cipher algorithm (x86_64/AVX2)"
1457 depends on X86 && 64BIT
1458 select CRYPTO_ALGAPI
1459 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001460 select CRYPTO_ABLK_HELPER
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001461 select CRYPTO_GLUE_HELPER_X86
1462 select CRYPTO_SERPENT
1463 select CRYPTO_SERPENT_AVX_X86_64
1464 select CRYPTO_LRW
1465 select CRYPTO_XTS
1466 help
1467 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1468
1469 Keys are allowed to be from 0 to 256 bits in length, in steps
1470 of 8 bits.
1471
1472 This module provides Serpent cipher algorithm that processes 16
1473 blocks parallel using AVX2 instruction set.
1474
1475 See also:
1476 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1477
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001478config CRYPTO_TEA
1479 tristate "TEA, XTEA and XETA cipher algorithms"
1480 select CRYPTO_ALGAPI
1481 help
1482 TEA cipher algorithm.
1483
1484 Tiny Encryption Algorithm is a simple cipher that uses
1485 many rounds for security. It is very fast and uses
1486 little memory.
1487
1488 Xtendend Tiny Encryption Algorithm is a modification to
1489 the TEA algorithm to address a potential key weakness
1490 in the TEA algorithm.
1491
1492 Xtendend Encryption Tiny Algorithm is a mis-implementation
1493 of the XTEA algorithm for compatibility purposes.
1494
1495config CRYPTO_TWOFISH
1496 tristate "Twofish cipher algorithm"
1497 select CRYPTO_ALGAPI
1498 select CRYPTO_TWOFISH_COMMON
1499 help
1500 Twofish cipher algorithm.
1501
1502 Twofish was submitted as an AES (Advanced Encryption Standard)
1503 candidate cipher by researchers at CounterPane Systems. It is a
1504 16 round block cipher supporting key sizes of 128, 192, and 256
1505 bits.
1506
1507 See also:
1508 <http://www.schneier.com/twofish.html>
1509
1510config CRYPTO_TWOFISH_COMMON
1511 tristate
1512 help
1513 Common parts of the Twofish cipher algorithm shared by the
1514 generic c and the assembler implementations.
1515
1516config CRYPTO_TWOFISH_586
1517 tristate "Twofish cipher algorithms (i586)"
1518 depends on (X86 || UML_X86) && !64BIT
1519 select CRYPTO_ALGAPI
1520 select CRYPTO_TWOFISH_COMMON
1521 help
1522 Twofish cipher algorithm.
1523
1524 Twofish was submitted as an AES (Advanced Encryption Standard)
1525 candidate cipher by researchers at CounterPane Systems. It is a
1526 16 round block cipher supporting key sizes of 128, 192, and 256
1527 bits.
1528
1529 See also:
1530 <http://www.schneier.com/twofish.html>
1531
1532config CRYPTO_TWOFISH_X86_64
1533 tristate "Twofish cipher algorithm (x86_64)"
1534 depends on (X86 || UML_X86) && 64BIT
1535 select CRYPTO_ALGAPI
1536 select CRYPTO_TWOFISH_COMMON
1537 help
1538 Twofish cipher algorithm (x86_64).
1539
1540 Twofish was submitted as an AES (Advanced Encryption Standard)
1541 candidate cipher by researchers at CounterPane Systems. It is a
1542 16 round block cipher supporting key sizes of 128, 192, and 256
1543 bits.
1544
1545 See also:
1546 <http://www.schneier.com/twofish.html>
1547
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001548config CRYPTO_TWOFISH_X86_64_3WAY
1549 tristate "Twofish cipher algorithm (x86_64, 3-way parallel)"
Al Virof21a7c12012-04-08 20:31:22 -04001550 depends on X86 && 64BIT
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001551 select CRYPTO_ALGAPI
1552 select CRYPTO_TWOFISH_COMMON
1553 select CRYPTO_TWOFISH_X86_64
Jussi Kivilinna414cb5e2012-06-18 14:07:34 +03001554 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinnae7cda5d2011-12-13 12:53:01 +02001555 select CRYPTO_LRW
1556 select CRYPTO_XTS
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001557 help
1558 Twofish cipher algorithm (x86_64, 3-way parallel).
1559
1560 Twofish was submitted as an AES (Advanced Encryption Standard)
1561 candidate cipher by researchers at CounterPane Systems. It is a
1562 16 round block cipher supporting key sizes of 128, 192, and 256
1563 bits.
1564
1565 This module provides Twofish cipher algorithm that processes three
1566 blocks parallel, utilizing resources of out-of-order CPUs better.
