Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 3c9a6793bde1feb368cd6ef113c08a40a37f7517 / . / net / xfrm / Kconfig
blob: bda1a13628a8143b812554d0d29fd83cac3a1e36 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]1#
2# XFRM configuration
3#
Sam Ravnborg6a2e9b72005-07-11 21:13:56 -0700[diff] [blame]4config XFRM
5 bool
6 depends on NET
7
Jan Beulich7e152522012-05-15 01:57:44 +0000[diff] [blame]8config XFRM_ALGO
9 tristate
10 select XFRM
11 select CRYPTO
12
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]13config XFRM_USER
Masahide NAKAMURA654b32c2006-08-23 19:12:56 -0700[diff] [blame]14 tristate "Transformation user configuration interface"
Jan Beulich7e152522012-05-15 01:57:44 +0000[diff] [blame]15 depends on INET
16 select XFRM_ALGO
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]17 ---help---
Masahide NAKAMURA654b32c2006-08-23 19:12:56 -0700[diff] [blame]18 Support for Transformation(XFRM) user configuration interface
19 like IPsec used by native Linux tools.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]20
21 If unsure, say Y.
22
Masahide NAKAMURAc11f1a12006-08-23 22:38:14 -0700[diff] [blame]23config XFRM_SUB_POLICY
Kees Cookf215bf42012-10-02 11:20:07 -0700[diff] [blame]24 bool "Transformation sub policy support"
25 depends on XFRM
Masahide NAKAMURAc11f1a12006-08-23 22:38:14 -0700[diff] [blame]26 ---help---
27 Support sub policy for developers. By using sub policy with main
28 one, two policies can be applied to the same packet at once.
29 Policy which lives shorter time in kernel should be a sub.
30
31 If unsure, say N.
32
Shinta Sugimotod0473652007-02-08 13:13:07 -0800[diff] [blame]33config XFRM_MIGRATE
Kees Cookf215bf42012-10-02 11:20:07 -0700[diff] [blame]34 bool "Transformation migrate database"
35 depends on XFRM
Shinta Sugimotod0473652007-02-08 13:13:07 -0800[diff] [blame]36 ---help---
37 A feature to update locator(s) of a given IPsec security
38 association dynamically. This feature is required, for
39 instance, in a Mobile IPv6 environment with IPsec configuration
40 where mobile nodes change their attachment point to the Internet.
41
42 If unsure, say N.
43
Masahide NAKAMURA8ea84342007-12-20 20:44:02 -0800[diff] [blame]44config XFRM_STATISTICS
Kees Cookf215bf42012-10-02 11:20:07 -0700[diff] [blame]45 bool "Transformation statistics"
46 depends on INET && XFRM && PROC_FS
Masahide NAKAMURA8ea84342007-12-20 20:44:02 -0800[diff] [blame]47 ---help---
48 This statistics is not a SNMP/MIB specification but shows
49 statistics about transformation error (or almost error) factor
50 at packet processing for developer.
51
52 If unsure, say N.
53
Herbert Xu6fccab62008-07-25 02:54:40 -0700[diff] [blame]54config XFRM_IPCOMP
55 tristate
Jan Beulich7e152522012-05-15 01:57:44 +0000[diff] [blame]56 select XFRM_ALGO
Herbert Xu6fccab62008-07-25 02:54:40 -0700[diff] [blame]57 select CRYPTO
58 select CRYPTO_DEFLATE
59
Sam Ravnborg6a2e9b72005-07-11 21:13:56 -0700[diff] [blame]60config NET_KEY
61 tristate "PF_KEY sockets"
Jan Beulich7e152522012-05-15 01:57:44 +0000[diff] [blame]62 select XFRM_ALGO
Sam Ravnborg6a2e9b72005-07-11 21:13:56 -0700[diff] [blame]63 ---help---
64 PF_KEYv2 socket family, compatible to KAME ones.
65 They are required if you are going to use IPsec tools ported
66 from KAME.
67
68 Say Y unless you know what you are doing.
69
Shinta Sugimotof6ed0ec2007-02-08 13:15:05 -0800[diff] [blame]70config NET_KEY_MIGRATE
Kees Cookf215bf42012-10-02 11:20:07 -0700[diff] [blame]71 bool "PF_KEY MIGRATE"
72 depends on NET_KEY
Shinta Sugimotof6ed0ec2007-02-08 13:15:05 -0800[diff] [blame]73 select XFRM_MIGRATE
74 ---help---
75 Add a PF_KEY MIGRATE message to PF_KEYv2 socket family.
76 The PF_KEY MIGRATE message is used to dynamically update
77 locator(s) of a given IPsec security association.
78 This feature is required, for instance, in a Mobile IPv6
79 environment with IPsec configuration where mobile nodes
80 change their attachment point to the Internet. Detail
81 information can be found in the internet-draft
82 <draft-sugimoto-mip6-pfkey-migrate>.
83
84 If unsure, say N.
Sam Ravnborg6a2e9b72005-07-11 21:13:56 -0700[diff] [blame]85