1567
1568 See also:
1569 <http://www.schneier.com/twofish.html>
1570
Johannes Goetzfried107778b2012-05-28 15:54:24 +02001571config CRYPTO_TWOFISH_AVX_X86_64
1572 tristate "Twofish cipher algorithm (x86_64/AVX)"
1573 depends on X86 && 64BIT
1574 select CRYPTO_ALGAPI
1575 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001576 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaa7378d42012-06-18 14:07:39 +03001577 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried107778b2012-05-28 15:54:24 +02001578 select CRYPTO_TWOFISH_COMMON
1579 select CRYPTO_TWOFISH_X86_64
1580 select CRYPTO_TWOFISH_X86_64_3WAY
1581 select CRYPTO_LRW
1582 select CRYPTO_XTS
1583 help
1584 Twofish cipher algorithm (x86_64/AVX).
1585
1586 Twofish was submitted as an AES (Advanced Encryption Standard)
1587 candidate cipher by researchers at CounterPane Systems. It is a
1588 16 round block cipher supporting key sizes of 128, 192, and 256
1589 bits.
1590
1591 This module provides the Twofish cipher algorithm that processes
1592 eight blocks parallel using the AVX Instruction Set.
1593
1594 See also:
1595 <http://www.schneier.com/twofish.html>
1596
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001597comment "Compression"
1598
Linus Torvalds1da177e2005-04-16 15:20:36 -07001599config CRYPTO_DEFLATE
1600 tristate "Deflate compression algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001601 select CRYPTO_ALGAPI
Giovanni Cabidduf6ded092016-10-21 13:19:53 +01001602 select CRYPTO_ACOMP2
Linus Torvalds1da177e2005-04-16 15:20:36 -07001603 select ZLIB_INFLATE
1604 select ZLIB_DEFLATE
1605 help
1606 This is the Deflate algorithm (RFC1951), specified for use in
1607 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001608
Linus Torvalds1da177e2005-04-16 15:20:36 -07001609 You will most probably want this if using IPSec.
1610
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001611config CRYPTO_LZO
1612 tristate "LZO compression algorithm"
1613 select CRYPTO_ALGAPI
Giovanni Cabidduac9d2c42016-10-21 13:19:49 +01001614 select CRYPTO_ACOMP2
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001615 select LZO_COMPRESS
1616 select LZO_DECOMPRESS
1617 help
1618 This is the LZO algorithm.
1619
Seth Jennings35a1fc12012-07-19 09:42:41 -05001620config CRYPTO_842
1621 tristate "842 compression algorithm"
Dan Streetman2062c5b2015-05-07 13:49:15 -04001622 select CRYPTO_ALGAPI
Giovanni Cabiddu6a8de3a2016-10-21 13:19:52 +01001623 select CRYPTO_ACOMP2
Dan Streetman2062c5b2015-05-07 13:49:15 -04001624 select 842_COMPRESS
1625 select 842_DECOMPRESS
Seth Jennings35a1fc12012-07-19 09:42:41 -05001626 help
1627 This is the 842 algorithm.
1628
Chanho Min0ea85302013-07-08 16:01:51 -07001629config CRYPTO_LZ4
1630 tristate "LZ4 compression algorithm"
1631 select CRYPTO_ALGAPI
Giovanni Cabiddu8cd93302016-10-21 13:19:50 +01001632 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001633 select LZ4_COMPRESS
1634 select LZ4_DECOMPRESS
1635 help
1636 This is the LZ4 algorithm.
1637
1638config CRYPTO_LZ4HC
1639 tristate "LZ4HC compression algorithm"
1640 select CRYPTO_ALGAPI
Giovanni Cabiddu91d53d92016-10-21 13:19:51 +01001641 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001642 select LZ4HC_COMPRESS
1643 select LZ4_DECOMPRESS
1644 help
1645 This is the LZ4 high compression mode algorithm.
1646
Neil Horman17f0f4a2008-08-14 22:15:52 +10001647comment "Random Number Generation"
1648
1649config CRYPTO_ANSI_CPRNG
1650 tristate "Pseudo Random Number Generation for Cryptographic modules"
1651 select CRYPTO_AES
1652 select CRYPTO_RNG
Neil Horman17f0f4a2008-08-14 22:15:52 +10001653 help
1654 This option enables the generic pseudo random number generator
1655 for cryptographic modules. Uses the Algorithm specified in
Jiri Kosina7dd607e2010-01-27 01:00:10 +01001656 ANSI X9.31 A.2.4. Note that this option must be enabled if
1657 CRYPTO_FIPS is selected
Neil Horman17f0f4a2008-08-14 22:15:52 +10001658
Herbert Xuf2c89a12014-07-04 22:15:08 +08001659menuconfig CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001660 tristate "NIST SP800-90A DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001661 help
1662 NIST SP800-90A compliant DRBG. In the following submenu, one or
1663 more of the DRBG types must be selected.
1664
Herbert Xuf2c89a12014-07-04 22:15:08 +08001665if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001666
1667config CRYPTO_DRBG_HMAC
Herbert Xu401e4232015-06-03 14:49:31 +08001668 bool
Stephan Mueller419090c2014-05-31 17:22:31 +02001669 default y
Stephan Mueller419090c2014-05-31 17:22:31 +02001670 select CRYPTO_HMAC
Herbert Xu826775b2015-06-11 08:55:10 +08001671 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001672
1673config CRYPTO_DRBG_HASH
1674 bool "Enable Hash DRBG"
Herbert Xu826775b2015-06-11 08:55:10 +08001675 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001676 help
1677 Enable the Hash DRBG variant as defined in NIST SP800-90A.
1678
1679config CRYPTO_DRBG_CTR
1680 bool "Enable CTR DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001681 select CRYPTO_AES
Stephan Mueller35591282016-06-14 07:34:13 +02001682 depends on CRYPTO_CTR
Stephan Mueller419090c2014-05-31 17:22:31 +02001683 help
1684 Enable the CTR DRBG variant as defined in NIST SP800-90A.
1685
Herbert Xuf2c89a12014-07-04 22:15:08 +08001686config CRYPTO_DRBG
1687 tristate
Herbert Xu401e4232015-06-03 14:49:31 +08001688 default CRYPTO_DRBG_MENU
Herbert Xuf2c89a12014-07-04 22:15:08 +08001689 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001690 select CRYPTO_JITTERENTROPY
Herbert Xuf2c89a12014-07-04 22:15:08 +08001691
1692endif # if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001693
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001694config CRYPTO_JITTERENTROPY
1695 tristate "Jitterentropy Non-Deterministic Random Number Generator"
Arnd Bergmann2f313e02016-01-26 14:47:10 +01001696 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001697 help
1698 The Jitterentropy RNG is a noise that is intended
1699 to provide seed to another RNG. The RNG does not
1700 perform any cryptographic whitening of the generated
1701 random numbers. This Jitterentropy RNG registers with
1702 the kernel crypto API and can be used by any caller.
1703
Herbert Xu03c8efc2010-10-19 21:12:39 +08001704config CRYPTO_USER_API
1705 tristate
1706
Herbert Xufe869cd2010-10-19 21:23:00 +08001707config CRYPTO_USER_API_HASH
1708 tristate "User-space interface for hash algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001709 depends on NET
Herbert Xufe869cd2010-10-19 21:23:00 +08001710 select CRYPTO_HASH
1711 select CRYPTO_USER_API
1712 help
1713 This option enables the user-spaces interface for hash
1714 algorithms.
1715
Herbert Xu8ff59092010-10-19 21:31:55 +08001716config CRYPTO_USER_API_SKCIPHER
1717 tristate "User-space interface for symmetric key cipher algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001718 depends on NET
Herbert Xu8ff59092010-10-19 21:31:55 +08001719 select CRYPTO_BLKCIPHER
1720 select CRYPTO_USER_API
1721 help
1722 This option enables the user-spaces interface for symmetric
1723 key cipher algorithms.
1724
Stephan Mueller2f3755382014-12-25 23:00:39 +01001725config CRYPTO_USER_API_RNG
1726 tristate "User-space interface for random number generator algorithms"
1727 depends on NET
1728 select CRYPTO_RNG
1729 select CRYPTO_USER_API
1730 help
1731 This option enables the user-spaces interface for random
1732 number generator algorithms.
1733
Herbert Xub64a2d92015-05-28 11:30:35 +08001734config CRYPTO_USER_API_AEAD
1735 tristate "User-space interface for AEAD cipher algorithms"
1736 depends on NET
1737 select CRYPTO_AEAD
1738 select CRYPTO_USER_API
1739 help
1740 This option enables the user-spaces interface for AEAD
1741 cipher algorithms.
1742
Dmitry Kasatkinee089972013-05-06 15:40:01 +03001743config CRYPTO_HASH_INFO
1744 bool
1745
Linus Torvalds1da177e2005-04-16 15:20:36 -07001746source "drivers/crypto/Kconfig"
David Howells964f3b32012-09-13 15:17:21 +01001747source crypto/asymmetric_keys/Kconfig
David Howellscfc411e2015-08-14 15:20:41 +01001748source certs/Kconfig
Linus Torvalds1da177e2005-04-16 15:20:36 -07001749
Herbert Xucce9e062006-08-21 21:08:13 +10001750endif # if CRYPTO